itriskcarriere.nl

Is the Three Lines of Defense Paradigm Dead?

Nieuws
31-05-2024
Clifford Rossi
A three-pronged approach to risk management has been widely employed by the financial services industry for the past 10 years. This model, however, has relegated ERM to second-tier status while causing friction between different business units – and adjustments are therefore needed.

By Clifford Rossi, Professor University of Maryland

The three lines of defense (3LoD) doctrine has been one of the major pillars of enterprise risk management at banks and regulators for more than a decade. But has it outlived its usefulness? If so, should it be revised or replaced?

Serious risk events of various types continue to occur with some regularity, so the effectiveness of 3LoD is highly questionable. Last year’s bank failures grabbed headlines, but, over the past decade, we’ve also seen risk fiascoes at Wells Fargo, Credit Suisse, Citigroup and even JP Morgan, among other high-profile banks.

Given the recurrence of risk failures in the banking system, it is logical to revisit the efficacy of the 3LoD model and ask if there are better ways to strengthen the way banks manage risk.

What’s Wrong with Three Lines of Defense?

The concept of 3LoD in banking surfaced as far back as 2003, when it was mentioned by the Financial Services Authority. But it really took off after the Institute of Internal Auditors fleshed out the idea more broadly in 2013. The IIA itself recommended an update to 3LoD as recently as 2019, but, at its core, it hasn't changed much.

[….]

Gerelateerde vacatures

Geïnteresseerd in een carrière bij organisaties in ditzelfde vakgebied? Bekijk hieronder de gerelateerde vacatures en vind de perfecte match voor jou!
RDW
5.221 - 7.730
Medior, Senior
Groningen
Als Senior IT-Auditor (0,6 FTE) bij RDW bewaak je betrouwbaarheid, veiligheid en beheersbaarheid van een complexe ICT-omgeving met cloud en outsourcing. Je voert interne controles uit, bouwt PBC-dossiers, bewaakt actiepunten,...
Belastingdienst
3.496 - 6.275
Medior
Utrecht
Als Forensisch IT specialist FIOD bij de Belastingdienst onderzoek en leg je digitaal bewijs vast in strafrechtelijke fraudezaken, analyseer je data in complexe omgevingen (netwerken/cloud) en adviseer je opsporingsteams met...
Top vacature
Ministerie van Buitenlandse Zaken
Marktconform
Medior, Senior
Den Haag
Als Senior Data Engineer bij het Ministerie van Buitenlandse Zaken bouw, beheer en optimaliseer je Databricks/Azure-datapipelines, ontwikkel je het enterprise datawarehouse, automatiseer je deployments naar productie en borg je datagovernance...
ING
5.677 - 9.137
Medior, Senior
Amsterdam
As a NFR Expert AI Risk Management at ING, you shape and maintain AI risk frameworks, advise and challenge 1LoD on controls and strategy, oversee (Gen)AI risks and reporting, monitor...