Risk management

The Mediobanca group stands apart for its prudent and selective approach to risk management, its excellent asset quality and high capitalization, with an ample buffer that surpasses minimum capital requirements and is one of the best in the Italian and European banking industry.

To manage the implicit uncertainty that characterizes the banking and financial industry, we have established a body of rules, procedures and organizational units to:

• safeguard the integrity of the bank’s assets to the direct benefit of shareholders, customers and employees;
• support the preparation and implementation of business strategies;
• drive long-lasting, sustainable growth for the bank and returns for shareholders;
• structure effective and reliable processes and procedures.

The group’s Risk Management function collaborates in the definition and implementation of the risk appetite framework (RAF) and the related risk governance policies through an adequate risk management process. It plays a key role in risk management strategies and decisions, the assessment of extraordinary transactions and the identification, measurement, assessment, management, mitigation, monitoring and reporting of risks and in the event of unauthorized exposures.

In particular, it is responsible for identifying and initiating an efficient risk management process and for its deployment within the group. To this end, it oversees the functioning of the bank’s and the group’s risk control system, defining the appropriate measurement methods for all current and potential risks. Group Risk Management ensures constant control over the group’s and each of its units’ overall exposure to credit, financial, operational and other material risks in compliance with the limits established by internal rules and supervisory regulations. The complete list of risks is available in the Investor Relations section.

Group Risk Management provides the subsidiaries with risk management guidelines to ensure governance of exposure to these risks throughout the entire group.

In the performance of its control functions, the Group Chief Risk Officer is responsible for identifying and initiating an effective risk management process through the development of risk management policies that include the definition and quantification of the risk appetite and the policies and risk limits of each operating unit and the group as a whole, with the support of the subsidiaries’ risk management departments, which, to this end, report to the Group Chief Risk Officer.

Within the risk appetite framework, Group Risk Management periodically conducts a series of internal tests to measure the current level of indicators compared to the RAF thresholds. It also expresses advance opinions on whether the most significant transactions are consistent with the risk appetite framework, identifying any decision escalation needs. If necessary, depending on the nature of the transaction, it acquires the opinions of the other functions involved in the risk management process.

The Group Chief Risk Officer participates in the Risk Committee’s meetings, supporting it in its controls. Each year, GRM submits a report to the Risk Committee, the Board of Directors and the Board of Statutory Auditors on the activities performed, with an assessment of the risk profile and the adequacy of the group’s risk management measures. Each quarter, it reports on integrated risk monitoring, the RAF and the recovery plan.

Risk Management is involved in decisions about entering new markets, the bank’s products and extraordinary transactions in order to assess the impacts of assuming new risks. It is also responsible for the group’s stress testing process and execution.

Group Risk Management reports directly to the CEO and operates under the supervision of Pierpaolo Montana, the Group Chief Risk Officer. Group Risk Management functionally reports to the Risk Committee.

Risk Management continuously interacts with the governing bodies and other operating units, particularly Audit and Compliance.
Learn more

Asset Liability Management (ALM) and Liquidity plays a key role in this context, as it oversees the forward-looking monitoring of interest income and the group’s cash position through reporting to the ALM Committee. In particular, the ALM and Liquidity function:

• monitors the group’s ALM position;
• estimates interest income and the sensitivity indicators of portfolios;
• oversees compliance with the liquidity policy and related contingency funding plan (in coordination with Risk Management);
• measures liquidity indicators and monitors that they remain within the limits, by preparing the defined reports.

As part of the parent company’s risk governance, specific tasks within the risk assumption, management, measurement and control processes are assigned to specific steering committees. In particular:

• Group Risk Management: responsible for establishing guidelines for credit, issuer and operational risk and for decisions on market risks;
• Lending and Underwriting: handles credit, issuer and conduct risks;
• Group ALM and Operational ALM: monitors the asset liability management (ALM) risk assumption and management policy for the group (treasury and funding) and approves the methodologies for the measurement of exposure to liquidity, interest rate and internal transfer rate risks;
• Investments: expresses opinions on equity investments pursuant to article 18 of the Articles of Association and other equity holdings or banking book units (excluding those of the banking group and Banca Esperia);
• New Operations: advance assessment of new operations and entry into new sectors and products and the related pricing models;
• Operational Risks: operational risk safeguards in terms of monitoring the risk profile and defining mitigation actions.

The chart illustrates the risk management process for which the Chief Risk Officer is responsible. Group Risk Management provides operational guidelines for the group’s and the parent bank’s operations and projects and coordinates relationships with the supervisors.