Riesgo Operacional


Operational Risk is the possibility of incurring losses due to deficiencies, failures or inadequacies of the human resource, of the processes, of the technology, of the infrastructure, of management information, of the models used, or due to the occurrence of external events. This definition includes the legal risk associated with such factors; but excludes losses from loss of profit, reputational risk and strategic risk.

The main objectives of Operational Risk include at least:

  • Identify and mitigate the risks to which the bank is exposed, regardless of the existence of losses, developing a series of controls to mitigate these risks within the framework of internal controls.
  • Promote a culture of risk awareness through a complete training program available to all employees.
  • Follow best practices to measure and evaluate operational risks in an objective manner, complying with the standards established by the Superintendence of Banks of Panama, guidelines recommended by the Basel Committee and regulators of the different jurisdictions in which the Bank operates.
  • Monitor risk exposures and ensure that they remain within the limits approved by the Board of Directors.

Operational Risk Management

In Bladex, Operational Risk Management is carried out through various tasks and activities seeking to reinforce our main non-financial and operational risks and in strict compliance with the guidelines of international and local regulations under the Operational Risk and Integral Risk Management.

We have defined and formalized the methodology for the management of Operational Risk according to its stages (identification, measurement, mitigation, monitoring, control and information) through:

  • Operational Risk Policy and Manual and Event and Incident Guidelines
  • Global limit and specific operational risk limits
  • Operational Risk Indicators
  • Tool for event and incident management
  • Operational Risk Matrices
  • Operational Risk Database

For the correct implementation for Operational Risk Management effective, coordination between Risk Managers is required Operational (First Line of Defense), and the Operational Risk Unit (Second Line of Defense).

In Bladex we designate Operational Risk Managers in the different areas of the Banks, with the following responsibilities:

  • Act as the liaison between the areas and the Operational Risk Unit
  • Provide the information by recording the events and incidents in the database
  • Development of the process map of your area, identifying the key risks of your processes, evaluating existing controls and proposing action plans.
  • Keep your Vice Presidency timely and continuously informed about the previously identified critical risks, about the report of events and incidents of Operational Risk and about the Risk Map
  • Report findings with medium and high risk resulting from its Internal Audit Report, that are related to Operational Risk or that have produced losses to the Bank


To strengthen the management of Operational Risk in Bladex and comply with regulatory provisions, we have worked to raise awareness among employees about the importance of the Risk Framework through the following mechanisms:

  • Informational capsules
  • Inductions, Seminars and Sessions of Know Your Bladex
  • Awareness of the reporting of events and incidents of Operational Risk
  • Definition of Operational Risk Managers and their responsibilities
  • Follow-up on action plans for events and incidents
  • Monitoring of the Operational Risk account and its records
  • Inform the Risk Policy and Assessment Committee of the events and incidents reported and the evolution of annual losses