A key US regulator has privately found half of the major banks it oversees have an inadequate grasp of a broad swath of potential risks from cyber attacks to employee blunders, according to people familiar with the matter.
In the confidential assessments, the Office of the Comptroller of the Currency said 11 of the 22 large banks it supervises have “insufficient” or “weak” management of so-called operational risk, said the people, who asked not to be identified because the information isn’t public.
