FINMA & AI in Banking

Mon, 01 Jan 0001 00:00:00 +0000

The Swiss Financial Market Supervisory Authority (FINMA) oversees banks, insurance companies, and other financial institutions in Switzerland. As AI adoption accelerates across the sector, FINMA’s expectations around model risk management, operational resilience, and governance have significant implications for how organisations deploy and monitor AI systems.

What FINMA expects

FINMA does not yet have AI-specific regulation, but its existing supervisory framework — particularly around model risk and operational risk — applies directly to AI systems:

ISO 42001

Mon, 01 Jan 0001 00:00:00 +0000

ISO/IEC 42001 is the first international standard for AI management systems (AIMS). Published in 2023, it provides a framework for organisations to establish, implement, maintain, and continually improve their use of AI in a responsible manner.

What it covers

ISO 42001 is a management system standard — it defines how an organisation should govern AI, not what specific technology to use. Key requirements include:

Risk assessment — identify and evaluate risks associated with AI systems, including unintended behaviours, bias, and performance degradation
Performance measurement — establish objectives and metrics for AI system performance, with processes to monitor and measure against these
Continuous improvement — maintain processes to detect, respond to, and learn from AI system failures or performance drift
Documentation and evidence — maintain auditable records demonstrating that AI systems meet stated objectives

The testing implication

Clause after clause, ISO 42001 returns to the same theme: organisations must have measurable, evidenced-based assurance that their AI systems perform as intended.

Regulation News on Mavai Schweiz

FINMA & AI in Banking

What FINMA expects

ISO 42001

What it covers

The testing implication