Digital transformation, cybersecurity are top concerns of CROs
KUCHING: Risk management functions within financial services organizations are primarily concerned with cybersecurity and data-related risks at their firms.
This is according to the EY and Institute of International Finance ( IIF) eighth annual global bank risk management survey of Chief Risk Officers ( CROs): Restore, rationalise and reinvent: a fundamental shift in the way banks manage risk.
Cybersecurity has surged as a concern with respondents, with 77 per cent claiming it is one of the most important risks over the next year, a 22 per cent increase since the 2015 survey.
In addition, a majority of the banks surveyed ( 86 per cent) cited data- related risks ( availability, integrity, etc.) as a top emerging risk over the next five years. Tom Campanile, Partner, Financial Services Office, Ernst & Young LLP, said that banks have reached an inflection point in risk management.
“How banks navigate emerging risks and opportunities presented by technological innovations will dictate their ability to thrive over the next decade,” he said in a statement. “Risk leaders recognize that data is both a risk and a major opportunity.
“Being able to manage multiple challenges and changes simultaneously will distinguish leaders in the industry, especially as cyber threats and digital disruption continue to impact banks globally.”
Respondents noted that with ever-present cyber threats and digital disruption taking place, risk and compliance functions are prioritising key tasks.
The top critical roles within risk and compliance functions are: helping to identify risks and align strategic efforts with risk tolerance (71 per cent), offering guidance on laws and regulations that could be interpreted as relevant to new technologies, products or services (49 per cent) and providing review and approval prior to product launch (47 per cent).
Andrés Portilla, Managing Director of the Regulatory Affairs Department at IIF, added that ROs and anyone who works in the risk function have to be much closer to the business lines with a more proactive mindset.
“Banks depend on people to implement, maintain and protect systems and data. Data will help identify and address emerging risks as well as inform strategic and everyday decisions.
“But data itself is also a source of risk, either from a data protection, integrity or fraud perspective, and risk managers have a key role to play in keeping a balance between leveraging the new technologies as much as possible within their organizations and keeping the associated risks within their risk appetite.”
Banks are embracing new technologies such as blockchain, robotic process automation ( RPA), chatbots and more.
Survey respondents expect new techniques and technologies will drive down costs in risk management, notably through the use of automation ( 87 per cent), digitization (64 per cent), machine learning ( 59 per cent) and risk models using artificial intelligence (AI) (57 per cent).
When it comes to implementing new technologies to drive digital transformation, the top three concerns of respondents are cybersecurity and shortage of IT resources/talent ( both 64 per cent) and also, cost (52 per cent).
Campanile added: “Over time, risk functions will have to leverage technology to improve risk management, and become technology innovators, rather than spectators.
“Banks will have to rethink how they manage risks, what risks need to be managed and what new types of talent will be required.”