Technology does not create good risk management. Strategy does. Risk, by its nature, is not the enemy. As I often remind listeners on the Risk Is Our Business podcast, the company that avoids risk altogether is already obsolete. The task isn’t to eliminate uncertainty, it’s to orchestrate it. To take the right risks, at the right time, with purpose, visibility, and confidence.
The European Supervisory Authorities are preparing to enter 2026 with one of their most consequential joint programs to date, a year that will test the strength of the EU’s new digital resilience architecture while reshaping how consumer protection, sustainability, and supervision converge across sectors.
In his latest article, Graeme Keith explores the foundations of risk modeling in his latest piece, tracing its roots from ancient mathematics to modern decision-making. He argues that models should begin with real-world problems, not abstract equations, and makes the case for why risk modeling must remain intelligible to decision makers.
Europe’s top central bankers are sounding the alarm that now is not the time to go soft on bank regulation. At a gathering in Amsterdam, officials from the European Central Bank and the Bank of England pushed back on calls to cut red tape, warning that rolling back rules could sow the seeds of the next crisis, Reuters first reported.
The Malta Financial Services Authority (MFSA) has issued a pointed warning to financial institutions, urging boards and senior management to treat business resilience as a strategic imperative rather than a compliance formality. The directive, delivered in a Dear CEO Letter on October 3, follows a sector-wide Thematic Exercise that uncovered significant weaknesses in resilience planning, financial forecasting, and risk management.
Bank of England Governor Andrew Bailey has sounded a warning shot over efforts to roll back financial regulation in the name of boosting growth, cautioning that the risks of deregulation could lead to history repeating itself, according to a recent report.
Germany’s financial watchdog BaFin has released its second supervisory statement on the EU’s Digital Operational Resilience Act (DORA), offering guidance to financial entities eligible for simplified requirements on ICT risk and third-party risk management.