UBS presentation Key remediation actions



Similar documents
Confident in our Future, Risk Management Policy Statement and Strategy

Basel Committee on Banking Supervision. Review of the Principles for the Sound Management of Operational Risk

ENTERPRISE RISK MANAGEMENT FRAMEWORK

The anglo american Safety way. Safety Management System Standards

Governance, Risk and Compliance Charter

FFIEC Cybersecurity Assessment Tool

RISK MANAGEMENT STRATEGY

HEALTH SAFETY & ENVIRONMENT MANAGEMENT SYSTEM

Principles for An. Effective Risk Appetite Framework

COMPLIANCE CHARTER 1

Operational Risk Management - The Next Frontier The Risk Management Association (RMA)

APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES

APPENDIX 50. Enterprise risk management - Risk management overview

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014

ING Group Compliance Risk Management Charter and Framework

EURIBOR - CODE OF OBLIGATIONS OF PANEL BANKS

Forensic Audit Building a World Class Program

Risk Management Strategy & Implementation Plan

RSA ARCHER OPERATIONAL RISK MANAGEMENT

Enterprise Compliance Risk. AIBA June 14, 2012 Presented by: Jack Sonnenschein

ORACLE ENTERPRISE GOVERNANCE, RISK, AND COMPLIANCE MANAGER FUSION EDITION

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS

Aegon Global Compliance

SAI GLOBAL LIMITED Risk Management Policy

JOB AND PERSON SPECIFICATION. It has an annual budget of approximately 50 million and currently a staff of approximately 300.

Reputation, Brand & Communications

IFAD Policy on Enterprise Risk Management

What Every Director. How to get the most from your internal audit. Endorsed by

Annual Governance Statement 2013/14

GUIDANCE NOTE FOR DEPOSIT-TAKERS. Operational Risk Management. March 2012

International Diploma in Risk Management Syllabus

3 August 2012 Policy updated to reflect name changes and alignment with current Aurora Energy Group Policy standards.

CSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting

AIS Sports Science/Sports Medicine Best Practice Principles

RISK MANAGEMENT REPORT (for the Financial Year Ended 31 March 2012)

Compliance. Group Standard

Risk Management. Group Standard

B o a r d of Governors of the Federal Reserve System. Supplemental Policy Statement on the. Internal Audit Function and Its Outsourcing

ESM Management Comments on Board of Auditors Annual Report to the Board of Governors for the period ended 31 December 2014

Introduction from Chairman Chairman Role Profile Charter of Expectations Deputy Chairman Role Profile... 7

Harness Enterprise Risks With Oracle Governance, Risk and Compliance

Operations. Group Standard. Business Operations process forms the core of all our business activities

SCHOOL E-SAFETY SELF REVIEW TOOL

Accreditation Application Forms

Operational Risk Management Program Version 1.0 October 2013

Henkel s Compliance Management System (CMS)

Policy Document Control Page

Annual Governance Statement

INFORMATION GOVERNANCE POLICY & FRAMEWORK

Intelligent Customer Function (ICF)

Information Governance Management Framework

IT Service Desk Unit Opportunities for Improving Service and Cost-Effectiveness

SAFETY and HEALTH MANAGEMENT STANDARDS

Pharmaceutical Compliance and Regulatory Congress 2009

GOVERNANCE AND MANAGEMENT OF CITY COMPUTER SOFTWARE NEEDS IMPROVEMENT. January 7, 2011

Government Communication Professional Competency Framework

FFIEC Cybersecurity Assessment Tool Overview for Chief Executive Officers and Boards of Directors

Basel Committee on Banking Supervision

Office of Compliance and Ethics Introductory Report. Lynette Fons, Chief Compliance Officer

Fraud Risk Management Procedures

Safety Excellence Matrix

3.6 - REPORT BY THE CHAIRMAN OF THE BOARD OF DIRECTORS ON CORPORATE GOVERNANCE, RISK MANAGEMENT AND INTERNAL CONTROLS

Risk Management Policy

Board of Directors Meeting 12/04/2010. Operational Risk Management Charter

IT Services Risk Management Strategy

Governance, Risk & Compliance Management. Julian Hunn, Operations Manager Professional Standards

A Best Practice Guide

Middlesbrough Manager Competency Framework. Behaviours Business Skills Middlesbrough Manager

How To Manage A Corporate Council

State of Oregon. State of Oregon 1

Professional. Compliance & Ethics. 19 The seven deadly sins of unethical organizations. 49 Anti-corruption and global supply chains

RISK MANAGEMENT POLICY

Guidance on Supervisory Interaction with Financial Institutions on Risk Culture. A Framework for Assessing Risk Culture

EXECUTIVE SAFETY LEADERSHIP

Compliance in motion A closer look at the Corporate Sector. Deloitte Risk Services March 2015

NHS Boards will: Action required Accountable Support Target dates Progress / Status

Risk Management Framework

Rolls Royce s Corporate Governance ADOPTED BY RESOLUTION OF THE BOARD OF ROLLS ROYCE HOLDINGS PLC ON 16 JANUARY 2015

Department of Veterans Affairs VHA HANDBOOK Washington, DC November 8, 2010 COMPLIANCE AND BUSINESS INTEGRITY (CBI) PROGRAM STANDARDS

Internal Audit Division

Audit and Performance Committee Report

Auditor General s Office. Governance and Management of City Computer Software Needs Improvement

Risk Management Policy

Privacy Governance and Compliance Framework Accountability

A Guide to Corporate Governance for QFC Authorised Firms

Information Governance Policy

How To Transform It Risk Management

Exchange Rate - Codes of Best Market Practice and Shared Global Principles 1

West Dunbartonshire Council. Follow-up data protection audit report

with Managing RSA the Lifecycle of Key Manager RSA Streamlining Security Operations Data Loss Prevention Solutions RSA Solution Brief

How To Be Accountable To The Health Department

360 Degree Safe Cymru SELF REVIEW TOOL

The PNC Financial Services Group, Inc. Business Continuity Program

Experience the commitment WHITE PAPER. Information Security Continuous Monitoring. Charting the Right Course. cgi.com 2014 CGI GROUP INC.

The Compliance Universe

Risk and Audit Committee Terms of Reference. 16 June 2016

White Paper Achieving GLBA Compliance through Security Information Management. White Paper / GLBA

Antifraud program and controls assessment grid*

Corporate Governance in New Zealand Principles and Guidelines

Transcription:

UBS presentation Key remediation actions Nov 17, 2014

Group-wide actions Integration of Compliance and Operational Risk Control We have integrated Compliance and Operational Risk Control. The key benefits of the integration will be: Achieving a stronger defense mechanism based on preventative measures, thereby reducing the likelihood and impact of a significant event. This will be achieved through combining skills across Risk, Compliance and Control and realigning activities appropriately across 1st & 2nd line of defense. Becoming forward looking to identify and action potential significant risks and issues early. This will be achieved by focusing the view of consequential risk management on forward looking risk identification and industrializing the use of data analysis underpinned by technology. Establishing one firm-wide consistent Risk & Control Framework to enable strengthened controls to be efficiently delivered. This will include the streamlining and enhancing of risk control assessments and operating seamless 'top down' and 'bottom up' risk & control assessment continuum. Establishing clear accountability & prioritization, including the definition of clear roles and responsibilities for consequential risk management to mitigate execution risks. Increased Monitoring and Surveillance We continue to enhance overall M&S capabilities to identify and detect improper business and employee practices. This works is focused across six work streams: 1) Strengthening cross border monitoring, 2) Enhanced employee intelligence capabilities which consolidates multiple data points of individuals, 3) Electronic communications monitoring, 4) Enhanced monitoring of audio communications relating to benchmark submissions, 5) IB trade surveillance, 6) Unauthorised trading detection in the IB. Enhanced whistleblowing process We have enhanced the whistleblowing process, re-issued the Whistleblowing Protection policy for Employees, and increased communications on the program. The case management process has been optimized to reduce the time for cases to be reviewed and closed. Personal Account Dealing The Personal Account Dealing policy has been revised to ensure that consistent, enhanced global standards are put in place and generally only UBS accounts are allowed for UBS employees to monitor own trading activity 1

Specific Investment Bank actions Policy and Conduct: We have significantly updated the Fixed Income, Rates and Credit Handbook (Code of Conduct) and published and circulated the new Handbook to employees. Enhanced and new sections cover communication, behaviour, and market and client conduct. We have completed mandatory conduct training for all IB Sales andtradingstaffwithover2,600staffhavingattendedthe live sessions. The new conduct training now forms part of the induction for all new IB Sales and Trading staff. We have banned the use of personal mobile devices on trading floors globally. We have been industry leaders in setting new procedures to ensure appropriate usage of chat rooms as a form of communication, including closure of chat rooms (ca 50%), banning of social chat and implementation of new policy including room owners, moderators and guidance on usage. Systems and Organisation: We have consolidated analytical surveillance activities into a single C&ORC Function to enhance our controls and to integrate into our trade surveillance infrastructure. We have increased staffing levels to enhance management oversight. We have further strengthened our infrastructure to ensure segregation of duties to avoid any conflicts of interest. Process and Control: We are continuing to roll out a new Employee Conduct Risk dashboard regionally. We have issued guidance on completion of Trade Entry Error reports to ensure errors are reviewed and escalated in a timely manner. We are introducing new procedures to ensure enhanced regular review of key front-to-back controls. We have defined, and are in the process of implementing, a new set of metrics to enhance our management information in relation to our usage of third-party brokers In control in business campaign (launched in July 2012) Group wide awareness campaign highlighting the importance of risk control and the responsibility of the individual as a risk manager. 2

Considering the lessons learned from the financial crisis and other internal and external events, UBS has taken a range of measures to improve the firm's risk management and control processes and drive the right behaviors to protect the firm's reputation and achieve the strategic goals. 2008-2011 Refresh of the code of business conduct and ethics Introduction of Group Significant Operational Risk Issues (GSORIs) Creation of the Master List of Significant Issues (MLSI) Risk Effectiveness program Enhanced remuneration framework introduction of deferred compensation and forfeiture of compensation 2012 -> ongoing Enhanced Operational Risk Framework (ORF2) Master List of Significant Issues Managing Director ownership and independent assurance Strengthening front-to-back control accountabilities through the Chief Operating Officers Investment Bank Unauthorized Trading Accident remediation including behavioral program Risk embedded in performance and compensation Enhanced Supervision In Control In Business communication campaign Performance Management assessment and promotions Enhanced Incidents and Consequences process 2013 -> ongoing Independent management testing of key controls Development of an intelligence capability enhanced monitoring Libor Lessons learned initiatives on the 2 nd line of defense Enhanced investigation framework Whistleblowing communication campaign Comprehensive program on leadership and behaviors Market Conduct Enhancement Program 2014 -> ongoing Enhancements to the whistleblowing process Integration of Compliance and Operational Risk Control Conduct Risk FX Spot Review and associated controls and governance remediation Control Remediation Increasing Complementary Focus on Behavioral Aspects Strengthening the culture takes time programs are in progress 3

Measures and programs Enhanced Operational Risk Framework (ORF2) Complementing current Operational Risk assessments with sub divisional Front to Back risk assessments Key controls continue to be embedded into the Chief Operating Officer dashboards and run the bank operations Control assessment process embedded within strategic change programme design phase Positive regulatory assessment received of Enhanced Operational Risk Framework implementation Independent management testing of key controls Introduction of independent management testing of key controls and full testing of relevant population of bank Complementary to the internal control testing and provides an additional level of assurance CONTROLS Commenced development of an 'intelligence capability' enhanced monitoring Libor Lessons learned initiatives on the 2 nd line of defense The 'intelligence capability' contains 3 elements: Development and implementation of a capability to link disparate information from multiple sources at employee level Enhancements to electronic communications monitoring and discovery capabilities Enhancement of alert generation capabilities The assessment of current measures in place ensuring that they are completed and embedded in the firm Clarification of control expectations for the 2 nd line of defense for conduct, regulatory and reputations risks FX Controls and Governance Review Group Internal Audit and Operational Risk Control review of the Front to Back control and governance aspects of the FX spot business including - FX Business Profile and Organizational set up - Front Office supervision / Performance Review - Control Function Processes In addition the applicability of FX remediation actions against other Investment Bank Business lines is conducted to determine where control enhancements can be leveraged to mitigate against threats to the wider organisation. Investment Bank 'Look Across' Review A firm wide risk assessment, the "Look Across Process" was conducted in Q4 2013 to test the hypothesis that markets and businesses which share some of the same attributes common to LIBOR and FOREX events could also be susceptible to market misconduct 4

Measures and programs Introduction of Group Significant Operational Risk Issues (GSORIs) Creation of the Master List of Significant Issues (MLSI) Master List of Significant Issues Managing Director ownership and independent assurance Identification of the key operational risks for the firm and establishment of effective remediation Clear ownership with individual Group Executive Board members Common rating scale in place across the firm Level 4 and 5 issues assigned to MDs and included in Performance Management objectives Independent assurance of associated remediation by GIA for all risk issues and actions impacting the firm PROCESS Strengthening front-to-back control accountabilities through the Chief Operating Officers Investment Bank Unauthorized Trading Accident remediation including behavioral program Revised mandate for Chief Operating Officers to re-emphasize the Front to Back control responsibility Chief Operating Officers dashboards introduced to provide visibility of the Front to Back control environment Completion of complex and broad remediation program on time Included a behavioral program led by the Investment Bank Executive Committee Risk and Behaviors embedded in performance and compensation Process to embed control function feedback into the performance assessment and compensation processes Enhanced Investigations framework Common approach and governance for level 4 and 5 investigations Conduct Risk Develop an approach to identification, assessment and reporting of Conduct Risk across the firm 5

Measures and programs Refresh of the Code of business conduct and ethics The Code reflects principles and practices that are binding for all of UBS's employees and Board members to follow unreservedly It is available on the intranet in 10 languages Online training is also available Implemented training activities to ensure that it is properly understood and correctly applied Enhanced supervision Critical initiative to set and embed higher expectations of supervisors across all functions. Group Executive Board approved the "Principles of Good Supervision" (2H12) and self assessment completed by each function Online mandatory training modules introduced for both supervisors and non-supervisors CULTURE Communications programs In control In Business Whistleblowing Comprehensive program on leadership and behaviors "In Control In Business" (ICIB) is a Group-wide internal communications campaign designed to help establish a stronger risk culture across the firm "In Control In Business" campaign was launched in June 2012 "Principles of Good Supervision" were published and reinforced through "In Control In Business" campaign Whistleblowing policy has been reviewed to confirm it adequately covers ethical matters A campaign around whistleblowing procedures was launched by the Chairman and Group CEO to encourage staff to raise concerns Program set-up in 1Q13 Tone from the top engagement and reinforcement actions are being implemented across the firm Key behaviors defined and rolled out to the firm. All 60000 employees touched. Performance Management assessment and promotions Key behaviors embedded in the Performance Management/comp process Enhanced Incident and Consequences process Promotion proposals assessed against behavior / disciplinary actions Senior leadership using "Master List of Significant Issues" assurance work as a factor in compensation decisions Compliance and Operational Risk Control Integration Move of Compliance to Risk Control and integration with Operational Risk Control to consolidate the second line of defence for consequential risk Positioning the Compliance organization as a control function within the firm 6

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information