What is the role of Internal Audit for Model Risk?

Internal audit has an important role in ensuring that model governance and validation are conducted properly and effectively challenged. Notably, SR26-2 and Supervisory Expectations for CCAR emphasize internal audit and its overall assessment of the firm’s model risk management framework, including whether the framework is rigorous and effective.¹

Per the new model risk guidance, SR 26-2,

“Sound governance practices delineate the individual(s) responsible for key activities throughout the model lifecycle, from development through validation and ongoing monitoring. In cases where internal audit is part of the banking organization’s model risk management practices, internal audit would generally not duplicate model risk management activities such as model development or validation. Instead, internal audit’s role is generally to evaluate whether the model risk management practices are rigorous and effective and whether related policies are implemented accordingly.”

What do we offer?

We are here to help any internal audit department to fulfill regulatory and fiduciary responsibilities related to

1. Model Risk Management
2. Stress Testing
3. General Risk Management

Our experts have deep experience in every type of risk and almost every modeling technique. We are not auditors. We are successful developers and validators who know the guidance, but, more importantly, know the requirements for success.

We competently assess all functions, including model governance – as governance without appropriate, technically-inclined validation is not governance at all.