Series
AI governance for banking, insurance, and capital markets — SR 26-2, DORA, NYDFS, GenAI carve-outs, vendor risk, and the EU AI Act × DORA × SR 26-2 stack.
Banks across EU and US face three AI-relevant regulatory layers — the AI Act, DORA, and SR 26-2. How they stack, overlap, and diverge.
SR 26-2 modernised bank model risk management — and left GenAI out of scope. A practitioner's playbook for the AI governance gap it opened.
SR 26-2 placed generative AI outside model risk management. This guide builds the parallel governance track FinServ needs to fill the gap.
NYDFS's October 2024 Industry Letter clarifies how 23 NYCRR Part 500 applies to AI risks. A practitioner walkthrough for FinServ teams.
The Fed's revised model risk management guidance (SR 26-2) supersedes 15 years of SR 11-7 — quietly leaving generative AI to other governance functions.