In the second instalment of our Wholesale Conduct thematic blogs, this blog focusses on the challenges regarding market abuse risk assessments and how Deloitte can help you.
Market abuse risk assessments are a fundamental tool in identifying and managing market abuse risk at a firm. A firm’s ability to appropriately identify and mitigate the market abuse risks related to its business activities remains a supervisory focus of regulators. Failings in the assessment may be seen as undermining the firm’s control framework and could result in key control gaps and ultimately significant enforcement fines.
In this blog, we set out the key components of a market abuse risk assessment, why it is important to get it right, the common pitfalls and how we can help you.
Market abuse risk is a measure of the risk that an individual, client or the firm engages in behaviours amounting to insider dealing, unlawful disclosure of inside information and market manipulation. The behaviour can be difficult to detect since it is likely to involve the deliberate circumvention of a firm’s policy and procedures, taking advantage of complicated booking models and trading strategies to conceal activities. While the realisation of market abuse risk occurs rarely, it has the highest impact on reputation, on firms and on individuals, often resulting in fines or costly remediation. As such, it is in every firm’s interest to assess the risk robustly.
The format, style and depth of the market abuse risk assessments will vary from firm-to-firm. In some firms, market abuse risk assessments are included as part of a wider market conduct or compliance risk assessment. However, a market abuse risk assessment will typically include the following components:
While the components of a market abuse risk assessment are likely to be similar across firms, the effectiveness of the assessment is driven by the strength of its governance processes, collaboration between stakeholders and training.
Market abuse risk assessments are critical in helping firms understand the risk, monitor, detect and prevent the risk from occurring and in meeting their regulatory obligations. The requirements and details of the market abuse risk assessment are not typically met through a firms Risk and Control Self-Assessment (RCSA). A specific market abuse risk assessment allows firms to identify gaps in their market abuse controls and provide a framework in which to prioritise remediation of gaps in controls.
Risk assessments allows firms to demonstrate the breadth and depth of their control environment. For many firms, the risk assessment output is one of the standard documents requested by regulators during their supervisory reviews. Market abuse controls are also repeatedly prioritised by the FCA (Financial Conduct Authority) in their Dear CEO letters and other publications.
The value that regulators place on effective and complete market abuse risk assessments is exemplified by the fines that have been issued in the past for incomplete coverage of surveillance and controls of the risks posed by the firms. Firms that can demonstrate a proactive and robust approach, with well documented decisions and collaboration between key stakeholders, are more likely to be able to evidence the effectiveness of their market abuse control framework when challenged by regulators and governing bodies.
From our experience of working with various firms across the financial industry and from recent communications by regulators, the common challenges faced by firms regarding their market abuse risk assessments are:
We have a well-established approach to designing, reviewing and enhancing your market abuse risk assessment process end-to-end. This includes facilitating conversations between the lines of defence in order to identify the firm-specific market abuse behaviours, complex products or higher risk venues to establishing an effective governance structure to manage and oversee the assessment process. Furthermore, we can help develop and deliver bespoke training to the stakeholders, to ensure connectivity and consistency amongst the key contributors. We have successfully implemented our approach across a number of our clients.
Regulators appreciate that market abuse risk assessments will be different from firm-to-firm and will be largely dependent on the firm’s size and complexity. We tailor our approach so that it is appropriate and proportionate to your business. Our team have a wealth of expertise in market abuse risk management, having undertaken reviews and assessments at firms of varying sizes across both capital markets and investment management sectors.
If you would like to discuss the regulators’ expectations and your requirements further, please contact the authors of this blog.