Barclays 2015 Annual Report Download - page 132

Download and view the complete annual report

Please find page 132 of the 2015 Barclays annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 356

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255
  • 256
  • 257
  • 258
  • 259
  • 260
  • 261
  • 262
  • 263
  • 264
  • 265
  • 266
  • 267
  • 268
  • 269
  • 270
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
  • 279
  • 280
  • 281
  • 282
  • 283
  • 284
  • 285
  • 286
  • 287
  • 288
  • 289
  • 290
  • 291
  • 292
  • 293
  • 294
  • 295
  • 296
  • 297
  • 298
  • 299
  • 300
  • 301
  • 302
  • 303
  • 304
  • 305
  • 306
  • 307
  • 308
  • 309
  • 310
  • 311
  • 312
  • 313
  • 314
  • 315
  • 316
  • 317
  • 318
  • 319
  • 320
  • 321
  • 322
  • 323
  • 324
  • 325
  • 326
  • 327
  • 328
  • 329
  • 330
  • 331
  • 332
  • 333
  • 334
  • 335
  • 336
  • 337
  • 338
  • 339
  • 340
  • 341
  • 342
  • 343
  • 344
  • 345
  • 346
  • 347
  • 348
  • 349
  • 350
  • 351
  • 352
  • 353
  • 354
  • 355
  • 356

130 I Barclays PLC Annual Report 2015 home.barclays/annualreport
Risk review
Risk management
Risk governance and assigning responsibilities
Responsibility for risk management resides at all levels of the Group,
from the Board and the Executive Committee down through the
organisation to each business manager and risk specialist. These
responsibilities are distributed so that risk/return decisions are taken at
the most appropriate level, as close as possible to the business, and are
subject to robust and effective review and challenge. Responsibilities for
effective review and challenge also reside at all levels.
The ERMF articulates a clear, consistent, comprehensive and effective
approach for the management of all risks in the Group and creates the
context for setting standards and establishing the right practices
throughout the Group. The ERMF sets out a philosophy and approach
that is applicable to the whole bank, all colleagues and to all types of
risk. It sets out the key activities required for all employees to operate
Barclays risk and control environment, with specific requirements for key
individuals, including the CRO and CEO, and the overall governance
framework designed to support its effective operation. See Risk Culture
in Barclays PLC 2015 Pillar 3 Report for more information.
The ERMF supports risk management and control by ensuring that there
is a:
sustainable and consistent implementation of the three lines of
defence across all businesses and functions
clear segregation of activities and duties performed by colleagues
across the Group
framework for the management of Principal Risks
consistent application of Barclays’ risk appetite across all Principal
Risks
clear and simple policy hierarchy.
Three lines of defence
The enterprise risk management process is the ‘defence’, and organising
businesses and functions into three ‘lines’ enhances the E-R-M process
by formalising independence and challenge, while still promoting
collaboration and the flow of information between all areas. The three
lines of defence operating model enables the Group to separate risk
management activities:
First line: manage operational and business processes; design,
implement, operate, test and remediate controls.
First line activities are characterised by:
ownership of and direct responsibility for the Groups returns or
elements of Barclays’ results
ownership of major operations, systems and processes fundamental
to the operation of the bank
direct linkage of objective setting, performance assessment and
reward to financial performance.
Second line: oversee and challenge the first line and provide second
line risk management activity.
Second line activities are characterised by:
oversight, monitoring and challenge of the first line of defence activities
design, ownership or operation of Key Risk Control Frameworks
impacting the activities of the first line of defence
operation of certain second line risk management activities (e.g.
financial rescue of a firm)
no direct linkage of objective setting, performance assessment and
reward to revenue (measures related to mitigation of losses and
balancing risk and reward are permissible).
Third line: provide assurance that the E-R-M process is fit for
purpose, and that it is being carried out as intended.
Third line activities are characterised by:
providing independent and timely assurance to the Board and
Executive Management over the effectiveness of governance, risk
management and control.
Following the annual review, in 2016, we have further refined the three
lines of defence model by clarifying that responsibilities for risk
management and control are defined in relation to the activities
individuals undertake as part of their role. The three key activities are:
‘Setting Policy and Conformance’ (second line); ‘Managing Operational
or Business Process’ (first and second line); and ‘Providing Independent
Assurance’ (third line). Second and third line activities have not changed,
however we have emphasised the key responsibilities of the first line,
which includes colleagues’ responsibility for understanding and owning
the process end to end, and designing, operating, testing and
remediating appropriate controls to manage those risks. Performed
appropriately and by all colleagues, together these responsibilities will
drive a stronger risk and control environment at Barclays, benefitting our
customers, clients, shareholders and regulators.
Board Risk
Committee
Board Audit
Committee
Board Reputation
Committee
Reporting and control
Treasury
Committee
sets policy/controls for liquidity
maturity transformation and
structural interest rate exposure
monitors the Group’s liquidity and
interest rate maturity mismatch
monitors usage of regulatory
and economic capital
oversees the management of
the Group’s capital plan
Operational Risk
Review Forum
reviews aggregate operational risk
profile and monitors individual
businesses/key risk appetite
reviews and monitors operational
risk capital
overviews risk events/risk
exposures by way of Risk Control
Self-Assessments (RCSAs)
monitors emerging themes
monitors Group/BU risk profile
and control environment
(including assessment of
key risks)
reviews and monitors material
control issues for remediation
reviews lessons learnt summaries
and recommendations
Conduct and Reputational
Risk Committee
assesses quality of the application
of the Conduct and Reputational
Risk Control Frameworks
recommends risk appetite and
sets policies to ensure consistent
adherence to that appetite
reviews known and emerging
reputational and conduct related
risks to consider if action is
required
proactively considers reputational
and conduct related issues that
arise as a result of business
activity and from external factors
Financial Risk
Committee
monitors risk profile with
respect to financial risk appetite
debates and agrees actions on
the financial risk profile and risk
strategy across the Group
considers issues escalated by
Risk Type Heads and Business
Risk Directors
Funding Risk Operational Risk Conduct Risk
(including Reputation Risk)
Credit Risk
Market Risk