951.311CISOFederal Council OrdinanceJan 1, 2007Original source
(Art. 14 para. 1terCISA)
The licensee must ensure it has proper and appropriate risk management, an internal control system (ICS) and compliance covering its entire business activities.
Risk management must be organised so that all material risks can be adequately identified, assessed, controlled and monitored.
The licensee shall separate the functions of risk management, the internal control system and compliance in functional and hierarchical terms from the operating units, in particular from the investment decisions function (portfolio management).
FINMA may grant derogations from these requirements in justified instances.
It may regulate the details of risk management, the internal control system and compliance.1
Footnotes
Inserted by No I of the O of 31 Jan. 2024, in force since 1 March 2024 (AS 2024 73). ↩
0 commentaries
No commentaries are available for this article yet.