ERM-Application Week 7-8
ERM-Application Week 7-8
ERM-Application Week 7-8
1
Risk
Identification
2
6
Risk
Evaluation
Assessment
5 3
Monitoring Risk Analysis
4
Implementation
1. Risk Identification
Financial Other
Strategic Risk Categories
Innovation
Risk
Customer
R&D Risk
Risk
Supply
Market
Chain
Risk Strategic Risk
Risks
Partnering Investor
Risk Risk
Planning Brand
Risk Risk
Operational Risk Categories
Financial
Governance
Reporting
Risk
Regulatory Risk
and Legal Fraud Risk
Risk
Sustainability
Emerging Risk
Risk
Communication Technology
Risk Risk
Financial
Market
Risk
Valuation
Credit Risk
Risk
Hedging Liquidity
Risk Risk
Financial
Risks
Inflation Interest
Risk Risk
Foreign Asset
Investment Risk
Risk
Other Risk Categories
Reputational
Risk
Investment Environmental
Risk Risk
Other
Economic
Risk
Identify Subcategories
organization.
Know Where You Stand
Structured
Interviews
Brainstorming Uses a risk survey or
Can effectively questionnaire to ask
generate lots of ideas specific questions Top Down / Bottom
of potential risk related to different Up Approach
scenarios that could types of potential risk
take place events facing a
particular risk owner
or risk center
Establish Risk Criteria
Prioritize the
critical risks
Determine critical from greatest
risks in the to least
Risk centers organization.
assigned to
risk owner
Responsibilities
of risk owner
Identify a
potential risk
event
Date to review Categorize the
risk risk event
Identify
Risk treatment Create A potential
causes
Risk
Register
What is the Assign risk
financial
owner
impact
Risk Assessment is
a process to
determine the cause
of the risk event, the Quantitative Root Cause
risk event itself, and Assessment- Analysis- Find
the impact and the Measures the the root cause
value of the of a potential
velocity of the risk impact risk event
event.
Qualitative Recognizes the source
Assessment- of the risk event
2
Three Basic
Causes way. so
Physical causes Human causes
A tangible or material People did something
item failed in some wrong or did not do
Brakes stop working on No one check
the Organization
a car condition of the causes
brakes
A system, process
or policy that
people use to make
decisions in doing
their work is faulty.
No procedure for
checking the
maintenance of the
cars
Fish-Bone
Casual
Diagram or
Factor Tree
Ishikawa
Analysis
Diagram
2
3. Risk Deter
mine
Analysis
Formul
Understand ate
3 The
Risk Analysis interrelationshi
p of
risk exposures
to
a potential risk
Risk aggregation event
and risk
correlation in an
organization’s risk
portfolio The best risk
strategies for the
organization from
risk assessments
3 3
A department
uses
Influence Diagrams interdependencie
to analyze the s
interrelationships of risks across
and the
enterprise.
M
Sample Analysis Tools a
k
i
n
A
g
department
uses t
analytic o
tools like
RAPID-Risk m
Assessment a
Process for n
Informed a
Decision- g
e
risks 3
associated Risk
Analysis
with their
strategic
goals.
Value of Data Analysis 3
Risk Analysis
COS
• Focus is to establish ERM goals as part of
the strategic management process. It does
not dive into the details of risk
management approaches and process, but
O addresses threats to the organization and
the need for proper controls.
II
• Rooted in risk management principles and
designed to provide an organized
methodology to evaluate risk exposures
ISO and react to the environment.
31000
Risk Controls 4
Implementation
Management is
responsible for IT Systems Financial &
implementing Operations
appropriate
controls to
reduce risk and Some Areas
to achieve for Risk
operational Controls
objectives.
Risk communication
becomes a key
component in surviving a
crisis situation
Communication must
demonstrate that senior
management is committed
to maintain an
environment of
Crisis transparency in it decision
making
Management
Elements of Continuity Plan 4
Implementation
Recovery time
Statement of
objectives, resources Task and activities
acceptable level of
needed and potential required
functioning failure points
Supporting
Structure to support documentation and Procedures and
the plan information processes
Describe
Description of interdependencies
personnel duties among the various
and responsibilities departments
5. Monitoring
5
Monitoring
Governance Enterprise
Balanced Dashboards Risk and Risk
Spreadsheets Scorecards Compliance Management
Software Software
Captures
company’s
strategy by
• Customer
• Internal
Processes
Like risk • Innovation
and Learning
registers
• Financial
Pictorial Focus on ERM focus
reporting of audit and on software
risks compliance solutions
p
Case Study: Walmart r
o
c
e
s
s
Developed KPI and KRI metrics .
incorporated in a balanced scorecard.
6. Evaluation
6
Evaluation
Evaluation