The appropriate response would be to permanently revoke the licences it needs to operate, ditto for all directors and senior office holders for their right to work in the finance industry and make clear this will be mandatory for any other bank that has the same experience. And just to avoid avoidance - failure to report such breaches within 4 hours will be a criminal offence for all directors and senior office holders.
That should spread the word that this stuff has to be taken seriously, day by day, day after day.