Author Archives: Emily Holbrook

About Emily Holbrook

Emily Holbrook is a former editor of the Risk Management Monitor and Risk Management magazine. You can read more of her writing at EmilyHolbrook.com.
Want to scan your crypto wallet for risks? Check: AML check BTC, USDT, ETH. Checking cryptocurrency wallets for dirty money. You may not be aware of a risky transaction and at any moment, even can increase your AML rating into the red zone.

Cavalcade of Risk #144

Posted on by

It’s almost turkey time. With that in mind, Nancy Germond culled the best risk management and insurance related posts on the web and related them to all things Thanksgiving on her blog, Insurance Writer.

Topics cover:

  • How one human turkey in the workplace can actually cost your organization
  • The case of an insurance investigator shot by the claimant he was investigating, allegedly after being mistaken for a turkey
  • The big turkey making people sit up and take notice (also known as climate change), which is addressed right here on the Monitor in the post, “GRC Preparedness in a Changing Climate
  • The “biggest turkeys of them all: mortgage makers”

There are more themed post to be seen at Insurance Writer — check it out.

 

RIMS ERM Conference: A Q&A on the Future of ERM

Posted on by

What does the future hold for enterprise risk management? That’s exactly what a panel Q&A session touched on during the recent RIMS ERM Conference. Carol Fox, director of strategic and enterprise risk practice for RIMS, moderated the discussion between attendees and:

  • Ryan Egerdahl, risk manager at Bonneville Power
  • Mary Gardner, chief risk officer at Zurich North America
  • Rob Torok, risk management consultant with IBM Global Services

To kick off the discussion, Fox asked the panelists what the biggest changes in ERM were within the last 10 years?

Mary: A really big issue is going to be risk based capital. Where do we require it and where are we going to reduce our investment so we can write insurance in growing areas of the world. We want to reduce our risk so we can free up our risk capital so we can go into growing areas such as BRIC nations.

Question: Have you spent much time talking aobut enterprise content management, like records management, which I’m hearing more and more about?

Rob: One of the things we’re rigorous about is information security, with both internal data and the data that belongs to our customers and our clients. We have an enourmous amount of customer data. Because of that, there are an enourmous amount of controls IBM has put into place.

Mary: It’s an emerging risk. In fact, On October 13th the SEC indicated that all companies will be required to provide information on past breaches and what they might expect in future breaches and what impact that may have on their financial statement. That’s scary and we need to figure out what that means. It’s something to definitely consider.

Question: Having a risk taxonomy — is that effective? Does it help you manage risks? By separating them into various categories?

Mary: I would say yes. We identify risks in each business division and analyze them. It’s kind of a top down, bottom up approach. We look at the different kinds of inputs. We also use that to determine systemic risks and see where we have risks concentrated in one particular area or business.

Rob: An organization must have a standard risk taxonomy. Everybody in the organization must look at those risks and talk about how those risks affect each particular business unit. We’ve developed a template of about 150 risks. That template is a fine starting point, but don’t use IBM’s or any other company’s template — it won’t apply to you.

A client gave me a list of 504 risks and asked me to comment on it. The reason they had 504 risks was because many risks were repeated in each business unit and geography. This is because they never had a standard taxonomy. That list could’ve dropped by 40 or 50% easily if they had a standard language or taxonomy.

Mary: Companies need to think of their standard taxonomy as a living document.

Question: What do you do to help identify emerging risks?

Ryan: I’m less concerned about the unknowables. i’m concentrating on the big risks facing us now. we have enough to worry about right now in our business alone.

Rob: I haven’t got a clue what that next risk is, but allow yourself to think broadly about it.Ddon’t close your eyes to things. Don’t shoot down ideas of someone who says “hey, what about this or what about that?”

Mary: Keep it simple. We can make this ERM process so complicated sometimes. Maybe if we just get back to basics it would be much better.

Ryan: If you’re just starting the ERM journey, don’t rush into the GRC software immediately — wait until you’re mature enough in the process to get there.

Mary: Get out of the box. There are  a lot of conversations that may spur thoughts. Talking to risk managers in other industries may spark ideas.

Rob: What about your business and social network? What are they worried about? I’m not talking about things that have already occurred, but what has not happened yet in their enterprises. Use that information to help you think about risks in your own enterprise.

 

RIMS ERM Conference Awards Excellence in the Field

Posted on by

The final day of the RIMS ERM Conference in San Diego was highlighted by the first-ever ERM Award of Distinction Luncheon, at which two people within the industry were honored for their innovative ERM programs that have demonstrated, with measurable value to their organization, enterprise risk management success. Essentially, the award was created to honor organizations that have shown tremendous committment to the ERM discipline. The criteria that the judging panel took into consideration included:

  • The scope of the ERM program and how it engages different levels throughout the organization
  • Its link or connection to the company’s overall mission
  • Its ability to create additional value for the organization

Honorable mention for the ERM Award of Distinction went to Goodwill Industries International. With the assistance of Deloitte’s Governance, Risk & Regulatory Services team and as as part of its national pro bono program, Goodwill developed an ERM program template to help member agencies improve their risk management practices. With a template in place, Goodwill was able to provide valuable guidelines to its members, that in-turn has helped protect one of the organization’s most vital assets — its name.

“This is a remarkable story and great example of how an ERM program can protect against reputational risks in a decentralized management structure,” Seaman said.

Jacqueline Fifield of Deloitte accepted the award on behalf of Goodwill.

The big winner of the 2011 ERM Award of Distinction was Paychex, Inc., a company that implemented an ERM program to add value throughout the entire organization, making sure its scope went beyond traditional risk oversight. As Seaman noted, “value creation was the focus of Paychex’s ERM program, and it certainly hit the mark. This is an exceptional example of an ERM program that set out to uncover opportunities for the company to reinvent itself, and it was directly responsible for generating significant revenue.”

Accepting the award was Allan Smith of Paychex, Inc.

Nowell Seaman, Jacqueline Fifield, Allan Smith and Mary Roth at the ERM Award of Distinction Luncheon.

Nate Booth on the 6 Approaches to Change

Posted on by

Welcoming guests to the first annual RIMS ERM Conference, author and consultant Nate Booth delivered a keynote speech on that touched on, among other things, the six approaches to change, which are:

  1. Avoidance approach
  2. Apathetic approach
  3. Resistant approach
  4. Reactive approach
  5. Anticipatory approach
  6. Creative approach

He stressed that the most successful companies use the creative approach and also react quickly to change, anticipate change and create change — using Apple and Zappos as examples. Booth also reminded everyone of two important beliefs that most people fail to recognize:

  1. Change creates opportunity
  2. There is always a way to use change to your advantage

Wise words that are not always lived by — especially in the business world.