An internal auditor at a large bank is reviewing the bank's economic capital framework to ensure that it meets best practices. The auditor identifies deficiencies in the bank's governance framework as well as the process used to determine the firm-wide economic capital and asks the CRO to suggest corrective actions that conform with best practices. Which of the following actions should the CRO recommend?