Information Security, Compliance and Governance

Information Security



Information Security is critical to Credit Benchmark’s success, and the confidentiality of client’s data is our top priority.

  • Strong management commitment with oversight from the CEO and the board. Overall authority and responsibility for implementation and management delegated to the CTO.
  • Physical Security: bank-grade security at our office site, physical separation of data room.
  • Two separate technical environments:
    • Secure data processing environment hosted by CenturyLink (and ISO27001 and SOC1 datacenter)
    • Credit Benchmark enterprise environment
  • Twice Annual Penetration Testing by independent third parties
  • Client data encrypted at rest and in transit




CB has a designated compliance committee providing oversight across multiple compliance programmes including:

  • Information Security: robust information security architecture to maintain confidentiality of financial institutions. Sensitive data is received and delivered via secure transmissions and hosted in a compliant technology environment.
  • Governance: data is delivered using industry-standard quorate rules for contributed data models. A minimum of three observations on an entity are required for data to be published in order to maintain client confidentiality.
  • Compliance with code of business conduct: All employees are required to maintain the highest standards of conduct, supported by training and regular affirmations of the code.




Advisory Board

Credit Benchmark’s Advisory Board, chaired by Craig Broderick (former Chief Risk Officer of Goldman Sachs) provides guidance on Credit Benchmark’s strategy and market positioning. The Advisory Board meets periodically to:

  • Ensure that the suite of data is optimized for credit risk management
  • Advise on potential academic applications of the aggregated content
  • Provide support for the research & development of new products

Compliance & Policy

Credit Benchmark’s leadership team meets regularly to review compliance and policy protocol with the objectives of ensuring the highest quality industry-approved methodology and processes for data publishing and of maximizing the relevance of the outputs.

Follow us on:

Credit Benchmark brings together internal credit risk views from over 40 leading global financial institutions. The contributions are anonymized, aggregated, and published in the form of consensus ratings and aggregate analytics to provide an independent, real-world perspective of credit risk. Risk and investment professionals at banks, insurance companies, asset managers and other financial firms use the data for insights into the unrated, monitoring and alerting within their portfolios, benchmarking, assessing and analyzing trends, and fulfilling regulatory requirements and capital.