Chapter 13: Operational Risk (Sections 13.1 & 13.4) Flashcards
(7 cards)
What is operational risk?
The risk of loss from failures in a bank’s internal processes, people, systems, or from external events—distinct from market or credit risk.
What are the four main categories of operational risk?
- Fraud & misconduct (e.g. rogue trading)
- Systems failures (e.g. IT outages)
- Legal & compliance (e.g. AML fines)
- Physical & external (e.g. natural disasters, cyberattacks)
Give a real-world example of fraud & misconduct risk.
In 2012, JPMorgan’s “London Whale” position lost over $6 billion when a trader hid massive bets in credit derivatives.
What is scenario analysis for operational risk?
Management workshops extreme but plausible loss events (e.g. a large-scale cyber heist) to estimate how much capital the bank would need to absorb such a shock.
How do banks use internal loss data to measure operational risk?
They maintain a database of past loss events—frauds, system outages, legal penalties—to model the frequency and severity of future losses.
What is the Business‐line/Risk‐type matrix approach?
Classify historical losses by business line (e.g. retail, trading) and by risk type (e.g. people, systems) to identify where the bank is most vulnerable.
What does the Basel II Advanced Measurement Approach (AMA) require?
With supervisory approval, banks combine internal data, external loss data, scenario analysis, and business environment factors to set an operational-risk capital charge.
