Now how will this affect how a firm is supervised and the work that will have to be done by a regulated firm.
Engagement
How a firm is supervised is dependent on their impact category - we would expect a large firm with a multi-billion Euro balance sheet to get more attention than one with a million Euro balance sheet. To quote PRISM Explained:
"Firms in each impact category will be supervised through the completion of engagement tasks. We will engage with all firms at a level that corresponds to their impact category; the higher the impact category, the higher the level of engagement."
Again it needs to be recognised that low impact firms have to be supervised in a different way:
"For our low impact firms, we aim to regulate to avoid sector-wide issues - such as widespread misselling by intermediaries - but there are circa ten thousand low impact firms and we will not seek to prevent individual failure. Rather, we will supervise these firms reactively - ensuring that an administrator or liquidator is appointed when they fail and that there is an orderly revocation of authorisation and winding-up in accordance with insolvency legislation"
So no matter how hard you work, as long as you are a large firm, you will get a certain level of attention from the Central Bank... and if you are a small one, then you have to recognise that the amount of attention you get may seem quite small.
As for the tasks that engagement involves - you'll get a good idea of these from Appendix A of PRISM Explained:
Risk Mitigation
Remember how the supervisor reviews a firms by risk category and gets an overall risk rating... here's a reminder:
What happens if you are judged to have a higher probability risk in one of these categories:
"Any risk category which is probability rated as medium-high or high must be mitigated. If a supervisor rates a firm medium-high or high probability in any risk category, he or she will be prompted by the PRISM application to open a Risk Mitigation Programme (RMP) issue, explaining the nature of the risk. Having opened the issue, the supervisor will construct one or more outcome-focused actions to reduce the risk to an acceptable level by a given deadline."
This comes back to what I wrote earlier about moving your firm down the probability risk axis in our diagram. If you have a review and you get a letter with a set of risk mitigation actions, then the best thing is to discuss it with the supervisor and find a way to get to the desired outcome. And to quote Deputy Governor Elderfield at the launch speech for PRISMhttp://www.centralbank.ie/press-area/speeches/Pages/AddressbyDeputyGovernorMatthewElderfield.aspx which I attended in December 2011:
"A further quality control mechanism built into the PRISM framework is giving firms a chance to comment on draft Risk Mitigation Programmes. Once Risk Mitigation Programmes are written using the PRISM application, we plan to share them with firms in draft form, giving each firm ten working days to highlight factual inaccuracies, and, if it wishes, to propose alternative actions to mitigate unacceptable risks.
Our plans to share drafts and listen to alternative risk mitigation suggestions are conditional on industry interacting appropriately. We do not plan to soften our risk mitigation in response to feedback from firms that they are too demanding or too difficult. We are introducing the sharing of draft Risk Mitigation Programmes on the basis that firms will react to them in an intelligent fashion, letting us know promptly when an issue is inaccurate but not seeking to deflect us from our desired outcome. The final judgement on what must be done to mitigate unacceptable risks to financial stability and the consumer will remain with Central Bank supervisors.
I believe in constructive dialogue and I believe in giving firms the chance to say how the outcomes we seek can be delivered in a better or more efficient way. I also don’t believe that we are ever going to get every issue and every action right first time – hence my desire to trial this interaction with firms to help us quality assure our risk mitigation programmes. I’d urge all firms to use this opportunity wisely."
If I get a chance, I will ask the Deputy Governor if firms used this opportunity wisely... or not...
Conclusion
- A firm's impact category will determine the engagement it will have with the Central Bank
- As impact can only be changed by such things as reducing the size of a firm, you should expect a certain amount of interaction related to the size of your firm
- Firms will have a risk mitigation programme and related actions assigned if they are judged to have a high probably risk
- You can influence the probability risk rating of your firm in how you respond to these issues and actions