The Three Lines of Defense
Governance Committee
Governance Documents
The First Line of Defense
Responsible for identifying, evaluating, mitigating, and managing risks, within the risk management framework.
The Second Line of Defense
Sets the risk management framework, policies, and procedures, and monitors risk appetite. As such, the Second Line of Defense provides advice and guidance for effective risk management to the first line of defense.
The Third Line of Defense
Responsible for providing an independent assessment of the effectiveness of the risk management framework.
Risk Management Policy
Operational Procedures
Standards
Guidelines
Governance Committee
Board of Directors
Risk Committee under the Board of Directors
Executive Management Committee
IT Steering Committee
Credit Committee
Asset Liability & Risk Committee
Quarterly reports on the effectiveness and implementation of the risk management system are provided to the Board of Directors, and monthly updates are presented to the Risk Management Committee.
Board of Directors
Risk Committee under the Board of Directors
Executive Management Committee
IT Steering Committee
Credit Committee
Asset Liability & Risk Committee
