Contribute to A Better World By Making Your Business Sustainable
Expert Risk Advisory, Built for Institutions That Cannot Afford to Guess.
Every engagement is outcome-defined, senior-led, and calibrated to your regulatory environment — not adapted from a generic playbook.
We work with banks, regulated financial institutions, fintechs, and high-growth businesses across three structured engagement models — advisory retainers, fractional CRO mandates, and capability-building programmes — each designed to convert risk complexity into measurable institutional advantage.
How We Work With You
Fractional Risk Advisory
• Embedded Risk Leadership
• Board & Committee Participation
• Regulatory Navigation
Embed senior CRO-level risk leadership directly into your organisation on a flexible retainer or secondment basis — acting as a genuine internal partner at board, committee, and management level.
Delivers the regulatory rigour, strategic judgment, and executive accountability of a full-time CRO, scaled to your organisation's complexity and budget.
​
In practice, a Fractional CRO mandate typically involves a combination of the following — shaped entirely around your organisation's governance structure, regulatory obligations, and growth stage:
Board and risk committee participation with documented challenge function and governance trail
SREP preparation, thematic inspection readiness, and regulatory relationship support
Risk appetite calibration integrated with capital planning and strategic growth objectives
These are examples — every engagement is scoped to your specific context, objectives, and timeline.
​
What distinguishes a Fractional CRO mandate from conventional advisory is proximity.
This is not an external consultant producing deliverables from a distance — it is senior risk leadership operating from inside your governance structure, attending your committees, challenging your assumptions, and accountable for the quality of the outputs your organisation presents to regulators, investors, and the board.
The engagement begins only when the scope is precisely defined and the right fit confirmed. That discipline — on both sides — is what makes the mandate work.
Select Your Executive Risk Priorities
Board & Committee Presence
Board and risk committee participation with documented challenge function and governance trail
ICAAP & ILAAP Ownership
ICAAP and ILAAP ownership and narrative oversight at board and senior management level
ESG & Climate Risk
ESG and climate risk integration into executive decision-making, governance, and board oversight
Supervisory Readiness
SREP preparation, thematic inspection readiness, and supervisory relationship management
Risk Function Build-Out
Risk function buildout — team structuring, role design, hiring support, and capability development
Risk Reporting Architecture
Strategic risk reporting design — board pack architecture, KRI dashboards, and escalation frameworks
Risk Appetite & Capital Fit
Risk appetite calibration integrated with capital planning and strategic growth objectives
Interim CRO Coverage
Interim CRO coverage during leadership transitions, regulatory mandates, or institutional restructuring
Model Risk Governance
Model risk governance — MRM framework design, model inventory, and validation oversight
Regulatory Engagement
Regulatory dialogue management with structured engagement, response strategy, and governance trail
Board Risk Literacy
Board risk literacy programme — governance obligations, challenge function, and supervisory expectations
Stress Testing Programme
Stress testing programme — scenario design, reverse stress testing, and ICAAP capital reporting
How We Work With You
Enterprise Risk Management
• ERM Framework Design
• Three Lines of Defence
• Risk Governance Architecture
​Design, build, and embed enterprise risk governance frameworks that are audit-ready, board-functional, and structurally aligned with the Three Lines of Defence model.
Addresses the persistent gap between compliance-driven risk documentation and operational risk intelligence — delivering a governance architecture that actively informs strategic decision-making.
An ERM engagement is rarely one-size-fits-all. Depending on where your organisation is in its governance maturity, we typically work across some or all of the following:
​
-
Risk appetite statement, limit frameworks, and KRI architecture calibrated to your institutional risk profile
-
Risk register integrating strategic, operational, credit, and ESG exposures in a board-actionable format
-
Governance documentation aligned with prudential risk regulations
These are examples — every engagement is scoped to your specific context, objectives, and timeline.
An ERM framework has no value as a document. It has value only when risk information flows accurately through the governance structure, when the board is equipped to challenge management on the basis of that information, and when decisions made under uncertainty are traceable to a defined risk logic.
The scope of each engagement is set against those standards — not against a template of what a risk framework is supposed to contain.
Select Your Advisory Risk Priorities
Risk Appetite & KRI Architecture
Risk appetite statement, limit frameworks, and KRI architecture calibrated to your institutional risk profile
Prudential Risk Governance
Governance documentation aligned with prudential risk regulations and supervisory expectations
Risk Function Design
Risk function design and restructuring — mandates, reporting lines, committee structures, and role definitions
3 Lines of Defence Mapping
Three Lines of Defence governance mapped against your existing committee and oversight structure
Risk Culture Programme
Risk culture assessment and embedding programme across the three lines of defence
Strategic Risk Integration
Integration of strategic risk into business planning, capital allocation, and investment decision processes
Risk Register Design
Risk register integrating strategic, operational, credit, and ESG exposures in a board-actionable format
Operational risk framework
Operational risk framework design — loss data collection, scenario analysis, and control self-assessment
Emerging Risk Scanning
Emerging risk and horizon scanning through thematic briefings, threat assessment, and board-level alerts
Board & ALCO Reporting
Board and ALCO-ready risk reporting pack with standardised escalation and tolerance triggers
Risk Taxonomy & Classification
Risk taxonomy & classification architecture aligned with regulatory and internal governance expectations
RCSA & Control Effectiveness
Risk and control self-assessment design & control testing with first-line risk ownership across units
How We Work With You
Regulatory & Compliance Advisory
-
Basel III / CRR3
-
Supervisory Engagement
-
Regulatory Readiness
Navigate the full spectrum of prudential and conduct regulatory requirements with the confidence of a team that has built and defended these frameworks before examiners.
From Basel III capital adequacy to ICAAP narratives and supervisory dialogue — we translate regulatory obligation into structured, defensible action.
The scope of a regulatory engagement depends on your current regulatory position and what is most time-critical. The following illustrate the range of what we do — but your brief will define what matters most:
-
ICAAP and ILAAP narrative construction with capital adequacy assessment and management buffer reasoning
-
Basel III / CRR3 compliance gap analysis with prioritised remediation roadmap
-
Supervisor-ready documentation packages and pre-inspection preparation support
These are examples — every engagement is scoped to your specific context, objectives, and timeline.
Supervisors read documentation looking for gaps, inconsistencies, and claims that cannot be substantiated under questioning.
Every deliverable produced under a regulatory mandate is built to anticipate that scrutiny — structured, evidenced, and internally consistent before the examination begins.
The institutions that manage regulatory relationships most effectively are those whose documentation reflects genuine analytical rigour, not procedural compliance.
Select Your Advisory Risk Priorities
ICAAP & ILAAP Narrative
ICAAP and ILAAP narrative construction with capital adequacy assessment and management buffer reasoning
Pre-Inspection Readiness
Supervisor-ready documentation packages & pre-inspection preparation support across all risk pillars
Prudential Disclosure
Prudential disclosure framework — Pillar 3 report design, COREP/FINREP template alignment
Basel III / CRR3 Gap Analysis
Basel III / CRR3 compliance gap analysis with prioritised remediation roadmap and board-facing summary
Recovery Planning
Recovery planning documentation and adverse scenario integration aligned with supervisory expectations
AML/CFT Risk Framework
AML/CFT risk framework design, gap analysis, and regulatory alignment for regulated institutions
SREP Process Management
SREP process management — pillar assessments, Pillar 2 capital add-on negotiation, and follow-up actions
Conduct Risk Framework
Conduct risk framework design — product governance, consumer duty, suitability, and fair outcomes
BRRD Resolution Alignment
Resolution strategy, resolvability assessment, and MIS requirements for recovery & resolution functions
CRD VI / CRR3 Implementation
CRD VI / CRR3 implementation planning — credit risk SA reform, IRB output floor, and RWA impact assessment
Regulatory Change
Regulatory change management — impact assessment, implementation roadmap, & board reporting
Regulatory Horizon Scanning
Forward-looking regulatory monitoring, impact assessment, and prudential & conduct change briefings
How We Work With You
ESG Risk Integration
-
Climate Risk
-
CSRD / ESRS
-
ESG Materiality Mapping
​Design, build, and embed enterprise risk governance frameworks that are audit-ready, board-functional, and structurally aligned with the Three Lines of Defence model.
Embed material ESG and climate transition risks into enterprise risk frameworks, stress testing programmes, and regulatory disclosure structures.
Solves the structural disconnect between sustainability commitments and operational risk quantification — delivering ESG-integrated frameworks that satisfy EBA, ECB, and CSRD disclosure standards while remaining operationally actionable.
​
ESG risk integration looks different depending on your sector, regulatory jurisdiction, and starting point. The following are representative of how we typically structure this work:
-
ESG materiality mapping aligned with your sector, counterparty profile, and regulatory jurisdiction
-
Climate scenario analysis using NGFS pathways (orderly transition, disorderly, hot house world)
-
CSRD and ESRS-aligned risk disclosure framework with supporting evidence architecture
​
These are examples — every engagement is scoped to your specific context, objectives, and timeline.
Select Your Advisory Risk Priorities
ESG Materiality Mapping
Double materiality aligned with your sector, counterparty profile, and jurisdiction
ESG Risk Appetite
ESG risk appetite statement and limit framework embedded within existing ERM governance structure
Counterparty Due Diligence
ESG counterparty due diligence framework design for transaction risk assessment and credit decisioning
Climate Scenario Analysis
Analysis using NGFS pathways: orderly transition, disorderly transition, and hot house world
Supervisory Alignment
Supervisory expectation alignment on ESG risk management, governance, and disclosure obligations
Climate Stress Testing
Climate stress testing aligned with EBA pilot exercise methodologies and NGFS macro-financial scenarios
CSRD & ESRS Framework
Risk disclosure framework with evidence architecture & gap assessment
SFDR & EU Taxonomy Alignment
Sustainable finance classification, DNSH(Do No Significant Harm) assessment, and portfolio mapping
Nature & Biodiversity Risk
TNFD-aligned dependency mapping, exposure assessment, and disclosure design
Physical and Transition Risk
Physical and transition risk integration into credit risk measurement and monitoring
Supply Chain Sustainability Risk
Supply chain and circular economy risk mapping for corporates, manufacturers, and lending institutions
ESG Governance & Reporting
ESG board governance aligned with reporting architecture & management information flows
Risk Analytics & Modelling (RAM)
Credit Risk Models · Market Risk · Counterparty Credit Risk · ALM · Model Validation
Develop, implement, and independently validate quantitative risk models across credit, market, counterparty, and balance sheet dimensions — built to regulatory capital and provisioning standards. Every model is structured for both supervisory submission and management decision use, with full documentation supporting audit, model risk committees, and regulatory review.
Our quantitative engagements span the full modelling lifecycle — from model design and build through to independent validation and governance documentation. The three domains we most frequently work across are:
-
Credit risk model development and independent validation — PD, LGD, EAD, and ECL provisioning under IFRS 9 and Basel regulatory capital frameworks
​​
-
Market risk modelling and validation — VaR, Expected Shortfall, IRRBB (NII/EVE), FX sensitivity, and back-testing with full model risk documentation
​​
-
Counterparty credit risk (CCR) and ALM modelling — SA-CCR, CVA, potential future exposure, and balance sheet interest rate risk frameworks under IRRBB guidelines
These are examples — every engagement is scoped to your specific context, objectives, and timeline.
Enterprise Risk Training & Capability Development
Risk Modelling, Measurement, Reporting | Credit, Market, CCR, ALM, ICAAP & ESG Risk
Build durable quantitative risk capability within your risk function, model validation team, and senior leadership through structured, practitioner-led programmes. Every programme is calibrated to the models your organisation builds or uses — covering the mechanics, the regulatory expectations, and the governance overlay that makes models defensible.
​
Training programmes are built around your team's actual models and regulatory context — not a generic curriculum. The following represent the core modules most frequently requested:
​
-
Credit risk model development masterclass — PD/LGD/EAD mechanics, IFRS 9 ECL staging and overlays, regulatory capital implications, and model validation standards
​
-
Market risk and IRRBB training — VaR, Expected Shortfall, NII/EVE modelling, back-testing, ALCO reporting, and EBA/GL/2022/14 framework alignment
​
-
Counterparty credit risk and ALM workshop — SA-CCR methodology, CVA capital, interest rate risk in the banking book, and model risk governance for treasury functions
​
These are examples — every engagement is scoped to your specific context, objectives, and timeline.
