Leading UK Financial Institution Improves Risk Visibility With Single Source of Truth for Operational Risk Management and Compliance

Faster, Better Risk Assessments

MetricStream Operational Risk Management—which is used by more than 300 employees in the company—has replaced manual risk management processes with automated workflows, analytics, and dashboards. Users can efficiently plan, schedule, and conduct risk-control self-assessments. They can also measure and track key risk indicators.

The product supports both qualitative and quantitative risk assessments, as well as risk aggregation and scoring. It also helps standardize the risk taxonomy across the enterprise, so that everyone is communicating and reporting in the same language.

Reduced Risk Incidents

With the implementation, the company can proactively capture, analyze, and remediate risk events and losses in compliance with the Basel Accords. An estimated 200 loss events per month are managed through the product. With proactive control monitoring and real-time risk visibility, the product is helping the company respond to loss events faster and proactively prevent risk incidents.

Control Rationalization

MetricStream houses approximately 2,000 controls and provides in-depth insights into the performance of these controls. It enables the company to prioritize remediation strategies, while also identifying orphan controls that can be decommissioned. This resulted in the control environment being better organized, more transparent, and more effectively monitored.

Right from the start, the company was determined not to customize the product. They wanted to keep it flexible and agile.

Improved Frontline Ownership of Risks

For the first time, the frontline at the company has a powerful product to assess, mitigate, and monitor their risks. The tool’s intuitive, personalized, and contextual interface makes it easy to adopt and use. It also breaks down silos and strengthens collaboration between the first and second lines. Together, they can optimize risk coverage, minimize gaps in risk assessments, and strengthen risk reporting.

Real-time Risk Visibility

The mortgage lender now has a 360-degree view of risks and controls through interactive dashboards, heat maps, and reports available in the product. Risk committees can track risks in real time and drill down into the data for granular insights to drive more agile and risk-aware business decisions

Efficient Regulatory Change Management

MetricStream Regulatory Change Management has enabled the company to identify, capture, and manage regulatory changes in a simple and automated manner through feeds. The product’s integration with CUBE RegInsight, an AI-based intelligent regulatory horizon scanning tool, provides the earliest possible forewarning of relevant proposed and pending regulations

MetricStream has also integrated with CUBE RegBook to display the repository of both the regulations and regulatory requirements as regulatory alerts.

What’s more, the deplyment has also equipped the company to assess the impact of regulatory changes on business processes, policies, risks, and controls, and initiate and track regulatory change management tasks. Critical regulatory alerts are routed to the relevant stakeholders/SMEs for triaging and applicability assessments.

MetricStream has successfully helped the company achieve a common GRC language and taxonomy across the organization. Better visibility into risk and compliance posture, improved engagement and collaboration across the first and second line, and rationalization of controls have helped optimize business processes and improve efficiency. The company is also efficiently staying on top of regulatory changes with aggregated regulatory content from multiple trusted sources.