Enterprise Risk Management How much risk do you want to take? Mark Lim Risk Consulting and Software Towers Watson

Similar documents
Risk Appetite for Life Offices IFoA working party

ERM and ORSA Assuring a Necessary Level of Risk Control

INTERNATIONAL ASSOCIATION OF INSURANCE SUPERVISORS

NAIC OWN RISK AND SOLVENCY ASSESSMENT (ORSA) GUIDANCE MANUAL

Risk Management Policy

Europe Arab Bank plc - Pillar III Disclosure

Talent and accountability incentives governance Risk appetite and risk responsibilities

The Changing face of ERM: The Insurance Company s Perspective

New Actuarial Standards of Practice No. 46 Risk Evaluation in ERM No. 47 Risk Treatment in ERM

Enterprise Risk Management Policy Adopted by the AMP Limited Board on 2 February 2017

Harmonizing Risk Appetites within a Stress Testing Framework

INTERNATIONAL ASSOCIATION OF INSURANCE SUPERVISORS

ERM Concepts and Framework. Paul Duffy

American Academy of Actuaries Webinar: The Practice of ERM in the Insurance Industry. Enterprise Risk Management Committee November 19, 2013

Pillar 3 Disclosure Statement

TD BANK INTERNATIONAL S.A.

LEGAL & GENERAL GROUP PLC risk management supplement

Capital Buffer under Stress Scenarios in Multi-Period Setting

Enterprise Risk Management

IAIS: Enterprise Risk Management for Capital Adequacy & Solvency Purposes. George Brady. IAIS Deputy Secretary General

The Components of a Sound Emerging Risk Management Framework

Risk Appetite Survey Current state of the Insurance Industry

Enterprise Risk Management

INTERNAL CAPITAL ADEQUACY ASSESSMENT PROCESS MODULE

As a provider of financial

Prudential sourcebook for Banks, Building Societies and Investment Firms. Chapter 12. Liquidity standards

Risk Management. Policy No. 14. Document uncontrolled when printed DOCUMENT CONTROL. SSAA Vic

BERGRIVIER MUNICIPALITY. Risk Management Risk Appetite Framework

ORSA An International Development

GUIDELINE ON ENTERPRISE RISK MANAGEMENT

The Central Bank of Ireland Risk Appetite: A Discussion Paper

Asset and liability management: suggestions for greater effectiveness

Risk Architecture: Agenda. Leon Bloom, Partner, Deloitte & Touche LLP

Finalised guidance. Individual Liquidity Systems Assessment (ILSA) Simplified ILAS BIPRU Firms (ILSA) Simplified ILAS BIPRU Firms.

Pillar 3 Disclosure ICAP Europe Limited

ERM Sample Flashcards

INSURANCE CORE PRINCIPLES, STANDARDS, GUIDANCE AND ASSESSMENT METHODOLOGY

Developments & Insights in Singapore RBC 2 and Overview of ORSA across Regions

Solvency and Financial Condition Report 20I6

Pillar 3 As at 31st March 2011

Pillar 2 for Insurer s:

Subject ST9 Enterprise Risk Management Syllabus

CASE STUDY DEPOSIT GUARANTEE FUNDS

Capturing Risk Appetite Through ERM - Implementation Challenges

Insurance Summit Mr Raymond Tam Executive Director (Policy and Development) Insurance Authority 21 September 2017

Risk Appetite: Survey Results. March 2015

Sharing insights on key industry issues*

Applying COSO s Enterprise Risk Management Integrated Framework. September 29, 2004

Citigroup Pty Limited (CPL) APS 330 Remuneration Disclosure - 31 st December, 2017

Habib Bank AG Zurich. Annual disclosures according to Basel III (Year 2015)

Overview of ERM Assessment Viewpoints (June 2016) Overview

2014 Own Risk and Solvency Assessment (ORSA) Feedback Pilot Project Observations of the Group Solvency Issues (E) Working Group

Managed Pension Funds Limited

Pillar 3 Disclosures. Sterling ISA Managers Limited Year Ending 31 st December 2017

Fit for the future? Analysis of the scope, structure and content of a sample of longer-term viability statements published in 2016 RISK SNAPSHOT

China International Capital Corporation (UK) Limited Pillar 3 Disclosure In respect of Financial Year Ended 31 December 2016

Risk Report. 42 Introduction 43 Risk and Capital Overview 43 Key Risk Metrics 44 Overall Risk Assessment 44 Risk Profile

Guidance consultation. Senior Asset and Liability Management Committee Practices. Proposed Dear DEO letter ASSET AND LIABILITY MANAGEMENT

Prudential Standard GOI 3 Risk Management and Internal Controls for Insurers

Does the ORSA add value? Challenges and initial achievements. Lukas Ziewer Risk Management Perspectives, 18/11/2014

Enterprise Risk Management Symposium. Embedding ERM in the DNA of an insurer

ERM/ORSA Training Thai General Insurance Association (TGIA)

Applying COSO s Enterprise Risk Management Integrated Framework

Pillar III Disclosure Report 2017

Managing risk appetite for operational and non-financial risks

RISK APPETITE FRAMEWORK

Risk management. Directors report: Operating and financial review. Risk management

Basel III Pillar 3. Annual Remuneration Disclosures as at 30 June Commonwealth Bank of Australia ACN

Prudential sourcebook for Banks, Building Societies and Investment Firms. Chapter 12. Liquidity standards

Solvency Assessment and Management: Stress Testing Task Group Discussion Document 96 (v 3) General Stress Testing Guidance for Insurance Companies

STRESS TESTING GUIDELINE

REGULATORY GUIDELINE Liquidity Risk Management Principles TABLE OF CONTENTS. I. Introduction II. Purpose and Scope III. Principles...

COMMUNIQUE. Page 1 of 13

Guidance Note System of Governance - Insurance Transition to Governance Requirements established under the Solvency II Directive

RISK MANAGEMENT FRAMEWORK

Solvency and Financial Condition Report 31 December 2016

Defining the Internal Model for Risk & Capital Management under the Solvency II Directive

GUIDELINES FOR THE INTERNAL CAPITAL ADEQUACY ASSESSMENT PROCESS FOR LICENSEES

Preparing for an Own Risk & Solvency Assessment

MEMORANDUM. To: From: Metrolinx Board of Directors Robert Siddall Chief Financial Officer Date: September 14, 2017 ERM Policy and Framework

TESCO PERSONAL FINANCE GROUP LTD PILLAR 3 DISCLOSURES FOR THE YEAR ENDED 28 FEBRUARY 2017

BERMUDA MONETARY AUTHORITY GUIDELINES ON STRESS TESTING FOR THE BERMUDA BANKING SECTOR

How to review an ORSA

Solvency II: Implementation Challenges & Experiences Learned

CITY OF JOHANNESBURG METROPOLITAN MUNICIPALITY GROUP RISK AND ASSURANCE SERVICES GROUP RISK MANAGEMENT POLICY

ESTABLISHING RISK BOUNDARIES. Michel Rochette, MBA, FSA Caribbean Actuarial Association Annual Meeting Trinidad & Tobago December 4th 2008

Pillar 3 Disclosure. 31 st December Document

Pillar 3 Disclosures. Invesco UK Limited

Own Risk and Solvency Assessment (ORSA)

Risk Management at ANZ

ICAAP Pillar 3 Disclosure

RISK MANAGEMENT FRAMEWORK OVERVIEW

Europe Arab Bank plc - Pillar III Disclosure

Basel Committee on Banking Supervision. Consultative Document. Pillar 2 (Supervisory Review Process)

MISSION VALUES. This Framework has been printed by:

Draft Guideline. Corporate Governance. Category: Sound Business and Financial Practices. I. Purpose and Scope of the Guideline. Date: November 2017

T. Rowe Price International Ltd. Pillar 3 & Remuneration Code Disclosure. 31 December 2016

Incentive Plan Design Practices

Subject SP9 Enterprise Risk Management Specialist Principles Syllabus

Sections of the ORSA Report

Transcription:

Enterprise Risk Management How much risk do you want to take? Mark Lim Risk Consulting and Software Towers Watson 1

Agenda 1 Introduction 2 Developing an ERM framework 3 Defining and integrating Risk Appetite 4 Risk Appetite and Risk Culture 5 Closing 2

Introduction 2014 Towers Watson. All rights reserved. 3

INTRODUCTION What is risk? RISK: The effect of uncertainty on an organisation s objectives Source: ISO 31000 (2009) 4

INTRODUCTION What is risk management: understanding your risks 5

INTRODUCTION What is risk management: balancing risk and reward Good risk management allows companies to align risk and reward with business strategy and proactively take advantage of opportunities and protect the downside 6

INTRODUCTION What does ERM aim to do? Traditional risk management Risks viewed as a series of single elements, or silos Each risk stands alone and is not related to the others Enterprise risk management A comprehensive view and consistent analysis of institutional risks Striking the right balance between risk and return Optimising management of each risk individually Optimising different risks in the context of the company s strategic objectives Identifying and managing risks that could impact the overall strategic plan and mission of the company Thinking about the possibilities and using what-if analysis to identify risks and opportunities Analysing activities, initiatives and opportunities, taking into consideration both the potential upside and downside impacts Improving the analytical rigour applied to strategic decisions and proactively monitoring and managing risks on a day-to-day basis Pros Cons 7

Developing an ERM framework 2014 Towers Watson. All rights reserved. 8

Foundation The core components of the ERM framework Risk-Based Decision Making Feedback Loop Business Impacts ERM FRAMEWORK Risk Management Framework Risk Governance Risk Culture Risk Controls & Processes Data, Tools & Systems Enablers Operational Business Outcomes Risk Appetite and Strategy Business Strategy & Objectives Risk management is not about limiting risks, but about understanding and controlling risks Taking risks provides opportunities 9

ERM FRAMEWORK An ERM roadmap Defining, developing and implementing an ERM program ILLUSTRATIVE Development Integration and management Sustainability and value ERM adoption and implementation ERM processes and repeatability ERM performance management On going refinement of ERM processes and tools Drive progress Plan Integrate On-going Realistic timing Refresh regularly Celebrate progress 10

Defining and integrating Risk Appetite 2014 Towers Watson. All rights reserved. 11

RISK APPETITE What is a risk appetite framework? An overarching framework for the conduct of the business Specifies the risks to which XYZ does and does not wish to be exposed Defines a process for managing risks by means of risk measures and other methods Defined formally by the Board to provide guidance to management Provides a means of communicating the Board s views / expectations on risk Certain day-to-day risk management activities may be delegated to the senior management Does not seek to address the detail of policies, procedures, etc Aim is to define sufficiently the overall risk framework, objectives and headline metrics in order to enable the risk appetite to cascade down to the business Defines how the company s key risks will be measured and monitored 12

RISK APPETITE What are the motivations for having a risk appetite? To ensure a firm s Board exercises sufficient oversight over the risks incurred Define a common language Guide decision making Evaluate opportunities Constrain or limit risk taking Provide triggers or warnings 13

What does a risk appetite framework look like? Which risks? How much risk? RISK APPETITE Risk strategy The company s overall philosophy towards risk/return-requirements for achieving its objectives. Risk preferences Risks the company wants to take to achieve its objectives, with the expectation of creating value. And those it wants to avoid. Risk tolerances Quantitative expression of the amount/volatility of risks the company will tolerate. Risk attractiveness Tactical assessment of risks in the preference set, reflecting current conditions. Risk limits Operational limits and controls; granular and easy to monitor. Risk appetite monitoring and reporting Escalation and action plans A company s risk appetite should be objective, tangible and actionable 14

RISK APPETITE Risk metrics should be aligned with the metrics used to steer the business ILLUSTRATIVE How much of your capital base are you willing to lose? How much of a capital buffer do you want to hold? Capital Earnings Do you want stable profits? How much can your profits vary over the business planning horizon? Under what conditions are you willing to have insufficient liquid assets to meet cash outflows when they are due? Liquidity Reputation What is the company s tolerance for actions and events that might damage its reputation? 15

RISK APPETITE Examples of risk appetite statements AIA The amount of risk taken by AIA in the ordinary course of its business will be sufficient to meet its customers reasonable requirements for protection and benefits while ensuring that the level and volatility of shareholder returns are in line with a broadly-based risk profile appropriate to an Asia ex-japan focused life insurance company. Regulatory capital: We have no appetite for regulatory non-compliance and as such will ensure that we hold sufficient capital to meet our current statutory minimum solvency in all but the most extreme market conditions. Financial strength: We will ensure the Group s ability to meet all future commitments to our customers, both financial obligations and in terms of the promises we make to them. We will maintain sufficient capital to support a Financial Strength Rating that meets our business needs. Liquidity: We will maintain sufficient liquidity to meet our expected financial commitments as they fall due. Earnings volatility: We will seek to deliver reported operating earnings consistent with expectations and will implement policies, limits and controls to contain operational risks, risk concentrations and insurance risks within reasonable tolerances. Source: AIA Group Annual report 2013 16

RISK APPETITE Examples of risk appetite statements Prudential Prudential defines and monitors aggregate risk limits based on financial and nonfinancial stresses for its earnings volatility, liquidity and capital requirements. Earnings volatility: the objectives of the limits are to ensure that: a) the volatility of earnings is consistent with the expectations of stakeholders; b) the Group has adequate earnings (and cash flows) to service debt, expected dividends and to withstand unexpected shocks; and c) earnings (and cash flows) are managed properly across geographies and are consistent with funding strategies. Liquidity: the objective is to ensure that the Group is able to generate sufficient cash resources to meet financial obligations as they fall due in business as usual and stressed scenarios. Capital requirements: the limits aim to ensure that: a) the Group meets its internal economic capital requirements; b) the Group achieves its desired target rating to meet its business objectives; and c) supervisory intervention is avoided. Source: Prudential plc Annual report 2012 17

RISK MEASUREMENT Regulatory RBC is a key capital metric and acts as a constraint on required capital Excess capital Normal buffer operating range Release capital Internal target capital Buffer capital Sufficient to protect against most short-term fluctuations De-risk and strengthen capital Core capital Required to meet: Regulatory minimums Rating agency minimums Any other minimums 18

RISK REPORTING Risk reports should be designed to ensure key issues are escalated effectively ILLUSTRATIVE Capital Capital buffer as a percentage of regulatory capital Solvency position Key figures $m Sum of risk-based internal required capital 525 230% 210% 190% 170% 150% Earnings risk appetite Target Current IFRS profit YTD XX YY 120% Diversification -75 Available capital 783 130% 110% Commentary Commentary 90% Liquidity risk appetite 70% 50% 20% Acceptable range Trigger breached, management action required Threshold breached, possible regulatory intervention Current position Previously reported position Capital risk appetite Capital by risk type Commentary Target Current % Total Trend Equity 79 75 14% Interest rate 133 125 24% Credit spread 135 150 29% Default 26 25 5% Life insurance 100 95 18% Non-life insurance 55 50 10% Expense 5 5 1% Total (with diversification) 460 450 Target Current Liquidity ratio XX YY Commentary Reputational risk appetite Target Current New business premiums XX YY New business value XX YY Customer satisfaction XX YY Commentary 19

RISK-BASED DECISIONS Companies are integrating risk information into the business planning process Strategic perspectives set at Board level Business plans developed using an iterative process Performance and risk monitored against targets and limits Develop business plans Value created Business strategy Capital efficiency Risk appetite Risk preferences Risk tolerances Business planning process Liquidity coverage Solvency ratio Test against appetite and tolerances Limit usage 20

Operationalising risk appetite requires a strong risk culture 2014 Towers Watson. All rights reserved. 21

RISK CULTURE Why are risk management and risk culture important? Most institutions have a set of values to which they ascribe however, in many cases there is clearly a gap between what they claim to believe and do, and what they actually do. These values also tend not to be aligned or lived by the employees meaning the firm does not practice what it preaches H. Sants, FSA CEO, 17th June 2010 22

RISK CULTURE What is risk culture? Risk culture can be defined as individual and group behaviour within an organization that determines the way in which the company identifies, understands, discusses and acts on the risks the organization confronts and takes. Source: Reform in the Financial Services Industry: Strengthening Practices for a More Stable System. Institute of International Finance, 2009 Risk-management culture is the degree to which risk and risk management are important considerations in all aspects of corporate decision making. Standard&Poor s, 2005 23

RISK CULTURE Risk culture drives risk management practices 24

RISK CULTURE What characterises a good risk culture? Vertical escalation of threats and fears Active learning from mistakes Committed leadership Continuous and constructive challenging of the organisation s actions and preconceptions An effective governance structure Horizontal information sharing Incentives that reward thinking about the whole organisation management objectives linked to risk management objectives Reform in the Financial Services Industry: Strengthening Practices for a More Stable System Institute of International Finance, 2009 25

Closing 2014 Towers Watson. All rights reserved. 26

SUMMARY Risk appetite is the foundation of an effective risk management framework Closely linked to strategy and business planning Risk appetite Clearly communicated Underpinned by a strong risk culture Used to monitor and assess the risk profile of the company Developing an integrated risk appetite framework will take time 27

SUMMARY Effective risk and capital management unlocks opportunities to improve business performance Risk management Capital management Strategy and planning Capital efficiency Asset strategy Risk mitigation Product design and pricing Claims management Distribution strategy Strategic optimisation Value optimisation Communication 28

Questions Regional contacts: Marco Warmelink Regional Director Risk Management Practice, Asia Pacific Penny Fosker Regional Director Risk Management Practice, Asia Pacific 36/F Sun Hung Kai Centre 30 Harbour Road Wanchai Hong Kong marco.warmelink@ 36/F Sun Hung Kai Centre 30 Harbour Road Wanchai Hong Kong penny.fosker@ 29

Disclaimer This presentation has been prepared by Towers Watson for general information purposes only and does not constitute professional advice. The information, opinions and illustrations contained are derived from various sources and have not all necessarily been independently verified by Towers Watson. The presentation is not intended to guide or determine any specific individual situation and persons should consult qualified professionals for appropriate professional advice before taking any specific actions. Neither the presenter, nor the presenter s employer, shall have any responsibility or liability to any person or entity with respect to damages alleged to have been caused directly or indirectly by the content of this presentation. If you require professional advice or require any further information, please contact your usual Towers Watson representative. 30

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback