The Risk
Central Securities Depositories (CSDs) are the central mechanisms for holding and transferring securities in every market in the world. In many cases they are bastions of stability and strengthen a financial market, but they can also pose significant risks to the financial system.
The Solution
Thomas Murray provides intraday monitoring and risk assessments of 140+ CSDs globally. We enable banks and other groups exposed to CSDs to understand the risks they pose, benchmark them against other markets and against best practices globally.
Our analysts are experts in CSD risk, including:
Asset Commitment
Liquidity
Counterparty
Asset Safety
Asset Servicing
Financial
Operational
Governance and Transparency
Thomas Murray scores every CSD
According to a CSDs capabilities, its operational infrastructure and its willingness and ability to protect participants and their clients from losses.
There are two primary use-cases for these assessments:
- Proprietary: where direct and indirect users of a CSD access the assessments for their own use, and they are not published publicly. Users of a CSD include Custody Banks, Broker Dealers, and Institutional Investors.
- Public: where a CSD commissions a rating on itself and makes it publicly available.
In addition to CSD Risk Assessments, Thomas Murray provides Cyber Security Ratings and ESG assessments of every CSD globally.
We safeguard clients and their communities
Petroleum Development Oman Pension Fund
“Thomas Murray has been a very valuable partner in the selection process of our new custodian for Petroleum Development Oman Pension Fund.”
ATHEX
"Thomas Murray now plays a key role in helping us to detect and remediate issues in our security posture, and to quantify ATHEX's security performance to our directors and customers."
Northern Trust
“Thomas Murray provides Northern Trust with a range of RFP products, services and technology, delivering an efficient and cost-effective solution that frees our network managers up to focus on higher Value activities.”
Insights
Why Cybersecurity Due Diligence is Critical to Deal Completion
It’s a common story: after months of meticulous financial, operational, and market analysis, a critical finding emerges in the final weeks before deal closure – threatening what seemed like a near-certain transaction with a three-month delay.
DORA Compliance Checklist: Practical Guidance for Q4 and 2026
Our structured, expert-led checklist, will help you to prioritise and demonstrate readiness to supervisors and regulators.
Ransomware at Europe’s Airports: Case for Community-Driven Third Party Risk Management
The recent ransomware attack on Collins Aerospace’s Muse software, which brought chaos to airports across Europe, serves as a stark reminder of a critical gap in how organisations approach Third Party Risk Management (TPRM).
JLR Cyber Attack: What it Means for Private Equity, Credit, and Equity Investments
From the iconic E-Type Jaguar to images of the late Queen driving modern Range Rovers on her estate, JLR has long held a uniquely British place in the national consciousness, even under Tata ownership. The incident has affected the owners of the business, the supply chain, and customers, and offers learnings for the Private Equity (PE) industry.
Contact an expert
