NATIXIS - 2018 Registration document and annual financial report

RISK FACTORS, RISK MANAGEMENT AND PILLAR III Risk management

activities within his or her remit—overall and systematic operational risks (loss of access to premises or information systems, or loss of employee availability) to which Natixis is exposed. The function has some 70 staff members dedicated to operational risk management. Within their designated scopes (subsidiary, business line or support function), they are responsible for instilling the operational risk culture, recording and analyzing incidents, mapping risks, proposing and following up corrective actions, compiling reports and escalating information to management. Analyses are carried out across the Bank where the support or control functions are involved, or where the processes have an impact on teams, whether in the front, middle or back office. This framework is managed using a single information system that has been deployed across the Company’s entities, business lines and support functions in France and internationally. It is available in French and English and hosts all the components of the operational risk oversight system (incidents, mapping of quantified potential risks, risk management systems, key risk indicators, corrective actions, committees, etc.). The accuracy of the information entered or approved by the operational risk managers is ensured through reconciliation with information from other functions (accounting, compliance, legal, IT Systems Security, data quality, insurance, etc.). The capital requirements for operational risk are calculated using the standardized approach for all of Natixis’ operational divisions. For the purposes of managing its economic capital, Natixis uses an internal methodology to obtain an overall estimation of its level of exposure to operational risk by business line entity, geographic region and certain major risk situations. The methodology relies on a value at risk (VaR) calculation based on risk mapping, factoring in identified incidents for backtesting and known external losses.

The mechanism is managed by Natixis’ Operational Risk Committee which determines the operational risk policy, monitors Natixis’ operational risk exposure and makes final decisions on hedging and reduction. It is the operational extension of the executive body and of which it has full decision-making powers for issues within its area of responsibility. This Committee meets quarterly and is attended by the Finance Department, the Compliance Department, ITSS-BC and the Internal Audit Department. It is chaired by the Chief Executive Officer, the Chief Risk Officer (his substitute), with the Head of the Operational Risk Department acting as secretary. The standing members of the Operational Risk function, apart from the Head of the department, are the departments’ Heads of Operational Risk and the Data & Methods Officer. The Operational Risk Committees of the business lines and support functions are offshoots of Natixis’ Operational Risk Committee, which closely manages the operational risk exposure of each scope. These committees are organized according to the function’s governance matrix (location and business lines). They are facilitated by the Head of the Operational Risk Department acting as committee secretary. Each committee is chaired by the head or manager of the scope (business line or support function, depending on the entity) with the participation of operational managers, support function representatives and the dedicated compliance managers. The structure of the function mirrors the organization of: the divisions under the responsibility of the operational risk a managers; the foreign offices under the responsibility of the operational a risk managers of the Americas, EMEA and Asia-Pacific platforms. They report hierarchically to the local Chief Risk Officer, and functionally to the Head of Operational Risk; the support and control functions under the responsibility of a an operational risk manager covering—in addition to the

3

143

Natixis Registration Document 2018

Made with FlippingBook HTML5