TY - JOUR
T1 - Operational risk and the three lines of defence in UK financial institutions
T2 - Is three really the magic number?
AU - Mabwe, Kumbirai
AU - Ring, Patrick John
AU - Webb, Robert
N1 - Publisher Copyright:
© 2017 Incisive Risk Information (IP) Limited.
PY - 2017/2/14
Y1 - 2017/2/14
N2 - Interest in financial services firms developing and implementing robust systems and structures to manage operational risk has been growing. While there now appears to be some consensus in terms of definitions, quantification and modeling, firms are struggling with the qualitative side of operational risk management (ORM). This is particularly the case for financial institutions’ operational risk governance, where the three lines of defence model has become standardized. At the same time, corporate scandals post-financial crisis continue to indicate deficiencies in operational risk governance. Our paper examines the three lines of defence in the context of ORM in UK financial institutions. It focuses on roles and responsibilities and then analyzes the effectiveness of the traditional three lines of defence model. We find a lack of common understanding of the lines of defence in financial institutions, which leads to the duplication of roles and gaps in coverage. This is concerning for the industry, the economy and regulators.
AB - Interest in financial services firms developing and implementing robust systems and structures to manage operational risk has been growing. While there now appears to be some consensus in terms of definitions, quantification and modeling, firms are struggling with the qualitative side of operational risk management (ORM). This is particularly the case for financial institutions’ operational risk governance, where the three lines of defence model has become standardized. At the same time, corporate scandals post-financial crisis continue to indicate deficiencies in operational risk governance. Our paper examines the three lines of defence in the context of ORM in UK financial institutions. It focuses on roles and responsibilities and then analyzes the effectiveness of the traditional three lines of defence model. We find a lack of common understanding of the lines of defence in financial institutions, which leads to the duplication of roles and gaps in coverage. This is concerning for the industry, the economy and regulators.
KW - Financial institutions
KW - Operational risk
KW - Risk governance
KW - Risk management
KW - Three lines of defence
UR - http://www.scopus.com/inward/record.url?scp=85022183865&partnerID=8YFLogxK
U2 - 10.21314/JOP.2017.187
DO - 10.21314/JOP.2017.187
M3 - Article
AN - SCOPUS:85022183865
SN - 1744-6740
VL - 12
SP - 53
EP - 69
JO - Journal of Operational Risk
JF - Journal of Operational Risk
IS - 1
ER -