and Risk Tolerance in an Effective ERM Program
|
|
- Philip Kennedy
- 8 years ago
- Views:
Transcription
1 The Roles of Risk Appetite and Risk Tolerance in an Effective ERM Program Eric Gerner, Risk Advisory Services Director Tuesday, July 10, 2012 General Information Share the webinar Ask a question Votes (polling questions) Rate (before you leave) Attachments (you can download today s presentation) Experis Tuesday, July 10,
2 Earning CPE Credit To receive 1 CPE credit for this Webinar, participants must: Attend the Webinar for at least 50 minutes on individual computers (one person per computer) Answer polling questions asked throughout the Webinar Experis Tuesday, July 10, Meet our Presenter Eric Gerner, Director of Risk Advisory Services Eric.Gerner@experis.com com (703) Experis Tuesday, July 10,
3 Agenda ERM Overview Overview of Risk Appetite and Tolerance Examples and Communication Alignment with Governance Experis Tuesday, July 10, What is Enterprise Risk Management (ERM)? A structured and disciplined approach that supports the alignment of strategy, processes, people, technology and knowledge as an organization evaluates and manages the uncertainties it faces in order to attain its goals Aligns corporate goals with associated risks Reduce potential loss and increase potential gain Transparency for Board of Directors and Management Integrate into the operations of the business Experis Tuesday, July 10,
4 Standard & Poor s view of ERM An approach to assure the firm is attending to all risks A set of expectations among management, shareholders and the board about which risks the firm will and will not take A set of methods for avoiding situations that might result in losses that would be outside the firm s tolerance A method to shift focus from cost / benefit to risk / reward A way to help fulfill a fundamental responsibility of a company s board and senior management A toolkit for trimming excess risks and a system for intelligently selecting which risks need trimming A language for communicating the firm s effort to maintain a manageable risk profile Experis Tuesday, July 10, Components of ERM Goals and Objectives Enterprise Risk Management Language Governance Process Experis Tuesday, July 10,
5 Risk Universe Structure at a Glance RISK Categories Compliance Financial Strategic Operational Corporate Level Compliance Financial Strategic Operational Operating Units Compliance Strategic Financial Operational Experis Tuesday, July 10, Alignment of Appetite and Tolerance Based on the organization s risk appetite specific tolerances are applied to achieve objective as risk, threat and potential negative result are managed Goals and objectives Risk Appetite Risk Tolerance Risk Tolerance Risk Tolerance Risk Tolerance Experis Tuesday, July 10,
6 Polling Question #1 Which of the following is NOT a component of ERM: A. Aligns corporate goals with associated risks B. Reduce potential loss and increase potential gain C. Transparency for Board of Directors and Management D. A substitute for management s judgment E. Integrate into the operations of the business Experis Tuesday, July 10, The ERM Maturity Model Develop internal buy-in and benefits awareness Perform Diagnostic of existing Risk Mngt program Develop Governance structure Develop Risk Universe and language Execute a Risk Assessment Develop priorities from Assessment Assign responsibility for respective risks Define Appetite and Tolerance Integrate into strategic initiatives Align with senior leadership on the key risks Initiate risk reporting and monitoring Leverage Risk Committee to review risks and the effectiveness of risk mitigation Evaluate risk tolerances and policies / authorities Expand risk reporting Integrate risk based decisions into mgmt s daily operations Integrate Internal Audit with ERM assessment and monitoring Adjust from cost/benefit to risk/reward decision process Leverage risk management to competitive advantages in the market Integrate continuous monitoring of key risk indicators into risk reporting Timeline Experis Tuesday, July 10,
7 COSO Definition of Risk Appetite The amount of risk on a broad level an organization is willing to accept in pursuit of value. It reflects the entity s risk management philosophy, and in turn influences the entity s culture and operating style Experis Tuesday, July 10, Risk Appetite Tone at the top risk perspective, set by the Board of Directors Is strategic and is related to the pursuit of organizational objectives Boundaries within which the company is willing to operate Define the willingness to engage in business activities with the associated types of risks The nature of the control structure associated with the management of the associated risks With this guidance, managers should have an enhanced perspective to interpret various high level and critical factors of risk to apply key business decisions Basis to apply judgment for the aggressiveness with which to pursue activities and objectives Experis Tuesday, July 10,
8 COSO Definition of Risk Tolerance The acceptable level of variation relative to achievement of a specific objective, and often is best measured in the same units as those used to measure the related objective Experis Tuesday, July 10, Risk Tolerance The means to operationalize the risk appetite throughout the organization Provide clarity on management s evaluation of its business activities and objectives towards its goals Tactical link of individual risks to the strategic goals Create the measureable components for monitoring the alignment of progress with the goals and objectives How do you determine them what are the assumptions for the range of acceptable performance built into the corporate goals Leading/lagging indicators Leverage from existing performance metrics Creates transparency for Board/Management monitoring Experis Tuesday, July 10,
9 Three Steps to Risk Appetite and Tolerance A. Develop B. Communicate C. Monitor and Update Experis Tuesday, July 10, A. Develop Provide effective communication of risk throughout the organization Applied to cover all categories of risk Must be preceded by discussions of strategy and objectives Develop through Facilitated discussions Discussions related to objectives and strategies Development of performance models Experis Tuesday, July 10,
10 Sample Risk Universe INTERNAL RISKS Operational Resource Strategic Client/Partner Change Order Client Expectations Client Indecision Client Interferences Client Management Turnover Client Response Time Errors in Client Information New Client Selection Process Schedule Available Bidding Time Completion Deadlines and Milestones Force Majeure Logic and Update Resource Management Control Warranty Quality Testing Design Constructability Plan Coordination Process/Technology Scope Completeness Execution Business Interruption Change Order Management Environment Logistics Site Safety Procurement Bondability Timeliness of Buy-Out Commodity Coordination Performance Sub Profile Workload Estimating Adjustments Price Quantity Trade Coverage Legal Contract Types Dispute Management Employment Contractual Misinterpretations Non-Performance Terms and Conditions Third Party Integrity Fraud Illegal Acts Program Development Feasibility Needs Analysis Financial Capital Availability Collectibility Interest Rate Investment Evaluation Liquidity Surety Tax People Adaptability Competencies Availability Critical Person Turnover Information Accuracy Measurement Alignment Security/Control Technology Availability Timeliness Usefulness Brand Erosion Business Model Communication Incentive Alignment Market Diversification Market Penetration Organization Structure Succession EXTERNAL RISKS Regulatory Environment Competitor Market Changes in Law Compliance Catastrophic Community Political Trade Labor Availability Key Relationships Core Competencies Demand ERM Strategies for Internal Audit 15 Experis Goals: Tuesday, 1. Financial July 10, Targets Market Mix/Penetration 3. Progress Towards Establishing Future Goals 4. Employee/Customer19 B. Communicate Risk Appetite Statement Means to communicate the company s willingness to engage in risk: Overall risk appetite with broad statements Risk appetite for each major class of organizational goals Risk appetite for different categories of risk Provide a lens through which all levels of management may obtain guidance on the willingness to accept the risks associated with business activities in which the company may engage to achieve our corporate goals and objectives A strategic statement and directly related to organizational objectives An integral part of corporate governance A guidance document regarding the allocation of resources A general directive on infrastructure/supporting activities in pursuit of organizational objectives Experis Tuesday, July 10,
11 Risk Appetite Qualitative view Universal Risk Universe - Key Categories Risk Threshold Control Structure Earnings volatility 4 5 Liquidity 3 4 Capital Requirements 1 2 Changing economic conditions 3 4 Customer satisfaction 1 2 Reputation 2 3 Information Security and accuracy 2 3 Regulatory Standing 1 2 Fraudulent/unethical activity 1 1 Employee turnover 3 4 Experis Tuesday, July 10, Risk Appetite example Experis Tuesday, July 10,
12 Risk Appetite example Quantitative view Capital Levels The Company will accept risks to the extent that it can maintain a capital level el of $ less than each of the three well capitalized regulatory capital requirements for financial institutions. Earnings Performance The Company will accept risks to the extent that it can maintain a Return on Equity within the top quartile of its peers. Liquidity The Company takes a conservative position with respect to liquidity, idit avoiding risks that t may reduce its secured liquidity to less than $ million. Asset Quality The Company will actively mitigate risks potentially leading to a net charge-off/total loans ratio exceeding %. Experis Tuesday, July 10, Risk Appetite example Quantitative view (continued) Growth The Company is open to investments and/or new products having a potential rate of return rn of greater than %, as long as there is low to moderate risk of loss during the first year of operation. Compliance The Company is committed to fulfilling all of its regulatory obligations, and will take all actions necessary to avoid any risk of non-compliance (zero tolerance). Reputation The Company does not accept any risks with even a moderate likelihood lih of creating loss of public, customer, stakeholder or employee confidence and/or adverse media coverage. Experis Tuesday, July 10,
13 C. Monitor and Update Means to review the application of risk appetite Accomplished through specifics identified with risk tolerances / performance metrics Incorporated into ERM reporting and dashboards Internal Audit can provide independent insight on the accuracy and alignment of tolerances Experis Tuesday, July 10, Polling Question #2 Which of the following is NOT a key component or Risk Appetite A. Established by the Board of Directors B. Can be communicated through a Risk Appetite Statement C. Can be either Qualitative or Quantitative D. Should be similar between all companies within a given industry Experis Tuesday, July 10,
14 Sample Risk Universe INTERNAL RISKS Operational Resource Strategic Client/Partner Change Order Client Expectations Client Indecision Client Interferences Client Management Turnover Client Response Time Errors in Client Information New Client Selection Process Schedule Available Bidding Time Completion Deadlines and Milestones Force Majeure Logic and Update Resource Management Control Warranty Quality Testing Design Constructability Plan Coordination Process/Technology Scope Completeness Execution Business Interruption Change Order Management Environment Logistics Site Safety Procurement Bondability Timeliness of Buy-Out Commodity Coordination Performance Sub Profile Workload Estimating Adjustments Price Quantity Trade Coverage Legal Contract Types Dispute Management Employment Contractual Misinterpretations Non-Performance Terms and Conditions Third Party Integrity Fraud Illegal Acts Program Development Feasibility Needs Analysis Financial Capital Availability Collectibility Interest Rate Investment Evaluation Liquidity Surety Tax People Adaptability Competencies Availability Critical Person Turnover Information Accuracy Measurement Alignment Security/Control Technology Availability Timeliness Usefulness Brand Erosion Business Model Communication Incentive Alignment Market Diversification Market Penetration Organization Structure Succession EXTERNAL RISKS Regulatory Environment Competitor Market Changes in Law Compliance Catastrophic Community Political Trade Labor Availability Key Relationships Core Competencies Demand ERM Strategies for Internal Audit 15 Experis Goals: Tuesday, 1. Financial July 10, Targets Market Mix/Penetration 3. Progress Towards Establishing Future Goals 4. Employee/Customer27 Inherent Risk - Top 10 by Group Risk Ranking Risk Classification Risk Category Risk Senior & Other Senior Other Resource Capital / Liquidity Capital access / availability / allocation Resource Capital / Liquidity Liquidity Resource People Morale / productivity Resource Capital / Liquidity Secondary marketing Operational Integrity Credit Policy Adherence Strategic Strategic New business evaluation Operational Integrity Tone at the Top Strategic Strategic Cost control / budget discipline Operational Deposit Base Management Attracting deposit accounts Strategic Strategic Brand reputation / recognition Strategic Strategic Media attention External Regulatory Compliance Cooperation with regulators 41 31` 47 Experis Tuesday, July 10,
15 Jan-01 Feb-01 Mar-01 Apr-01 May-01 Jun-01 Front Office Middle Office Ope rations Accounting IT 7/10/2012 Tolerances example: Executive Risk Report We would expect the audience would include executives such as: Board CEO COO CFO Senior managers Senior finance managers Risk management Bonding Staff Turnover % Bonding Utilization Versus Margin At Risk project profits Business Unit 8% 6% 4% 2% 0% M arg in o n Bonded Work Jan- 01 Feb- 01 Mar- 01 Apr- 01 May- 01 Staff turnover by Project/Dept Key Risk Indicators On Target Fundamental Value Trend Change orders 12 Schedule delays 90 Customer mix 76 Unbonded subs 60 Labor productivity 55 Risks by Business Area Business Unit Overall Customer Satisfaction 0% 20% 40% 60% 80% 100% 1 91% 2 42% 3 87% 4 82% 5 63% Safety Events By Geographical Region 11% 16% 5% Sample Commentary Staff turnover continues to require new untested staff on key projects ABC project has change orders that exceed owner s loan balance Employees say they don t know how to use existing systems 30% of projects have negative float on critical path Financial reports from Division don t tie to detail records 47% 21% Experis Tuesday, July 10, Governance Key Risk Questions Is there a process for reporting risk and performance? Does the organization structure support risk reporting? Reporting Strategy Is there a process for assessing risk and capabilities? Is Board advised of mission-critical risks? Are key uncertainties being managed? Are there assurances that our capabilities are effective? Is a risk-sensitive culture in place? Execution Tolerance and Policy Is opportunityseeking behavior balanced with risktaking? Are boundaries and limits adequately defined? Experis Tuesday, July 10,
16 Applying the Governance Board of Directors Review risk policy, risk management structure, establish risk appetite and tolerances Understand and oversee overall risk profile and risk management structure Approve risk strategies Oversight /Assessment of risk monitoring Risk Committee (Or existing Management Committee) Approve/oversee risk tolerances, initiatives, strategies Delegate and oversee authority & accountability for specific risk management Coordinate overall risk reporting and monitoring Risk Owners/Process Owners Manage risks in accordance with tolerances and priorities Assist Risk Committee with risk reporting Primary responsibility for identifying, managing and monitoring risks within their delegated authority Experis Tuesday, July 10, Polling Question #3 Responsibility for Monitoring and the performance of the company against the respective risk tolerances belongs to: A. The Board of Directors B. Senior Management C. Process Owners D. Risk Owners E. All of the above Experis Tuesday, July 10,
17 Questions Eric Gerner, Director of Risk Advisory Services Ei i (703) Experis Tuesday, July 10, About Experis Finance Experis Finance delivers innovative project solutions and professional resourcing services in the areas of risk advisory, tax and finance & accounting Visit experis.us/finance to download the latest white papers and compliance updates Experis Tuesday, July 10,
Improving Financial Performance, Governance and Compliance
Enterprise Risk Management Improving Financial Performance, Governance and Compliance Through A Structured Approach Experis Finance By: Fred E. Lutzeier National ERM Director Fred.Lutzeier@Experis.Com
More informationEnterprise Risk Management
Cayman Islands Society of Professional Accountants Enterprise Risk Management March 19, 2015 Dr. Sandra B. Richtermeyer, CPA, CMA What is Risk Management? Risk management is a process, effected by an entity's
More informationENTERPRISE RISK MANAGEMENT FRAMEWORK
ENTERPRISE RISK MANAGEMENT FRAMEWORK COVENANT HEALTH LEGAL & RISK MANAGEMENT CONTENTS 1.0 PURPOSE OF THE DOCUMENT... 3 2.0 INTRODUCTION AND OVERVIEW... 4 3.0 GOVERNANCE STRUCTURE AND ACCOUNTABILITY...
More informationEnterprise Risk Management in a Highly Uncertain World. A Presentation to the Government-University- Industry Research Roundtable June 20, 2012
Enterprise Risk Management in a Highly Uncertain World A Presentation to the Government-University- Industry Research Roundtable June 20, 2012 CRO Council Introduction Mission The North American CRO Council
More informationGuidance Note: Corporate Governance - Board of Directors. March 2015. Ce document est aussi disponible en français.
Guidance Note: Corporate Governance - Board of Directors March 2015 Ce document est aussi disponible en français. Applicability The Guidance Note: Corporate Governance - Board of Directors (the Guidance
More informationThe College of New Jersey Enterprise Risk Management and Higher Education For Discussion Purposes Only January 2012
The College of New Jersey Enterprise Risk Management and Higher Education For Discussion Purposes Only Agenda Introduction Basic program components Recent trends in higher education risk management Why
More informationLinking Risk Management to Business Strategy, Processes, Operations and Reporting
Linking Risk Management to Business Strategy, Processes, Operations and Reporting Financial Management Institute of Canada February 17 th, 2010 KPMG LLP Agenda 1. Leading Practice Risk Management Principles
More informationDeveloping an Effective Enterprise Risk Management Program
Developing an Effective Enterprise Risk Management Program Jay Brietz, CPA and CIA Senior Manager This material was used by Elliott Davis Decosimo during an oral presentation; it is not a complete record
More informationA Risk-Based Audit Strategy November 2006 Internal Audit Department
Mental Health Mental Retardation Authority of Harris County ENTERPRISE RISK MANAGEMENT A Framework For Assessing, Evaluating And Measuring Our Agency s Risk A Risk-Based Audit Strategy November 2006 Internal
More informationThe Role of the Board in Enterprise Risk Management
Enterprise Risk The Role of the Board in Enterprise Risk Management The board of directors plays an essential role in ensuring that an effective ERM program is in place. Governance, policy, and assurance
More informationRISK BASED AUDITING: A VALUE ADD PROPOSITION. Participant Guide
RISK BASED AUDITING: A VALUE ADD PROPOSITION Participant Guide About This Course About This Course Adding Value for Risk-based Auditing Seminar Description In this seminar, we will focus on: The foundation
More informationAPPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES
APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES Ethical Leadership and Corporate Citizenship The board should provide effective leadership based on ethical foundation. that the company
More informationEnterprise risk management: A pragmatic, four-phase implementation plan
Enterprise risk management: A pragmatic, four-phase implementation plan Prepared by: John Brackett, Managing Director, Risk Advisory Services, RSM McGladrey, Inc. 704.442.3820, john.brackett@mcgladrey.com
More informationSaldanha Bay Municipality. Risk Management Strategy. Inclusive of, framework, procedures and methodology
Inclusive of, framework, procedures and methodology Contents 1 Introduction 1 1.1 Legislative Framework and best practice 1 1.2 Purpose of Enterprise Risk Management 2 1.3 Scope and Applicability 3 1.4
More informationManaging Risk at Bank of America Corporation. Overview
Managing Risk at Bank of America Corporation Overview Risk is inherent in every material business activity that we undertake. Our business exposes us to strategic, credit, market, liquidity, compliance,
More informationRisk Assessment & Enterprise Risk Management
Risk Assessment & Enterprise Risk 1 Healthcare Corporate Governance Today s environment requires building a culture of risk awareness and management of risk across the organization, while formulating less
More informationBoard oversight of risk: Defining risk appetite in plain English
www.pwc.com/us/centerforboardgovernance Board oversight of risk: Defining risk appetite in plain English May 2014 Defining risk appetite in plain English Risk oversight continues to be top-of-mind for
More informationHow To Understand The Role Of An Internal Audit
Top Ten Issues facing Internal Auditing in the Future The IIA Dallas Chapter April 6, 2006 Presented by: David A. Richards, CIA, CPA President The Institute of Internal Auditors drichards@theiia.org 1
More informationUnderstanding Enterprise Risk Management. Presented by Dorothy Gjerdrum Arthur J Gallagher
Understanding Enterprise Risk Management Presented by Dorothy Gjerdrum Arthur J Gallagher Learning Objectives Understand the components of a wellrun ERM program Review scope and process Explore the role
More informationERM Program. Enterprise Risk Management Guideline
ERM Program Enterprise Management Guideline Table of Contents PREAMBLE... 2 When should I refer to this Guideline?... 3 Why do we need a Guideline?... 4 How do I use this Guideline?... 4 Who is responsible
More informationINSURANCE RATING METHODOLOGY
INSURANCE RATING METHODOLOGY The primary function of PACRA is to evaluate the capacity and willingness of an entity / issuer to honor its financial obligations. Our ratings reflect an independent, professional
More informationGovernance Guideline SEPTEMBER 2013 BC CREDIT UNIONS. www.fic.gov.bc.ca
Governance Guideline SEPTEMBER 2013 BC CREDIT UNIONS www.fic.gov.bc.ca INTRODUCTION The Financial Institutions Commission 1 (FICOM) holds the Board of Directors 2 (board) accountable for the stewardship
More informationAPPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014
WOOLWORTHS HOLDINGS LIMITED CORPORATE GOVERNANCE PRINCIPLES 2014 CORPORATE GOVERNANCE PRINCIPLES 2014 CORPORATE GOVERNANCE PRINCIPLES 2014 This table is a useful reference to each of the King III principles
More informationPlacing a Value on Enterprise Risk Management ADVISORY
Placing a Value on Enterprise Risk Management ADVISORY Placing a Value on Enterprise Risk Management 1 In turbulent economic times, the case for investing in an enterprise risk management (ERM) program
More informationUnderstanding and articulating risk appetite
Understanding and articulating risk appetite advisory Understanding and articulating risk appetite Understanding and articulating risk appetite When risk appetite is properly understood and clearly defined,
More informationGet More Out of Your Risk Assessment. Austin Chapter of the IIA
Get More Out of Your Risk Assessment Austin Chapter of the IIA Speakers Alyssa G. Martin, CPA Dallas Executive Partner, Advisory Services 25 years of public accounting experience, with a practice emphasis
More informationTransforming risk management into a competitive advantage kpmg.com
INSURANCE RISK MANAGEMENT ADVISORY SOLUTIONS Transforming risk management into a competitive advantage kpmg.com 2 Transforming risk management into a competitive advantage Assessing risk. Building value.
More informationDepartment of Veterans Affairs VA Directive 0054. VA Enterprise Risk Management (ERM)
Department of Veterans Affairs VA Directive 0054 Washington, DC 20420 Transmittal Sheet April 8, 2014 VA Enterprise Risk Management (ERM) 1. REASON FOR ISSUE: This directive provides guidelines to help
More informationPrinciples for An. Effective Risk Appetite Framework
Principles for An Effective Risk Appetite Framework 18 November 2013 Table of Contents Page I. Introduction... 1 II. Key definitions... 2 III. Principles... 3 1. Risk appetite framework... 3 1.1 An effective
More informationIn accordance with risk management best practices, below describes the standard process for enterprise risk management (ERM), including:
Enterprise Risk Management Process and Procedures Scope In accordance with risk management best practices, below describes the standard process for enterprise risk management (ERM), including: Risk identification
More informationTying It All Together: Practical ERM Integration. Richard Scanlon Vice President Enterprise Risk Management CIGNA Corporation
Tying It All Together: Practical ERM Integration Richard Scanlon Vice President Enterprise Risk Management CIGNA Corporation November 16, 2007 1 Agenda Basis for ERM Integration ERM Objectives ERM Focus
More informationEnterprise Risk Management Update Executive Summary December 2010
Enterprise Risk Management Update Executive Summary December 2010 Risk is integral in the pursuit of improvement. Risk, in general, is seldom avoidable and cannot always be mitigated. Accordingly, risk
More informationSample Financial institution Risk Management Policy 2011
Sample Financial institution Risk Management Policy 2011 1 Contents Risk Management Program...2 Internal Control and Risk Management Diagram... 2 General Control Environment... 2 Specific Internal Control
More information11/12/2013. Role of the Board. Risk Appetite. Strategy, Planning and Performance. Risk Governance Framework. Assembling an effective team
Role of the Board Risk Appetite Strategy, Planning and Performance Risk Governance Framework Assembling an effective team Role of the CEO Accountability and Disclosure 1 Board members should act on a fully
More informationStrategic Planning Version 1.0 March 2013
Introduction Strategic planning is the process of establishing goals and developing a roadmap for achieving those goals. Sound strategic planning is essential for the success of each of the regulated entities
More informationTHE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK
THE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK ACCOUNTABLE SIGNATURE AUTHORISED for implementation SIGNATURE On behalf of Chief Executive Officer SAHRA Council Date Date
More informationRISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY
RISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY PRESENTED BY: LEN WIATR, CHIEF RISK OFFICER Len s Risk Management Philosophy Build a
More informationThe Business Continuity Maturity Continuum
The Business Continuity Maturity Continuum Nick Benvenuto & Brian Zawada Protiviti Inc. 2004 Protiviti Inc. EOE Agenda Terminology Risk Management Infrastructure Discussion A Proposed Continuity Maturity
More informationMatthew E. Breecher Breecher & Company PC November 12, 2008
Applying COSO s Enterprise Risk Management Integrated Framework Matthew E. Breecher Breecher & Company PC November 12, 2008 The basic outline for this presentation was provided by: Objectives for the session:
More informationInsurance Enterprise Risk Management Practices
A PUBLIC POLICY PRACTICE NOTE EXPOSURE DRAFT Insurance Enterprise Risk Management Practices March 2013 Developed by the ERM Committee of the American Academy of Actuaries The American Academy of Actuaries
More informationRisk Management Policy Adopted by:
Risk Management Policy Adopted by: Infigen Energy Limited Infigen Energy (Bermuda) Limited Infigen Energy RE Limited in its capacity as Responsible Entity of Infigen Energy Trust Adopted: 17 December 2009
More informationClarius Group Risk Management Policy and Framework
1. Introduction Clarius Group Risk Management Policy and Framework 1.1 Definition Risk is the chance of something happening that will have an impact on objectives. Risk provides the opportunity (upside)
More informationIFAD Policy on Enterprise Risk Management
Document: EB 2008/94/R.4 Agenda: 5 Date: 6 August 2008 Distribution: Public Original: English E IFAD Policy on Enterprise Risk Management Executive Board Ninety-fourth Session Rome, 10-11 September 2008
More informationMoving Forward with IT Governance and COBIT
Moving Forward with IT Governance and COBIT Los Angeles ISACA COBIT User Group Tuesday 27, March 2007 IT GRC Questions from the CIO Today s discussion focuses on the typical challenges facing the CIO around
More informationRisks and uncertainties
Risks and uncertainties Our risk management approach We have a well-established risk management methodology which we use throughout the business to allow us to identify and manage the principal risks that
More informationIntegrated Risk Management:
Integrated Risk Management: A Framework for Fraser Health For further information contact: Integrated Risk Management Fraser Health Corporate Office 300, 10334 152A Street Surrey, BC V3R 8T4 Phone: (604)
More informationAdministrative Guidelines on the Internal Control Framework and Internal Audit Standards
Administrative Guidelines on the Internal Control Framework and Internal Audit Standards GCF/B.09/18 18 February 2015 Meeting of the Board 24 26 March 2015 Songdo, Republic of Korea Agenda item 24 Page
More informationEnterprise Risk Management
Enterprise Risk Management The Basics or ERM 101 1 Enterprise Risk Management Enterprise risk management deals with risks and opportunities affecting value creation or preservation, defined as: COSO s
More informationSAI GLOBAL LIMITED Risk Management Policy
SAI GLOBAL LIMITED Risk Management Policy SAI Global Ltd ABN 67050611642 Last Updated: February 2012 Contents 1. Risk Management... 3 2. Policy... 3 3. Risk Management Philosophy... 3 4. Risk Appetite...
More informationHand IN Hand: Balanced Scorecards
ANNUAL CONFERENCE T O P I C Risk Management WORKING Hand IN Hand: Balanced Scorecards AND Enterprise Risk Management B Y M ARK B EASLEY, CPA; A L C HEN; K AREN N UNEZ, CMA; AND L ORRAINE W RIGHT Recent
More informationCapital Projects and Construction: Building in Risk Management and Project Controls
Capital Projects and Construction: Building in Risk Management and Project Controls Making Every Dollar Count The global economic crisis sparked by the subprime mortgage debacle, the collapse of the securitized
More informationTHE ROLE OF FINANCE AND ACCOUNTING IN ENTERPRISE RISK MANAGEMENT
THE ROLE OF FINANCE AND ACCOUNTING IN ENTERPRISE RISK MANAGEMENT Let me begin by thanking Baruch College for giving me the opportunity to present this year s prestigious Emanuel Saxe Lecture in Accounting.
More informationThe New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework
The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework Dorothy Gjerdrum, ARM-P, Chair of the ISO 31000 US TAG and Executive Director,
More informationFraud Prevention and Deterrence
Fraud Prevention and Deterrence Fraud Risk Assessment 2016 Association of Certified Fraud Examiners, Inc. What Is Fraud Risk? The vulnerability that an organization faces from individuals capable of combining
More informationIRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS
IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS 1 Module 1: Principles of Risk and Risk Management Module aims The aim of this module is to provide an introduction to the principles and concepts of risk and
More informationEnterprise Risk Management: COSO, New COSO, ISO 31000. Review of ERM
Enterprise Risk Management: COSO, New COSO, Dr. Hugh Van Seaton, Ed. D., CSSGB, CGMA, CPA Review of ERM COSO a process, effected by an entity's board of directors, management and other personnel, applied
More informationRisk, Risk Assessments and Risk Management. Christopher Bowler CPA, CISA August 10, 2015
+ Risk, Risk Assessments and Risk Management Christopher Bowler CPA, CISA August 10, 2015 + Agenda A Few Thoughts Fundamentals of Risk Assessments Fundamentals of Risk Management Assessments vs. Management
More informationOffice of the Auditor General AUDIT OF IT GOVERNANCE. Tabled at Audit Committee March 12, 2015
Office of the Auditor General AUDIT OF IT GOVERNANCE Tabled at Audit Committee March 12, 2015 This page has intentionally been left blank Table of Contents Executive Summary... 1 Introduction... 1 Background...
More informationNational Conference on Public Employee Retirement Systems
National Conference on Public Employee Retirement Systems Best Governance Practices for Public Retirement Systems Introduction Increasingly, public employee retirement systems are implementing leading
More informationPOL ENTERPRISE RISK MANAGEMENT SC51. Executive Services Department BUSINESS UNIT: Executive Support Services SERVICE UNIT:
POL ENTERPRISE RISK MANAGEMENT SC51 POLICY CODE: SC51 DIRECTORATE: Executive Services Department BUSINESS UNIT: Executive Support Services SERVICE UNIT: Executive Support Services RESPONSIBLE OFFICER:
More informationConsumer Goods and Services
Accenture Risk Management Industry Report Consumer Goods and Services 2011 Global Risk Management Point of View Consumer Goods and Services 2011 Global Risk Management Point of View Consumer Goods and
More informationCommodity Price Risk Management (CPRM) - Trends and Challenges for Corporates
Advisory Commodity Price Risk Management (CPRM) - Trends and Challenges for Corporates May 2014 Agenda Industry Challenges CPRM A Business Case CPRM Maturity Model CPRM Trends What Should Companies Do?
More information15 December 2015. General Risk Control and Management Policy
15 December 2015 General Risk Control and Management Policy Content 1. Purpose 3 2. Scope 3 3. Risk Factors - Definitions 3 4. Basic Principles 4 5. Comprehensive Risk Control and Management System 4 6.
More informationTHE GOVERNANCE OF RISK MANAGEMENT. Session 5
THE GOVERNANCE OF RISK MANAGEMENT Session 5 Polling Question: Who is primarily responsible for risk governance in any organization? 0% A. The board or board risk committee (if applicable) B. The CRO 0%
More informationSan Francisco International Airport Enterprise Risk Management
San Francisco International Airport Enterprise Risk Management Mike Warren Airport Risk Manager WHAT IS ENTERPRISE RISK MANAGEMENT (ERM) It is a comprehensive program that focuses on a continuous and sustainable
More informationSTANDARDS OF SOUND BUSINESS AND FINANCIAL PRACTICES. ENTERPRISE RISK MANAGEMENT Framework
STANDARDS OF SOUND BUSINESS AND FINANCIAL PRACTICES ENTERPRISE RISK MANAGEMENT Framework September 2011 Notice This document is intended as a reference tool to assist Ontario credit unions to develop an
More informationRisk Management Policy and Framework
Risk Management Policy and Framework December 2014 phone 1300 360 605 08 89589500 email info@centraldesert.nt.gov.au location 1Bagot Street Alice Springs NT 0870 post PO Box 2257 Alice Springs NT 0871
More informationSOL PLAATJE MUNICIPALITY ENTERPRISE RISK MANAGEMENT FRAMEWORK AND POLICY
SOL PLAATJE MUNICIPALITY ENTERPRISE RISK MANAGEMENT FRAMEWORK AND POLICY Prepared by: SOL PLAATJE MUNICIPALITY RISK MANAGEMENT UNIT AND Consolidated Advisory Services This document should be read in conjunction
More informationRisk Management Policy
Risk Management Policy Responsible Officer Author Ben Bennett, Business Planning & Resources Director Julian Lewis, Governance Manager Date effective from December 2008 Date last amended December 2012
More informationUniversity of St. Gallen Law School Law and Economics Research Paper Series. Working Paper No. 2008-19 June 2007
University of St. Gallen Law School Law and Economics Research Paper Series Working Paper No. 2008-19 June 2007 Enterprise Risk Management A View from the Insurance Industry Wolfgang Errath and Andreas
More informationThe Essentials of Enterprise Risk Management. Steven C. Tourek, Senior Vice President, General Counsel & Secretary, The Marvin Companies
The Essentials of Enterprise Risk Management Steven C. Tourek, Senior Vice President, General Counsel & Secretary, The Marvin Companies Introduction How should an organization think about the management
More informationCOSO Internal Control Integrated Framework (2013)
COSO Internal Control Integrated Framework (2013) The Committee of Sponsoring Organizations of the Treadway Commission (COSO) released its updated Internal Control Integrated Framework (2013 Framework)
More informationGovernance and Risk Management in the Public Sector. Fernando A. Fernandez Inter-American Development Bank (202) 623-1430 e-mail: fernandof@iadb.
Governance and Risk Management in the Public Sector Fernando A. Fernandez Inter-American Development Bank (202) 623-1430 e-mail: fernandof@iadb.org 1 Agenda Governance, why is it important? Compliance
More informationRisk committee performance evaluation
Risk committee performance evaluation While there is currently not a legal or regulatory requirement for board risk committees to complete a performance evaluation, King III recommends regular performance
More informationRisk Management Policy
Risk Management Policy June 2015 1 2 Contents 1. Policy Objectives and Background... 4 1.1. Policy Background... 4 1.2. Policy Objective... 4 1.3. Policy Sponsor and Maintenance... 4 2. Risk Types and
More informationCapital Adequacy: Advanced Measurement Approaches to Operational Risk
Prudential Standard APS 115 Capital Adequacy: Advanced Measurement Approaches to Operational Risk Objective and key requirements of this Prudential Standard This Prudential Standard sets out the requirements
More informationAnalyzing Risks in Healthcare. February 12, 2014
Analyzing s in Healthcare February 12, 2014 1 Content What is Enterprise Management (ERM) ERM Benefits ERM Standards / ISO 31000:2009 ERM Process Register ERM Governance Model s Q&A 2 What is Enterprise
More informationEstablish Collaborative Strategies to Better Manage a Global Vendor Network Devise a Proper Float Plan
Establish Collaborative Strategies to Better Manage a Global Vendor Network Devise a Proper Float Plan CBI s Biopharmaceutical Forum on Clinical and Commercial Global Supply Chain Excellence Sandy Onorato
More informationOperational Risk Management - The Next Frontier The Risk Management Association (RMA)
Operational Risk Management - The Next Frontier The Risk Management Association (RMA) Operational risk is not new. In fact, it is the first risk that banks must manage, even before they make their first
More informationSuccessfully identifying, assessing and managing risks for stakeholders
Introduction Names like Enron, Worldcom, Barings Bank and Menu Foods are household names but unfortunately as examples of what can go wrong. With these recent high profile business failures, people have
More informationScenario Analysis Principles and Practices in the Insurance Industry
North American CRO Council Scenario Analysis Principles and Practices in the Insurance Industry 2013 North American CRO Council Incorporated chairperson@crocouncil.org December 2013 Acknowledgement The
More informationEnterprise Risk Management in Colleges and Universities
Enterprise Risk Management in Colleges and Universities Cherry Bekaert & Holland, L.L.P. Neal Beggan, CISA, CRISC Shane Hester, CPA, CISA Cherry, Bekaert & Holland, L.L.P. The Firm of Choice. 1 Cherry,
More informationENTERPRISE RISK MANAGEMENT FOR BANKS
ENTERPRISE RISK MANAGEMENT FOR BANKS Seshagiri Rao Vaidyula, Senior Manager, Governance, Risk and Compliance Jayaprakash Kavala, Consultant, Banking and Financial Services 1 www.wipro.com/industryresearch
More informationExcerpt from the ACGR on Enterprise Risk Management
Excerpt from the ACGR on Enterprise Risk Management F. RISK MANAGEMENT SYSTEM 1) Disclose the following: (a) Overall risk management philosophy of the company; Objectives and Policies The Group has significant
More informationEBA-GL-2015-02. 23 July 2015. Guidelines. on the minimum list of qualitative and quantitative recovery plan indicators
EBA-GL-2015-02 23 July 2015 Guidelines on the minimum list of qualitative and quantitative recovery plan indicators Contents EBA Guidelines on the minimum list of qualitative and quantitative recovery
More informationORACLE ENTERPRISE GOVERNANCE, RISK, AND COMPLIANCE MANAGER FUSION EDITION
ORACLE ENTERPRISE GOVERNANCE, RISK, AND COMPLIANCE MANAGER FUSION EDITION KEY FEATURES AND BENEFITS Manage multiple GRC initiatives on a single consolidated platform Support unique areas of operation with
More informationDeriving Value from ORSA. Board Perspective
Deriving Value from ORSA Board Perspective April 2015 1 This paper has been produced by the Joint Own Risk Solvency Assessment (ORSA) Subcommittee of the Insurance Regulation Committee and the Enterprise
More informationAn Effective Approach to Transition from Risk Assessment to Enterprise Risk Management
Bridgework: An Effective Approach to Transition from Risk Assessment to Enterprise Risk Management @Copyright Cura Software. All rights reserved. No part of this document may be transmitted or copied without
More informationCSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting www.corostrandberg.
Introduction CSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting www.corostrandberg.com June 2015 Companies which adopt CSR or sustainability 1
More informationUniversity of Edinburgh Risk Policy and Risk Appetite
University of Edinburgh Risk Policy and Risk Appetite 1. Pushing the boundaries of knowledge, innovating, and implementing strategic developments will always have risks. Effective risk management increases
More informationIntegration of Risk Management and Internal Audit. Chartered Institute of Management Accountants, New Zealand
Integration of Risk Management and Internal Audit Chartered Institute of Management Accountants, New Zealand Contents Understanding the three lines of defense governance model What is Risk? Risk Management
More informationBoard of Directors Meeting 12/04/2010. Operational Risk Management Charter
Board of Directors Meeting 12/04/2010 Document approved Operational Risk Management Charter Table of contents A. INTRODUCTION...3 I. Background...3 II. Purpose and Scope...3 III. Definitions...3 B. GOVERNANCE...4
More informationA Primer for Investment Trustees (a summary)
A Primer for Investment Trustees (a summary) Jeffrey V. Bailey, CFA, Jesse L. Phillips, CFA, and Thomas M. Richards, CFA Investment trustees oversee the investments and investment process for a variety
More informationSample risk committee charter
Sample risk committee charter 1 Next This sample risk committee charter is based on leading practices observed by Deloitte in the analysis of a variety of materials. It is important to note that the Risk
More informationKey Components of Enterprise Risk Management (ERM) Framework
Key Components of Enterprise Risk Management (ERM) Framework Talha Karim May 7, 2014 2:00 pm 3:00 pm Objectives Introduction ERM Components ERM Implementation ERM Challenges 2 Introduction An ERM Framework
More informationTable of Contents... 1. Chapter 1 Introduction... 5. 1.1 Goals & Objectives... 5 1.2 Required Review... 5 1.3 Applicability...
... 1 Chapter 1 Introduction... 5 1.1 Goals & Objectives... 5 1.2 Required Review... 5 1.3 Applicability... 5 Chapter 2 Company Culture... 6 Chapter 3 Risk Management Governance... 7 3.1 Board of Directors...
More informationTapping the benefits of business analytics and optimization
IBM Sales and Distribution Chemicals and Petroleum White Paper Tapping the benefits of business analytics and optimization A rich source of intelligence for the chemicals and petroleum industries 2 Tapping
More informationHow to successfully manage your mega-project
How to successfully manage your mega-project Part I Early planning and organizing for success kpmg.com 2 Building, Construction & Real Estate How to successfully manage your mega-project A three-part series
More informationHow to Develop Successful Enterprise Risk and Vendor Management Programs
Project Management Institute New York City Chapter January 2014 Chapter Meeting How to Develop Successful Enterprise Risk and Vendor Management Programs Christina S. Kite Senior Vice President Corporate
More informationENTERPRISE RISK MANAGEMENT AN OVERVIEW. November 2011
ENTERPRISE RISK MANAGEMENT AN OVERVIEW November 2011 Overview Overview of Enterprise Risk Management (ERM) Risk Assessment Process Identifying Business Risks Consideration of Impact and Likelihood Soliciting
More information