Rebuilding and reinforcing banks’ risk data | KPMG | BE

Rebuilding and reinforcing banks’ risk data infrastructure

Rebuilding and reinforcing banks’ risk data

Banks need more accurate, timely management information on the risks they face. A consolidated risk data infrastructure improves strategic decision-making and enables better regulatory reporting.


Related content


The financial crisis revealed the inadequacy of banks’ risk data systems, with institutions frequently unable to provide up-to-date reports on risks and exposures. This undermined confidence and led regulators to focus on the quality of risk data and supporting systems and processes.

Most banks do not aggregate, store and analyze data in a coordinated fashion. Consequently reports are often compiled manually at great expense, are inaccurate and/or incomplete, and arrive too late to influence trading and operations. It can take as long as 60 days to compile a group-wide set of risk figures.

Four common banking risk data infrastructure weaknesses

  1. Efficiency: risk data is often owned and stored by different functions (markets, risk control, finance, back-office). Too much time is spent on data aggregation and not enough on actual risk management
  2. Flexibility: a lack of scenario analyses and reports hinders the ability to react to market events and regulatory requests
  3. Quality: with multiple systems, risk data is often incompatible, inconsistent, incomplete and duplicated
  4. Ownership: ownership of risk data shuffles uneasily between the control function and the IT function, with little accountability or commitment to quality.
Key points

Regulators demand better risk reporting from banks

Banks need to review and improve their risk IT infrastructures. Basel Pillar 2 provides guidance for strengthening risk data collection and internal risk reporting practices, calling for:

  • strong governance from boards and senior management
  • accuracy, integrity and timeliness of risk data
  • regular, clear, punctual risk and regulatory reporting
  • periodic reviews by supervisors.

How banks benefit from improved risk data management

A streamlined risk IT architecture requires investment in systems for transmitting and reporting risk data. It also calls for greater standardization, common data models, integrated systems and, in some cases, data warehouses.

By consolidating risk data, banks can produce more insightful analyses that improve risk management and business judgment. With more up-to-date, accurate reports, organizations can adapt quickly to competitive threats and regulatory change, making compliance simpler and less challenging.

Improved data aggregation can also reduce capital requirements. For example; by capturing all collateral contracts, risk-weighted capital calculations become more realistic.

High quality risk data

Renovating the risk IT infrastructure can be a significant expense for banks and requires fundamental organizational changes. However, it brings immense strategic benefits and should be a top management priority.

Four key questions on your risk data management

  • Do you have a fully automated system for collecting and analyzing data?
  • Is there a single owner of all your risk data?
  • Have you defined your organizational risk architecture?
  • Are you confident about the accuracy and timeliness of risk data reporting?

To discuss these questions further contact:

Sascha Chandler

Director Financial Risk Management

KPMG in Australia

T: +61 2 9455 9596


Marco Lenhardt


KPMG in Germany

T: +49 69 9587-3403


André Lattemann

Senior Manager

KPMG in Germany

T: +49 69 9587 3988


Brian J. Hart


KPMG in the US

T: +1 212 954 3093

Connect with us


Request for proposal