About a-team Marketing Services
The knowledge platform for the financial technology industry
The knowledge platform for the financial technology industry

A-Team Insight Blogs

Tata Consultancy Services Details a Strategic Approach to BCBS 239 Compliance

Subscribe to our newsletter

As the January 2016 deadline for compliance with BCBS 239 approaches, banks are making substantial data management changes in order to meet the regulation’s requirement for on-demand enterprise-wide risk data aggregation and reporting. The task is not easy and includes data management challenges posed by data silos, legacy systems and poor data governance practices, but emerging data architectures and governance regimes that identify and manage risk can support not only compliance, but also more adaptable and scalable business.


Tata Consultancy Services (TCS) identifies where current data aggregation frameworks are failing and recommends an approach to BCBS 239 that will enable an automated on-demand view of a bank’s risk profile in ‘A Point of View’ paper authored by information architecture specialists Maryann Houglet and Lilian Penna, and entitled BCBS 239: An Urgent Call to Overhaul Risk Data Management.

The paper notes shortcomings in banks’ governance, risk and compliance programmes, and ongoing problems presented by silod IT operations for business functions, and states: “BCBS 239 could be the game changer. The regulation explicitly and directly tackles banks’ data architecture and the governance regime needed to identify and manage risks.”

While globally, systematically important banks will be first to face BCBS 239 compliance in January 2016, the regulation does not stop here, with numerous national regulatory bodies also requiring domestic systemically important banks to comply. Many are taking a tactical approach to compliance, but TCS argues that banks need strategic solutions and sets out a step-by-step approach to improving risk data management through the establishment of a risk data strategy, an architectural framework and a roadmap to BCBS 239 compliance.

The consultancy acknowledges that banks differ in their risk tolerance, profile and data management maturity, and must therefore drive their own approaches to aligning information and data architecture with a risk management framework, but warns: “Moving forward without a plan that incorporates parallel businesses, data and governance programmes can distract from achieving a bank’s compliance goal, introduce risks and increase the time and cost required for compliance.” On a wider scale, it concludes: “The urgency of achieving risk data clarity and transparency through data management principles mandated by BCBS 239 cannot be overemphasised.”

Subscribe to our newsletter

Related content

WEBINAR

Recorded Webinar: Best practice approaches to data management for regulatory reporting

Effective regulatory reporting requires firms to manage vast amounts of data across multiple systems, regions, and regulatory jurisdictions. With increasing scrutiny from regulators and the rising complexity of financial instruments, the need for a streamlined and strategic approach to data management has never been greater. Financial institutions must ensure accuracy, consistency, and timeliness in their...

BLOG

Data Concern Over EU’s Streamlining of Green Regulations

Financial institutions may have to rely more heavily on their data teams and vendors to surface sustainability risks in their portfolios after the European Union watered down some of its key corporate ESG reporting regulations. The EU’s Omnibus package announced earlier this year is intended to streamline the compliance processes for regulations including the Corporate...

EVENT

AI in Data Management Summit New York City

Following the success of the 15th Data Management Summit NYC, A-Team Group are excited to announce our new event: AI in Data Management Summit NYC!

GUIDE

The DORA Implementation Playbook: A Practitioner’s Guide to Demonstrating Resilience Beyond the Deadline

The Digital Operational Resilience Act (DORA) has fundamentally reshaped the European Union’s financial regulatory landscape, with its full application beginning on January 17, 2025. This regulation goes beyond traditional risk management, explicitly acknowledging that digital incidents can threaten the stability of the entire financial system. As the deadline has passed, the focus is now shifting...