ITRiskCarriere
itriskcarriere.nl
Home Vacatures Artikelen Organisaties
Over ons
Vakgebieden & Specialisaties Nieuwsbrieven Onze pakketten Contact Careerguide Hubs

Hubs per Sector

Finance
Actuaris Accountant Auditor
Business
Bank Hypotheken Investment
Business Support
Consultancy ESG HRM
Technology
Cyber Cloud AI
Alle hubs bekijken →
Hoofdwebsite
Bezoek →

Is the Three Lines of Defense Paradigm Dead?

Nieuws
31-05-2024
Clifford Rossi
A three-pronged approach to risk management has been widely employed by the financial services industry for the past 10 years. This model, however, has relegated ERM to second-tier status while causing friction between different business units – and adjustments are therefore needed.

By Clifford Rossi, Professor University of Maryland

The three lines of defense (3LoD) doctrine has been one of the major pillars of enterprise risk management at banks and regulators for more than a decade. But has it outlived its usefulness? If so, should it be revised or replaced?

Serious risk events of various types continue to occur with some regularity, so the effectiveness of 3LoD is highly questionable. Last year’s bank failures grabbed headlines, but, over the past decade, we’ve also seen risk fiascoes at Wells Fargo, Credit Suisse, Citigroup and even JP Morgan, among other high-profile banks.

Given the recurrence of risk failures in the banking system, it is logical to revisit the efficacy of the 3LoD model and ask if there are better ways to strengthen the way banks manage risk.

What’s Wrong with Three Lines of Defense?

The concept of 3LoD in banking surfaced as far back as 2003, when it was mentioned by the Financial Services Authority. But it really took off after the Institute of Internal Auditors fleshed out the idea more broadly in 2013. The IIA itself recommended an update to 3LoD as recently as 2019, but, at its core, it hasn't changed much.

[….]

Lees verder op: GARP

Gerelateerde vacatures

Geïnteresseerd in een carrière bij organisaties in ditzelfde vakgebied? Bekijk hieronder de gerelateerde vacatures en vind de perfecte match voor jou!
Senior Internal IT Auditor (RE)
Top vacature
DELA
5.370 - 7.672
Medior
Eindhoven
Als Senior Internal IT Auditor (RE) bij DELA voer je impactvolle audits uit. Werk samen met collega's aan innovatieve auditmethodes en ontwikkel een visie voor 2030, binnen een lerende en...
Meer lezen Direct solliciteren
Senior Consultant GRC Technology – Control Integration & Control Automation
KPMG
3.245 - 5.050
Junior, Medior
Rotterdam, Amstelveen, Arnhem en Eindhoven
Als (Senior) Consultant GRC Technology – Control Integration & Control Automation bij KPMG help je organisaties bij risicobeheersing via technologie, met focus op automatisering van controles. Jij vertaalt risico’s naar...
Meer lezen Direct solliciteren
Senior Consultant IT Risk & Control
KPMG
3.965 - 5.050
Senior, Medior
Amstelveen
Ben jij een tech-liefhebber? Sluit je aan bij ons als Senior IT Risk Consultant! Neem de leiding in IT-risk assessments, audits, security en innovatie. Als je klaar bent om deel...
Meer lezen Direct solliciteren
Interne IT Auditor
Top vacature
Klaverblad
65.000 - 93.000
Senior, Medior
Zoetermeer
Als Interne IT Auditor bij Klaverblad voer je risk-based audits uit en adviseer je over risicobeheersing en procesoptimalisatie. Je werkt zelfstandig en in teamverband, bespreekt bevindingen met management en draagt...
Meer lezen Direct solliciteren
Alle vacatures