Key Themes. Organizational Dynamics and Effective Risk Management. Organizational Alignment. Risk Management Effectiveness

Similar documents
EXCELLENCE IN RISK MANAGEMENT XIII Emerging Risks: Anticipating Threats and Opportunities Around the Corner

What does the WEF Global Risks Report have to do with my Risk Management program? GRM016 Speakers:

Enhanced Cyber Risk Management Standards. Advance Notice of Proposed Rulemaking

Understanding Enterprise Risk Management: An Overview

ก ก Tools and Techniques for Enterprise Risk Management (ERM)

INTERNAL AUDIT AND OPERATIONAL RISK T A C K L I N G T O D A Y S E M E R G I N G R I S K S T O G E T H E R

Introduction. The Assessment consists of: A checklist of best, good and leading practices A rating system to rank your company s current practices.

EMERGING INSURANCE RISKS. Presented by Lawrence Njore Apex Reinsurance Brokers- Nairobi- Kenya

CATEGORY 8 PLANNING CONTINUOUS IMPROVEMENT

Cybersecurity Insurance: New Risks and New Challenges

Ramirent s PATH TO performance & new financial targets

ENTERPRISE RISK MANAGEMENT (ERM) GOVERNANCE POLICY PEDERNALES ELECTRIC COOPERATIVE, INC.

Risk Management Strategy

Best Practices in ENTERPRISE RISK MANAGEMENT. [ Managing Risks Holistically ]

Version 2.0- Project. Q: What is the current status of your project? A: Completed

How To Drive Actionable Intelligence On The Big Data Journey. October 15, 2015

T A B L E of C O N T E N T S

Cybersecurity Insurance: The Catalyst We've Been Waiting For

Client Risk Solutions Going beyond insurance. Overview

Alexander Hamilton Best Practices Summit. USAA Enterprise Risk Management

Federal Banking Agencies Request Comment on Enhanced Cybersecurity Standards

The Value of Risk Transfer

#MICEU Fiona Reynolds. Managing Director, Principles for Responsible Investment

Booz Allen Hamilton. Third Quarter Fiscal 2015

Short termism: Insights from business leaders

SFPUC s 2011 Strategic Sustainability Plan. July 2011 Susan Wade Manager, Strategic Sustainability Planning External Affairs

DEBUNKING MYTHS FOR CYBER INSURANCE

Performance Metrics in a High Growth Environment

Risk Management Policy

Sharing insights on key industry issues*

Praxair, Inc. Matthew J. White Senior Vice President and Chief Financial Officer

FIRST QUARTER Financial Results January 5, 2017

PFS INGREDIENTS FOR SUCCESS

Creating Shared Value through ESG Portfolios. A division of RTI International

-How are claims handled once they are within the subrogation department?

Risk management framework

OMB Update Enterprise Risk Management. April, 2018

Improving Cyber-Security Through Insurance The Past, Present, and the Future

The Proactive Quality Guide to. Embracing Risk

Solving Cyber Risk. Security Metrics and Insurance. Jason Christopher March 2017

An Introductory Presentation for ECU Staff

Thirty-Second Board Meeting Risk Management Policy

Sections of the ORSA Report

PRIVATE CAPITAL ADVISORY SERVICES EXPERTS WITH IMPACT TM

Overview of the Key Findings

Stewardship at AAM. November Katy Grant, Senior Analyst - Responsible Investing Stewardship. Aberdeen Standard Investment

Cover title 26/29 Risk appetite gains momentum 45 light white in a changing world

Next-Gen Contract Management

Chapter 7: Risk. Incorporating risk management. What is risk and risk management?

Prior to joining Microsoft, Angel worked for Arthur Andersen in their New York Office.

Eight Key Trends for ERISA Process Outsourcing

Financing for Energy & Sustainability

SAN IPSE CAPITAL OF SILICON VALLEY

Reporting climate change risk

2018 ANNUAL MEETING OF SHAREHOLDERS May 18, 2018

Accounting for climate change

Report on Performance

Emerging risks what will we face in the future?

European public sector aims for world class construction sector. Dr. Ilka May Co-Chair and Head of Delivery EU BIM Task Group

Healthcare Industry Key Issues kkk

ORSA reports: gaps and opportunities

ARK Fintech Innovation ETF

Catastrophe Risk Engineering Solutions

ANTI-FRAUD CODE CONTENTS INTRODUCTION GOAL CORPORATE REFERENCE FRAMEWORK CONCEPTUAL FRAMEWORK ACTION FRAMEWORK GOVERNANCE STRUCTURE

Fiduciary Insights. COMPREHENSIVE ASSET LIABILITY MANAGEMENT: A CALM Aproach to Investing Healthcare System Assets

Discussion Paper: Claims Handling. April 2017 The Insurance in Superannuation Working Group

Enterprise Risk Management Focusing on the Right Risks

TAX. Good, Better, Best. South Korea. kpmg.com

Handbook for. Value-Based Billing engagements

Representations & Warranties Insurance. Gallagher Management Liability Practice

Gov't Must Integrate Insurance With Cybersecurity

Auditor s Letter. Timothy M. O Brien, CPA Denver Auditor Annual Audit Plan

SEC Reporting Update trends in SEC comment letters. What you need to know. Overview

M_o_R (2011) Foundation EN exam prep questions

DRAFf AGENCY PERFORMANCE AND ACCOUNTABILITY COMMISSION SUMMARY OF 2018 RECOMMENDATIONS

The Evolution of the Strategic CFO Eric Brandt

Risk Management Policy

Certified in Risk and Information Systems Control

Business Continuity Management and ERM

Aon Consulting s. Multilife Disability Plan Market Survey

Organizational Risk Assessment GOAL. What is a Risk Assessment 9/21/2018

Assurant Investor Overview

Cyber Security Liability:

CSR & Sustainability Current State of the Legal Industry Report 2018

AFERM Best Practices: Guideposts, Risk Registers and a Maturity Model

FSB Task Force on Climate-related Financial Disclosures. Eloy Lindeijer Amstelveen, 13 October 2016

ROLE OF THE ATTORNEY IN EMERGENCY PREPARATION AND RESPONSE

FERMA European Risk Manager Survey 2018

Consumer Finance Enforcement Activity in a New Administration

INTEGRATING RISK MANAGEMENT AND BUSINESS CONTINUITY

THE BIG 5 SAUDI 2018

ENTERPRISE RISK MANAGEMENT (ERM) POLICY

The Connected Disciplines of Risk Disclosure and Risk Management

Investing with Impact Unlocking Value for Business and Society

CyberMatics SM FAQs. General Questions

AIG POLICIES. 1 P a g e

21 out of the 24 (88%) investors surveyed said the model was equally relevant or more relevant than the existing climate assessments.

SCCE 2012 COMPLIANCE & ETHICS INSTITUTE. Workshop Agenda

ESG and Sustainability Risk Advisory Services

RISK ANALYSIS VERSUS RISK ASSESSMENT:

Transcription:

Key Themes Organizational Alignment Risk Management Effectiveness Organizational Dynamics and Effective Risk Management Data, Analytics, and Technology Building a Cyber Risk Framework 1

Organization: Where Risk Management Reports WHERE DOES THE RISK MANAGEMENT FUNCTION AT YOUR ORGANIZATION CURRENTLY REPORT INTO? 5% 7% 11% 2% 5% 8% 12% 50% Chief Financial Officer/Treasurer General Counsel Other C-Suite Chief Risk Officer Internal Audit Operations Human Resources Other 2

79% of respondents said their senior leaders are aligned regarding reporting structure. 3

Organization: What Reports to Risk Management WHICH RISK-RELATED FUNCTIONS CURRENTLY REPORT INTO THE RISK MANAGEMENT DEPARTMENT? Insurance management 1% 7% 92% Enterprise risk management 3% 21% 67% Environmental risk management 7% 30% 63% Business continuity/crisis management 8% 31% 61% Safety management 7% 34% 59% Compliance management 5% 40% 55% IT risk management 7% 37% 56% Supply chain risk management 5% 29% 66% Internal audit 4% 26% 70% Direct / "Dotted" Line Report Does Not Report Does Not Report, But Should 4

Risk Management Priorities OVER THE NEXT 12 MONTHS, WHICH OF THE FOLLOWING AREAS OF RISK MANAGEMENT WILL BE PRIORITIES FOR YOUR ORGANIZATION?* Cyber security 43% Identifying / improving RM best practices Risk training and awareness Insurance program optimization 33% 32% 36% Claims management Identifying emerging risks facing our organization Analytics to support strategic decisions Using RM practices to improve strategy execution Risk management staffing levels 27% 27% 23% 19% 17% Supply chain vulnerabilities 12% *Respondents were allowed to choose three from the list. 5

Investment in Risk Management PLEASE INDICATE THE CHANGES, IF ANY, TO THE LEVEL OF INVESTMENT IN THE FOLLOWING OVER THE NEXT TWO YEARS: 70% 70% 51% 47% 57% 42% 61% 37% 27% 25% 2% 1% 3% 3% 5% Training others in organization on risk management issues/ practices Risk analytics Risk management staff training Risk management software Risk management staffing levels Remain Flat Increase Decrease 6

27% of respondents said that identifying emerging risks would be a priority in 2015. 7

Impact of Global Risks We picked out 11 of the risks that the WEF Global Risks 2015 report listed as top concerns in terms of impact and likelihood. For each one, respondents were asked for the time frame in which they expected it to impact their organization. The top three choices for each time frame were: IS CURRENTLY A RISK FOR THE ORGANIZATION WILL BE A RISK WITHIN THREE YEARS WILL BE A RISK IN MORE THAN THREE YEARS WILL NEVER BE A RISK FOR THE ORGANIZATION Cyber Energy Water crises State collapse Natural catastrophe Natural catastrophe State collapse Climate change Infectious disease Fiscal crises Fiscal crises Water crises 8

One of the things I would identify as being a large risk is the fact that we aren t aligned as well as we d like to be. RISK EXECUTIVE AT A METROPOLITAN PORT AUTHORITY 9

Collaboration on Risk Management Protocols HOW INVOLVED ARE VARIOUS PARTS OF THE ORGANIZATION IN FOUR KEY RISK MANAGEMENT PROTOCOLS? Risk Committees Risk Management Strategy Development Safety management, business continuity / crisis management, and legal were the functions most widely represented in all four protocols. Risk Assessments Risk Response 10

Risk Management Effectiveness HOW WOULD YOU RATE YOUR ORGANIZATION'S EFFECTIVENESS IN REGARD TO THE FOLLOWING RISK-RELATED ACTIVITIES? TOP FIVE Ensuring risk management staff understands the business. Hiring and retaining high quality personnel with risk management responsibilities. Providing relevant risk information to the board. Identifying emerging risks. Allocating resources (technology, personnel, finances) to risk management. BOTTOM FIVE Making high-quality risk analytics available to stakeholders. Planning for emerging risks. Using risk information systems/ technology. Measuring the effectiveness of risk management. Managing risks across multiple global geographies. 11

I wish there was some way we could measure success by thought leadership or by the value we bring to our business partners. But I can t figure out a metric for that. DIRECTOR OF INSURANCE AT A LEADING HEALTH FIRM 12

Measuring Performance and Effectiveness WHICH OF THE FOLLOWING DOES YOUR ORGANIZATION USE TO MEASURE THE EFFECTIVENESS OF THE RISK MANAGEMENT FUNCTION?* Insurance budget management Timely risk identification, assessment Effective claims management 74% 74% 72% Timely claims resolution Litigation outcomes Integration with operations 50% 57% 54% Impact on strategy development and execution Optimized balance of insurance and corporate capital 35% 35% Other KPIs 18% *Respondents were allowed to choose as many as they felt applied. 13

Developing Effectiveness Measures: Ideas from the Excellence Focus Groups Starting point for conversations aimed at developing appropriate measurements: Achieve EBITDA targets, based upon agreed, weighted contribution from risk management. Measure outcomes against high priority risks. Conduct customer satisfaction surveys with business units. Create goals and measure performance based upon self-assessments. Measure activity tied to specific goals. Incorporate analytical decision frameworks into risk finance strategies and measure outcomes against desired thresholds. Measure claim recovery timeliness as a contributor to corporate liquidity. Evaluate risk finance structures on volatility reduction in addition to other measures. 14

It confuses some of our executives when they get basically the same metric reported a slightly different way by four different groups with four different numbers. RISK EXECUTIVE AT A GLOBAL ENERGY FIRM 15

Data and Analytics Use MY ORGANIZATION WOULD BENEFIT BY IMPROVING ITS USE OF DATA AND ANALYTICS IN THE FOLLOWING AREAS* Quantifying risk 39% Identifying risk 34% Risk reporting to the board and other stakeholders Understanding risk tolerance Understanding organization's risk-bearing capacity Developing risk action plans Optimizing risk financing and insurance programs Informing and supporting strategic risk decisions Informing decisions on specific risks 30% 28% 27% 27% 26% 25% 24% Identifying supply chain vulnerabilities 15% Other (please specify) 3% *Respondents were allowed to choose three from the list. 16

Cyber scares us to death. RISK EXECUTIVE AT AN INTERNATIONAL FOOD COMPANY 17

Steps Taken to Address Cyber Risk TOP FIVE 82% Conducted risk assessment(s) to determine vulnerabilities. 79% Allocated cybersecurity resources for prevention, preparation, response. 78% Reviewed insurance policies for cyber coverage and gaps. 76% Identified, classified data at risk. 69% Adopted formal data breach plan. BOTTOM FIVE 51% Reviewed vendor and business partner cybersecurity posture. 47% Conducted tabletop exercises to test organizational preparedness. 41% Put in place a formal cyber event public relations plan. 38% Modeled potential losses. 30% Prepared for cyber extortion event. 18

59% of respondents have no formal cyber event communication plan. 19

Considerations Develop strategies to increase alignment regarding risks and risk management across the organization. Work within your organization and through networking outside your organization to explore performance measurements that more closely reflect the risk management function s strategic value. Form and evaluate risk committees for potentially missed opportunity for operational leaders to add value. Build a broader framework around cyber risk. Use this report and others, such as the WEF Global Risks series, to help stimulate and guide discussions about the future of risk management. 20

21

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback