APM Risk SiG Conference 26 th October 2006 Reporting risks to the board
|
|
- Gervais Barnett
- 6 years ago
- Views:
Transcription
1 APM Risk SiG Conference 26 th October 2006 Reporting risks to the board Purpose The purpose of this paper is to summarise the key points from the various presentations and knowledge sharing session held at the October meeting of the Risk SiG. It should provide a reminder for those at the event of the main issues, tips and suggestions for reporting risks to the board. It may also be useful for anyone not present who has an interest in this topic. This paper should be read in conjunction with the presentations which are available for viewing at ategory=75&uid=&id=525 Scope The target audience for this paper is predominately project and programme managers. However others involved in operational or business risk would find many of the ideas useful. Introduction The presenters were asked to provide their views on reporting risks to the board. They were given a brief which highlighted 4 topics for consideration and were asked to reflect on those areas from as many perspectives as possible. After the main presentations the delegates split into 4 Knowledge Sharing Network (KSN) groups to discuss each topic. Whilst the body of this paper maintains that structure, many of the key points were identified several times in different areas. For simplicity each key point has been placed in its predominant section. Reporting Risks to the Board (2) Page 1 of 6 Version 1.0 6/03/2007
2 Governance There were 5 key points identified in this topic: Bodies It is necessary to have a clear understanding of which parts of the organisation are involved in the risk process. Both BT and Rolls Royce have a clear framework diagram that explained the groups involved and also how information flowed between them. Governance of ERM Programme 5 Risk Owner / Risk Champion Risk Committee DoR (ERM) Risk point of Contact Risk Steering Committee (min 2 times a year) Tool (ARM) Process Risk Executive (monthly) ARM Steering Committee Quantification Steering Committee * Risk Process Council (quarterly) Risk Stakeholder Meeting (monthly) Communication of status Change Control Board * Internal only at present Programme Delivery Teams Risk Systems & PoC 1-1s (fortnightly) Assurance Sector Review Boards Stakeholders Stakeholders a common theme is to ensure that stakeholders are identified and engaged as they offer a different perspective and a broader range of possible impacts. Some stakeholders will identify strategic risks which may need to be managed at the Project Sponsor level. Any effective risk process should provide an identification of the widest range of risks and should have a contribution from stakeholders. Appetite One important prerequisite for helping to determine the level of detail required for risk reporting is to know the Board s risk appetite. As Protiviti explained establish the big rules including appetite and ask are the risks undertaken consistent with the organisation s risk appetite? Culture The term culture towards risk management is used a lot but without much detailed definition. For many it is the attitude to risk combined with the risk appetite that generates a culture. Clearly every individual on a board will have a different attitude to risk but collectively the board will promote a particular risk culture either consciously or subconsciously, tuning in to that culture is very important, especially if you want to try and change it. Common Language When reporting risks to the board you must ensure that the terminology used will be clearly understood by the recipients. This implies that a common risk language be used across the business and this can be defined as part of the risk policy or the risk standards. There were two additional points raised during the governance KSN. The first was how to convince the Board that they own governance of risks. A comment was made that it is active ownership that is needed. One suggestion for supporting the board was to offer a Masterclass in risk management. It was also recommended that the board members be approached individually. Some boards may not fully understand project and risk management but can t admit it. One suggestion for this is to get them to actively manage a single risk with support. Reporting Risks to the Board (2) Page 2 of 6 Version 1.0 6/03/2007
3 Strategic Brand Business Model Business Portfolio Intellectual Property Location Marketplace Organizational Structure Planning Product Life Cycle Resource Allocation Copyright 2004 Marsh U.S.A Business Interruption Environmental Product/Service Failure Change Response Health and Safety Product/Service Pricing Compliance Inventory Management Real Estate Contract Commitment Knowledge Management Relationship Management Customer Satisfaction Measurement Sourcing Cycle Time Partnering Supply Chain Delivery Channel Physical Security Strategy Implementation Distribution Product Development Transaction Processing Efficiency Management Information Accounting Information Budgeting and Forecasting Completeness/Accuracy Investment Evaluation Pension Fund Regulatory Reporting Taxation Product/Service Liability Accountability Change Readiness Communications Competencies/Skills Empowerment Employment Law Violation Hiring/ Retention Leadership EXTERNAL Capital Availability Economy Legal Shareholder Relations Terrorism Competitor Financial Markets Natural Hazard/Catastrophe Social Responsibility Customer Needs Industry Regulatory Sovereign/Political INTERNAL Operational Process Human Resources Integrity Technology Outsourcing Performance Incentives Succession Planning Training/Development Conflict of Interest Employee Fraud Ethical Decision Making Illegal Acts Management Fraud Third-Party Fraud Unauthorized Acts Access Availability Capacity Data Integrity e-commerce Information Security Infrastructure Relevance Reliability Technological Innovation Cash Flow Collateral Commodities Concentration Counterparty Credit Default Equity Financial Instruments Foreign Exchange Interest Rate Liquidity Financial Modeling Opportunity Cost 11 Receiving information There were 3 key points identified in this topic. This topic was slightly modified during the analysis to include any process related suggestions. Process frequency Everyone agreed that there should be a defined risk process, however the frequency of reporting to the board was dependent on the industry and the organisation but should be at least every 6 months with some form of escalation in place for any new emerging or rapidly changing risks. Protiviti explained this clearly in their presentation: Enterprise-wide Reporting Capture Risk Information from Multiple Sources Senior Management Middle Management Employees Environment Industry Competitors Consultants Aggregate Risk Information Business Risk Inventory SM Analyse and Summarise Risks Cross-functional leaders and core resources. Aggregate data Prioritise risks Monitor action Prioritise Key Risks Coordinated, Informed Decision-making Validate Risk Profile communicating key risks to Executive Management and the Board. Board Reporting Aware of all key risks and the necessary action to manage/mitigate the risks. Report Risk Information Utilise reporting process to communicate key risk information to risk sources for accountability, responsibility and action. Frequency of Reporting The majority of Boards meet 9~12 times per year and run for 3~4 hours The frequency with which you should Risk Report to the Board is dependent on: Volatility of the company and industry; Risk appetite of the company; Occurrence of significant risk event; and Identification of potential significant risk event. As a general guide: Formal reporting should occur quarterly Ad-hoc reporting channels should be established and used as necessary to report risks of strategic importance Reporting Risks to the Board (2) Page 3 of 6 Version 1.0 6/03/2007
4 Top down and bottom up Must undertake bottom-up analysis and flow of risks as well as top-down. This was mentioned by most presenters and is succinctly demonstrated by this slide Embedded Risk Management 6 Risk Register Hierarchy IDENTIFIED RISKS Corporate Sector Business IMPLEMENTED ACTIONS Project The bottom-up is, of course, to capture those big or common risks. The top-down is to ensure that the lower levels understand the risks which the higher levels are managing allowing them to help and see that their big risks haven t been discounted. HVR explained Strategic risks help structure risk identification at the lower level. You should be able to relate tactical risks to strategic risks. Concise top level with supporting documentation It is important to ensure that an appropriate amount of information is presented at all levels and that means at the top-level you need to report the information in a simple, concise way. Reporting of Risk The 5 key points were:- Understand what the Board require to help them make decisions What does the board want? Find out! The board may not know what they want. Use what we have got and try to anticipate what they want. Aligned with strategy and objectives. What is the board strategy? Is it finance, or sales, or expansion, or customer satisfaction based? Risk must impact on corporate strategy/objectives. Rolls Royce explained the risks need to be presented in financial terms and in how they impact on the strategic objectives. Thus Rolls Royce can target mitigation resources at key risks. BT explained Enterprise threats are discussed at Board level and appear in the Annual Report. An example of a strategic risk is the pension fund is large compared with the size of the company. Effective communication/ presentation sympathetic to the organisation s culture. Present the few key (5/6) risks across the organisation. Right Information at the right time Protiviti summed this up by: Reporting Risks to the Board (2) Page 4 of 6 Version 1.0 6/03/2007
5 What risks to report? Amount of information required Board Senior Management Risk Managers Most significant risks (impact, likelihood) Most significant risk events Risks with strategic importance Have supporting documentation available if requested Detailed analysis of significant risks Detailed analysis of significant risk events Understanding of risk impact on strategic objectives High level communication, understanding of lower level risks (process level) Detailed understanding of risk environment Detailed analysis of the significance, cause and management action associated with risk Ongoing communications on risks Tools and Techniques One technique identified or referenced by most presenters was: Cause and effect sensitivity graph (driver analysis) This aspect came out in different ways in the presentations but they were saying overall that it is important to consider how the risks causes and effects are linked so that a model (e.g. quantitative) can be produced or resources can be addressed at the key risk drivers in order to maximise return on effort managing risks. One aspect of this can be demonstrated by the below from one of Rolls Royce s slides: The large group of about 20 people in the KSN agreed that there were two additional key points: Need a suite of tools which can operate at all levels (but these would depend on the maturity of the organisation) BT explained that they use a collection of tools including one to produce their risk dashboard:- Reporting Risks to the Board (2) Page 5 of 6 Version 1.0 6/03/2007
6 Example of Board Report Likelihood of risk impact at Xm (%) Risk L 80 Risk A Risk K Risk B Risk J 20 Risk C Risk I Risk D Risk H 60 Risk E British Telecommunications plc Risk G 80 Risk F Rolls Royce are implementing an enterprise-wide tool (ARM). Many organisations use cheap tools, e.g. Excel, and can t justify the expense of a heavyweight tool but still want the benefits of hierarchical risk management. The feeling was that this could be achieved. Need some consultancy to help the organisation to implement this, This was so that the company can have a common language, education, expertise in the tools & techniques available and someone to drive the implementation. This could well be from within the company. Strategic Thought said Use a common terminology, categories that reflect the organisation. Conclusion Overall the conclusion is to ensure that the boards expectations of risk management are understood and that the reporting of risks is done in a way that provides valuable information at the right time to enable the boards to reduce surprises, to link operational risks with strategic decisions and recognise when their risk exposure or their risk appetite changes. It should be simple and clear although the supporting documentation should be available if needed. Acknowledgements Thanks very much to all of the presenters who have made their material available. Larry Stone, BT Tom Teixeira, Rolls Royce Martin Hopkinson, HVR Karl Davey, Strategic Thought Jonathan Blackhurst, Protiviti Legal notice: Neither the Association for Project Management, nor any person acting on behalf of the Association, is responsible for the use which might be made of the information contained in this publication. Reporting Risks to the Board (2) Page 6 of 6 Version 1.0 6/03/2007
Figure 1: COSO Enterprise Risk Management Cube
Figure 1: COSO Enterprise Risk Management Cube Source: Committee of Sponsoring Organizations (COSO), "Enterprise Risk Management- Integrated Framework: Executive Summary" 5. As shown in the COSO ERM cube,
More informationCatching Fraud During a Recession Through Superior Internal Controls. FICPA s 25 th Annual Accounting Show. J. Stephen Nouss September 29, 2010
Catching Fraud During a Recession Through Superior Internal Controls FICPA s 25 th Annual Accounting Show J. Stephen Nouss September 29, 2010 1 Session Objectives Fraud Facts (2008 Association of Certified
More informationAgenda. Enterprise Risk Management Defined. The Intersection of Enterprise-wide Risk Management (ERM) and Business Continuity Management (BCM)
The Intersection of Enterprise-wide Risk (ERM) and Business Continuity (BCM) Marc Dominus 2005 Protiviti Inc. EOE Agenda Terminology and Process Introductions ERM Process Overview BCM Process Overview
More informationAsset Acceptance Capital Corp.
Asset Acceptance Capital Corp. A Practical Approach to Enterprise Risk Management Detroit Chapter IIA September 14, 2010 1 Presenters Jeffrey S. Bankowski, CIA, CPA, CFF Jeff is currently the Vice President
More informationEnterprise Risk Management Program Development Update. Finance & Audit Committee Meeting September 25, 2015
Enterprise Risk Management Program Development Update Finance & Audit Committee Meeting September 25, 2015 Enterprise Risk Management Presentation Topics Enterprise Risk Management ( ERM ) Overview Lead
More informationFrom Dictionary.com. Risk: Exposure to the chance of injury or loss; a hazard or dangerous chance
Sharon Hale and John Argodale May 28, 2015 2 From Dictionary.com Enterprise: A project undertaken or to be undertaken, especially one that is important or difficult or that requires boldness or energy
More informationTactical Implementation of Enterprise Risk Management
Tactical Implementation of Enterprise Risk Management Presented by: Glen Cooper Copyright Tactical Implementation of ERM CONGRATULATIONS YOU HAVE SUCCESSFULLY MADE YOUR BUSINESS CASE AND ACHIEVED MANAGEMENT
More informationEnterprise Risk Management
Compliance, Audit, Risk Management and Legal Affairs Committee Enterprise Risk Management Higher Education Scorecards, Performance Based Metrics, and Faculty Compensation Alan D. Phillips Vice President
More informationEnterprise Risk Management: Developing a Model for Organizational Success. White Paper
Enterprise Risk Management: Developing a Model for Organizational Success White Paper January 2009 Overview Less than a decade ago, Enterprise Risk Management (ERM) was an unfamiliar concept. Today, the
More informationEnterprise Risk Management Defined and Explained
Enterprise Risk Management Defined and Explained Council of Engineering and Scientific Society Executives ACCESSE16 July 27, 2016 Paul Klein Managing Director Not-for-Profit Atlantic Coast Market Territory
More informationEnterprise Risk Management
1 Enterprise Risk Management Building an Effective Enterprise Risk Management Program in a Community Bank Jay Gallo Chief Risk Officer Topics for Discussion 2 Defining Enterprise Risk Management Do Community
More informationRisk Management Update ISO Overview and Implications for Managers
Contents - ISO 31000 highlights 1 - Changes to key terms and definitions 2 - Aligning key components of the risk management framework 3 - The risk management process 4 - The principles of risk management
More informationSYLLABUS - ANALYSIS AND DECISION (20 credits)
Chartered Postgraduate Diploma in Marketing (Level 7) SYLLABUS - ANALYSIS AND DECISION (20 credits) This unit consists of three parts: Strategic audit, Strategic options, and Making strategic marketing
More informationLI & FUNG LIMITED ANNUAL REPORT 2016
52 Our approach to risk management We maintain a sound and effective system of risk management and internal controls to support us in achieving high standards of corporate governance. Our approach to risk
More informationCOCA-COLA HELLENIC BOTTLING COMPANY RISK MANAGEMENT POLICY
COCA-COLA HELLENIC BOTTLING COMPANY RISK MANAGEMENT POLICY 1. INTRODUCTION The effective management of risk is central to the ongoing success and resilience of Coca-Cola Hellenic Bottling Company (CCHBC).
More informationStatement on Risk Management and Internal Control
INTRODUCTION The Board affirms its overall responsibility for the Group s system of internal control and risk management and for reviewing the adequacy and effectiveness of the system. The Board is pleased
More informationAchieve. Performance objectives
Achieve Performance objectives Performance objectives are benchmarks of effective performance that describe the types of work activities students and affiliates will be involved in as trainee accountants.
More informationCUSTOMER RELATIONSHIPS FURTHER EXCELLENCE GENERIC STANDARDS TRAINING SERVICES THE ROUTE TO ISO 9001:2015 AVOIDING THE PITFALLS
PROCESSES SUPPLY CHAIN SKILLED TALENT CUSTOMER RELATIONSHIPS FURTHER EXCELLENCE GENERIC STANDARDS INDUSTRY STANDARDS CUSTOMISED SOLUTIONS TRAINING SERVICES THE ROUTE TO ISO 9001:2015 FOREWORD The purpose
More informationPRINCE2 and the National and International Standards
PRINCE2 and the National and International Standards Robert Buttrick, Project Workout Limited White Paper December 2012 2 PRINCE2 and the National and International Standards Contents 1 Introduction 3
More informationThe Sector Skills Council for the Financial Services Industry. National Occupational Standards. Risk Management for the Financial Sector
The Sector Skills Council for the Financial Services Industry National Occupational Standards Risk Management for the Financial Sector Final version approved April 2009 IMPORTANT NOTES These National Occupational
More informationProcurement Guide Part 1
Procurement Guide Part 1 [Draft7_Part1_revB_Introduction_Aug12] P a g e 1 Draft7_Part1_revB_Introduction_Aug12 Procurement Guide Part 1 1.1 Introduction All projects consume goods and services as part
More informationA Risk Practitioners Guide to ISO 31000: 2018
A Risk Practitioners Guide to ISO 31000: 2018 Review of the 2018 version of the ISO 31000 risk management guidelines and commentary on the use of this standard by risk professionals 1 A Risk Practitioners
More informationAchieving business objectives through successful transformation projects
August 2017 Achieving business objectives through successful transformation projects www.pwc.com.au Project portfolios, the heart and soul of maintaining market relevance Where the rubber hits the road...
More informationRisk Management Strategy
Risk Management Strategy 2017-2019 Created by: Role Name Title Author / Editor Kevin McMahon Head of Risk Management & Resilience Lead Executive Margo McGurk Director of Finance & Performance Approved
More informationCGMA Competency Framework
CGMA Competency Framework Technical skills CGMA Competency Framework 1 Technical skills : This requires a basic understanding of the business structures, operations and financial performance, and includes
More informationSarbanes-Oxley Act of 2002 Can private businesses benefit from it?
Sarbanes-Oxley Act of 2002 Can private businesses benefit from it? As used in this document, Deloitte means Deloitte Tax LLP, which provides tax services; Deloitte & Touche LLP, which provides assurance
More informationERM: Risk Maps and Registers. Performing an ISO Risk Assessment
ERM: Risk Maps and Registers Performing an ISO 31000 Risk Assessment Agenda Following a Standard? Framework First Performing a Risk Assessment Assigning Risk Ownership Data Management Questions? Following
More informationDeveloping a successful governance strategy. By Muhammad Iqbal Hanafri, S.Pi., M.Kom. IT GOVERNANCE STMIK BINA SARANA GLOBAL
Developing a successful governance strategy By Muhammad Iqbal Hanafri, S.Pi., M.Kom. IT GOVERNANCE STMIK BINA SARANA GLOBAL it governance By NATIONAL COMPUTING CENTRE The effective use of information technology
More informationThe journey to procurement excellence
IBM Software Industry Solutions Strategic Sourcing The journey to procurement excellence The journey to procurement excellence Contents 2 The journey to procurement excellence 3 How world class organizations
More informationAnalytics: The Widening Divide
Neil Beckley, FSS Leader, IBM Growth Markets Analytics: The Widening Divide How companies are achieving competitive advantage through analytics What you will take away from this session 1 Understand Why
More informationMoving from ISO 9001:2008 to ISO 9001:2015 Transition Guide
ISO Revisions Latest update New and Revised Moving from ISO 9001:2008 to ISO 9001:2015 Transition Guide ISO 9001 - Quality Management System - Transition Guide Successful businesses understand the value
More informationEnterprise Asset Management. Enterprise Asset Management 1
Enterprise Asset Management 1 Introduction Managing assets effectively is critical to the success of organisations that depend on complex physical assets to deliver services. Increasingly, operators and
More informationSession 7: Corporate Governance
Session 7: Corporate Governance New York Bankers Association-Community Bank Auditors Group 2016 Internal Audit Training-June 6-8, 2016 MEMBER OF ALLINIAL GLOBAL, AN ASSOCIATION OF LEGALLY INDEPENDENT FIRMS
More informationFrom the cube to the rainbow double helix: a risk practitioner s guide to the COSO ERM Frameworks
From the cube to the rainbow double helix: a risk practitioner s guide to the COSO ERM Frameworks Review of the 2004 and 2017 Enterprise Risk Management (ERM) frameworks published by COSO and commentary
More informationCAPABILITY MATRIX FOR PROFESSIONAL STAFF HANDBOOK
CAPABILITY MATRIX FOR PROFESSIONAL STAFF HANDBOOK INTRODUCTION TO THE CAPABILITY MATRIX This handbook is intended to help you understand the Capability Matrix and how it will be used at UoN. The Capability
More informationAsset Management Policy
Asset Management Policy January 2018 Introduction Our Asset Management Policy was last published in 2014. It is being updated to reflect our commitment to regularly review and improve all of our Asset
More informationWhite Paper Well-founded Audit Planning
White Paper Well-founded Audit Planning November 2016 The Institute of Internal Auditors Australia Level 7, 133 Castlereagh Street Sydney NSW Australia 2000 Telephone: 02 9267 9155 International: +61 2
More informationORGANISATIONAL DIAGNOSTIC ASSESMENT
ASSESSMENT INSTRUCTIONS Before starting your Organisational Value Management Diagnostic Assessment please read the following instructions. To complete the assessment read the general discussion notes about
More informationThe Accountability Evolution Marketers Turn to Metrics to Boost Their Strategic Value
in association with: The Accountability Evolution Marketers Turn to Metrics to Boost Their Strategic Value As organizations continue to respond to the uncertain economic environment by tightening their
More informationMaintaining a robust risk and control framework
Risk Management and Internal Controls Maintaining a robust risk and control framework INTERNAL CONTROL The Board meets regularly throughout the year and has adopted a schedule of matters which are required
More informationSTATEMENT ON RISK MANAGEMENT AND INTERNAL CONTROL
STATEMENT ON RISK MANAGEMENT AND INTERNAL CONTROL Pursuant to the Main Market Listing Requirements of Bursa Malaysia Securities Berhad ( Bursa Malaysia ) ( Listing Requirements ), Practice Note 9 issued
More informationRisk management and the business model
RISK SNAPSHOT Risk management and the business model An analysis of UK listed companies and Financial Reporting Council (FRC) model reporting About IRM IRM is the leading professional body for risk management.
More information4.1.3 Enterprise Risk Management System
The Company does not always allow shareholders to follow meetings with analysts in real time. However, the Company ensures that all shareholders and other parties in the fi nancial markets are provided
More informationPROJECT MANAGEMENT SHORT COURSES
PROJECT MANAGEMENT SHORT COURSES Learn Develop Refresh Adapt React 20 20 Business Insight have a series of short courses designed to up-skill or refresh knowledge in specific Project Management subjects.
More information716 West Ave Austin, TX USA
FRAUD-RELATED INTERNAL CONTROLS GLOBAL Headquarters the gregor building 716 West Ave Austin, TX 78701-2727 USA Figure 2.1 COSO defines an internal control as a process, effected by an entity s board of
More informationImproved Risk Management via Data Quality Improvement
Improved Risk Management via Data Quality Improvement Prepared by: David Loshin Knowledge Integrity, Inc. January, 2011 Sponsored by: 2011 Knowledge Integrity, Inc. 1 Introduction All too frequently, we
More informationCommunications and Engagement Strategy. Claire Riley, Director of Communications from Northumbria Healthcare NHS Foundation Trust
Report to Trust Board of Directors Date of Meeting: 25 March 2014 Enclosure Number: 14 Title of Report: Author: Executive Lead: Responsible Sub- Committee (if appropriate): Executive Summary: Board Assurance
More informationCGMA Competency Framework
CGMA Competency Framework Contents About the CGMA Competency Framework 2 The development of the CGMA Competency Framework 2 Competencies for finance professionals 5 Technical skills 8 Business skills 40
More informationRisk Advisory Services Developing your organisation s governance for competitive advantage
Advisory Services Developing your organisation s governance for competitive advantage The Deloitte Advisory Platform of Services can help you to govern your strategic plan to guide your operations measure
More informationAn Example Portfolio Management Process
BEST PRACTICES WHITE PAPER An Example Portfolio Management Process Jenny Stuart, Vice President of Consulting, Construx Software Version 1, June 2009 Contributors Jerry Deville, Professional Software Engineer
More informationEmbedding Operational Risk
Embedding Operational Risk Banking & Payments Federation Ireland Angela Calapa, Risk & Regulatory Director Areas of Challenge for Embedding Operational Risk Most banks face a significant number of challenges
More informationContinuing Professional Development (CPD) Requirements for New Zealand Licensed Auditors
Policy and guidance Continuing Professional Development (CPD) Requirements for New Zealand Licensed Auditors (Effective 1 July 2016) CONTENTS 1 CPD Policy for New Zealand licensed auditors... 3 1.1 Introduction...
More informationBusiness Framework Change How You Manage Safety
Business Framework Change How You Manage Safety December 1, 2017 Joseph Muratore Mark Drozdov Today s Speakers Joseph Muratore Commercial Director BSI USA & Canada Mark Drozdov BSI CES SVP & Technical
More informationStatement on Internal Control and Risk Management
Statement on Internal Control and Risk Management The Board of Bursa Malaysia is committed to maintaining a sound internal control and risk management system. Each business unit/functional group has implemented
More informationGuidelines of Corporate Governance
Guidelines of Corporate Governance December 2017 The Board of Directors (the Board ) of Radian Group Inc. ( Radian or the Company ) has established guidelines for corporate governance based on an assessment
More informationENTERPRISE RISK MANAGEMENT THE KEY TO BUSINESS SUCCESS By Phil Griffiths FCA
ENTERPRISE RISK MANAGEMENT THE KEY TO BUSINESS SUCCESS By Phil Griffiths FCA Chapter 1 Fundamentals of Enterprise Risk Management Risk management has become a vital ingredient in the entrepreneurial culture
More informationStrategic HR Business Partner. Career progression level: 7. Key Responsibility Areas. Location: Reports to: Purpose:
Position: Location: Reports to: Strategic HR Business Partner Wellington General Manager People Career progression level: 7 Purpose: Partner with a key Opus business unit and develop and drive a strategic
More informationCITIBANK N.A JORDAN. Governance and Management of Information and Related Technologies Guide
CITIBANK N.A JORDAN Governance and Management of Information and Related Technologies Guide 2018 Table of Contents 1. OVERVIEW... 2 2. Governance of Enterprise IT... 3 3. Principles of Governance of Enterprise
More information2017 First Data Corporation. All Rights Reserved. REACH BRAND RECOGNIZE INCENTIVIZE REWARD
2017 First Data Corporation. All Rights Reserved. REACH BRAND RECOGNIZE INCENTIVIZE REWARD Over 60% * of people say they prefer gift cards over other types of marketing offers. With Gift Solutions, your
More informationCommodity & Energy Risk Management. kpmg.com.sg
kpmg.com.sg Introduction Organisations exposed to energy, metal, and agricultural commodity raw materials are increasingly challenged by competitive economies, volatile markets, and onerous regulatory
More informationQuality Management System Guidance. ISO 9001:2015 Clause-by-clause Interpretation
Quality Management System Guidance ISO 9001:2015 Clause-by-clause Interpretation Table of Contents 1 INTRODUCTION... 4 1.1 IMPLEMENTATION & DEVELOPMENT... 5 1.2 MANAGING THE CHANGE... 5 1.3 TOP MANAGEMENT
More informationCurrent State of Enterprise Risk Oversight:
Current State of Enterprise Risk Oversight: Progress is Occurring but Opportunities for Improvement Remain July 2012 Mark Beasley Bruce Branson Bonnie Hancock Deloitte Professor of ERM Associate Director,
More information(Effective for audits of financial statements for periods ending on or after December 15, 2013) CONTENTS
INTERNATIONAL STANDARD ON AUDITING 315 (REVISED) IDENTIFYING AND ASSESSING THE RISKS OF MATERIAL MISSTATEMENT THROUGH UNDERSTANDING THE ENTITY AND ITS ENVIRONMENT Introduction (Effective for audits of
More informationKING III COMPLIANCE ANALYSIS
Principle element No Application method or explanation This document has been prepared in terms of the JSE Listings Requirements and sets out the application of the 75 Principles of the King III Report
More informationMaster of Business Administration Course Descriptions
Master of Business Administration Course Descriptions CORE COURSES MBAB 5P01 Accounting for Decision-Making I The functional basics of accounting for management and business decisions. Data collection,
More informationCGMA Competency Framework
CGMA Competency Framework Leadership skills CGMA Competency Framework 1 Leadership skills : This requires a basic understanding of the business structures, operations and financial performance, and includes
More informationJob description and person specification
Job description and person specification Position Job title Head of Genomics Unit Directorate Finance, Commercial and Specialised Commissioning Pay band AFC Band 9 Responsible to Director of Strategy and
More informationPOSITION DESCRIPTION. Unit Learning Date July 2012
POSITION DESCRIPTION Job Title: Conference Producer Reports To: Conferences Manager Unit Learning Date July 2012 Purpose: Profitably manage a portfolio of commercial EMA conference events. Produce profitable
More informationFinancial Manager(FM) Position Description Effective: Monday, 18 December 2017
Position Title: Financial Manager(FM) Reports to: Chief Executive Officer Authorised by and date: CEO, 18 December 2017 Classification level: Managerial (not governed by any Award) Roles reporting to this
More informationHuman Resources and Organisational Development: Outcomes
1 Aston People 2020 - Human Resources Strategy Proactively supporting Aston s 2020 Vision Contents Background Page 4 Vision Page 4 Purpose Pages 4-5 Human Resources and Organisational Development: Outcomes
More informationEMR GOVERNANCE: BUILDING A BUSINESS CASE IS JUST THE BEGINNING
EMR GOVERNANCE: BUILDING A BUSINESS CASE IS JUST THE BEGINNING Nothing is more important to the likelihood of an EMR implementation s success than good governance. Implementing an electronic medical record
More informationInternal Financial Controls (IFC) ICAI Seminar October 8, 2016
Internal Financial Controls (IFC) 1 ICAI Seminar October 8, 2016 Financial Reporting Assertions 3 Effective Internal Controls over Financial Reporting All Significant Accounts considered Minor or few internal
More informationInformative guides on industry best practice. Strategic Planning. bringing the future forward. Inspiring Business Performance
Informative guides on industry best practice Strategic Planning bringing the future forward Inspiring Business Performance By Lloyd Snowdon Managing Partner Oliver Wight EAME Most organisations would claim
More informationWe operate sensitive facilities and deliver base and facilities management and maintenance, program management and critical support services.
Serco Group plc Slavery and human trafficking statement This statement relates to Serco Group plc, covering all business regions, operating companies and business units throughout the world, including
More informationCost Engineering Health Check - a limited survey. Prepared by QinetiQ. For Society for Cost Analysis and Forecasting (SCAF)
Cost Engineering Health Check - a limited survey Prepared by QinetiQ For Society for Cost Analysis and Forecasting (SCAF) QINETIQ/TIS/S&AS/IP1203326 ver. 1.0 10th December 2012 Copyright QinetiQ 2012 Page
More informationGovernance SPICE. Using COSO and COBIT Process Assessment Models BPM GOSPEL
Governance SPICE Using COSO and COBIT Process Assessment Models Linking Governance to Sustainable Value Creation BPM GOSPEL (LLP-LDV-TOI-2010-HU-001) This project has been funded with support from the
More informationThe Role of the Chief Risk Office and the Board s Role in Risk Oversight
The Canadian Society of Corporate Secretaries 16th Annual Corporate Governance Conference Banff Springs Hotel Banff, AB August 24 27, 2014 The Role of the Chief Risk Office and the Board s Role in Risk
More informationMoving from ISO/TS 16949:2009 to IATF 16949:2016. Transition Guide
Moving from ISO/TS 16949:2009 to IATF 16949:2016 Transition Guide IATF 16949:2016 - Automotive Quality Management System - Transition Guide An effective Quality Management System is vital for organizations
More informationDEVELOPMENT CHRISTCHURCH LTD
DEVELOPMENT CHRISTCHURCH LTD Statement of Intent For the year ending 30 June 2018 Directory Postal Address: Development Christchurch Limited PO Box 333 Christchurch 8011 Registered office: Level 2, 181
More informationArkansas Department of Career Education AgriBusiness Management Rev
Arkansas Department of Education AgriBusiness Management Rev 2017-2018 Arkansas Department of Education AgriBusiness Management Model Framework Course Title Pathway Cluster Course Number 491030 CIP Number
More informationTHREE-YEAR STRATEGIC PLAN UPDATE v1
THREE-YEAR STRATEGIC PLAN UPDATE v1 FY2017-FY2019 OUR STRATEGY To develop future professionals through relevant and accessible credentialing programs 100% Member Market Penetration To deliver member value
More informationKING IV APPLICATION REGISTER. We do it better
KING IV APPLICATION REGISTER 2017 We do it better 1 KING IV APPLICATION REGISTER APPLICATION OF KING IV African Rainbow Minerals Limited (ARM or the Company) supports the governance outcomes, principles
More informationDUBAL s ISO based ERM Program
DUBAL s ISO 31000-based ERM Program Building a Harmonized, Proactive and Sustainable Approach to Risk Management October, 2013 Toby Shore Corporate Treasurer & Chief Risk Officer DUBAL Key Things To Discuss
More informationValue Creation through Information Management. A Benefits Realisation Initiative
Value Creation through Information Management A Table of Contents Executive Summary... 2 Introduction... 3 1.1 Study Purpose & Background... 3 1.2 Study Objectives... 3 1.3 Methodology... 3 1.4 Respondent
More informationLevel 3 Diploma in Management. Qualification Specification
Qualification Specification ProQual 2017 Contents Page Introduction 3 Qualification profile 3 Qualification structure 4 Centre requirements 6 Support for candidates 6 Assessment 7 Internal quality assurance
More informationModules for Accounting and Finance
Modules for Accounting and Finance Modules, other than Introductory modules may have pre-requisites or co-requisites (please, see module descriptions below) and a student must have undertaken and passed
More informationCommodity & Energy Risk Management
Commodity Introduction Organisations exposed to energy, metal, and agricultural commodity raw materials are increasingly challenged by competitive economies, volatile markets, and onerous regulatory and
More informationInstitute of Internal Auditors 2018
ACHIEVING CULTURAL TRANSFORMATION EILEEN ILES PARTNER, RISK SERVICES CRYSTAL JARESKE MANAGER, RISK SERVICES APRIL 9, 2018 AGENDA Topic Culture Defined The Importance of Assessing Culture Culture Assessment
More informationManaging Successful Programmes Syllabus
Managing Successful Programmes Syllabus 2011 1. Introduction The Managing Successful Programmes (MSP) guidance explains the programme management principles, governance themes and transformational flow
More informationLeading Practice: Approaches to Organizational Change Management
Leading Practice: Approaches to Organizational Change Management Abstract This document provides recommended approaches to organizational change management (OCM) when implementing CA Project and Portfolio
More informationGUIDANCE NOTE FOR DEPOSIT TAKERS (Class 1(1) and Class 1(2))
GUIDANCE NOTE FOR DEPOSIT TAKERS (Class 1(1) and Class 1(2)) Operational Risk Management MARCH 2017 STATUS OF GUIDANCE The Isle of Man Financial Services Authority ( the Authority ) issues guidance for
More informationASSURANCE FRAMEWORK. A framework to assure the Board that it is delivering the best possible service for its citizens SEPTEMBER 2010.
ASSURANCE FRAMEWORK A framework to assure the Board that it is delivering the best possible service for its citizens SEPTEMBER 2010 V3 Draft 1 SECTION NO. ASSURANCE FRAMEWORK CONTENTS 1. INTRODUCTION 3
More informationRole of Operational Risk in the Product Lifecycle Presented By: Chris Nestore, SVP Head of Operational Risk Management, TD Bank
Role of Operational Risk in the Product Lifecycle Presented By: Chris Nestore, SVP Head of Operational Risk Management, TD Bank Product Governance Overview Regulatory agencies have increased interest and
More informationISO Collaborative Business Relationship Management Your implementation guide
ISO 44001 Collaborative Business Relationship Management Your implementation guide ISO 44001 Collaborative Business Relationships enhances the performance and competitiveness of your organization Collaborative
More informationThe Remuneration Code (SYSC 19A) 1 The Code
The Remuneration Code (SYSC 19A) 1 The Code The Remuneration Code applies to all BIPRU firms. The code applies to all remuneration payments made after 1 January 2011, even when the payments relate to work
More informationUSC Compliance and Ethics Program Governance and Standards
Background The following elements of an effective compliance program come from the Federal Sentencing Guidelines, but also are incorporated into federal and state regulations and administrative guidance.
More informationJOB DESCRIPTION. Job Title: Senior Marketing Manager Grade: SG9
JOB DESCRIPTION Job Title: Senior Marketing Manager Grade: SG9 Professional Services Directorate: Communications and Recruitment Effective date of job description: October 2017 Directorate section: Marketing
More informationQuality Assurance and Improvement Program
Internal Audit Foundations Standards 1000, 1010, 1100, 1110, 1111, 1120, 1130, 1300, 1310, 1320, 1321, 1322, 2000, 2040 There is an Internal Audit Charter in place Internal Audit Charter is in place The
More informationLevel 7 Strategic Management and Leadership (QCF)
Centre Assessment Guidance for Level 7 Strategic Management and Leadership (QCF) Version 2 Contents Page Introduction 3 About these qualifications Titles and qualifications reference numbers 3 Accreditation
More informationOHIO ASSESSMENTS FOR EDUCATORS (OAE) FIELD 008: BUSINESS EDUCATION
OHIO ASSESSMENTS FOR EDUCATORS (OAE) FIELD 008: BUSINESS EDUCATION June 2013 Content Domain Range of Competencies Approximate Percentage of Assessment Score I. Business Management, Law, and Ethics 0001
More information