ERM for Small to Mid-sized Companies
|
|
- Chloe Elinor Atkinson
- 6 years ago
- Views:
Transcription
1
2 ERM for Small to Mid-sized Companies Session #304
3 Today s Presenters Greg Fritsky Jerry Ravi Rita Linterno Technology & Finance Transformation Consultant ERM / Internal Audit Specialist & Technology Consultant External Audit & ERM Specialist
4 Course Objective and Outcomes To discuss implementation standards of Enterprise Risk Management (ERM) practices for small to medium size insurers, and discuss the impact of ORSA and how to embrace ERM practices to be successful in achieving short and long term goals. Learning Outcomes: Participants will be able to: Discuss ORSA and the impact to current ERM practices Understanding the key implementation factors for a successful ERM program Develop a preliminary plan use a transformation framework within ERM practices across the organization, starting with Finance Discuss impact to the external audit and areas to consider for leverage and risk knowledge sharing
5 What s New with ERM Increased need for ERM reporting at the Board Level (regardless of the size of the organization) Getting a pulse on key emerging risks and alignment to strategy (MEASURMENT is Key) Impact on regulatory requirements (ORSA, SEC, etc..) Technology, operational and overall financial reporting enhancement Outsourcing relationships continue to grow (risk of outsourcing and monitorin Cybersecurity)
6 STATE OF ERM TODAY 25% believe their organization has a complete formal enterprise risk management process in place. 23% describe their organization s level of risk management maturity as mature or robust. 52% indicate that their organization s risk management process is not at all or minimally viewed as a proprietary strategic tool that provides unique competitive advantage. Source: 2015 Report on the Current State of Enterprise Risk Oversight: Update on Trends and Opportunities Research Conducted by the ERM Initiative at North Carolina State University on behalf of the American Institute of CPAs Business, Industry & Government Team
7 CALLS FOR IMPROVED ENTERPRISE-WIDE RISK OVERSIGHT 68% indicate that the board of directors is asking for increased senior executive involvement in risk oversight somewhat to extensively. 65% of organizations experience pressure from external parties somewhat to extensively to provide more information about risks. Source: 2015 Report on the Current State of Enterprise Risk Oversight: Update on Trends and Opportunities Research Conducted by the ERM Initiative at North Carolina State University on behalf of the American Institute of CPAs Business, Industry & Government Team
8 Breakdown of ERM / ORSA Process Risk Management Framework (Section 1) Assessment of Risk Exposures (Section 2) Group Risk Capital and Prospective Solvency Assessment (Section 3) Risk Culture and Governance Board Oversight Formalize Risk Management Structure Identification and Categorization Assessment and Prioritization (Risk Tolerances / Appetite) Mitigation, Monitoring, and Reporting Capital Adequacy (i.e., Models) Capital Management Solvency Assessment
9 States that have Adopted ORSA AR 9
10 Key ORSA Components Evaluate the Maturity of the ERM Framework Utilize Best Practices - RIMS Risk Maturity Model (RMM) Evaluate key principles on an ongoing basis start with a health check Define Risk Profile, Appetite and Tolerances Ensure integration and communication throughout the organization (leverage existing risk functions and assurance activities) Assess Risk Exposure Organize information into main risk categories or risk objectives Ensure documentation and rationale for risk exposures under both normal and stressed scenarios Conduct workshops to evaluate exposures Prioritize and align to strategy, decisions and capital allocation Measurement and alignment to capital allocation / compensation Determine internal capital assessment Relying on various models including internal and external models (RBC, BCAR, etc ) Review / utilize technology and software solutions (Igloo, MG-ALFA, etc ) Quantify necessary capital for different risks using various assumptions (stochastic and deterministic)
11 Section 2 Assessment of Risk Exposure Phase 1 Communicate / Align to Objectives Phase 4 Report and Monitor Phase 2 Identify, Analyze and Prioritize Phase 3 Validate and Collaborate
12 Think RISK TAXONOMY Financial Reporting Strategic Planning Vendor Management Taxonomy Policy Management Technology Compliance and Audit Management
13 Root Cause Approach to Collecting Risk Data Cause 1 Cause 2 Cause 3 Event Effect 1 Effect 2 Effect 3
14 Root Cause Approach Example Reference: LogicManager 2014
15 Top Down & Bottom Up Reference: LogicManager 2014
16 Responsibilities Changing Reference: LogicManager 2014
17 Risk Based Decision Making What types and levels of risk support objectives? Risk Profile Company Structure What data / analysis are needed? Risk Processes & Tools What structure supports effective decision making? Monitoring & Reporting DECISIONS What information is needed to make the decision?
18 Risk Management and Controls Assessment The less aware/prepared the entity is to a risk, the higher the impact will be should the event occur If risk responses, including controls, are not in place and operating as designed, then the likelihood of an event increases Assessing risk mitigation allows entities to gauge how well they re managing risks Risk mitigation assessment criteria include capabilities such as: oscenario planning orisk responses in place oability to respond and adapt quickly as events unfold ocapacity to withstand events such as capital buffer and financial strength
19 Risk Management and Controls An Overview Risk Management is the options to manage and mitigate risks, including: Risk Avoidance not proceeding with the process or activity that contains unacceptable risk (exit activity) Risk Reduction take action to reduce the likelihood or impact Risk Acceptance take no action due to the cost/benefit; low risk category; risk is acceptable Risk Sharing sharing all or part of the risk to another department or party (e.g., insurance) Risk Transfer transferring all of the risk to another department, group or committee Risk Reduction may be achieved through the use of Control Activities or other methods. Any system of risk treatment should provide, at a minimum: Effective and efficient operation of the organization Effective internal controls Compliance with laws and regulations 19
20 Risk Reporting and Communication Key Risks Monitored and Managed by Risk Owners Feedback Provided to Manage Key Risks including update to risk tolerances, Limits and Appetite Dashboard with Clear and Concise Information on Top Risks- including Assessment, Prioritization, and Response Periodic Presentation to and Evaluation by Key Stakeholders/Committee 20
21 Risk Prioritization HEAT MAP
22 Risk Identification & Prioritization Risk identification is the continuous process by which Risk Management creates and updates its catalog of risks. Cataloged by risk categories and sub-categories tailored to the insurer Risks have to be assessed for prioritization; too many risks to be monitored and managed at the enterprise level Perform Risk Assessment to prioritize risks and to identify key risks Leverage Internal and External Audit Process Focus on continuous monitoring and follow-up
23 Operational Risk Management Approach to Your Audit Process Enterprise and Operational Risk Focused Work closely with your management team, including the ERM Committee to identify critical enterprise risks and prospective risks facing the company including: strategic, market, credit, reputational, operational, liquidity, financial, and compliance risks Evaluate and critique risk mitigation strategies designed to address the critical risks Consider downside threats (potential of a negative outcome) and upside threats (failure to capitalize on an opportunity) when evaluating the ERM framework Benchmark the risk management framework to best practices and provide valuable insight to improve risk management framework and activities Integrated Audit Process Our planning and detailed testing approach will allow us to provide insights and identify potential improvements related to the organization s critical risk areas and increase audit process efficiency Throughout our audit process we will maintain a risk catalog and evaluate alignment to management s overall risk appetite and risk mitigation activities Focus on continuous monitoring and follow-up Assess the process for identifying potential future events that create uncertainty, as well as evaluating their ongoing risk mitigation process (i.e., response) to reduce the likelihood of downside outcomes.
24 Tailored Audit Approach Interviews Enterprise Risk Committee Internal Audit Audit Committee Review of company prepared risk assessment documents Inventory of risks Internal strategy documents Meeting minutes Evaluate how changes to the environment are factored Rapid growth Change in business mix New products Changes in technology ERM Evaluation Financial Risks (Competition, Credit, Capital needs) Operational Risks (Profitability, U/W, control Structure, key indicators, related party transactions, business continuity, business mix) Prospective Risks (Regulatory, Liquidity, Reputational) Benefit: An Audit that addresses your key risks, a more efficient audit process, value added recommendations
25 Three Lines of Defense Drives Governance Structure Board of Directors / Audit Committee Senior Management 1 st Line of Defense 2 nd Line of Defense 3 rd Line of Defense Financial Control Administration Controls Internal Control Measures Security Risk Management Quality Legal Compliance Assurance & Validation External Auditor / Regulator
26 Emerging Technology Data Analytics Cloud Computing Social Media Technology Trends Mobile Devices Collaborative Applications In Memory Computing
27 ERM Framework Predictive Analytics Risk Dashboards ERM Framework Streaming Social Media ERM Software
28 Leveraging Data Analytics Data analytics can be used to Identify the risks that have resulted from the exponential growth of technology and the internet, and our increasing reliance on both. Provide a comprehensive view of internal and external risks by alerting decision makers about potential fraud, unusual network traffic patterns, hardware failures, and security breaches. Convert data into actionable information, helping businesses move their cybersecurity measures from a reactive state to a proactive state.
29 ERM Solutions and Dashboard Reporting Several ERM solutions currently exist and most integrate well into an existing platform. When combined with a data and social media analytics program, an effective ERM program can be realized. Risk Dashboards can provide top-down risk reporting and details that can help detect and prevent control failures. Source: Gartner
30 Integration Configuration Platform Detecting Fraud with Data Analytics Millions of transactions can be analyzed to detect certain anomalies that may indicative of a fraud Fraud Analytics software can analyze 75 million insurance claims in just 1.5 seconds Monitoring Fraud Monitoring & Performance Optimization Prevention Fraud Pattern Analysis Rules & Predictive Analysis Fraud Detection Strategy Calibration & Simulation Detection Online Detection Mass Detection Investigation Alert Notification Inquire & Analyze Investigation Evaluation & Decision Claim Handling & Settlement From Claim Notification to Claim Closure Source: SAP
31 Common Pitfalls Focus of ERM Program Area Issues Impact ERM process is solely focused on output to the Board, not utilized as a tool for management. ERM is focused solely on WCGW or hazards. Risk Analysis Risk appetite is not adequately defined and communicated. Risk levels are not measured against risk tolerance levels. Risk does not define inherent vs. residual risk. Risk impact is not quantified. ERM Reporting Reporting is limited to enterprise level and/or only a subset of risks or business areas are considered and/or reported. Managing Risks Action/mitigation plans and owners are not effectively assigned to mitigate key risks. Risk assessment is not embedded in strategic planning and business process. Management is disengaged from the process because they don t feel that a value is added. Board/management lacks transparency to determine if risk levels are appropriate, if risks require further mitigation action or possible exploitation and whether certain activities should be continued, given risk levels and current mitigation steps. Risk reported to the board are reported out of context. Board lacks transparency into overall risk profile/specific business unit risk. Lack of clear accountability and proactive action plans may lead to risks going unattended.
32 Thank You!!! Greg Fritsky, Director Redwood Software 10 Denise Drive Allentown, NJ Jerry Ravi, Partner Eisner Amper LLP 111 Wood Avenue South Iselin, NJ Rita Linterno, Senior Manager Eisner Amper LLP 750 Third Avenue New York, New York (609) (732) (347)
33 Please Complete the Session Evaluation Form on the Conference App
Taking ERM to a. 6 GRC Today / October 2015
GLOBAL SCALE 6 GRC Today / October 2015 Global Scale lobal events highlighted by G business scandals, failures, information theft, and natural disasters have shone the spotlight yet again on risk management
More informationFraud Risk Management
Fraud Risk Management Fraud Risk Management Overview 2017 Association of Certified Fraud Examiners, Inc. Discussion Questions 1. Does your organization follow a specific risk management model? If so, which
More informationIT Service Delivery And Support Week Seven: SLA. IT Auditing and Cyber Security Fall 2016 Instructor: Liang Yao
IT Service Delivery And Support Week Seven: SLA IT Auditing and Cyber Security Fall 2016 Instructor: Liang Yao 1 Outsourcing Drivers Outsourced IT Works Outsourced IT Activity Samples Top Three Outsourcing
More informationRisk-Focused Examinations
Risk-Focused Examinations Session 704 IASA 86 TH ANNUAL EDUCATIONAL CONFERENCE & BUSINESS SHOW Understanding the Examination Process In order to be able to maximize examination efficiency and have examiners
More informationNext-generation enterprise risk management
Next-generation enterprise risk management Advancing strategy and performance in light of the COSO 2017 refresh Heading into the beginning of the year, the EY Center for Board Matters published the Top
More informationENTERPRISE RISK MANAGEMENT USING DATA ANALYTICS. Dan Julevich and Chris Dawes April 17, 2015
ENTERPRISE RISK MANAGEMENT USING DATA ANALYTICS Dan Julevich and Chris Dawes April 17, 2015 Agenda ERM What, Why, How? ERM Keys to Success Fail, Survive, or Thrive? ERM Current State Overview ERM Leading
More informationSan Francisco Chapter. Presented by Scott Perry - Slalom Consulting
Presented by Scott Perry - Slalom Consulting Introductions Session Objectives Overview of Enterprise Risk Management The Role Of IT IT Governance Model IT Risk Assessment How IT Auditors Add Value Key
More informationEnterprise Risk Management
Enterprise Risk Management A Roadmap For Implementation June 12, 2018 Presented by: Speaker Name Marianne Turnbull CohnReznick LLP 4 Becker Farm Road Roseland, NJ 07068 P: 973-228-3500 E:marianne.turnbull@cohnreznick.com
More informationSample Corporate Risk Management Policy
Sample Corporate Risk Management Policy This document provides a sample Risk Management policy which includes an overview of the key roles and responsibilities of the various stakeholders. Risk Oversight
More information2013 New COSO 2013 Framework and Current Trends in Risk Management
2013 New COSO 2013 Framework and Current Trends in Risk Management Session 105 IASA 86 TH ANNUAL EDUCATIONAL CONFERENCE & BUSINESS SHOW Agenda COSO 2013 framework Overview Why the update? What has been
More informationThe COSO Risk Framework: A reference for internal control? Transition from COSO I to COSO II
The COSO Risk Framework: A reference for internal control? Transition from COSO I to COSO II S P E A K E R : D O T T. FA B I O A C C A R D I C O U R S E O F B U S I N E S S A U D I T I N G U N I V E R
More informationThe Current State of Risk Management Maturity for Belgian Organizations kpmg.com/be
Enterprise Risk Management The Current State of Risk Management Maturity for Belgian Organizations kpmg.com/be 2 Enterprise Risk Management Table of content 1. Introduction...05 2. Takeaways...07 3. Key
More informationSuccessful ERM Program Standards. Definitions of Enterprise Risk Management (ERM)
1 Successful ERM Program Standards Enterprise Risk Management Vendor Management Business Continuity IT GRC Internal Audit Regulatory Compliance Manager William C. Hord V.P. of Enterprise Risk Management
More informationEnterprise Risk Management Survey 2011
Enterprise Risk Management Survey 2011 - A Driver of Enterprise Value in the Emerging Environment Governance, Risk and Compliance Services (GRCS) KPMG in India 6 April 2011 Neville Dumasia About this survey
More informationpwc.co.uk Enterprise Risk Management
pwc.co.uk Enterprise Risk Management Contents What s on your mind? 01 Our point of view 02 What good looks like 04 How we can help 06 What you gain 07 When to act 08 Intelligent Digital 09 What s on your
More informationAgenda. Enterprise Risk Management Defined. The Intersection of Enterprise-wide Risk Management (ERM) and Business Continuity Management (BCM)
The Intersection of Enterprise-wide Risk (ERM) and Business Continuity (BCM) Marc Dominus 2005 Protiviti Inc. EOE Agenda Terminology and Process Introductions ERM Process Overview BCM Process Overview
More informationTexas Tech University System
Texas Tech University System October 31, 2017 ERM Overview Evolution of Risk Management Risk Traditional Definition The possibility that something bad or unpleasant will happen. Merriam-Webster Minimizing
More informationCatching Fraud During a Recession Through Superior Internal Controls. FICPA s 25 th Annual Accounting Show. J. Stephen Nouss September 29, 2010
Catching Fraud During a Recession Through Superior Internal Controls FICPA s 25 th Annual Accounting Show J. Stephen Nouss September 29, 2010 1 Session Objectives Fraud Facts (2008 Association of Certified
More informationInternal Oversight Division. Audit Report. Audit of Enterprise Risk Management
Internal Oversight Division Reference: IA 2016-08 Audit Report Audit of Enterprise Risk Management December 16, 2016 IA 2016-08 2. TABLE OF CONTENTS LIST OF ACRONYMS... 3 EXECUTIVE SUMMARY... 4 1. INTRODUCTION...
More informationExtended Enterprise Risk Management
Extended Enterprise Risk Management Driving performance through the extended enterprise October 2015 A network within a network The Extended Enterprise is the concept that an organization does not operate
More informationREPORT 2015/077 INTERNAL AUDIT DIVISION
INTERNAL AUDIT DIVISION REPORT 2015/077 Advisory engagement to assist the International Trade Centre in its efforts to develop a risk management framework 29 July 2015 Assignment No. VE2014/350/01 CONTENTS
More informationEnterprise Risk Management (ERM) - Impact of 2017 COSO ERM Model
Enterprise Risk Management (ERM) - Impact of 2017 COSO ERM Model Institute of Internal Auditors, Detroit Chapter Meeting February 2019 With you today Sarah Ann Moore Director Internal Audit and Enterprise
More informationFrom Dictionary.com. Risk: Exposure to the chance of injury or loss; a hazard or dangerous chance
Sharon Hale and John Argodale May 28, 2015 2 From Dictionary.com Enterprise: A project undertaken or to be undertaken, especially one that is important or difficult or that requires boldness or energy
More informationStrengthening Your Enterprise Risk Management Process
Strengthening Your Enterprise Risk Management Process Belinda Mumma, Senior Consultant, Enterprise Risk Management Services bmumma@sollievo.com (866) 605-5664 x3400 Discussion Topics Definition of Enterprise
More informationPRESENTING ERM TO THE BOARD
PRESENTING ERM TO THE BOARD ebook Content: Introduction: Why Report?.2 Increased Need for ERM Reporting....3 2 Goals of Risk Management Reporting 6 4 Useful Presentations of Risk Information...8 How Do
More informationRisk Management Culture: The Linkage Between Ethics & Compliance and ERM September 14, 2009
2009 Compliance and Ethics Institute Risk Management Culture: The Linkage Between Ethics & Compliance and ERM September 14, 2009 Table of contents Section 1 2 3 4 5 6 Learning objectives Why measure risk
More informationEnterprise Risk Management Program Development Update. Finance & Audit Committee Meeting September 25, 2015
Enterprise Risk Management Program Development Update Finance & Audit Committee Meeting September 25, 2015 Enterprise Risk Management Presentation Topics Enterprise Risk Management ( ERM ) Overview Lead
More informationEY Center for Board Matters Boards and internal audit
EY Center for Board Matters Boards and internal audit Working together to strengthen risk management Growing demands on boards The role of the board has always been an important and demanding one, but
More informationRisk Management at Statistics Canada
Risk Management at Statistics Canada Presentation to Workshop on Risk Management Practices in Statistical Organizations J. Mayda April 25 th, 2016 Introduction Statistics Canada has had a formal Integrated
More informationLeveraging ERM to meet. and create business value. Management Flora Do, Senior Manager, Enterprise Risk Management
Leveraging ERM to meet regulatory requirements and create business value Susan Hwang, National Leader, Enterprise Risk Management Flora Do, Senior Manager, Enterprise Risk Management March 27, 2012 With
More informationDUBAL s ISO based ERM Program
DUBAL s ISO 31000-based ERM Program Building a Harmonized, Proactive and Sustainable Approach to Risk Management October, 2013 Toby Shore Corporate Treasurer & Chief Risk Officer DUBAL Key Things To Discuss
More informationSANTAM GROUP RISK COMMITTEE CHARTER
1 SANTAM GROUP RISK COMMITTEE CHARTER 1. Constitution 1.1 The Risk Committee (the Committee) is constituted as a Committee of the Board of Directors (the Board) of Santam Limited (the Company). 1.2 The
More informationThe ERM Revolution: Advancing the Cause April 26, 2017
The ERM Revolution: Advancing the Cause April 26, 2017 Presented by: Jim Yard and Don Owens Contact Information Donald R. Owens, Shareholder Risk Advisory Services CPA, CITP, CFF, CIA, CFSA, CRMA, CBA
More informationB U S I N E S S R I S K M A N A G E M E N T L T D
B U S I N E S S R I S K M A N A G E M E N T L T D Governance, Risk and Compliance (GRC) After completing this course you will be able to Course Level Understand the requirements and benefits of GRC Develop
More informationEFFICIENT USE OF AUDIT COMMITTEES
AGENDA EFFICIENT USE OF AUDIT COMMITTEES BRENT YOUNG, CPA JERRY GAITHER, CPA Best practices related to: Audit Committee Process Internal Audit Risk Management 2 AUDIT COMMITTEE PROCESS AND PROCEDURES Audit
More informationNext Wave of Continuous Control Monitoring solution A Point of View. For Private circulation only
Next Wave of Continuous Control Monitoring solution A Point of View For Private circulation only Content Introduction 04 What is Continuous Controls Monitoring (CCM)? 06 Our Approach for Implementing CCM
More informationInternal Controls Optimization
Internal Controls Optimization PricewaterhouseCoopers LLP Controls optimization Background on Internal Controls Background on Internal Controls Business advances that have offered growth and opportunity
More informationCGEIT Certification Job Practice
CGEIT Certification Job Practice Job Practice A job practice serves as the basis for the exam and the experience requirements to earn the CGEIT certification. This job practice consists of task and knowledge
More informationSample Strategy and Value Oversight Policy
Sample Strategy and Value Oversight Policy This document provides a sample Strategy & Value Oversight policy which includes a high level overview of the key roles and responsibilities of the various participants.
More informationRecognizing your needs
Our internal audit and IT risk assurance capability statement Recognizing your needs www.pwc.com/ph Our Assurance services Assurance PwC Assurance team delivers the assurance you need on the financial
More informationMaximizing value from your lines of defense
Insights on governance, risk and compliance December 2013 Maximizing value from your lines of defense A pragmatic approach to establishing and optimizing your LOD model Contents Introduction Are you getting
More informationEnterprise Risk Management: Developing a Model for Organizational Success. White Paper
Enterprise Risk Management: Developing a Model for Organizational Success White Paper January 2009 Overview Less than a decade ago, Enterprise Risk Management (ERM) was an unfamiliar concept. Today, the
More informationBoards and internal audit: Working together to strengthen risk management
Boards and internal audit: Working together to strengthen risk management Growing demands on boards The role of the board has always been an important and demanding one, but today s board members face
More informationDeloitte Governance Framework and Maturity Model
Deloitte Governance Framework and Maturity Model Deloitte Governance Framework The Deloitte Governance Framework was developed to help boards and executive management assess the effectiveness of the organization
More informationGuideline. Operational Risk Management. Category: Sound Business and Financial Practices. No: E-21 Date: June 2016
Guideline Subject: Category: Sound Business and Financial Practices No: E-21 Date: June 2016 1. Purpose and Scope of the Guideline This Guideline sets out OSFI s expectations for the management of operational
More informationIntroduction to ERM (Enterprise Risk Management)
Introduction to ERM (Enterprise Risk Management) Jonathan Burns Director of Finance for Paramount Health Care since November 2014 Relocated to NW OH from Lexington, KY Prior roles in higher education and
More informationCertificate in Internal Audit 3
Certificate in Internal Audit 3 Risk Based Auditing- the next level Who should attend? Heads of Audit, Audit managers and senior auditors Auditors responsible for developing or implementing a risk based
More informationRisk Advisory SERVICES. A holistic approach to implementing effective governance, managing risk and maintaining compliance
Risk Advisory SERVICES A holistic approach to implementing effective governance, managing risk and maintaining compliance Contents Weaver's Risk Advisory Services 1 Enterprise Risk Management 4 Assessing
More informationEY Center for Board Matters. Leading practices for audit committees
EY Center for Board Matters for audit committees As an audit committee member, your role is increasingly complex and demanding. Regulators, standard-setters and investors are pressing for more transparency
More informationEnterprise Risk Management Discussion American Gas Association Risk Management Committee Meeting
Enterprise Risk Management Discussion American Gas Association Risk Management Committee Meeting July 17, 2017 Objectives Provide perspective on the evolution of Enterprise Risk Management (ERM) New 2017
More informationCurrent State of Enterprise Risk Oversight:
Current State of Enterprise Risk Oversight: Progress is Occurring but Opportunities for Improvement Remain July 2012 Mark Beasley Bruce Branson Bonnie Hancock Deloitte Professor of ERM Associate Director,
More informationHCCA Audit & Compliance Committee Conference. February 29-March 1, Drivers of ERM. Enterprise Risk Management in Healthcare.
Enterprise Risk Management in Healthcare Deloitte & Touche LLP Heather Hagan, Senior Manager Nancy Perilstein, Senior Manager February 29, 2016 Discussion Items Drivers of Enterprise Risk Management (ERM)
More informationEnterprise risk management Protecting and enhancing value Advisory
Enterprise risk management Protecting and enhancing value Advisory October 2016 kpmg.co.za 2016 KPMG Services (Pty) Ltd, a South African company and a member firm of the KPMG network of independent member
More informationRisk Assessment - Balancing Risk While Enhancing Controls
Risk Assessment - Balancing Risk While Enhancing Controls cliftonlarsonallen.com Session Objectives Define risk and risk assessment. Execution of assessment and approach Impact on controls and future state
More informationFinancial Institutions Consulting. Quality service. Personal attention.
Financial Institutions Consulting Quality service. Personal attention. Why Weaver? With more than 65 years of experience and a commitment to our financial institution clients, Weaver is established as
More informationExecutive Summary. Exhibit 1- Streamlined communication to the Board of Directors
Executive Summary Enterprise Risk Management (ERM) remains one of the most important tasks of corporate leadership teams. The increased pace and magnitude of technology innovation, regulatory changes,
More informationERM Retooled: Driving Performance by Revising and Enhancing Risk Management Governance Wipfli LLP
ERM Retooled: Driving Performance by Revising and Enhancing Risk Management Governance 2018 Wipfli LLP In September 2017, the Committee of Sponsoring Organizations (COSO) a committee that provides guidance
More informationTraining Fees 4,250 US$ per participant for Public Training includes Materials/Handouts, tea/coffee breaks, refreshments & Buffet Lunch
Training Title DEVELOPING EFFECTIVE KRIs (KEY RISK INDICATORS) Training Duration 5 days Training Dates & Venue REF ML056 Developing Effective KRIs (Key Risk Indicators) 5 28 Oct-01 Nov $4,250 Abu Dhabi,
More informationRole of Board of Directors in Risk Management. CPA Erick Audi Thursday, 15 th November 2018
Role of Board of Directors in Risk Management Presentation by: CPA Erick Audi Thursday, 15 th November 2018 Uphold public interest Presentation Agenda Introduction & Definitions Legal Provisions/Guidelines
More informationSession 7: Corporate Governance
Session 7: Corporate Governance New York Bankers Association-Community Bank Auditors Group 2016 Internal Audit Training-June 6-8, 2016 MEMBER OF ALLINIAL GLOBAL, AN ASSOCIATION OF LEGALLY INDEPENDENT FIRMS
More informationLEVERAGING ERM BEYOND COMPLIANCE. July 25, 2017
LEVERAGING ERM BEYOND COMPLIANCE July 25, 2017 Presenters Steve Menaker Shawn Dahl Adam Marshall Assurance Partner, National Manufacturing Industry Lead Principal, Risk Advisory Services Director, Risk
More informationThe Road to Continuous Assurance. Jason A. Gross, CPA, CIA, CFE, CISA, ACDA Vice President, Controls Management Siemens Financial Services, Inc.
The Road to Continuous Assurance Jason A. Gross, CPA, CIA, CFE, CISA, ACDA Vice President, Controls Management Siemens Financial Services, Inc. Agenda Key Drivers for Successful Implementation Technology
More informationSAP Road Map for Governance, Risk, and Compliance Solutions
SAP Road Map for Governance, Risk, and Compliance Solutions Q4 2016 Customer Disclaimer The information in this presentation is confidential and proprietary to SAP and may not be disclosed without the
More informationEnterprise Risk Management Report
Effective risk management is fundamental to the achievement of the Group s strategic objectives. The ERM System has been in place since 2010 which provides clear responsibility and accountability structures
More informationService Business Plan
Service Business Plan Service Name Internal Audit Service Type Internal Service Owner Name Sheila Jones Year 2018 Service Owner Title Service Description City Auditor An internal service to provide independent,
More informationGleim CIA Review Updates to Part Edition, 1st Printing June 2018
Page 1 of 15 Gleim CIA Review Updates to Part 1 2018 Edition, 1st Printing June 2018 Study Unit 3 Control Frameworks and Fraud Pages 66 through 69 and 76 through 77, Subunit 3.2: In accordance with the
More informationEnterprise Risk Management. Focus on the Future June 2017
Enterprise Risk Management Focus on the Future June 2017 2017 Crowe 2017 Crowe Horwath Horwath LLP LLP Learning Objectives and Agenda Objectives Distinguish Risk Management from ERM Understand the Value
More informationImprove GRC Maturity through Combined Assurance
White Paper Improve GRC Maturity through Management External Assurance Providers Internal Assurance Providers Oversight Governance; Risks and Controls Figure 1: The Model What is Combined Assurance? With
More informationRoad to Self Governance
Road to Self Governance Transform internal controls; sustain business performance 8 January 2015 Contents 1. Setting the Context 2. What needs to be done 3. Perspectives on IFC coverage 4. Leveraging IFC
More informationLIVING IN THE REAL WORLD THE LEGAL AND INSURANCE ASPECTS OF SMS
LIVING IN THE REAL WORLD THE LEGAL AND INSURANCE ASPECTS OF SMS Minneapolis, Minnesota August 8-9, 2017 Special Thanks Our Host: August 8-9, 2017 Panelists Risk Management Perspective Michael Yip, Vice
More informationEnterprise Risk Management Montana State Fund
Enterprise Risk Management Montana State Fund Report to the Board January 28, 2011 Presented by: Mary Peter, Director of Enterprise Risk Management Enterprise Risk Management (ERM) Defined An integrated
More informationHCCA Compliance Institute : Intersection of Internal Audit & Compliance. April 17, Agenda. Where are we today?
HCCA Institute 2018 708: Intersection of & April 17, 2018 Agenda Objectives Where are we today? Corporate Integrity: The intersection of, and Privacy Questions 2 Where are we today? 3 1 Regulatory change
More informationREGULATORY HOT TOPIC Third Party IT Vendor Management
REGULATORY HOT TOPIC Third Party IT Vendor Management 1 Todays Outsourced Technology Services Core Processing Internet Banking Mobile Banking Managed Security Services Managed Data Center Services And
More informationERM: Risk Maps and Registers. Performing an ISO Risk Assessment
ERM: Risk Maps and Registers Performing an ISO 31000 Risk Assessment Agenda Following a Standard? Framework First Performing a Risk Assessment Assigning Risk Ownership Data Management Questions? Following
More informationYour committee: Evaluates the "tone at the top" and the company's culture, understanding their relevance to financial reporting and compliance
Audit Committee Self-assessment Guide The following guide summarizes leading audit committee practices discussed in the "Audit Committee Effectiveness- What Works Best" report. You may use it to help assess
More informationA Strategic Approach to Bank Fraud
Fraud Case Study A Strategic Approach to Bank Fraud How Banks Can Move From Reactive to Proactive Fraud Prevention and Detection Fraud prevention and detection remains one of the biggest and most pressing
More informationCity of Saskatoon Business Continuity Internal Audit Report
www.pwc.com/ca City of Saskatoon Business Continuity Internal Audit Report June 2018 Executive Summary The City of Saskatoon s (the City ) Strategic Risk Register identifies Business Continuity as a high
More informationIntelligent automation and internal audit
Intelligent automation and internal audit Adding value through governance, risk management, and controls Second article in the series kpmg.ch Contents Governing intelligent automation across the enterprise
More informationLeiningerCPA, Ltd. RISK MANAGEMENT POLICY STATEMENT
LeiningerCPA, Ltd. RISK MANAGEMENT POLICY STATEMENT This policy provides an overview of the bank s risk management process and defines the broad responsibilities for overseeing corporate governance and
More informationEnterprise Risk Management Program
Enterprise Management Program APPA Meeting Austin, Texas September 25, 2007 Presented by: L.D. Hollingsworth 1 Agenda Introduction - Why ERM? Governance & Reporting Structure CPS Energy s ERM Approach
More informationEnterprise Risk Management
Compliance, Audit, Risk Management and Legal Affairs Committee Enterprise Risk Management Higher Education Scorecards, Performance Based Metrics, and Faculty Compensation Alan D. Phillips Vice President
More informationDirector Training and Qualifications
4711 Yonge Street Suite 700 Toronto ON M2N 6K8 Telephone: 416-325-9444 Toll Free 1-800-268-6653 Fax: 416-325-9722 4711, rue Yonge Bureau 700 Toronto (Ontario) M2N 6K8 Téléphone : 416 325-9444 Sans frais
More informationOptimizing an Enterprise Wide Effective Vendor Risk Management Program. Pam Schott Head and VP Enterprise Supplier Governance
Optimizing an Enterprise Wide Effective Vendor Risk Program Pam Schott Head and VP Enterprise Supplier Governance June 1, 2015 Emerging Industry Trends As Procurement organizations mature; their focus
More informationAsset Acceptance Capital Corp.
Asset Acceptance Capital Corp. A Practical Approach to Enterprise Risk Management Detroit Chapter IIA September 14, 2010 1 Presenters Jeffrey S. Bankowski, CIA, CPA, CFF Jeff is currently the Vice President
More informationThe Road to Continuous Assurance. Jason A. Gross, CPA, CIA, CFE, CISA, ACDA Vice President, Controls Management Siemens Financial Services, Inc.
The Road to Continuous Assurance Jason A. Gross, CPA, CIA, CFE, CISA, ACDA Vice President, Controls Management Siemens Financial Services, Inc. Challenge Statement: Implement a CCM program for the Organization
More informationInternal Auditors and Enterprise Risk Management (ERM) ICPAK Presentation
Internal Auditors and Enterprise Risk Management (ERM) ICPAK Presentation April 2014 Disclaimer This presentation is made by KPMG Kenya, a member firm of the KPMG network of independent firms affiliated
More informationACCENTURE & SAP SUCCESS FACTORS INVESTIGATE CAPABILITIES WORKBOOK. Imagine where we will go together...
ACCENTURE & SAP SUCCESS FACTORS INVESTIGATE CAPABILITIES WORKBOOK Imagine where we will go together... Imagine where we will go together... AGENDA TUESDAY APRIL 19TH 12:00 PM Lunch (outside Ali Conference
More informationExecutive Teams and the Use of ISO in Decision Making. Scott Wightman, ARM-E National Director Gallagher ERM Practice
Executive Teams and the Use of ISO 31000 in Decision Making Scott Wightman, ARM-E National Director Gallagher ERM Practice Agenda Defining ERM Mission, Objectives and Uncertainty Governance and Risk Varying
More informationRSA ARCHER INSPIRE EVERYONE TO OWN RISK
RSA ARCHER INSPIRE EVERYONE TO OWN RISK Executive Priorities Growth is the highest priority 54 % 25 % Technology initiatives are second priority Business Growth & Technology Copyright 2016 EMC Corporation.
More informationRisk Management Developing an Effective Audit Plan
2013 CliftonLarsonAllen LLP Risk Management Developing an Effective Audit Plan Association of Credit Union Internal Auditors P L n L e A l n o s a r n L o t f i l C 3 1 0 2 cliftonlarsonallen.com Discussion
More informationOutsourcing banking processes: The question is no longer if, but how to effectively manage extended enterprises
Outsourcing banking processes: The question is no longer if, but how to effectively manage extended enterprises In today s business environment, banks are continuously facing challenges to reduce their
More informationBasel Committee on Banking Supervision. Stress testing principles
Basel Committee on Banking Supervision Stress testing principles October 2018 This publication is available on the BIS website (www.bis.org). Bank for International Settlements 2018. All rights reserved.
More informationControl and testing transformation
Control and testing transformation 1 Control and testing transformation Innovation and disruption are providing incredible opportunities and challenges to the process, risk and control environment in the
More informationFear, Uncertainty, Doubt
Fear, Uncertainty, Doubt However, ERM = Manageable OK, Back to The Bonadio Group Standard Enterprise Risk Management An Overview on Key Controls We Will Cover Why ERM ERM COSO basics Tangible benefits
More informationContinuous Monitoring: Getting Results Today!
Continuous Monitoring: Getting Results Today! Gerard (Rod) Brennan, PhD, CFE Risk & Internal Control Officer NA, Siemens Corporation Jason A. Gross, CPA, CIA, CFE, CISA, ACDA Vice President, Controls Management,
More informationIgloo. Financial modeling software for managing risk
Igloo Financial modeling software for managing risk Property & casualty (P&C) insurers and reinsurers are facing growing market and regulatory pressures to improve risk management. Igloo is a financial
More informationAdvisory Services Governance, Risk & Compliance
Advisory Services Governance, Risk & Compliance Caribbean Association of Audit Committee Members Inc. 2010 Conference Caretakers of Integrity and Accountability: The Role of Internal Audit in Corporate
More informationAgenda. Agenda. Definitions and Processes. Risks. Audit & ERM. Key Strategies. Conclusions ERM and Audit 1. ERM and Audit.
Agenda 1 Agenda Definitions and Processes Risks Audit & ERM Key Strategies Conclusions 2 2017 1 ERM: Definition From Wikipedia, the free encyclopedia ERM in business includes the methods and processes
More informationEnterprise Risk Management Course outline
Enterprise Risk Management Course outline Day One: Understanding Enterprise Risk Management (ERM) What is ERM Explanation of ERM and why it is not fully understood The current economic crisis and how ERM
More information