ACPR: FAQ sur la directive et le règlement DORA

Date : Tags : , ,
« Dans le contexte de la mise en œuvre de DORA, l’ACPR vient, à travers la mise à jour de sa FAQ, préciser certaines informations relatives aux nouvelles obligations qui s’appliquent aux entités financières concernant notamment : les modalités de remise du registre d’information, la réalisation de tests d’intrusion ou le champ d’application de cette nouvelle règlementation. »

Engaging with Cybercriminals: Phases and Influence Strategies in Ransomware Negotiations

This study analyzes ransomware negotiations through a social psychological lens, identifying three phases and distinct negotiation strategies. It offers practical insights for organizations to enhance resilience by understanding threat actor tactics and tailoring response protocols for effective negotiation.

Strategic Presentation of Mandatory ESG Disclosures

Date : Tags : , ,
The paper examines how managers strategically adjust the tone of soft information in ESG reports to maximize compensation. It highlights the trade-offs between exaggeration, internal controls, and future reputational costs. Strong incentives with weak controls lead to extreme biases, impacting regulatory decisions, corporate governance, and investor evaluations of ESG disclosures.

Drafting of IT Outsourcing Risk Management Policy Proposal with IT Outsourcing Risk Management Framework and Cobit

A structured IT outsourcing risk management policy is crucial for navigating third-party service complexities. This study proposes a framework integrating IT outsourcing principles with COBIT standards, covering risk identification, analysis, mitigation, and ongoing monitoring. Implementing this policy enhances organizational asset protection, operational continuity, and minimizes outsourcing risks. It improves information security and business process efficiency. This framework provides practical guidance for organizations to effectively manage risks and optimize IT outsourcing value.

The EBA launches its monitoring of climate risk in the EU/EEA banking sector

Date : Tags : , , ,
EBA launched a climate risk dashboard based on banks’ Pillar 3 ESG disclosures. This tool provides centralized access to climate risk indicators, aiding assessment and monitoring across the EU/EEA banking sector. Data reveals that over 70% of bank exposures are linked to high climate-impact sectors, while less than 30% face elevated physical risk. Many loans secured by immovable property have high energy efficiency scores, though estimates are widely used. The dashboard, based on 2023-2024 data, marks the first step in a broader ESG risk framework, with regular updates planned.

EBA's Q4 2024 Risk Dashboard

The EBA's Q4 2024 Risk Dashboard shows EU/EEA banks maintaining strong performance. Return on equity rose to 10.5%, and return on assets reached 0.73%. Net interest margin declined slightly, but total income grew due to higher net fee and commission income. Loans to households and businesses increased, while cash balances fell. Non-performing loans decreased, except for commercial real estate. The CET1 ratio remained at 16.0%, reflecting strong capitalization. Liquidity and funding ratios stayed well above requirements. The loan-to-deposit ratio declined as deposits grew faster than loans. Overall, the banking sector remained stable and resilient.

The EBA updates technical standards on the joint decision process for internal model authorisation

The EBA published final draft ITS amending rules for internal model authorization under CRR, reflecting the EU Banking Package. Key changes include removing the use of internal models for operational risk (deleting AMA references) and updating references to supervisory college regulations. These ITS are based on CRR III amendments.

Mathematical Explanation and Derivation of the Aggregate Cost of Risk in the Banking Industry

Date : Tags : , , , , ,
The banking industry faces complex financial risks, including credit, market, and operational risks, requiring a clear understanding of the aggregate cost of risk. Advanced AI models complicate transparency, increasing the need for explainable AI (XAI). Understanding risk mathematics enhances predictability, financial management, and regulatory compliance in an evolving landscape.

Cybersecurity and Macroeconomy With Neoclassical Growth Model

This study integrates cybersecurity risks into a neoclassical growth model, revealing that proactive investments enhance long-term stability, while industry-specific vulnerabilities (capital-intensive resilience vs. labor-intensive disruptions) and systemic risks affect macroeconomic resilience. Optimal resource allocation, adaptive risk strategies via Bayesian updating, and prioritizing cybersecurity in long-term planning balance security with growth.