Version status: Applicable | Document consolidation status: Updated to reflect all known changes
Version date: 1 January 2014 - onwards
  Version 4 of 4    

Article 293 Requirements for the risk management system

1. An institution shall comply with the following requirements:

(a) it shall meet the qualitative requirements set out in Part Three, Title IV, Chapter 5;

(b) it shall conduct a regular programme of back-testing, comparing the risk measures generated by the model with realised risk measures, and hypothetical changes based on static positions with realised measures;

(c) it shall carry out an initial validation and an on-going periodic review of its CCR exposure model and the risk measures generated by it. The validation and review shall be independent of the model development;

(d) the management body and senior management shall be involved in the risk control process and shall ensure that adequate resources are devoted to credit and counterparty credit risk control. In this regard, the daily reports prepared by the independent risk control unit established in accordance Article 287(1)(a) shall be reviewed by a level of management with sufficient seniority and authority to enforce both r