![Risk.net](https://www.risk.net/sites/default/files/styles/print_logo/public/2018-09/print-logo.png?itok=1TpHrpuP)
Who dares wins
The impact that the loss of customer data can have on a firm is staggering. Here in the UK, the loss of millions of government records - on a CD sent in the post, apparently - has awakened this country to the seriousness of such events. Indeed, it is one of several recent events that have helped wiped the shine off of prime minister Gordon Brown's early months in office and led to stunningly low poll ratings for government competency.
![ellen-davis-compressed ellen-davis-compressed](/sites/default/files/styles/landscape_750_463/public/import/IMG/319/85319/ellen-davis-compressed-580x358.jpg.webp?itok=oehmgecc)
The US has been clued on to this potential risk for some time - in January 2007 the TJ Maxx chain of stores announced the loss of millions of customer records as a result of hacking over a period of almost three years. Even before that, ID theft and fraud have been hot topics in that country. As much as four years ago, friends of mine - a physician and her computer-savvy husband - had post snatched out of their letterbox and discovered only by chance they'd had vast loans and other commitments taken out in their names.
In Europe, this kind of theft has received less press, and it was not until the government's confession of CDs gone missing that the issue really gained momentum. Now everyone seems to be announcing that they've had data go missing, under the protective cover of the government's screw-up.
It's frustrating for me that so many UK financial institutions have announced data losses as part of this new confessional mood, including several building societies. Half the point of op risk is that firms should be looking at the kinds of losses other firms are experiencing and applying the lessons learned to their own organisations. Operational risk, done correctly, should be focused on prevention.
The problem of course is human nature - executives look at what happens at other firms and then convince themselves it couldn't happen in their own back garden - because they have better executives, better systems, better risk management and so on.
Complacency is hard to fight. No-one wants to be 'the boy who cries wolf', and often no-one wants to be the messenger bearing bad news - too often they are still shot. Therefore, speculating on what could go wrong seems political madness for many executives.
But for operational risk to move forward as a discipline, this basic human fear of failure needs to be countered with cultural change. Executives must dare to think creatively about disaster.
Ellen Davis
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Printing this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Copying this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net
More on Risk management
Can Citi’s XVA desk help solve risk data failings?
Resolution plan reviews exposed material limitations in banks’ ability to unwind derivatives
Ace high or busted flush? Digital Asset and the big bet on DLT
Blockchain pioneer’s bumpy journey raises questions over future of DLT in finance
Bridging the gap risk reloaded: modelling wrong-way risk and leverage
A model extends the counterparty risk calculation to include nonlinear and complex portfolios
Ice postpones migration to VAR in bid to improve offsets
Clearing house will move on freight products before energy, as users fret over margin spikes
How a ‘sushi circle’ approach can improve credit risk management
AI can help banks shift from manual corporate loan reviews to continuous, digitised risk monitoring
AI could cut time for money laundering checks by 99%
Leading crypto exchange rolling out large language model for enhanced due diligence checks
Counterparty risk model links defaults to portfolio values
Fed’s Michael Pykhtin proposes using copula models to capture effects of margin calls on default risk
Clearing members cry foul over restrictive FICC rule change
Draft interpreted as attempt to obstruct rival clearing houses entering US Treasuries market