How a Leading Financial Institution Increased Issue Identification & Reduced Risk Silos with Resolver

As many in banking can attest, staying on top of regulatory compliance management and the hefty fines that may come with a missed obligation can be challenging and sometimes costly. For this team, financial institution risk quickly came into focus as the Senior Vice President worked to get ahead of a looming compliance issue, highlighting the need for an end-to-end compliance management solution. “Meanwhile, we had this regulatory (compliance) issue looming over our heads,” they say. “The bank was cited for compliance and underwriting deficiencies related to a particular lending program. At the same time, one of my biggest concerns has been the possibility of a recession and what that could mean for credit quality.”

A strategic ERM priority for the bank was improving communication across the first, second, and third lines and creating opportunities to leverage work done by different disciplines in the business. Initially, the risk leader’s efforts to mature the bank’s enterprise risk management systems were hampered by not having information readily accessible in one place. “We’re talking about so many different disciplines, and how do you put it all together?”

It became clear that a central, cloud-based enterprise risk management software solution was needed to achieve business objectives and bring financial institution risk into a single, connected view. “Having some kind of digital component to your different disciplines really helps you be able to break down those silos and leverage off of all of the work that’s being done across the entire organization,” they explain.

An early adopter of technology to support their GRC strategy, the Senior Vice President and their team apply common ERM methods and approaches to manage risk across all first and second lines of business. Implementing and benefitting from new technologies is at the forefront of their entire ERM program at the financial institution.

They share the concept of combined assurance. “It’s really aligning with your internal partners, working closely together, trying to get those processes between… let’s say your internal audit department, as well as your other assurance providers, to help develop deeper insights on your governance, and your risk, and your control management, and then deliver that to your senior management as well as the audit committee, or any other committee that you’re trying to bring out that information to.”

For this bank, Resolver’s ERM software solution was the chosen platform to help bring this all together. “We are putting in about 10, maybe even a few more, of our different disciplines within the system.” From housing their ERM and risk assessments centrally to issues management, business continuity, internal controls, IT risk management, third-party risk management, policy governance, and more, the Senior Vice President is leading the charge of having all of the bank’s risk data and information in one place.

The Senior Vice President recommends starting with a cost-benefit analysis to get the board to buy into your digital transformation program. “What’s the cost of the current systems you have managing all these different functions?” Often, the cost of implementing one end-to-end system can be more efficient than your current state of multiple legacy systems and disconnected disciplines within your organization.

The other component is getting alignment on a desire to break down silos. Socializing the benefit of a central information warehouse, including the efficiencies they create, can help tie the investment to corporate objectives.

When starting from the very beginning, the Senior Vice President suggests getting aligned on expectations and a bold vision for your program. “We are a pretty small community bank, and so we have a lot of very immature programs,” they explain. Many of their teams have ways of doing things that they want to grow in maturity. “We’ve really helped our different disciplines develop that vision, and write down their methodologies and then try to have them all conform.”

The Senior Vice President worked hand-in-hand with the Resolver team during implementation. “Just the fact that I’d already put something down on paper helped tremendously when we actually started the conversations about how to build it out… Resolver was able to work with me and say, ‘Okay, we can make that happen, but this is what we need from you.’”

“We’re implementing a new GRC system across ten different disciplines, all within the second- and third-line functions,” they explain. “It’s going to be something that our entire bank is going to be using for our issues management, our policy governance, and quite a few different areas.”

“A big component of ERM and GRC is to speak the same language,” says the Senior Vice President. For the bank, this includes having the same risk taxonomy to the same methodologies for risk assessments — like the definitions behind risk rating your impact, for example — or the mathematics when calculating inherent risk or residual risk. “Having that same conformity behind the mechanics of those risk assessments is what a GRC system has really helped us be able to accomplish.”

Implementation of Resolver has allowed this financial institution to better track issue remediation and statistics, giving the team clearer visibility into financial institution risk. The Senior Vice President produces quarterly dashboards with key trends and status updates on these issues. She cites her annual program review for big wins. “In 2022, the volume of issues identified and logged into Resolver increased by more than four times as compared to 2021. Additionally, issues were assigned to more first-line business units by the second and third lines in 2022 than in any previous year on record.”

Over the past year, the organization has also matured the process of Issue Management, as evidenced by improved communications among all three lines of defense and enhanced system functionality to facilitate the program, the Senior Vice President explains. “While the volume of issues identified in 2022 significantly increased, likewise, so did management’s ability to address them more efficiently and effectively.” They also noted that the data and reporting gleaned from Resolver showed “increased participation from all three lines of defense during issue identification, remediation, and validation efforts; less reliance on issue exceptions like risk acceptances and target due date extensions; and a more rapid pace from issue realization to resolution,” strengthening how financial institution risk is identified and resolved.

Another key benefit was seen as the bank’s Issues Program matured. Where Internal Audit typically logged issues, the Senior Vice President saw more issues identified and logged by other disciplines, broadening visibility into financial institution risk across the organization. Along with the increased number of issues identified, they describe an equally significant shift in the number of issues remediated in a year. Starting in July 2022, the bank began tracking how long business units took to remediate issues. Their preliminary data indicates that 67% of issues were addressed within 120 days of identification.

The Senior Vice President and their steering committee continue to build out their program using Resolver’s software, working with Resolver’s Customer Success and Support teams to enhance capabilities to meet evolving requirements. This includes real-time risk reporting through intelligent dashboards and reporting for all internal stakeholders and executives, supporting a more consistent view of financial institution risk.

Overall, the organization’s risk culture has shifted to better documenting issues and related remediation efforts. By partnering with Resolver, they were able to consolidate multiple data sources across the company onto one centralized platform, making it easier to share information while reducing the cost of maintaining multiple systems and improving oversight of financial institution risk.

See how Resolver can help modernize your Enterprise Risk Management capabilities. Register for an upcoming ERM Product Showcase, or book a custom demo now!

More Resolver customer stories:

• How motusbank manages compliance, reduces errors, and cuts costs using Resolver
• How Bangor Savings Bank used Resolver to improve ERM process and efficiency