We group model risk work into six themes leadership can weigh, aligned to regulatory expectation rather than a validation checklist alone.
Inventory and risk tiering
A complete model inventory, risk-tiered so scrutiny scales with materiality rather than treating every model alike. Done well, this means models are governed across their life and monitored in production, so failures are caught early rather than in a loss.
Independent validation
Rigorous, independent validation of conceptual soundness, data, implementation and outcomes, aligned to SR 11-7 and OCC 2011-12. Done well, this means models are governed across their life and monitored in production, so failures are caught early rather than in a loss.
Lifecycle governance
Controls across development, approval, change and retirement, so a model is governed for its whole life, not just at sign-off. Done well, this means models are governed across their life and monitored in production, so failures are caught early rather than in a loss.
Ongoing monitoring
Monitoring for drift, degradation and changing conditions, so a model that has quietly stopped working is caught early. Done well, this means models are governed across their life and monitored in production, so failures are caught early rather than in a loss.
AI and machine-learning risk
Extending model risk to AI and machine-learning models, aligned to the EU AI Act, NIST AI RMF and ISO 42001 and 23894. Done well, this means models are governed across their life and monitored in production, so failures are caught early rather than in a loss.
Reporting and assurance
Board and regulator-ready reporting so leadership can attest to model risk with evidence rather than assertion. Done well, this means models are governed across their life and monitored in production, so failures are caught early rather than in a loss.
Inventory and risk tiering is the starting point, because you cannot manage risk you cannot see. We build a complete model inventory and tier it by materiality, so scrutiny scales with impact rather than treating every model alike. This is the single most effective step from invisible exposure to managed risk.
We keep the inventory live and tiered, because an accurate, current inventory is the precondition for directing validation and monitoring effort where materiality actually is.
Independent validation is where credibility lives. We validate conceptual soundness, data, implementation and outcomes independently, aligned to SR 11-7 and OCC 2011-12, because validation by the team that built the model is not validation. Genuine independence is what makes the assurance believable.
We protect the independence of validation structurally, because independence that depends on goodwill rather than on how the function is set up will erode under delivery pressure.
Lifecycle governance extends control beyond sign-off. We govern development, approval, change and retirement, so a model is controlled for its whole life, not just at the moment it is first approved. This closes the gap where a validated model quietly drifts out of correctness.
We govern change explicitly, since a model that is altered without controlled re-validation is a common and avoidable source of production failure.
Ongoing monitoring catches silent failure. We monitor for drift, degradation and changing conditions, so a model that has stopped working is caught early rather than in a loss or an audit finding. This is the difference between point-in-time comfort and continuous control.
We calibrate monitoring to each model's risk and behaviour, so drift is caught early without drowning the team in false alarms that get ignored.
AI and machine-learning risk brings the newest models into scope. We extend the framework to AI and machine-learning models, aligned to the EU AI Act, NIST AI RMF and ISO 42001 and 23894, so nothing material sits outside governance. As these models enter decision-making, leaving them out is a growing exposure.
We extend the same discipline to AI models rather than treating them as a separate, lighter category, because regulators increasingly do not, and neither should the institution.
Reporting and assurance closes the loop to the board. We build reporting that lets leadership attest to model risk with evidence rather than assertion, across both traditional and AI models. This is what makes it safe to rely on model outputs and to sponsor further use.
We tailor assurance reporting to what the board must attest, so model risk is a decision-grade summary rather than an unreadable technical appendix.