2011-08-04
Added · Updated
The document establishes sound practices for stress-testing, requiring institutions to assign dedicated committees with clear mandates for scenario design and risk mitigation. It mandates an enterprise-wide, scenario-based approach that incorporates forward-looking, remote but plausible events, reverse stress-testing, and expert judgment to identify vulnerabilities. Furthermore, it requires robust control procedures and flexible infrastructure to ensure reliable, timely generation of stress-testing outputs for critical decision-making.
Annex 1 – Sound Practices for Stress-testing Governance
2 that country (e.g. negative GDP shock, credit crunch). The remote but plausible scenarios should assist in the identification of the AI’s vulnerabilities and the need for mitigating measures. 5. Reverse stress-testing techniques are being developed and incorporated into AIs’ stress-testing programmes. In reverse stress-testing, an AI identifies scenarios and circumstances that would render its business model unviable. This is different from scenario based stress-testing which tests for outcomes arising from changes in circumstances. The vulnerabilities identified from reverse stress-testing should be reviewed and addressed by the senior management team. 6. In addition to quantitative measures, “expert judgement” is used when developing stress scenarios. By incorporating the use of expert judgement, the AI can mitigate the risks arising from the rigid adoption of quantitative measures (e.g. estimated probabilities of stress events), especially in view of recent observations that statistical relationships used to derive probabilities tend to break down in stressed conditions. The design of stress parameters should take into account the inherently pro-cyclical nature of the financial markets. In times of strong economic growth, elevated asset prices or rapid credit expansion, more severe stress parameters are usually adopted. 7. Tailor-made stress-testing scenarios are constructed for specific assets, liabilities, or hedging strategies to which an AI is heavily exposed. An example is the stress-testing of unexpectedly large credit spread movements affecting complex structured credit products, taking into consideration the correlation relationship as implied by different structured products and the basis risk, or incomplete hedge, of existing hedging strategies. 8. Risk tolerance levels are defined in different terms to give management different perspectives of the nature of stress impact. For instance, stress-testing results can be expressed in terms of their impact on an AI’s capital adequacy ratio, common equity, leverage ratio, risk weighted assets, and annual profit and loss. Stress-testing readiness 9. Control procedures are established to ensure that the stress-testing database, models, and outputs are flexible and reliable. For example, if computer programmes or calculation models are used to generate stress-testing outputs, proper control procedures such as user acceptance test and version control, together with periodic validity checks on data sources and on the reasonableness of the output, should be in place. 10. Stress-testing infrastructure, including the database, models and application tools, is designed to be flexible enough to execute ad hoc stress-testing on short notice. Data on risk positions should be coherently defined and
3 categorised with sufficient granularity to facilitate flexible aggregation and grouping of risks. This will enable an AI to construct tailor-made stress scenarios relatively swiftly based on observable signs of stress conditions (e.g. the recent European sovereign debt problem). Procedures for retrieval and aggregation of position data are also clearly documented and regularly tested. The ability to generate stress-testing results within a short period of time allows senior management to formulate critical mitigation plans, which could prove to be crucial in times of crisis.