About

Enterprise Resiliency

View the transcript

Hi, I'm Mike Butler. I'm the chief resiliency officer here at State Street. And I'm just going to take a bit of time to talk about what we do here and why resilience is so important to us and it's ingrained in the DNA of how we deliver service. Resiliency used to be about business continuity, about disaster recovery, and it still is.

We still need to be really good at recovering from stress and recovery from stress as quickly as possible, with as good communications as possible and supporting all of our obligations we have, whether it's to our clients, whether it's to our customers, whether it's through our internal colleagues, whether it's to the markets, etc. But resilience is more than that.

Resilience it's about how do we deliver service. How do we make sure that as we shift left and think about being resilient by design, that we proactively look at how we deliver service and make sure that when we design and implement it, that we reduce the likelihood of having to demonstrate how good we are recovering, but we also maintain that ability to do that.

The world we live in today is quite different than it was 20 years ago. Some may say we live in a perma-crisis where we're going from day to day thinking about different threats, different challenges, and the way that we react, and the way that we support each other to act is really important.

Some of the issues we’ve seen with geopolitical challenges, with the ever increasing ambition of cyber threat actors, is really important that we understand how to be resilient and how to protect our service in that way.

And that’s our role, that’s our job as a Resiliency Office at State Street. It’s to make sure we are working with our clients and with every other stakeholder that’s relevant to help us support the delivery of our services to drive our resiliency challenges and risks, make sure we get a service that is robust and resistant to failure, and make sure we have the ability, when we do need to, to recover as quickly as possible and communicate effectively.

In today’s complex, interconnected global environment, enterprise resiliency is a strategic imperative.

Enterprise resiliency is our global program for maintaining continuity of critical services and upholding client trust, even under stress. By embedding resiliency across our organization, our program is designed and tested to anticipate, withstand, respond to and recover from disruptions — while continuing to meet client and regulatory expectations and adapt in a dynamic operating environment.

State Street has adopted a unified, enterprise-wide approach to resiliency, establishing a common framework and culture that integrates technology, cybersecurity, employees, third-party providers, and facilities to support service continuity. Our Enterprise Resiliency Program is a strategic imperative, enabling us to support clients across a range of severe but plausible scenarios, including:

Geopolitical instability and global conflict
The accelerating emergence of new risks driven by agentic AI
Increasingly sophisticated fraud and cyber threats
Climate-related events and natural disasters
Infrastructure failures and third-party disruptions
Market volatility and economic uncertainty

Addressing these risks requires a holistic, enterprise-level approach that connects every layer of State Street. Resiliency strengthens confidence, reinforces trust, supports agility, and enables sustainable growth.

Leading with resiliency

Ronald P. O’Hanley
Chairman and Chief Executive Officer

“As a Global Systemically Important Bank, our focus on risk management and resiliency remains foundational to the partnership we maintain with our clients and central to our role in the global financial system. We view resiliency not only as a responsibility, but also as a competitive advantage — supported by a strong control environment, ongoing investment in infrastructure, and the proactive identification of emerging risks. This forward‑looking discipline enables us to provide the capacity and flexibility required to support clients with security at scale.”

Enterprise Resiliency Program

The Enterprise Resiliency Program is led by State Street’s Enterprise Resiliency Office (ERO), which partners with the business, technology, cybersecurity, data/analytics and global delivery teams to develop, execute and continuously enhance our enterprise resiliency strategy. Resiliency is a shared responsibility across the organization. This collective ownership enables rapid response, protects data integrity and supports the timely restoration of client activity — reinforcing trust when it matters most.

The ERO has implemented a comprehensive resiliency framework with executive accountability, robust governance and Board-level oversight. Built around critical business services and their underlying dependencies, the framework is supported by enterprise-wide testing designed to strengthen preparedness and sustain consistent service delivery through disruption.

A dedicated Client Engagement team within the ERO supports this approach by enhancing transparency and communication around the continuous evolution of our resiliency posture, helping clients better understand how State Street prepares for and manages operational stress events.

Responding with confidence

Mostapha Tahiri
Chief Operating Officer

“Resiliency is a shared responsibility and a powerful advantage that strengthens how we operate every day. It contributes to uniting our global teams around a common goal to deliver consistent, high‑quality service for our clients. As risks evolve, our collective focus on resiliency enables us to anticipate challenges, respond with confidence, and reinforce the trust our clients and the market place in us.”

Our resiliency capabilities

As a trusted partner in highly interconnected global financial markets, we proactively monitor, test, and strengthen State Street’s resiliency posture to address evolving risks, including geopolitical events and increasing cyber threats.

Operational resiliency is our ability to continue delivering critical business services through disruption, remaining within defined impact tolerances while learning from operational incidents to strengthen future performance.

Our Enterprise Resiliency Program includes the following capabilities:

Resiliency by design
- Resiliency by design embeds resiliency into our digital-first, AI-enabled, client-centric operating model, with risk controls integrated into critical systems and processes to drive agility, productivity, and early identification of vulnerabilities.
Business continuity
- Business continuity enables the continuation of critical business functions and services within acceptable timeframes and capacities through advanced planning, documented recovery strategies, and regular testing.
Disaster recovery
- Disaster recovery focuses on restoring technology infrastructure, systems, applications, and data — including from cyber recovery vaults, as needed — following a disruption, supporting the resumption of critical business operations.
Incident and crisis management
- Our Incident and Crisis Management Framework provides a structured approach to identifying, assessing, escalating, coordinating, and resolving incidents that may disrupt operations, with the objective of minimizing impact, restoring normal activity, and maintaining effective communication throughout the incident lifecycle.
Cyber resiliency
- Cyber resiliency is our ability to prepare for, withstand, respond to, and recover from cyber incidents while continuing to deliver critical services and protect data, systems, and client trust.
Third-party risk management
- Third-party risk management encompasses the policies, standards, processes, and oversight used to identify, assess, monitor, and mitigate risks arising from relationships with external service providers, including outsourcing partners, market utilities, affiliates, and joint ventures.

Contact us

To learn more about State Street’s enterprise resiliency approach, please contact your client representative or complete the form below.

First Name Please enter correct first name

Last Name Please enter correct last name

Email Address Please enter correct email address

Organization Please enter correct organization

By checking this box, I consent to receive future research reports, publications, newsletters, event communications, announcements and other commercial electronic messages regarding products and services from State Street Corporation and its affiliates and subsidiaries (“State Street”). I also consent to the collection and use of my personal information shared on this form as outlined in State Street’s Marketing Disclosure Statement. I understand that my consent, above, does not apply to any communications from, or personal information I may share with, State Street Global Advisors. I understand that I can opt out of future communications at any time using the “Unsubscribe” feature available in all emails I receive from State Street.

Contact us

We are sorry - we can’t find the page you are looking for.

Enterprise Resiliency

Leading with resiliency

Enterprise Resiliency Program

Responding with confidence

Our resiliency capabilities

Contact us