Related provisions for GENPRU 1.2.38
1 - 20 of 53 items.
At least once a year, a firm must conduct, as part of its regular internal audit process, a review of its risk management process. This review must include both the activities of the business trading units and of the independent risk control unit, and must be undertaken by suitably qualified staff independent of the areas being reviewed. This review must consider, at a minimum:(1) the adequacy of the documentation of the risk management system and process;(2) the organisation
A firm should carry out assessments of the sort described in the overall Pillar 2 rule and GENPRU 1.2.39 R at least annually, or more frequently if changes in the business, strategy, nature or scale of its activities or operational environment suggest that the current level of financial resources is no longer adequate. The appropriateness of the internal process, and the degree of involvement of senior management in the process, will be taken into account by the FCA15 when reviewing
A firm must evaluate and address through appropriate policies and procedures the risks arising from securitisation transactions in relation to which a firm is investor, originator or sponsor, including reputational risks, to ensure, in particular, that the economic substance of the transaction is fully reflected in risk assessment and management decisions.[Note: article 82(1) of CRD]
For IFPRU 4.12.3 G (3) (option 3), the1FCA intends to grant permission for an originator to make its own assessment of significant risk transfer only where it is satisfied that:1(1) in every relevant case, the reduction in own funds requirements achieved would be justified by a commensurate transfer of risk to third parties;(2) the firm has appropriately risk-sensitive policies and methodologies in place to assess the transfer of risk; and(3) such transfer of risk to third parties
To assess a firm's ability to use its own policies and methodologies for assessing significant risk transfer, the FCA's permission reviews will focus on:(1) the firm's understanding of the risk of any potential transactions within permission scope, including for potential underlying assets, securitisation structures and other relevant factors that affect the economic substance of risk transfer;(2) the governance around significant risk transfer assessment (including sign-off procedures)
19For a common platform firm:
- (1)
the MiFID Org Regulation applies, as summarised in SYSC 1 Annex 1 3.2G, SYSC 1 Annex 1 3.2-AR and SYSC 1 Annex 1 3.2-BR; and
- (2)
the rules and guidance apply as set out in the table below:
Subject
Applicable rule or guidance
Risk assessment
Risk management
Risk control: remuneration
Risk control: additional provisions
Additional rules for CCR firms
A UCITS investment firm19 must establish, implement and maintain adequate risk management policies and procedures, including effective procedures for risk assessment, which identify the risks relating to the firm's activities, processes and systems, and where appropriate, set the level of risk tolerated by the firm.19
2(1) [deleted]1313(2) The term 'risk management function' in SYSC 7.1.6 R and SYSC 7.1.7R, and for a common platform firm in article 23(2) of the MiFID Org Regulation,19 refers to the generally understood concept of risk assessment within a firm, that is, the function of setting and controlling risk exposure.32917(3) For a firm that is not a relevant authorised person, the risk
management function is not a controlled function itself, but is part of
the systems and controls function
(1) 13A CRR firm's risk management function (article 23 of the MiFID Org Regulation19) must be independent from the operational functions and have sufficient authority, stature, resources and access to the management body.(2) The risk management function must ensure that all material risks are identified, measured and properly reported. It must be actively involved in elaborating the firm's risk strategy and in all material risk management decisions and it must be able to deliver
(1) This paragraph applies to a firm that is not a significant IFPRU firm (see IFPRU 1.2.3 R) whose activities are simple and primarily not credit-related.(2) In carrying out its ICAAP it could: (a) identify and consider that firm's largest losses over the last three to five years and whether those losses are likely to recur;(b) prepare a short list of the most significant risks to which that firm is exposed;(c) consider how that firm would act, and the amount of capital that
4The financial risk assessment should be based on a methodology which provides a reasonable estimate of the potential business losses which a UK RIE might incur in stressed but plausible market conditions. The FCA5 would expect a UK RIE to carry out a financial risk assessment at least once in every twelve-month period, or more frequently if there are material changes in the nature, scale or complexity of the UK RIE's operations or its business plans that suggest such financial
(1) If:(a) a firm'sIRB permission allows it to use this treatment; and(b) the conditions in (2)(16) are satisfied,a firm may attribute to an unrated position in an asset backed commercial paper programme a derived rating as laid down in (3).(2) Positions in the commercial paper issued from the programme must be rated positions.(3) Under the ABCP internal assessment approach, the unrated position must be assigned by the firm to one of the rating grades described in (5). The position
A firm calculating risk weighted exposure amounts for specialised lending exposures in accordance with BIPRU 4.5.8 R to BIPRU 4.5.10 R or equity exposures in accordance with BIPRU 4.7.9 R to BIPRU 4.7.10 R (the simple risk weight approach) must disclose the exposures assigned:(1) to each category of the table in BIPRU 4.5.9 R; or(2) to each risk weight mentioned in BIPRU 4.7.9 R to BIPRU 4.7.10 R.[Note: BCD Annex XII Part 2 point 8]
A firm calculating risk weighted exposure amounts in accordance with BIPRU 9 or capital resource requirements according to BIPRU 7.2.48A R to BIPRU 7.2.48K R4 must disclose the following information, where relevant separately for its trading book and non-trading book:4(1) a description of the firm's objectives in relation to securitisation activity;(1A) the nature of other risks, including liquidity risk inherent in securitised assets;4(1B) the type of risks in terms of seniority
(1) A firm may calculate the securities PRR for position risk (general market risk and specific risk) for positions in CIUs in accordance with the methods set out in the securities PRR requirements or, if the firm has a VaR model permission, in accordance with the methods set out in BIPRU 7.10 (Use of a Value at Risk Model), to assumed positions representing those necessary to replicate the composition and performance of the externally generated index or fixed basket of equities
As part of its business planning and risk management obligations under SYSC, a firm must reverse stress test its business plan; that is, it must carry out stress tests and scenario analyses that test its business plan to failure. To that end, the firm must:(1) identify a range of adverse circumstances which would cause its business plan to become unviable and assess the likelihood that such events could crystallise; and(2) where those tests reveal a risk of business failure that
(1) The FSAappropriate regulator may request a firm to submit the design and results of its reverse stress tests and any subsequent updates as part of its ARROW risk assessment. (2) In the light of the results of a firm's reverse stress tests, the FSAappropriate regulator may require the firm to implement specific measures to prevent or mitigate the risk of business failure where that risk is not sufficiently mitigated by the measures adopted by the firm in accordance with SYSC
(1) Depending on the nature, scale and complexity of its business, it may be appropriate for a firm to have a separate risk assessment function responsible for assessing the risks that the firm faces and advising the governing body and senior managers on them.(2) The organisation and responsibilities of a risk assessment function should be documented. The function should be adequately resourced and staffed by an appropriate number of competent staff who are sufficiently independent