Risk glossary
Risk glossary
Search for the definition you are looking for.
Three lines of defence (3LOD)
The three lines of defence is a risk governance framework that splits responsibility for operational risk management across three functions. Individuals in the first line own and manage risk directly. The second line oversees the first line, setting policies, defining risk tolerances, and ensuring they are met. The third line, consisting of internal audit, provides independent assurance of the first two lines.
Codified by the Basel Committee on Banking Supervision in its 2011 Principles for the sound management of operational risk, the framework has been continually adapted and modified by banks and financial services firms ever since, with many choosing to embed intermediate layers of risk management in between the first and second lines.
Click here for articles on three lines of defence.