• about reply
Avantage Reply Logo
Menu
  • About Us
    About Us
    • About Us
    • History
    • Our Approach
    • Values
    • Alumni
    • Strategic Partners
    • Media Contacts
    • Contact Us
  • Our Capabilities
    Our Capabilities
    • Our Capabilities
    • Risk
    • Insurance
    • Finance
    • Conduct & Compliance
    • Technology
  • Newsroom
    Newsroom
    • Newsroom
    • News
    • Events
    • Press Articles
    • Blog
    • Academy
  • Publications
    Publications
    • Publications
    • Briefing Notes
    • Case Studies
    • CRO Insights Journals
    • Infographics
    • White Papers & Practical Guides
  • Career
    Career
    • Career
    • BELGIUM
    • FRANCE
    • ITALY
    • LUXEMBOURG
    • NETHERLANDS
    • UK
  • about Reply
Avantage Reply Logo

Search

Case Studies

Case Study

Outsourcing Policy Update to align with new EBA and local requirements

FOCUS ON: Case studies,

SUMMARY

Avantage Reply assisted a Private Banking group in the Eurozone to review of group Outsourcing policy.

In light of changing European and national regulatory requirements that came into force in 2019, our client revised the internal processes and procedures regarding the management and oversight of both, intra-group and third-party outsourcing activities.

A key concern of the client was to define a new group policy that considers the existing organization of the bank. This included the roles and responsibilities of three lines of defense (“3 LoD”), European and local regulatory requirements.

CUSTOMERS GOALS

Our client’s main goal was to define a new group outsourcing policy that would be compliant with the minimum requirements as defined by the EBA (EBA/GL/2019/02) and reflect its internal organization for outsourcing arrangements.

THE CHALLENGE

The key challenge for the project was a changing and overlapping set of regulations. To achieve full compliance with the new regulations, our client had to consider both, EBA guidelines in force from September 2019 but not yet translated into national regulation and local requirements regarding outsourcing to cloud computing infrastructures. Additionally, being head office of the group, our client had to consider local organizational constrains in the subsidiaries and how the proportionality principle would apply.

From an operational point of view, the multitude of stakeholders and the fact that not all elements of the outsourcing oversight are specifically tailored to outsourcing contributed to the complexity of the project (e.g. outsourcing risk is also a part of the general operational risk framework of the bank).

APPROACH AND SOLUTION

Avantage Reply took a three-step approach to identify outstanding regulatory and organizational gaps and to define the group outsourcing policy:

  1. Conduct interviews with all stakeholders (such as operational departments, risk, compliance and legal) to identify their respective roles and responsibilities within the outsourcing process,
  2. Review all existing documentation (i.e. committee minutes, procedures, outsourcing register, roles and responsibilities),
  3. Draft the group outsourcing policy taking into account the client’s adopted 3 LoD model, management body structure and roles and responsibilities at subsidiaries level.

The key deliverable of the project was a complete outsourcing policy, to serve as a key guideline for all outsourcing-related processes and procedures within the group. It covers the main steps of the outsourcing process with references to the respective regulatory texts and practical examples (e.g. list of functions and activities not classified as an outsourcing). It includes:

  • outsourcing definition, categorization and obligations vis-à-vis local regulator,
  • roles and responsibilities of the 3 LoD and the management body,
  • planning of outsourcing arrangements incl. risk assessment and due diligence process,
  • contractual phase,
  • implementation, monitoring and management of outsourcing arrangements,
  • outsourcing register and oversight,
  • business continuity plan and exit strategies,

As a result, our client implemented the newly defined policy and aligned all related procedures to fully comply with the new regulatory requirements.

RELATED CONTENTS

Case Study

Counterparty Credit Risk (Pillar 1 and 2)

The client, a major banking group specialised in the provision of online banking and trading services, was in the process of launching new derivative products for its retail clients and required assistance for the counterparty credit risk calculations and regulatory reporting of these products.

Case Study

Standardised Approach for Counterparty Credit Risk

The client, a major banking group specialised in the provision of online banking and trading services, was in the process of launching new derivative products for its retail clients and required assistance with calculating the capital requirements for counterparty credit risk under the new standardised approach. This project was a continuation of similar work which Avantage Reply performed prior for this client, regarding the mark-to-market approach.

Case Study

Development and implementation of the IRB-models

Avantage Reply supported a large bank in Luxembourg with a complete transformation of the internal credit risk model portfolio. In doing so, our team was involved in several steps of the model lifecycle: model development, model backtesting, model validation by the second line of defense, model review by the ECB and implementation of the model in the bank’s IT system.

 ​
 
 ​
 
Reply ©​​ 2022 - Company Information -
 Privacy Cookie Settings​
  • Abou​t Reply​​
  • Investors​​​
  • Newsroom
  • Follow Reply on
  • ​
​
  • ​About Avantage ​​Reply
  • Privacy & Cookies Policy
  • Information (Client)​
  • Information (Supplier)
  • Information (Candidate)