Frontiers in Finance home Frontiers in Finance
Rebuilding and reinforcing

Rebuilding and reinforcing banks’ risk data infrastructure 

Banks need more accurate, timely management information on the risks they face. A consolidated risk data infrastructure improves strategic decision-making and enables better regulatory reporting.

The financial crisis revealed the inadequacy of banks’ risk data systems, with institutions frequently unable to provide up-to-date reports on risks and exposures. This undermined confidence and led regulators to focus on the quality of risk data and supporting systems and processes.

Most banks do not aggregate, store and analyze data in a coordinated fashion. Consequently reports are often compiled manually at great expense, are inaccurate and/or incomplete, and arrive too late to influence trading and operations. It can take as long as 60 days to compile a group-wide set of risk figures.

Four common banking risk data infrastructure weaknesses

  1. Efficiency: risk data is often owned and stored by different functions (markets, risk control, finance, back-office). Too much time is spent on data aggregation and not enough on actual risk management
  2. Flexibility: a lack of scenario analyses and reports hinders the ability to react to market events and regulatory requests
  3. Quality: with multiple systems, risk data is often incompatible, inconsistent, incomplete and duplicated
  4. Ownership: ownership of risk data shuffles uneasily between the control function and the IT function, with little accountability or commitment to quality.

Regulators demand better risk reporting from banks

Banks need to review and improve their risk IT infrastructures. Basel Pillar 2 provides guidance for strengthening risk data collection and internal risk reporting practices, calling for:

  • strong governance from boards and senior management
  • accuracy, integrity and timeliness of risk data
  • regular, clear, punctual risk and regulatory reporting
  • periodic reviews by supervisors.

How banks benefit from improved risk data management

A streamlined risk IT architecture requires investment in systems for transmitting and reporting risk data. It also calls for greater standardization, common data models, integrated systems and, in some cases, data warehouses.

By consolidating risk data, banks can produce more insightful analyses that improve risk management and business judgment. With more up-to-date, accurate reports, organizations can adapt quickly to competitive threats and regulatory change, making compliance simpler and less challenging.

Improved data aggregation can also reduce capital requirements. For example; by capturing all collateral contracts, risk-weighted capital calculations become more realistic.


Renovating the risk IT infrastructure can be a significant expense for banks and requires fundamental organizational changes. However, it brings immense strategic benefits and should be a top management priority.

Four key questions on your risk data management

  • Do you have a fully automated system for collecting and analyzing data?
  • Is there a single owner of all your risk data?
  • Have you defined your organizational risk architecture?
  • Are you confident about the accuracy and timeliness of risk data reporting?

To discuss these questions further contact:

Sascha Chandler
Director Financial Risk Management
KPMG in Australia
T: +61 2 9455 9596

Marco Lenhardt
KPMG in Germany
T: +49 69 9587-3403


André Lattemann
Senior Manager
KPMG in Germany
T: +49 69 9587 3988


Brian J. Hart
KPMG in the US
T: +1 212 954 3093



To read the full article, download the PDF

Share this

Share this

More Frontiers in Finance

Related links