Skip to main content
Back to index
/01_MRM_PLATFORM // 2023 — Present
MRMGovernanceAI / MLDesign Systems

Model Risk Management at Fannie Mae

Enterprise model lifecycle governance, regulator-aligned and audit-ready

Model Risk Management at Fannie Mae
Client
Fannie Mae
Role
Lead UX Designer · Functional Platform Owner
Duration
24+ months
Impact
Enterprise MRM · audit-ready
/02The brief

Problem

At Fannie Mae, tracking a model's full lifecycle meant hunting through spreadsheets, SharePoint folders, and whatever a teammate remembered. Registration, version history, validation checks, findings, sign-offs, and renewals were scattered across disconnected tools — so when regulators asked whether a model was safe, compliant, and traceable, no one could prove it easily. MUSE was designed to bring the entire model lifecycle into one platform where every action is recorded, every role has clear permissions, and auditors can follow the trail from intake to retirement without digging through emails or notebooks.

/03Background

What is a model lifecycle?

In banking, a model is any system that uses math or data to make decisions that affect customers or the business — like predicting loan defaults, setting interest rates, or detecting fraud. Because these decisions can have serious consequences, regulators require banks to prove every model is sound, properly tested, and used only in ways it was approved for. A model's lifecycle starts when someone registers it, then it goes through independent validation, gets activated for use, and must be revalidated regularly until it is retired. If a model changes, fails a test, or is used outside its approved scope, that needs to be tracked and fixed — with evidence an auditor can follow.

Model lifecycle
01
Registration
Model is created and documented
02
Validation
Independently tested for soundness
03
Activation
Approved for production use
04
Revalidation
Periodic re-testing & monitoring
05
Retirement
Decommissioned with audit trail

At any stage, findings, changes, or scope issues loop back into validation — every transition leaves an auditable trail.

/04How we built it

Process

01
/STEP_01

Policy → workflow translation

Worked with MRM Oversight, Model Owners, Controllers, and Internal Audit to translate enterprise MRM policy and supervisory expectations (SR 11-7-aligned) into concrete, screen-level workflows. Mapped the governance hierarchy — Enterprise MRM → MO → AO/TO → MC → MD/PR → LMU — into the platform's role model, permissions, and approval routing.

02
/STEP_02

Model lifecycle architecture

Designed end-to-end flows for model creation, versioning, validation execution and scheduling, findings remediation, attestations, model associations, approved usages, and adjustments. Every state transition is logged, every role has a clear queue, and every artifact carries the evidence an examiner needs.

03
/STEP_03

Segregation of duties by design

Embedded clear accountability into the UI itself — MD builds, PR independently reviews, MC controls the lifecycle, MO owns business risk, AO/TO own application and infrastructure, LMU applies outputs to decisions. The platform refuses to let one role do another's job, which is what auditors look for first.

04
/STEP_04

DevJoy — AI training on top of MUSE

Designed DevJoy so model developers can train and iterate banking models without leaving governance behind. Training runs inherit the parent model's controls, assumptions, and approved-usage scope; versioning, validation schedules, and findings update automatically as work moves forward.

05
/STEP_05

Audit & examination readiness

Made traceability the default, not a report. Every model surfaces its version history, validation status, open findings, attestations, associations, and usage map on one screen — so independent validation, internal audit, and regulatory reviews can be answered with a link instead of a binder.

/05The result

Outcomes

/HEADLINE_OUTCOME
 
Enterprise system of record for the full model lifecycle
/02
 
Governance roles with segregation of duties enforced in-product
/03
 
Models with traceable version, validation & attestation history
/04
 
Sustained platform ownership across MRM, audit & business stakeholders
1Enterprise system of record for the full model lifecycle7Governance roles with segregation of duties enforced in-product100%Models with traceable version, validation & attestation history24 moSustained platform ownership across MRM, audit & business stakeholders
1Enterprise system of record for the full model lifecycle7Governance roles with segregation of duties enforced in-product100%Models with traceable version, validation & attestation history24 moSustained platform ownership across MRM, audit & business stakeholders
1Enterprise system of record for the full model lifecycle7Governance roles with segregation of duties enforced in-product100%Models with traceable version, validation & attestation history24 moSustained platform ownership across MRM, audit & business stakeholders
1Enterprise system of record for the full model lifecycle7Governance roles with segregation of duties enforced in-product100%Models with traceable version, validation & attestation history24 moSustained platform ownership across MRM, audit & business stakeholders
/06Click-through prototype

Full design walkthrough

Auto-advancing prototype of every screen in the model lifecycle, in order — from registration intake through activation and reactivation. Pause, scrub, or step frame by frame.

Frame 1Frame 2Frame 3Frame 4Frame 5Frame 6Frame 7Frame 8Frame 9Frame 10Frame 11Frame 12Frame 13Frame 14Frame 15Frame 16Frame 17Frame 18Frame 19Frame 20Frame 21Frame 22Frame 23Frame 24Frame 25Frame 26Frame 27Frame 28Frame 29Frame 30Frame 31Frame 32Frame 33
01 / 33
Prototype · 33 screens · auto-advance