BCBS 239 and Solvency II have driven the Data Governance Agenda for banks and investment firms. New drivers are on the horizon.
The regulatory assessment process has started and banks have the IMMEDIATE task of finalising and submitting their plan for “Full Compliance” within the next few days. That plan has to be submitted by Internal Audit to the Regulators.
The plan must define the scope of “Full Compliance”, describe the activities involved and explain how the plan integrates with other business, cultural, governance, change and regulatory programmes across the bank.
At the EDMworks Data Practitioner Network on 2nd June we review the current state of the regulatory assessments and discuss with leading GSIBs how banks are creating the “Plan for Full Compliance”. We also look to the future to explore the next major drivers for data governance in the European region.
Three seemingly unconnected pieces of legislation will fundamentally change the data management landscape over the next three years. They all have different causes, but their combined effect will be to ENFORCE accountability for data, REINFORCE governance, UNDERPIN data architecture and MANDATE data quality management:
The General Data Protection Regulation (GDPR) changes the rules and accountabilities for security around personal data and transforms penalties for data breaches from “cost of doing business” to “bankrupting the business”.
The Network and Information Security Directive (NISD) focuses on identification, registration and accountability for critical networks or systems. The scope covers financial, telecoms, utilities and other types of business. It is the European Union’s response to cyber terrorism.
On 7th March 2016, the Senior Manager and Certification Regime (SMCR) was implemented as a self-regulating framework for senior management accountabilities across the finance sector. This provides the legislative structure for the PRA/FCA to demand individual accountability for and oversight of critical business functions. The NISD and GDPR will use this framework to ensure personal accountability for data assets across the organisation.
Over the last five years, huge investments have been made on improving data quality, underlying infrastructure and governance oversight. Most GSIBs claim o have achieved "Material Compliance" and now have the task of submitting their "Plan for Full Compliance" in June 2016.
This session reviews the current status of BCBS 239 "Material Compliance", the approach that regulators are taking in assessing compliance and looking at the key components and activities that have to be part of "Plan for Full Compliance".
Colin Gibson, Global Architecture Director, Willis Towers Watson
Tom Dalglish, Senior Integration & Data Manager, HSBC
In order to register for the event you will need to enrol on the course that we have set up specifically for the event. Simply click the red button below to be taken to the course enrolment page.
If you have already registered on our website you will need to login then you can enrol immediately. If you have not yet registered on our website you will need to create an account then enrol on the course. Instructions on how to create an account are provided on the subsequent webpage.
Once you have logged in, you will be presented with an enrolment page. Simply click the green "Enrol me" button at the bottom of the page and you will now be registered.
As a registered delegate, you will be able to access the course page where you will find many useful resources including guides and handbooks, videos, more detailed event information and links to download the presentations (after the event) as well as a forum where you can discuss the topics of the event with your peers both before and after the event.
If you have any queries or issues please email firstname.lastname@example.org.
© 2021 Digital Innovation Systems Ltd email@example.com | +44 (0) 20 3397 3462