Category Archives: Strategic Risk Management

Для тех, кто интересуется безопасным доступом к онлайн-играм, наш партнер предлагает зеркало Вавады, которое позволяет обходить любые блокировки и сохранять доступ ко всем функциям казино.

RIMS Risk Maturity Model: ERM Approach and Process Management

Posted on by

Last week, we introduced the latest findings from studies of the RIMS Risk Maturity Model. In an effort to explain the model and results of the study more fully, it’s beneficial to break the RMM into each of its attributes. Here we’ll examine the first two attributes of an effective ERM program, ERM Based Approach and ERM Process Management.

ERM Based Approach

The emphasis of this attribute is to move organizations from an old, obsolete style of governance to a more holistic, integrated approach. Old-style governance is focused on regulatory compliance and silo specific risk management. The problem with this approach is it leaves the organization exposed to risk that isn’t governed by regulatory mandates, as well as cross functional risk that may be systemic to the company.

We see examples of failures in this approach all the time. West Virginia’s water contamination crisis, for example, was caused by a series of risks with inadequate controls—the chemical tank was not adequately surveyed, the employees were not directed to immediately report the leak, even the water filtration organization wrongly estimated that it could filter the chemicals out. None of these entities were at fault from a regulatory perspective, but they were still on the hook for millions in remediation (the chemical plant filed for Chapter 11 bankruptcy in January).

buy rybelsus online abucm.org/assets/jpg/rybelsus.html no prescription pharmacy

An ERM approach moves organizations past regulatory concerns, which are only a subset of the overall risk universe. This requires a number of activities that the Risk Maturity Model identifies as drivers of ERM Maturity—tone from the top, assimilation into front line activities, risk ownership—which when combined result in a more risk-aware enterprise.

RIMS Risk Maturity Model: ERM Process Management

With a new governance mindset in place, organizations can move to applying a risk-based process framework of Identify, Assess, Evaluate, Mitigate and Monitor within each business process.

The RMM assesses the degree to which these activities are pervasive inside business processes. Many executives misinterpret these processes as unique to ERM, when in fact the steps are iterative, constantly reoccurring within organizations but without any defined process or standardizations.

buy amaryl online abucm.org/assets/jpg/amaryl.html no prescription pharmacy

The key to ERM process management is to create a common language and structure so areas can better transfer knowledge to each other where beneficial.  This is done by integrating these framework steps into the business in a way that provides accountability, repeatability, and adequate reporting. A great example is the Vendor Management Governance function. Vendor management is frequently tasked with identifying critical vendors, assessing their risk (such as “due diligence”) and then managing through mitigation (contracts, insurance certificates) and monitoring (shipping times, order completion).

The problem is that vendor management, like other functions, is operating independently with too little information exchanged between vendor management and other governance functions.

Why is this important?

Strategic imperatives are by nature cross-functional, but are rarely linked to processes and activities on the front line. When not linked, risks to corporate objectives are either not addressed or treated differently by the business processes. This alignment is a critical driver of ERM maturity. Organizations that can effectively communicate goals—not just at the corporate level, but down to the front lines—are better equipped to achieve results and elevate concerns.

buy lasix online abucm.org/assets/jpg/lasix.html no prescription pharmacy

Interested in seeing how this approach differs from traditional governance? Watch our short video on Strategic Risk Management.

New Climate Change Report Highlights Risk Management Strategies

Posted on by

Global Warming

This week, a new report from the United Nations’ Intergovernmental Panel on Climate Change summarized the ways climate change is already impacting individuals and ecosystems worldwide and strongly cautioned that conditions are getting worse. Focusing on impacts, adaptation and vulnerability, the panel’s latest work offers insight on economic loss and prospective supply chain interruptions that should be of particular note for risk managers—and repeatedly highlights principles of the discipline as critical approaches going forward.

Key risks the report identified with high confidence, span sectors and regions include:

i. Risk of death, injury, ill-health, or disrupted livelihoods in low-lying coastal zones and small island developing states and other small islands, due to storm surges, coastal flooding, and sea-level rise.

ii. Risk of severe ill-health and disrupted livelihoods for large urban populations due to inland flooding in some regions.

iii. Systemic risks due to extreme weather events leading to breakdown of infrastructure networks and critical services such as electricity, water supply, and health and emergency services.

iv. Risk of mortality and morbidity during periods of extreme heat, particularly for vulnerable urban populations and those working outdoors in urban or rural areas.

v. Risk of food insecurity and the breakdown of food systems linked to warming, drought, flooding, and precipitation variability and extremes, particularly for poorer populations in urban and rural settings.

vi. Risk of loss of rural livelihoods and income due to insufficient access to drinking and irrigation water and reduced agricultural productivity, particularly for farmers and pastoralists with minimal capital in semi-arid regions.

vii. Risk of loss of marine and coastal ecosystems, biodiversity, and the ecosystem goods, functions, and services they provide for coastal livelihoods, especially for fishing communities in the tropics and the Arctic.

viii. Risk of loss of terrestrial and inland water ecosystems, biodiversity, and the ecosystem goods, functions, and services they provide for livelihoods.

The report highlights more sector-specific risks, and one table even highlight the panel’s perception of the role of risk management in the future of climate change policy and planning:

IPCC Chart

On the whole, the report lays out many familiar risk management approaches and how they can be best applied to evaluating the risks of climate change and how to mitigate them. Perhaps the environment is warming to risk-informed decision-making as well.

U.S. Fraud Up, Prevention Down

Posted on by

Although fraud has increased for U.S. organizations in the past two years—45% of U.S. organizations experienced fraud, compared to a global average of 37%—companies are doing less to prevent fraud than in 2011, according to a survey by PricewaterhouseCoopers.

The Global Economic Crime Survey 2014 found that the less proactive approach was consistent with the upward trend in economic crime in most fraud categories since 2011. Slightly more than half (53%) of organizations performed fraud risk assessments annually or more often, a significant drop from 70% of organizations that performed fraud risk assessments annually or more in 2011.

The report also found that the most serious economic crime experienced by U.S. respondents within the past 24 months was more likely committed internally (50%) than externally, (44%), but that external fraudsters are closing the gap. This trend is consistent with more organizations engaging in business opportunities in high-risk markets.

“The United States has proved to be fertile ground for domestic economic crime in recent years. Catastrophic coastal events on the Eastern and Gulf coasts have generated rampant insurance fraud that squanders taxpayer dollars and undermines community relief and reconstruction efforts. Farther inland, natural gas exploration and fracking have led to boom towns sprouting overnight in places like North Dakota, Wyoming, Utah, and Texas. Many of these towns do not have the infrastructure or governance capability to handle the influx of people, and crime, that inevitably accompany boom-town dynamics.

Land lease and mineral rights agreements, zoning ordinances, permits, and licenses have become particularly vulnerable to exploitation.” PwC Global Economic Crime Survey 2014

According to the report:

• More than half of U.S. organizations that experienced fraud in the past two years reported increased occurrences.

• 67% of U.S. respondents said their organizations now have, or plan to have operations in high-risk markets, compared to only 58% of global respondents.

• 57% of U.S. respondents said their organizations pursued opportunities in markets with high-levels of corruption risk within the past 24 months, versus 38% of global respondents.

Fraud levels are climbing:

• 24% of U.S. organizations that reported economic crime experienced accounting fraud in 2009. While this dropped to 16% in 2011, accounting fraud increased to 23% in 2014.

• In 2014, bribery and corruption doubled from 2011 levels of 7%, after dropping by more than a half, to 16% since 2009 PwC said.

GRC and Risk Management

Posted on by

Risk management is the most important part of an organization’s governance, risk and compliance program (GRC), according to a survey. When asked to forecast priorities, 33% of respondents stated that enterprise risk management is most important and 27% said ERM would continue to be important to their company. Out of 12 barriers to their GRC goals, organizations identified a lack of resources (52%) and lack of collaboration and cooperation (44%) as their top obstacles.

 

GRC Software | ERM Software
Courtesy of: CAREWeb