SREP Transformation The Deloitte approach. Deloitte Malta Risk Advisory - Banking

Similar documents
ECB onsite inspections Helping you to prepare. Deloitte Malta Risk Advisory - Banking

Board Evaluation Is your Board ready for SREP governance reviews? Deloitte Malta Risk Advisory - Banking

Internal Business Review The Deloitte methodology. Deloitte Malta Risk Advisory - Banking

Anti Money Laundering (AML) Advisory Services Effective solutions for complex issues Deloitte Malta, 2017

Risk Management and Compliance Forum

How effectively are you complying with BCBS 239? A guide to assessing your risk data aggregation strategies. Deloitte Malta Risk Advisory - Banking

SSM LSI SREP Methodology

EBA Final Guidelines on ICAAP and ILAAP information collected for SREP purposes

Overview of EBA Guidelines on common procedures and methodologies for the supervisory review and evaluation process (SREP)

Ready for review: Business Model Assessment

Non-Financial Risk Management Insights Series Issue # 1 Risk Taxonomy and Risk Identification

EMEA TMC client conference Tax Operating Model defining your tax resourcing, governance and technology approach. The Crystal, London 9-10 June 2015

SSM SREP Methodology Booklet. Level Playing Field - High Standards of Supervision - Sound Risk Assessment

GL on Stress Testing and Supervisory Stress Testing. Public Hearing 29 February 2016, EBA London

Audit quality Independent Audit

Consultation Paper. Draft Guidelines

Set-up and start of the SSM

Latest developments in the context of the SREP: supervisory data in the SREP methodology

Strengthening the EU Pillar 2 Framework: Revision of SREP, IRRBB and Stress Testing Guidelines. 16 January 2018 Public Hearing

EBA/GL/2016/ November Final Report. Guidelines on ICAAP and ILAAP information collected for SREP purposes

Corporate Governance Board Effectiveness Reviews

EBA/CP/2015/ December Consultation Paper. Guidelines on ICAAP and ILAAP information collected for SREP purposes

Barry Robinson. Forensic Accountant, Deloitte

The Single Supervisory. Mechanism (SSM) BMF im Dialog 4 December DANIÈLE NOUY Chair of the Supervisory Board

Governance and Risk Mitigation A Supervisor s Perspective

Deloitte Consolidation & Close Transform your financial consolidation and close.

Risk Advisory Services Developing your organisation s governance for competitive advantage

Basel Committee on Banking Supervision. Stress testing principles

3. In particular, the Roadmap explains the approach that the EBA is planning to take in relation to the following:

The digital fund lifecycle

Managing interdependencies in Current Expected Credit Loss (CECL) implementations

Headline Verdana Bold Build your own board potential What it means to be a board April 2018

Dutch Banking Supervision on Conduct and Culture Deloitte Dublin 26 June 2018

on supervision of significant branches

ECB/EBA: what s new regarding the SREP and supervisory stress tests?

Final Report. Guidelines. on internal governance under Directive 2013/36/EU EBA/GL/2017/ September 2017

Model Risk Management A Southeast Asia Perspective

Federal Reserve Guidance on Supervisory Assessment of Capital Planning and Positions for Large Financial Institutions.

Cultivating a Risk Intelligent Culture A fresh perspective

Guidelines on ICAAP and ILAAP information collected for SREP purposes (EBA/GL/2016/10)

Audit committee performance evaluation

Duty of Care: from must to accelerator?

Regulatory News Alert ECB Guide to fit and proper assessments

Risk Based Approach and Enterprise Wide Risk Assessment Edwin Somers / Inneke Geyskens-Borgions 26 September 2017

Audit Committee and other Board Committees Roles and responsibilities under the Companies Act, 2013

Non-Financial Risk Management Insights Series Issue # 2 Risk Appetite

Independent Wealth Management in Luxembourg Perspective on a sector at crossroads 22 June 2018

FSI Governance Board effectiveness Insights & (emerging) best practices. EcoDa 25 October 2017

Time to take action IFRS 16 Leases

Bank of Ireland Group plc Compliance with the Capital Requirements Directive (CRD IV) - Governance Disclosures

Generating value within the Risk Ecosystem Risk powers performance

King IV and the governance of ethics

Set-up and start of the Single Supervisory Mechanism

ECB guide to internal models. General topics chapter

The European Banking Union Origins, state of play and way forward

ECB guide to internal models. General topics chapter

Consultation paper on draft guidelines on stress testing

Contents PROVIDING THE PERFECT TALENT FIT ENGAGING US HOW DO YOU BENEFIT? INTRODUCING FLEXIBLE RESOURCES MANAGEMENT CLIENTS MILLENNIALS

Are you ready for Industry 4.0? FY2017 Stakeholder engagement summary

Guide for the Targeted Review of Internal Models (TRIM) General topics

UNITY TRUST BANK PLC ( the Bank ) AUDIT AND RISK COMMITTEE. Terms of Reference

Link'n Learn Interactive Access to Deloitte Knowledge

The Deloitte CFO Transition TM Lab

How will the revision of the Posted Workers Directive impact your assignments?.

September European Banking Union Overview of the proposed changes

Implementing Analytics in Internal Audit. Jordan Lloyd Senior Manager Ravindra Singh Manager

PSD2 DATA FINTECH MARKETPLACE AISP CUSTOMER AWARENESS ALLIANCES MOBILE ECONOMY PISP API DIGITAL COMPLY REVENUE RTS SCORING BANKING STRATEGIC

CP ON DRAFT GL ON SUPPORT MEASURES EBA/CP/2014/17. 9 July Consultation Paper

Risk Advisory Services Our common storefront. Risk Advisory Services Our common storefront

ECIIA Comments on the EBA consultation: Guidelines on Internal Governance (EBA/CP/2016/16)

Taking labs to the next level with cloud and IoT VELP Scientifica tightens the customer connection

Introduction. Key points of the recent ODPC guidance, and the Article 29 working group guidance

Distributed ledger technologies services. Distributed ledger technologies services Using the power of blockchain

Deloitte Legal Department Health Review Approach to Strategic Planning

Digital era: technologies & strategy

SSM SREP Methodology Booklet

Basel Committee on Banking Supervision. Consultative Document. Stress testing principles. Issued for comment by 23 March 2018

EBA/CP/2017/17 31/10/2017. Consultation Paper. Draft Guidelines on institution s stress testing

Global Trade Radar How to leverage what tax authorities and forward-looking companies are doing in customs and global trade. Global Trade Radar

Our PRIIPS solution Get prepared for the race

The Single Supervisory Mechanism within

E T H I C A L L E A D E R S H I P. Bolder than ever

CENTRAL BANK OF CYPRUS

Report of the Supervisory Board of ING Bank Śląski S.A. on Their Operations for 2017

Consultation Paper. Draft Implementing Technical Standards

It's your business Take control. Controlling services

BCBS/EBA: LATEST PUBLICATIONS ON SUPERVISORY AND INSTITUTION STRESS TESTS. January 2018

UniCredit Group Regulatory Affairs. Aurelio Maccario Head of Group Regulatory Affairs

IIB - INTERNATIONAL BANKING ANTI-MONEY LAUNDERING SEMINAR

A framework for a better future. Response to ASIC Consultation Paper 247 on Review and Remediation Programs

Governance in a multidimensional environment

Report of the Supervisory Board of ING Bank Śląski S.A. on Their Operations for 2016

Model Risk Management at FinTech organizations Considerations for bank charter applicants

Transforming lives in Africa. Deloitte s African Footprint

How to build construction management processes

PROMONTORY, AN IBM COMPANY QUANTITATIVE SOLUTIONS CASE STUDY: Stress-Test Model Development

Deloitte Ressources Technology Growing together. Deloitte Ressources Technology Growing together 1

CFOs: The catalyst for integrating strategy, risk and finance

PROPORTIONALITY IN SUPERVISION

EMBEDDING SMR IS YOUR ACCOUNTABILITY FRAMEWORK EFFECTIVE?

Transcription:

SREP Transformation The Deloitte approach Deloitte Malta Risk Advisory - Banking

ECB onsite inspections Deloitte Malta Timeline for SREP and other 03 regulatory and supervisory requirements SREP Decoded 04 SREP Priorities for 2017 05 Your internal structure under SREP 06 How the ECB will inspect your 07 business model How the ECB will challenge internal 10 governance and controls How the ECB will assess ICAAP 12 and ILAAP 02

Timeline for SREP and other regulatory and supervisory requirements 2014 2015 2016 2017 2018 2019 Q1 Q2 Q3 Q4 Q1 Q2 Q3 Q4 Q1 Q2 Q3 Q4 Q1 Q2 Q3 Q4 Q1 Q2 Q3 Q4 Q1 Q2 Q3 Q4 SSM/SREP Results of ECB AQR and EBA Stress Tests SREP processes official ECB onsite inspections to commence between September and January 2017 CRD IV/CCR Application CO- REP FIN- REP Leverage ratio binding ILAAP/ICAAP ILAAP/ICAAP reports prepared by banks, reviewed by supervisors and benchmarked against peers Bank Recovery and Resolution Directive (BRRD) Application EU bail-in requirement applicable Single Resolution Mechanism Application Recovery plans Resolution plans Deposit Guarantee Scheme Directive Published in Official Journal Close of consultation period Phasing in MiFID/MiFIR Published in Official Journal Transposition Application Timeline Regulatory milestone Entry into force Ongoing 03

SREP Decoded 1. Business model analysis 2. Assessment of internal governance and controls 3. Assessment of risks to capital 4. Assessment of risks to liquidity and funding Ongoing risk assessment Viability and sustainability of Business Model (RAS) => Score + Rationale Adequacy of governance and Risk Management (RAS) => Score + Rationale Assessment of Risk level and Risk Controls for risks to capital (RAS) => Score + Rationale for each risk category Capital requirement determination => CET 1 add-on Block 1 RAS-based Block 2 ICAAP Supervisory proxies Block 3 Stressed ICAAP Supervisory stress tests/ proxies Assessment of Risk level for liquidity and funding risk and Risk controls (RAS) => Score + Rationale Liquidity requirement determination => liquidity buffer Block 1 RAS-based Block 2 Internal liquidity determination ILAAP Block 3 Stressed liquidity determination - Supervisory Stress Tests Capital adequacy assessment => Score + Rationale Liquidity and funding adequacy => Score + Rationale Overall SREP assessment Holistic approach => Score + Rationale/main conclusions Quantitative capital measures Supervisory measures Quantitative liquidity measures Other Supervisory measures 04

SREP Priorities for 2017 Among the key risks identified, business model and profitability risk are ranked the highest, followed by internal governance ECB stated in a document published on its website. The concerns over capital adequacy which have preoccupied the ECB since the global financial crisis last decade featured at the bottom of the list. Furthermore, the EBA has issued guidelines for common procedures and methodologies for the Supervisory Review and Evaluation Process (SREP) which will be underpin the process for supervisory review. Outlining its SREP priorities for the year, the ECB put banks business models and profitability at the top of the list The guidelines hinge on four main components: Business Model Analysis And Profitability Risk Assessment Of Internal Governance Assessment Of Risks To Capital And Adequacy Of Capital Assessment Of Risks To Liquidity And Adequacy Of Liquidity 05

Scrutiny around the Bank s business model The Executive team needs to own the business model analysis. It will be a key component in supervisory decision-making, and is an aspect banks can influence. Layer 1: Overarching documents Corporate Governance Framework Business Model and Strategy Financial Statements and Statutory Reports Business model needs to encompass the whole organisation Business strategy needs to be aligned across the bank Layer 2: Supporting frameworks, policies and procedures Stress Testing Framework Risk Management Framework Risk Appetite Framework Risk Level Policies Supporting Procedures Banks need to take a holistic approach to ensure that all components are aligned and interlinked. Align with business strategy, risk strategy and appetite and key reports (regulatory, external and internal) Layer 3: Regulatory submissions and documents Internal reporting Strategic plans Management information Capital planning ICAAP ILAAP Liquidity reporting Internal risks report... COREP FINREP Need to define business model through the identification of key resources, operational procedures, market conditions and stakeholder expectations RRPs Credit Register 06

Viability and sustainability are the main supervisory challenges Business model analysis is core to the new paradigm of forward-looking, judgement-based supervision What supervisors are looking for: Business model viability generate acceptable returns over the following 12 months. Sustainability of strategy generate acceptable returns over the following 3 years. Plausibility of the assumptions and projected financial performance. Assessment of where and how a bank makes money and the risks it takes in doing so. Riskiness of the bank s strategy, especially the ambition and complexity of the strategy set against the current business model. Bank s risk appetite, both for individual and aggregate risks, and its consistency with the stated strategy. Bank s resources capital, funding and people and whether they are sufficient to deliver the strategy. However: Supervisors time horizon is different. Supervisors perspectives on risk appetite are different to those of banks. The assessment will be detailed, specific and tangible What is the main operational model of your bank? Are you a lender? What is your role as a bank? Justify the size of your investment book vs the size of your loan book. How aligned are RAF, ICAAP and ILAAP with your commercial strategy? Are you incorporating ICAAP and ILAAP in your pricing strategy? How aligned are your deposit and lending rates to ECB rates, LIBOR, EURIBOR. Is the spread sustainable? How do you support your commercial assumptions on growth or profitability? What is the source of your market intelligence? Do you have sufficient and skilled resources to implement your strategy? How aligned is your Risk Appetite Framework, with your ICAAP/ILAAP, your Recovery Plan? How is that supported from an internal governance point of view? How effective is your cyber risk strategy? How effective is your AML strategy? Can your systems support the strategy? Can your systems support regulatory reporting? Are your systems flexible enough to adjust to increasing data management requirements? What is your IT strategy? Supervisors will look at the bank in its own right and in terms of the risks to the system. While supervisors will never approve a business model, there is a fine line between approval and assessment, particularly when a supervisor identifies concerns about a bank s business model. The Deloitte approach Elements Gap Analysis Remediation 01. Feasibility 02. Sustainability 03. Alignment Challenge management with mock supervisory interviews on key management. Provide EMEA-wide lessons learned and identify gaps. 07

Assess compliance of internal governance and control Trust in the reliability of the banking system is crucial for its proper functioning and a prerequisite if it is to contribute to the economy as a whole."consequently, effective internal governance arrangements are fundamental if institutions, individually, and the banking system, are to operate well. EBA Guidelines on Internal Governance Principles of internal governance In recent years, internal governance issues have been given prominence by various international bodies with a view to exposing weak or superficial internal governance practices. The review and evaluation conducted by the competent authority shall include: Governance arrangements; Corporate culture and values; and The ability of directors to perform their duties. When conducting the review and evaluation the competent authority shall go through: Agendas and supporting documents for meetings of the board and its committees; and The results of the internal or external evaluation of the performance of the board of directors. Key areas of assessment Overall governance framework The assessment of the organisational structure of the institution as well as the suitability of the management body. Corporate and risk culture The adequacy of the risk and corporate risk culture taking into account the scale and complexity of the business. Organisation and functioning of management body The assessment of the: 1) oversight of the internal governance framework; and 2) efficacy of the interaction between management and the supervisory functions. Remuneration policies and practices The alignment of the remuneration guidelines and policy of the institution, with its risk strategy and compliance with CRD IV art. 94 and EBA Guidelines 2017. Internal control framework The review of the independence and effectiveness of the compliance and internal audit functions. Risk management framework Institution-wide assessment of the: 1) effectiveness of the role of the CRO; 2) risk appetite framework and strategy; and 3) stress testing capabilities. Information systems and BCP The suitability of information and communication systems and risk data aggregation capabilities. Recovery planning arrangement The assessment of the institution s recovery plans, based on the findings from the internal governance assessment 08

The Deloitte approach Elements Gap Analysis Remediation 01. Overall governance framework 02. Corporate and risk culture 03. Organisation and functioning of management body 04. Remuneration policies and practices 05. Internal control framework 06. Risk management framework Ensure that internal governance and institution-wide controls are adequate for the risk profile, business model, size and complexity of institution, in line with EBA guidance on the matter. Assess the degree to which the institution adheres to the requirements and standards of good internal governance and risk controls arrangements. 07. Information systems and BCP 08. Recovery planning arrangement 09

Scrutinise internal capital stress test and internal liquidity stress test SREP framework Review of ICAAP and ILAAP in the SREP context Representation of the SREP, which will be applied in 2017. 01. Assessment of inherent risks and controls 02. Determination of own funds requirements and stress testing 03. Capital adequacy assessment The SREP framework A Categorisation of institutions B Monitoring of key indicators Business model analysis C D Assessment of internal governance and institution-wide controls Assessment of risks to capital E F Assessment of risks to liquidity and funding I Early intervention measures H Supervisory measures G Overall SREP assessment 01. Quantitative capital measures 02. Quantitative liquidity measures 03. Other supervisory measures 01. Assessment of inherent risks and controls 02. Determination of liquidity requirements and stress testing 03. Liquidity adequacy assessment 10

A B Categorisation of institutions Financial Institutions will be distributed in four categories (Level 1 to 4), according to the systemic risk they represent. The level of frequency and intensity of the monitoring, changes depending on the category (Level 1 being the most intense). Monitoring of key indicators The quarterly monitoring of the main financial and non-financial indicators of all the Financial Institutions, intermediated with the SREP s evaluations, will allow to identify any potential deterioration on the risk profile and lead to an update on the evaluations of all SREP components. C Business model analysis D Assessment of internal governance and institution-wide controls E Assessment of risks to capital F Assessment of risks to liquidity and funding This analysis consists of: 01. The evaluation of the viability of the business model on a year time horizon; 02. The evaluation of the sustainability of the strategy in the next three years; 03. The identification of the main vulnerabilities that may impact the bank or lead to a situation of recovery/ resolution. This evaluation s main focus is: 01. To guarantee that the governance model and the implemented controls are adequate to the risk profile, business model, size and complexity of the bank; 02. To evaluate the degree of compliance of the bank with the requirements and standards of a good governance and internal control practices. There will be evaluations to the material risks identified for the bank, which will result in a grade that is based on the inherent risk and on the management and control of existing risks. This evaluation will use the bank s ICAAP as its main tool. The output will then be used to determine the adequate capital levels. This evaluation is focused on the liquidity and funding risks, as well as on its management and on the existing internal controls. It will use as its main tool the bank s ILAAP and it can result in specific measures to comply with the liquidity requirements previously defined. 11

Where do ICAAP and ILAAP come in? SREP Elements 1 Business model analysis 2 Assessment of internal governance and controls Overall internal governance framework Internal control framework Remuneration policies and practices Corporate and risk culture Risk management framework, including ICAAP and ILAAP 3 Assessment of risks to capital Organisation and functioning of the management body Information systems and business continuity Recovery plan arrangements 4 Assessment of risks to liquidity and funding 07.07.14 19.12.14 11.12.15 What is SREP? SREP constitutes for regulators a common framework and methodology for assessing the institutions risks and viability. The four elements of the SREP framework are assessed and scored on a scale of 1 to 4. Where does ICAAP and ILAAP come in? As part of SREP, competent authorities will assess the ICAAP and ILAAP on the basis of: 01. Soundness: are policies and processes appropriate for maintaining an adequate level of capital and liquidity to cover risks to which the institution is exposed? 02. Effectiveness: to what extent is ICAAP and ILAAP embedded in decision-making? 03. Comprehensiveness: are all business lines, legal entities and risks covered? Consultation on draft guidelines on SREP Final guidelines on SREP methodologies and process Consultation on draft guidelines on ICAAP and ILAAP information 12

How Deloitte can help Elements Gap Analysis Remediation 01. Capital 02. Liquidity Ensure assumptions and internal stress test methodologies are up to standard and aligned with regulatory reporting, management tools, overall strategy and EMEA-wide best practices. SSM expectations on ICAAP and ILAAP Governance Institutions should produce at least once per year, a clear formal statement on their capital adequacy supported by an analysis of ICAAP outcomes, approved and signed off by the management body. General design The shorter term perspective must be complemented by a longer term (usually at least a three-year horizon) forward looking process. ICAAP perspective Institutions are expected to implement a proportionate ICAAP approach aimed at the survival of the institution. Integration with the business strategy Institutions are expected to have their ICAAP and ILAAP processes intertwined with the business strategy of the Bank. Banks risk appetite and stressed scenarios reflect the business model, and the parameters and results emanating from the ICAAP and ILAAP processes should be used for business decision making. ICAAP and ILAAP will therefore be used as management tools not simply regulatory documents. Risks considered Institutions are responsible for implementing a regular process for identifying all material risks, as shown opposite. Pillar I Credit Definition of internal capital This has to be consistent with the ICAAP perspective on capital needs. The SSM pays particular attention to the quality of capital. Assumptions and key parameters These should be set in line with risk appetite, market expectations, business model and risk profile. Inter-risk diversification effects Institutions should be transparent and produce gross figures in addition to net figures. Severity level of stress tests and stress testing scenario definition Scenarios have to be tailored to the institution s vulnerabilities resulting from its business model and operating environment. At least once a year, institutions shall perform an in-depth review of their vulnerabilities. Market Operational Interest rate Participation Sovereign Pension Funding cost Concentration Business/ strategic Pillar II 13

For further information contact: Mark Micallef Risk Advisory - Banking Leader mmicallef@deloitte.com.mt +356 23432000 Berik Satpayev Risk Advisory - Senior Manager bestapayev@deloitte.com.mt +356 23432000 Peter Galea Risk Advisory - Assistant Manager pgalea@deloitte.com.mt +356 23432000 Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ( DTTL ), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as Deloitte Global ) does not provide services to clients. Please see www.deloitte.com/about to learn more about our global network of member firms. Deloitte Malta refers to a civil partnership, constituted between limited liability companies, and its affiliated operating entities: Deloitte Services Limited, Deloitte Technology Solutions Limited, Deloitte Digital & Technology Limited, Alert Communications Limited, Deloitte Technology Limited, and Deloitte Audit Limited. The latter is authorised to provide audit services in Malta in terms of the Accountancy Profession Act. A list of the corporate partners, as well as the principals authorised to sign reports on behalf of the firm, is available at www. deloitte.com/mt/about. Cassar Torregiani & Associates is a firm of advocates warranted to practise law in Malta and is exclusively authorised to provide legal services in Malta under the Deloitte Legal sub-brand. Deloitte provides audit, consulting, financial advisory, risk advisory, tax and related services to public and private clients spanning multiple industries. Deloitte serves four out of five Fortune Global 500 companies through a globally connected network of member firms in more than 150 countries and territories bringing world-class capabilities, insights, and high-quality service to address clients most complex business challenges. To learn more about how Deloitte s approximately 245,000 professionals make an impact that matters, please connect with us on Facebook, LinkedIn, or Twitter. This communication contains general information only, and none of Deloitte Touche Tohmatsu Limited, its member firms, or their related entities (collectively, the Deloitte Network ) is, by means of this communication, rendering professional advice or services. Before making any decision or taking any action that may affect your finances or your business, you should consult a qualified professional adviser. No entity in the Deloitte Network shall be responsible for any loss whatsoever sustained by any person who relies on this communication. 2017. For information, contact Deloitte Malta.

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback