Operational Risk Management

Operational risk arises from the potential that inadequate information systems, operational problems, breaches in internal controls, fraud, or unforeseen catastrophes will result in unexpected losses (SR 95-51). Although operational risk does not easily lend itself to quantitative measurement, it can result in substantial costs through error, fraud, or other performance problems. The growing dependence of banking organizations on information technology emphasizes one aspect of the need to identify and control this risk.

Policy Letters

Operational Risk Management

Consolidated Recovery Planning for Certain Large Domestic Bank Holding Companies

Heightened Supervisory Expectations for Recovery and Resolution Preparedness for Certain Large Bank Holding Companies - Supplemental Guidance on Consolidated Supervision Framework for Large Financial Institutions (SR letter 12-17/CA letter 12-14)

Managing Foreign Exchange Settlement Risks for Physically Settled Transactions

Guidance on Managing Outsourcing Risk

End of Microsoft Support for Windows XP Operating System

Supervisory Practices Regarding Banking Organizations and their Borrowers and Other Customers Affected by a Major Disaster or Emergency

Interagency Counterparty Credit Risk Management Guidance

Interagency Examination Procedures for Reviewing Compliance with the Unlawful Internet Gambling Enforcement Act of 2006

Interagency Statement on Sound Practices Concerning Elevated Risk Complex Structured Finance Activities

Influenza Pandemic Preparedness

Interagency Paper on Sound Practices to Strengthen the Resilience of the U.S. Financial System

Standards for Safeguarding Customer Information

Guidance on the Risk Management of Outsourced Technology Services

Environmental Liability

Additional Resources

Payment Systems

Manual References

Back to Top
Last Update: May 19, 2017