当前位置:首页 > 报告详情

利用业务架构进行风险与合规管理.pdf

上传人: Fl****zo 编号:719182 2025-06-22 17页 1.19MB

1、1Benjamin SenecalBenjamin SenecalDirector,Business ArchitectureDirector,Business ArchitectureUSAA Federal Savings BankUSAA Federal Savings BankLeveraging Business Architecture for Leveraging Business Architecture for Risk and Compliance ManagementRisk and Compliance ManagementMarch 19,2025Mary Sipic

2、hMary SipichLead Business ArchitectLead Business ArchitectUSAA Federal Savings BankUSAA Federal Savings Bank2AgendaTraditional Risk Management in BankingLeveraging a Business Architecture FrameworkUsing Business Architecture for Analyzing Issues and Architecting SolutionsWhere We Are in Our Journey3

3、Traditional Risk ManagementRisk Profile Risk Assessments(RA)Risk and Control Self-Assessments(RCSA)Business Management(e.g.Process,Risk,and Control Inventory)Identify risk and operational issues at a granular process level Aggregation of risks across the Lines of Business4Content ModelSource:Based o

4、n the TOGAF Content Framework and Enterprise Metamodel,The TOGAF Standard,10thEditionInformation SystemsDataApplicationBusiness OperationsBusiness InformationBusiness ServicesContractsProductsProcessesEventsControlsFunctionsOrganization UnitsActorsRolesOperational risk assessments based on processes

5、,risks,and controlsExpanded focus to include third party,data,and application risks using processes as the focal point1.Initial Focus2.Expanded Focus5Process-Based ApproachRisk with no controlRiskControlRisk 1No control identifiedRisk 2Control 2Risk 3Control 3Risk 4Control 4Risk 5Control 5Risk 6Cont

6、rol 6Legend:RiskControlSystem6Numerous Processes Across Product Lines and BUs260 level 3 processes1000 level 4 processes7Challenges with the Process-Based ApproachGranular,Functional,ProcessesDuplication of risks and controlsBlind spots on strategic,data,and tech risksSiloed risk assessments by orgT

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
本文主要内容是USAA联邦储蓄银行如何利用商业架构框架来提升风险和合规管理。关键点如下: 1. 传统风险管理:基于流程、风险和控制进行操作风险评估,并扩展至第三方、数据和应用风险。 - 核心数据:约260个三级流程,1000个四级流程。 2. 商业架构应用:使用价值流和能力分析框架,识别风险和操作问题,并制定解决方案。 - 核心数据:通过能力映射,发现不同问题数量,识别根本原因。 3. 挑战与解决方案:提出流程方法存在的盲点,通过商业架构提供全局视角,解决风险和合规问题。 - 核心数据:举例说明了针对“解决错误通知”能力的价值流映射。 4. 进展与计划:问题管理团队已将商业架构纳入流程,计划进一步丰富能力评估,并与战略对齐。 综上所述,文章强调了商业架构在提前识别风险、提升合规性和战略对齐方面的重要性。
"银行风险管理的革新之路? "业务架构如何助力合规管理? "怎样通过根因分析提升服务?"
客服
商务合作
小程序
服务号
折叠