![BB OR [B] 11](https://blog.bcm-institute.org/hs-fs/hubfs/OR%20picture/OR%20Pictures%20A/OR%20Folder%20B/BB%20OR%20%5BB%5D%2011.jpg?width=2000&height=1333&name=BB%20OR%20%5BB%5D%2011.jpg "BB OR [B] 11")
Operational Resilience Management Report
"Implement" Phase -
Stage 4: Performing Scenario Testing
Completion Report
Chapter 12
Executive Summary
As part of OCBC Bank’s ongoing commitment to enhancing operational resilience, the current focus lies within the “Implement” phase of our Operational Resilience Planning Methodology.
Scenario Testing, which assesses the bank’s ability to deliver critical business services during severe but plausible disruptions, is a critical component of this phase.
This report outlines the objectives, implementation steps, examples, and outcomes of scenario testing, aligned with regulatory expectations and industry best practices.
Objectives of Scenario Testing
-
Validate Resilience Capabilities: Ensure that identified resilience strategies can withstand stress scenarios.
-
Demonstrate Impact Tolerance: Test whether critical business services remain within defined impact tolerances.
-
Identify Gaps: Uncover vulnerabilities in existing processes, systems, and interdependencies.
-
Enhance Crisis Preparedness: Improve team coordination and decision-making under pressure.
Implementation Steps
Step 1: Define Testing Objectives and Scope
-
Select Critical Business Services (CBS) to be tested.
-
Define testing goals, such as validating the ability to recover digital banking services within the defined tolerance of 2 hours.
Example:
OCBC selected “Real-Time Payment Services” and “Digital Banking Platform” for testing, focusing on a severe cyber-attack and cloud service outage, respectively.
Step 2: Design Severe but Plausible Scenarios
-
Collaborate across business units, risk, IT, and crisis management teams to develop realistic disruption scenarios.
-
Scenarios must challenge existing assumptions without being so extreme that they are impossible to manage.
Example Scenarios:
-
Cyberattack Simulation: Malware infiltrates a core banking system, rendering Real-Time Payment Services inoperable for 4 hours.
-
Cloud Disruption: The third-party cloud provider hosting the mobile banking platform suffered a regional outage, which affected customer logins and fund transfers.
Step 3: Prepare for the Test
-
Identify key participants (service owners, IT, compliance, third-party vendors).
-
Review business continuity and crisis management plans for readiness.
-
Ensure the test environment, tools, and communication protocols are set.
Example:
Service owners for Digital Banking coordinated with the crisis communication team to draft public statements and prepare alternate access methods.
Step 4: Execute the Scenario Test
-
Conduct tabletop or live simulation exercises based on the chosen scenarios.
-
Monitor real-time responses, decision-making, and escalation paths.
-
Capture detailed observations of resilience capabilities in action.
Example:
During the cyberattack simulation, OCBC’s real-time payment operations team initiated the fallback to the alternate site within 45 minutes, triggering customer notifications and activating fraud monitoring protocols.
Step 5: Document Outcomes and Evaluate Impact Tolerance
-
Compare the observed recovery times against the defined impact tolerances.
-
Document the performance of systems, teams, and third-party dependencies.
-
Highlight areas where tolerances were breached or narrowly met.
Example:
The Digital Banking Platform scenario exceeded the defined tolerance by 30 minutes due to the delayed restoration of cloud access, indicating a need to enhance backup connectivity and vendor escalation processes.
Step 6: Conduct Post-Test Review and Recommend Improvements
-
Facilitate a structured debriefing session.
-
Identify lessons learned and corrective actions.
-
Update Business Continuity Plans (BCP), resilience strategies, and playbooks.
Example Recommendations:
-
Establish direct escalation channels with Tier-1 cloud providers.
-
Enhance fraud risk management during system failovers.
-
Introduce cross-training for critical staff in Digital Operations.
Reporting and Governance
-
Findings and recommendations are submitted to the Operational Resilience Steering Committee and Senior Management.
-
Material gaps are logged into the enterprise risk register.
-
Progress of remediation activities is tracked via the Operational Resilience Program Dashboard.
Next Steps
-
Schedule additional scenario tests covering Corporate Cash Management, Treasury, and Capital Markets in Q3.
-
Perform cross-jurisdictional testing for Singapore, Malaysia, and China operations.
-
Align outcomes with regulatory expectations from MAS and relevant global bodies (e.g., Basel Committee).
Summing Up ...
Scenario Testing is an integral component of OCBC’s operational resilience strategy. The recent testing cycle has demonstrated strong preparedness in core banking services, while also highlighting improvement opportunities in third-party dependency management and cross-functional coordination. Continued investments in scenario-based resilience testing will ensure OCBC remains robust, responsive, and aligned with its regulatory obligations and customer commitments.
Here is a professional Scenario Testing Table tailored for submission to MAS as part of OCBC Bank’s compliance with the Operational Resilience regulatory requirements. This format aligns with the MAS expectations under the ORM/OR framework for identifying severe but plausible scenarios and assessing whether firms remain within impact tolerances.
OCBC Bank – Scenario Testing Table (Regulatory Submission to Monetary Authority of Singapore )
| Critical Business Service | Scenario Title | Scenario Description | Type of Disruption | Severe but Plausible? | Test Method | Impact Tolerance (Target) | Actual Outcome | Tolerance Breached? | Key Findings & Remediation Actions |
|---|---|---|---|---|---|---|---|---|---|
| Real-Time Payment Services | Cyberattack on Core Banking Platform | Malware disrupts real-time payment processing; fraudulent transactions are attempted | Cybersecurity Incident | Yes | Tabletop Simulation | 2 hours | Recovery in 1.5 hours; fraud response activated | No | Fraud response timely; consider increasing internal redundancy in payment engine architecture |
| Digital & Mobile Banking Platform | Regional Cloud Provider Outage | Primary cloud provider experiences outage affecting mobile app logins and fund transfers | Third-party/Cloud Outage | Yes | Live Simulation | 2 hours | Recovery in 2.5 hours | Yes | Delay in vendor escalation; action: establish direct escalation path and local backup zone |
| Corporate Cash Management Services | Insider Threat Data Manipulation | Internal staff manipulates payment files, leading to delayed B2B settlements | Insider Threat | Yes | Tabletop Exercise | 3 hours | Detected and isolated in 1 hour | No | Strengthen access control monitoring; expand staff behaviour anomaly detection |
| ATM & Branch Cash Services | Civil Unrest Causing Physical Inaccessibility | Widespread unrest prevents staff access to branches and ATMs | Physical/Geo-political | Yes | Tabletop Exercise | 4 hours | Manual override procedures initiated within 3 hrs | No | Include backup cash supply partners; assess impact of staffing rotation policies |
| Credit Card & Merchant Acquiring Services | Card Network Connectivity Failure | Disruption in acquiring network connectivity is affecting card authorisations | External Connectivity | Yes | Tabletop Simulation | 1 hour | Partial service restored in 45 mins | No | Positive outcome; explore multi-network routing resilience for merchant acquiring services |
| Treasury & Capital Markets Operations | Trading Platform Vendor Lockout | Loss of access to the third-party trading platform during market volatility | Third-party Vendor Failure | Yes | Tabletop Exercise | 1 hour | Function migrated to internal platform in 40 mins | No | Well-executed migration; recommend ongoing drills and updating training for backup trading platforms |
Key Notes for Regulator
-
All scenarios were developed in alignment with MAS’s definition of “severe but plausible”.
-
Each scenario tests the end-to-end delivery of a Critical Business Service, including people, processes, technology, data, and third parties.
-
Impact tolerances were pre-defined and approved by the Operational Resilience Steering Committee.
-
Outcomes and learnings are being integrated into OCBC’s resilience improvement program.
-
Follow-up testing and remediation plans are tracked under the Operational Resilience Program Office with Board oversight.
Summary Table: Scenario Testing – Implement Phase
| Section | Description |
|---|---|
| Objectives | - Validate resilience strategies - Confirm ability to stay within impact tolerance - Identify vulnerabilities - Enhance preparedness |
| Step 1: Define Scope | Selected Critical Business Services: - Real-Time Payment Services - Digital Banking Platform Focus: Testing recovery capabilities |
| Step 2: Design Scenarios | - Cyberattack on real-time payments - Cloud service outage affecting mobile banking Severe but plausible scenarios used |
| Step 3: Prepare Test | - Identified participants - Reviewed BCPs and crisis plans - Setup testing environment and tools |
| Step 4: Execute Test | - Conducted live simulations - Monitored decision-making, communications, and fallback procedures |
| Step 5: Evaluate Outcomes | - Compared actual recovery times vs. impact tolerances - Identified that cloud recovery exceeded tolerance by 30 minutes |
| Step 6: Post-Test Review | - Lessons learned captured - Recommendations included: stronger cloud vendor escalation, enhanced fraud control, cross-training of critical roles |
| Reporting & Governance | - Submitted results to Operational Resilience Steering Committee - Logged material gaps - Monitored remediation through program dashboard |
| Next Steps | - Test Corporate Cash Management and Treasury in next cycle - Expand testing across regions (SG, MY, CN) - Align with MAS and Basel expectations |
| Conclusion |
- Good readiness demonstrated |
![[OR] [OCBC] [E2] [Report] [P2] [S3] [C11] Setting Impact Tolerance](https://no-cache.hubspot.com/cta/default/3893111/be2a4eb1-118f-46f7-ae85-07cbefd8f206.png)
More Information About Blended Learning OR-5000 [OR-5] or OR-300 [OR-3]
To learn more about the course and schedule, click the buttons below for the OR-3 Blended Learning OR-300 Operational Resilience Implementer course and the OR-5 Blended Learning OR-5000 Operational Resilience Expert Implementer course.
![[BL-OR] [3-4-5] View Schedule](https://blog.bcm-institute.org/hs-fs/hubfs/hub_generated/resized/e4287b59-1a43-4e10-8e43-c73b27b3ca39.png?width=172&height=50&name=e4287b59-1a43-4e10-8e43-c73b27b3ca39.png)
![[BL-OR] [3] FAQ OR-300](https://blog.bcm-institute.org/hs-fs/hubfs/hub_generated/resized/294e989f-8613-4bf3-96a5-a89408cfb9ca.png?width=150&height=150&name=294e989f-8613-4bf3-96a5-a89408cfb9ca.png)
![Email to Sales Team [BCM Institute]](https://blog.bcm-institute.org/hs-fs/hubfs/hub_generated/resized/850988ce-aa7d-4953-95cf-797635341edd.png?width=100&height=100&name=850988ce-aa7d-4953-95cf-797635341edd.png)
