Barclays 2014 Annual Report Download - page 137

Download and view the complete annual report

Please find page 137 of the 2014 Barclays annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 348

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255
  • 256
  • 257
  • 258
  • 259
  • 260
  • 261
  • 262
  • 263
  • 264
  • 265
  • 266
  • 267
  • 268
  • 269
  • 270
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
  • 279
  • 280
  • 281
  • 282
  • 283
  • 284
  • 285
  • 286
  • 287
  • 288
  • 289
  • 290
  • 291
  • 292
  • 293
  • 294
  • 295
  • 296
  • 297
  • 298
  • 299
  • 300
  • 301
  • 302
  • 303
  • 304
  • 305
  • 306
  • 307
  • 308
  • 309
  • 310
  • 311
  • 312
  • 313
  • 314
  • 315
  • 316
  • 317
  • 318
  • 319
  • 320
  • 321
  • 322
  • 323
  • 324
  • 325
  • 326
  • 327
  • 328
  • 329
  • 330
  • 331
  • 332
  • 333
  • 334
  • 335
  • 336
  • 337
  • 338
  • 339
  • 340
  • 341
  • 342
  • 343
  • 344
  • 345
  • 346
  • 347
  • 348

barclays.com/annualreport Barclays PLC Annual Report 2014 I 135
Overview
The management of operational risk has two key objectives to:
Q Minimise the impact of losses suffered, both in the normal course of
business (small losses) and from extreme events (large losses); and
Q Improve the effective management of the Group and strengthen its
brand and external reputation.
The Group is committed to the management and measurement of
operational risk and was granted a waiver by the FSA (now the PRA) to
operate an Advanced Measurement Approach (AMA) for operational
risk, which commenced in January 2008. The majority of the Group
calculates regulatory capital requirements using AMA (93% of capital
requirements); however, in specific areas, the Basic Indicator Approach
(7%) is applied. The Group works to benchmark its internal operational
risk management and measurement practices with peer banks and to
drive the further development of advanced techniques.
Organisation and structure
The Group is committed to operating within a strong system of internal
control that enables business to be transacted and risk taken without
exposing itself to unacceptable potential losses or reputational
damage. The key elements of the Group’s system of internal control,
which is aligned to the recommendations of the Committee of
Sponsoring Organizations of the Treadway Commission’s (COSO)
Internal Control – Integrated Framework, are set out in the risk control
frameworks relating to each of the Group’s Key Risks and in the Group
Operational Risk Framework.
Operational risk comprises a number of specific Key Risks defined as
follows:
Q Cyber security: risk of loss or detriment to the Group’s business and
customers as a result of actions committed or facilitated through the
use of networked information systems
Q External supplier: inadequate selection and ongoing management of
external suppliers
Q Financial reporting: reporting misstatement or omission within
external financial or regulatory reporting
Q Fraud: dishonest behaviour with the intent to make a gain or cause a
loss to others
Q Information: inadequate protection of the Group’s information in
accordance with its value and sensitivity
Q Legal: failure to identify and manage legal risks
Q Payments: failure in operation of payments processes
Q People: inadequate people capabilities, and/or performance/reward
structures, and/or inappropriate behaviours
Q Premises and security: unavailability of premises (to meet business
demand) and/or safe working environments, and inadequate
protection of physical assets, employees and customers against
external threats
Q Taxation: failure to comply with tax laws and practice which could
lead to financial penalties, additional tax charges or reputational
damage
Q Technology: failure to develop and deploy secure, stable and reliable
technology solutions
Q Transaction operations: failure in the management of critical
transaction processes
In order to ensure complete coverage of the potential adverse impacts
on the Group arising from operational risk, the operational risk
taxonomy extends beyond the operational key risks listed above to
cover areas included within conduct risk. For more information on
conduct risk please see pages 137 and 138.
Board Audit Committee Board Conduct Operational and Reputational Risk Committee
Operational Risk & Control Committee
Chaired by the Chief Risk Officer
Review, challenge and recommend operational risk appetite
Monitor the operational risk profile against appetite
Debate potential developing operational risk issues
Review effectiveness of Operational Risk Frameworks
Operational risk
Any instance where there is a potential or actual impact
to the Group resulting from inadequate or failed internal
processes, people, systems, or from an external event.
The impacts to the Group can be financial, including
losses or an unexpected financial gain, as well as
non-financial such as customer detriment, reputational
or regulatory consequences.
Risk review
Risk management
Operational risk management
The Strategic Report Financial review Financial statements Shareholder information
Risk review
Governance