Changeflow GovPing Banking & Finance OCC Issues Updated Model Risk Management Guidan...
Priority review Guidance Amended Final

OCC Issues Updated Model Risk Management Guidance Rescinding Prior Bulletins

Favicon for www.occ.treas.gov OCC News Issuances
Published
Detected
Email

Summary

The OCC, in coordination with the Federal Reserve and FDIC, issued updated model risk management guidance for OCC-supervised institutions. The guidance rescinds prior OCC bulletins including OCC Bulletin 2011-12, OCC Bulletin 2021-19, OCC Bulletin 1997-24, and the Model Risk Management booklet of the Comptroller's Handbook. The updated guidance emphasizes that model risk management practices should be risk-based, tailored, and commensurate with a banking organization's size, complexity, and extent of model use. The guidance explicitly states it does not set forth enforceable standards and non-compliance will not result in supervisory criticism.

Published by OCC on occ.treas.gov . Detected, standardized, and enriched by GovPing. Review our methodology and editorial standards .
View original document View source feed page

What changed

The OCC updated its model risk management guidance by rescinding three prior OCC bulletins and the Model Risk Management booklet of the Comptroller's Handbook, and replacing them with revised guidance that emphasizes risk-based, tailored practices commensurate with each institution's size, complexity, and model use. The guidance discusses factors influencing model risk, effective model development and use, validation and monitoring, governance and controls, and considerations for vendor and third-party products.\n\nAffected banking organizations—particularly those with over $30 billion in total assets—should review their model risk management frameworks to align with the updated guidance principles. While the guidance explicitly does not create enforceable standards, it represents the OCC's current supervisory expectations for sound model risk management practices. Banks should monitor for a forthcoming request for information from the OCC, Federal Reserve, and FDIC addressing AI use in banking.

Archived snapshot

Apr 17, 2026

GovPing captured this document from the original source. If the source has since changed or been removed, this is the text as it existed at that time.

News Release 2026-29 | April 17, 2026

OCC Issues Updated Model Risk Management Guidance

Share This Page:

WASHINGTON—The Office of the Comptroller of the Currency (OCC) today, in coordination with the Board of Governors of the Federal Reserve System (Federal Reserve Board) and the Federal Deposit Insurance Corporation (FDIC), issued updated model risk management guidance for OCC-supervised institutions. These actions build upon the OCC’s ongoing efforts to tailor its supervisory framework to reduce unnecessary burden and promote risk-based examination across institutions of all sizes.

The updated guidance serves in part to rescind prior model risk management guidance and other issuances and to clarify that model risk management practices should be risk-based, tailored, and commensurate with a banking organization’s size, complexity, and extent of model use. The guidance does not set forth enforceable standards or prescriptive requirements, and non-compliance will not result in supervisory criticism.

This guidance highlights sound principles for effective model risk management. In particular, the guidance discusses the factors that influence model risk and the features of effective model development and model use; model validation and monitoring; and governance and controls. The guidance also discusses considerations specific to vendor and other third-party products, including validation of these products.

The updated guidance is expected to be most relevant to banking organizations with over $30 billion in total assets. However, the guidance may also be relevant to smaller institutions with significant model risk exposure due, for instance, to the prevalence and complexity of their models. In addition, generative AI and agentic AI models are novel and rapidly evolving. As such, they are not within the scope of this guidance.

The OCC is rescinding prior model risk management issuances, including OCC Bulletin 2011-12, “Supervisory Guidance on Model Risk Management,” OCC Bulletin 2021-19, “Bank Secrecy Act/Anti-Money Laundering: Interagency Statement on Model Risk Management for Bank Systems Supporting BSA/AML Compliance and Request for Information,” and OCC Bulletin 1997-24, “Credit Scoring Models: Examination Guidance,” including the Appendix, “Safety and Soundness and Compliance Issues on Credit Scoring Models,” as well as the “Model Risk Management” booklet of the Comptroller’s Handbook. The OCC, Federal Reserve Board, and FDIC plan to issue in the near future a request for information that addresses model risk management generally and considers, in particular, banks’ use of AI, including generative AI and agentic AI and AI-based models.

Related Link

Media Contact

Stephanie Collins
(202) 649-6870

Topic(s):

Related changes

Favicon for www.occ.treas.gov OCC Revises Model Risk Management Guidance for Banks
Priority review Apr 17, 2026 OCC News Issuances Banking & Finance
Favicon for www.banking.nh.gov Public Hearing on BAN 1450 Readoption Regarding Risk Classification and Acceptable Collateral for Public Funds Deposits
Priority review Apr 17, 2026 NH Banking News & Announcements Banking & Finance
Favicon for www.occ.treas.gov OCC Enforcement Actions for April 2026: Consent Order Against Federal Savings Bank, Two Prohibition Orders, and Three Terminations
Priority review Apr 16, 2026 OCC News Issuances Banking & Finance

Get daily alerts for OCC News Issuances

Daily digest delivered to your inbox.

Free. Unsubscribe anytime.

Source

Favicon for www.occ.treas.gov
OCC News Issuances occ.treas.gov/news-issuances/news-releases/index-news-releases.html
Banking & Finance

About this page

What is GovPing?

Every important government, regulator, and court update from around the world. One place. Real-time. Free. Our mission

What's from the agency?

Source document text, dates, docket IDs, and authority are extracted directly from OCC.

What's AI-generated?

The summary, classification, recommended actions, deadlines, and penalty information are AI-generated from the original text and may contain errors. Always verify against the source document.

Last updated

Press inquiries →

Classification

Agency
OCC
Published
April 17th, 2026
Instrument
Guidance
Legal weight
Non-binding
Stage
Final
Change scope
Substantive
Supersedes
OCC Bulletin 2011-12, OCC Bulletin 2021-19, OCC Bulletin 1997-24

Who this affects

Applies to
Banks
Industry sector
5221 Commercial Banking
Activity scope
Model risk management Bank supervision Third-party model validation
Threshold
Over $30 billion in total assets
Geographic scope
United States US

Taxonomy

Primary area
Banking
Operational domain
Compliance
Compliance frameworks
Basel III
Topics
Financial Services Cybersecurity

Browse Categories

Agriculture & Food Safety 65 AI Regulation 3 Banking & Finance 332 Consumer Protection 63 Courts & Legal 361 Data Privacy & Cybersecurity 77 Defense & National Security 51 Education 44 Energy 100 Environment 86 Environmental & Energy 36 Environmental Regulation 7 Financial Regulation 2 Government & Legislation 278 Government Operations 107 Healthcare 136 Healthcare Compliance 6 Healthcare & Life Sciences 72 Housing 16 Immigration 8 Immigration & Border Control 2 Insurance 66 Labor & Employment 126 Legal & Judicial 29 Pharma & Drug Safety 101 Pharma & Healthcare 1 Privacy 1 Public Health 2 Real Estate & Housing 61 Sanctions & Export Controls 1 Securities & Investments 28 Securities & Markets 103 Securities Regulation 6 Tax 64 Tax & Revenue 9 Telecom & Technology 47 Trade & Commerce 3 Trade & Sanctions 135 Transportation 85

Get alerts for this source

We'll email you when OCC News Issuances publishes new changes.

Free. Unsubscribe anytime.

You're subscribed!