Strengthening Your Enterprise Risk Management Process

Similar documents
COSO ERM: Integrating with Strategy and Performance. Michael Parkinson

Gleim CIA Review Updates to Part Edition, 1st Printing June 2018

Leveraging ERM to meet. and create business value. Management Flora Do, Senior Manager, Enterprise Risk Management

Successful ERM Program Standards. Definitions of Enterprise Risk Management (ERM)

The COSO Risk Framework: A reference for internal control? Transition from COSO I to COSO II

Sample Corporate Risk Management Policy

Emerging Trends in Auditing ERM COSO ERM 2017

Gleim CPA Review Updates to Business Environment and Concepts 2018 Edition, 1st Printing March 2018

From Dictionary.com. Risk: Exposure to the chance of injury or loss; a hazard or dangerous chance

Enterprise Risk Management Defined and Explained

LeiningerCPA, Ltd. RISK MANAGEMENT POLICY STATEMENT

Enhanced Risk Management Policy

Enterprise Risk Management Aligning Risk with Strategy and Performance COSO ERM Framework Update

Enterprise Risk Management

Aligning and Integrating ERM and Business Process. Federal ERM Summit September 9, :00-12:00

Sample Strategy and Value Oversight Policy

Charter for Enterprise Risk Management

ERM Retooled: Driving Performance by Revising and Enhancing Risk Management Governance Wipfli LLP

Enterprise Risk Management: Developing a Model for Organizational Success. White Paper

ISACA. The recognized global leader in IT governance, control, security and assurance

Role of Board of Directors in Risk Management. CPA Erick Audi Thursday, 15 th November 2018

THE ENTERPRISE AND RISK MANAGEMENT POLICY

716 West Ave Austin, TX USA

Guidance Note: Corporate Governance - Board of Directors. January Ce document est aussi disponible en français.

Miles CPA Review: BEC Q Updates for 2017 Edition

METROPOLITAN TRANSPORTATION AUTHORITY

Risk Advisory Services Developing your organisation s governance for competitive advantage

Risk Management Strategy

AUDITING. Auditing PAGE 1

Internal Control at OSU COSO & Enterprise Risk Management. Oregon State University Board of Trustees Executive & Audit Committee Educational Session

B U S I N E S S R I S K M A N A G E M E N T L T D

Risk Management at Statistics Canada

2013 New COSO 2013 Framework and Current Trends in Risk Management

Enterprise Risk Management Aligning Risk With Strategy and Performance

Compliance, Internal Audit, and Risk Management: What do they look like at a Managed Care Plan?

Enterprise Risk Management, Compliance, and Management Advisory Services: An Integrated Approach. SCCE s Higher Education Compliance Conference

Risk Management. Embedding Good Practice. Aidan Horan Governance IPA

Fraud Risk Management

By the Financial Forensic Investigation Team of the Attorneys Fidelity Fund

DIRECTOR TRAINING AND QUALIFICATIONS: SAMPLE SELF-ASSESSMENT TOOL February 2015

Internal Control Integrated Framework. An IAASB Overview September 2016

Internal Control Integrated Framework. An IAASB Overview September 2016

Request for Proposal Enterprise Risk Management Framework Proposals will be received until October 22, 2018 Copies of this proposal can be found at:

APS 330 Remuneration Disclosure

Risk Management Culture: The Linkage Between Ethics & Compliance and ERM September 14, 2009

Catching Fraud During a Recession Through Superior Internal Controls. FICPA s 25 th Annual Accounting Show. J. Stephen Nouss September 29, 2010

Risk Appetite Framework Linking Risk to Strategy Joseph A. Iraci Managing Director, TD Ameritrade

GRM OVERSEAS LIMITED RISK MANAGEMENT POLICY

Washington Metropolitan Area Transit Authority Board Action/Information Summary

Enterprise Risk Management: Aligning Risk with Strategy & Performance June 26, :45 p.m. 4:45 p.m.

Lya Villasuso OECD Corporate Affairs Division Response ed to: RE: Corporate Governance and the Financial Crises

Risk Management With an Enterprise (Wide) Focus

RISK MANAGEMENT REPORT

Governance Guideline SEPTEMBER 2013 BC CREDIT UNIONS.

20 Years in the Making. Meet the New ICIF: Revisions to COSO s Internal Control Integrated Framework. Dr. Sandra Richtermeyer COSO Board Member

Audit Training-of-Trainers Workshop, November 2014, Vienna Components of internal control within organization

Are you prepared for this Challenge? The new COSO Enterprise Risk Management Framework

In Control: Getting Familiar with the New COSO Guidelines. CSMFO Monterey, California February 18, 2015

Next-generation enterprise risk management

Risk Management Developing an Effective Audit Plan

Fear, Uncertainty, Doubt

Risk Management in the 21 st Century Ameren Business Risk Management

Agenda. Enterprise Risk Management Defined. The Intersection of Enterprise-wide Risk Management (ERM) and Business Continuity Management (BCM)

SAMPLE BEC SuperfastCPA Review Notes

Risk Management Policy

IIA ERM Summit. Jim DeLoach and Steve Jameson August 22, 2010

More than 2000 organizations use our ERM solution

9/17/2017. An Overview of COSO s New Framework and Implementation Guidance SPEAKER. Laura Harden, CPA History

COSO Enterprise Risk Management Framework- Integrating Strategy and Performance

Introduction to ERM (Enterprise Risk Management)

Enterprise Risk Management. Assessing and Managing Risks at Texas A&M University

Enterprise Risk Management Course outline

Ms. Michael C. Redmond, MBCP,FBCI,CEM, PhDc

Active Essex Risk Management Strategy

Executive Teams and the Use of ISO in Decision Making. Scott Wightman, ARM-E National Director Gallagher ERM Practice

Implementing Authentic Enterprise Risk Management

The Ins and Outs: Audits Under FDICIA. Jennifer Gureckis and Kaylyn Landry BerryDunn February 27, 2018

Enterprise Risk Management Discussion American Gas Association Risk Management Committee Meeting

Audit Management - Software. Internal Audit Refresher Course Technical Session 6 27 August, 2016

Terms of Reference for the Board of Directors

Internal Control Integrated Framework. May 2013

Enterprise Risk Management Montana State Fund

Practices in Enterprise Risk Management

Internal Oversight Division. Audit Report. Audit of Enterprise Risk Management

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

HCCA Audit & Compliance Committee Conference. February 29-March 1, Drivers of ERM. Enterprise Risk Management in Healthcare.

Guidance Note: Corporate Governance - Audit Committee. March Ce document est aussi disponible en français.

Guidance Note: Corporate Governance - Audit Committee. January Ce document est aussi disponible en français.

Enterprise Risk Management Integrated with Strategy & Performance

Session 7: Corporate Governance

Self Assessment Workbook

Sarbanes-Oxley Act of 2002 Can private businesses benefit from it?

The COSO Approach to Enterprise Risk Management

It s All About Strategy!

2013 COSO Internal Control Framework Update. September 5, 2013

To: Identify your chief goals and objectives Identify risks Prioritize the risks to achieving objectives Determine which controls/processes to review

Enterprise Risk Management (ERM) - Impact of 2017 COSO ERM Model

risk management ERM Roles & Responsibilities In Community Banks: Who is Responsible for What?

Application for Accreditation of Prior Learning

Enterprise Risk Management Handbook. June, 2010

Transcription:

Strengthening Your Enterprise Risk Management Process Belinda Mumma, Senior Consultant, Enterprise Risk Management Services bmumma@sollievo.com (866) 605-5664 x3400

Discussion Topics Definition of Enterprise Risk Management Simple first steps to a more strategic risk oversight Overview of the Enterprise Risk Management lifecycle Evaluating Enterprise Risk Management System needs

Definition of Enterprise Risk Management? a process, effected by an entity's board of directors, management and other personnel, applied in strategy setting and across the enterprise, designed to identify potential events that may affect the entity, and manage risks to be within its risk appetite, to provide reasonable assurance regarding the achievement of entity objectives. Source: COSO Enterprise Risk Management Integrated Framework. 2004. COSO

Why is ERM Important For-profit or not, it exists to realize value for its stakeholders Align risk management with business strategy and planning Improve management and response to risks across the enterprise Protect your organizational reputation and image Reduce operating losses and surprises Enhance regulatory compliance Improve capital deployment and resources Eliminate redundancies

Simple First Steps

Topics of Discussion ERM is a process- not a project ERM affects people ERM sets strategy ERM is across the entire enterprise Risk Appetite Reasonable assurance

Simple first steps to a more strategic risk oversight ERM is a process- not a project Not a one time project or event ERM is a series of actions that permeate an organizations activities.

Simple first steps to a more strategic risk oversight ERM players Board of Directors The Board of Directors play a critical role by establishing the right environment or tone-at-the-top for the embrace of ERM by the Credit Union management team and general staff. Oversees management s approach to ERM and determines the Credit Union s appetite for risk. Enterprise Risk Management Policy Risks that thecredit union is exposed to Risk Categories and types of risk credit union is exposed

Simple first steps to a more strategic risk oversight ERM Players Cont. Review Credit Union s risk management policies at least once a year On a regular basis, be able to show that Credit Union has an effective ERM process in place and that risk management policies for significant risks are being adhered to. CEO Overseeing and ensuring that there is an effective ERM Process in place to: Identify risks Determine criteria for measuring risk Develop appropriate risk management policies Measure different types of risk the Credit Union is exposed to in accordance with the risk management policies.

Simple first steps to a more strategic risk oversight ERM Players Cont. Establish effective processes, procedures and controls for managing risk Provide the Board of Directors with timely, accurate reporting of significant risks Provide Board of Directors with reports that assess whether the Credit Union has an effective ERM process Staff Participate in understanding the ERM process Explain functions that they are responsible for within the Credit Union

Simple first steps to a more strategic risk oversight ERM Sets Strategy Provide a mission or vision statement Set strategic objectives that align with mission or vision

Simple first steps to a more strategic risk oversight ERM is across the entire enterprise Consider your entire scope of activities All levels of the organization Strategic Planning and resource allocation Business unit activities Marketing Human Resources Special projects New Initiatives Etc

Simple first steps to a more strategic risk oversight Risk Appetite The amount of risk an entity is willing to accept in the pursuit of value. *Qualitative Approach-High, moderate or low Quantitative Approach- growth, return and risk Risk appetite is directly related to the Credit Union s strategy. Risk tolerance is the acceptable level of variation relative to the achievement of objectives.

Simple first steps to a more strategic risk oversight Reasonable Assurance Understand the extent to which the Credit Union s strategic objectives are being met Understand the extent to which the Credit Union s operations objectives are being met Reporting is happening and it is reliable Regulations and laws are being followed

ERM Lifecycle

Topics of Discussion Lifecycle Identify Risks Analyze Risks Control Risks Monitor Risks Improve Risk Management Report on the Risk Management Progress

Overview of Enterprise Risk Management Lifecycle Identify Risks Understand the organization s expectations and strategic objectives Establish consistent assessment measures Identify key areas Hold risk identification and assessment sessions Identify key risks Assess key risks Refresh assessments periodically and add emerging risks.

Overview of Enterprise Risk Management Lifecycle Analyze Risks How likely will an event occur? Who and what will be affected? What are the effects to the organization?

Overview of Enterprise Risk Management Lifecycle Control Risks What is the impact to your organization? What is the likelihood of this occurrence What is the cost of controlling the occurrence(s)? What type of mitigation(s) will you put in place?

Overview of Enterprise Risk Management Lifecycle Monitor Risks Implement controls and/or mitigations Monitor the residual risk Periodically review control and mitigation effectiveness

Overview of Enterprise Risk Management Lifecycle Improve Risk Management Decide if the right people are involved? What new risks have been identified? New services, products and processes New risks from review of existing services, products and processes How can the business improve the way it manages existing risks?

Overview of Enterprise Risk Management Lifecycle Report on the Risk Management Progress Reinforce key ERM concepts Ensure staff remains vigilant in identifying exposures Keep an open mind Keep the staff thinking about how to consider risk as they design new products, processes or services

System Needs

Evaluating Enterprise Risk Management System needs System evaluation Software based solution Reputable vendor- 2 to 3 References Legal review Flexible pricing based on usage and optional services Integrated solution, modular and Customizable Data conversion Support Training Can the system grow with your organization and support your needs for at least 3 to 5 years? Does software come with pre-loaded contents? Complete your DUE DILIGENCE on the vendor

Take Action

Questions Belinda Mumma, Senior Consultant, Enterprise Risk Management Services bmumma@sollievo.com (866) 605-5664 x3400

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback