easy · FRM Part 2 Operational Risk

A Tier-1 bank conducts a 'fourth-party' risk assessment and discovers that all three of its diverse cloud providers (A, B, and C) utilize the same specialized hardware security module (HSM) vendor for cryptographic key storage. This scenario represents:

  1. A violation of the shared responsibility model's data integrity requirement under contract.
  2. A systemic single point of failure through unmanaged sub-outsourcing (fourth-party concentration).
  3. Diversification of operational risk achieved through use of industry-standard security hardware.
  4. Exogenous liquidity risk resulting from increased margin requirements on the hardware collateral pool.

Sign up free to see the explanation and track your rank →

More FRM Part 2 Operational Risk practice

KomFi Academy — Stop doomscrolling. Get KomFi.

Build your intelligence, anytime, anywhere.

KomFi Academy is a curated training platform with 54,000+ practice questions, 20,000+ flashcards, on-demand video lectures, podcasts, and 4K slide decks across the topics serious professionals study: GMAT, LSAT, MCAT, Investment Banking, Private Equity (LBOs & PE math), Private Credit, Quantitative Finance, Financial Accounting, Asset- Backed Securities, Volume Profile Analysis, Order Flow Trading, Market Microstructure, Volume Spread Analysis, Elliott Wave Theory, Volume-Price Analysis, and Public Offering Frameworks.

What's inside

Topics

View pricing · Read testimonials