UBS presentation Key remediation actions

Size: px
Start display at page:

Download "UBS presentation Key remediation actions"

Transcription

1 UBS presentation Key remediation actions Nov 17, 2014

2 Group-wide actions Integration of Compliance and Operational Risk Control We have integrated Compliance and Operational Risk Control. The key benefits of the integration will be: Achieving a stronger defense mechanism based on preventative measures, thereby reducing the likelihood and impact of a significant event. This will be achieved through combining skills across Risk, Compliance and Control and realigning activities appropriately across 1st & 2nd line of defense. Becoming forward looking to identify and action potential significant risks and issues early. This will be achieved by focusing the view of consequential risk management on forward looking risk identification and industrializing the use of data analysis underpinned by technology. Establishing one firm-wide consistent Risk & Control Framework to enable strengthened controls to be efficiently delivered. This will include the streamlining and enhancing of risk control assessments and operating seamless 'top down' and 'bottom up' risk & control assessment continuum. Establishing clear accountability & prioritization, including the definition of clear roles and responsibilities for consequential risk management to mitigate execution risks. Increased Monitoring and Surveillance We continue to enhance overall M&S capabilities to identify and detect improper business and employee practices. This works is focused across six work streams: 1) Strengthening cross border monitoring, 2) Enhanced employee intelligence capabilities which consolidates multiple data points of individuals, 3) Electronic communications monitoring, 4) Enhanced monitoring of audio communications relating to benchmark submissions, 5) IB trade surveillance, 6) Unauthorised trading detection in the IB. Enhanced whistleblowing process We have enhanced the whistleblowing process, re-issued the Whistleblowing Protection policy for Employees, and increased communications on the program. The case management process has been optimized to reduce the time for cases to be reviewed and closed. Personal Account Dealing The Personal Account Dealing policy has been revised to ensure that consistent, enhanced global standards are put in place and generally only UBS accounts are allowed for UBS employees to monitor own trading activity 1

3 Specific Investment Bank actions Policy and Conduct: We have significantly updated the Fixed Income, Rates and Credit Handbook (Code of Conduct) and published and circulated the new Handbook to employees. Enhanced and new sections cover communication, behaviour, and market and client conduct. We have completed mandatory conduct training for all IB Sales andtradingstaffwithover2,600staffhavingattendedthe live sessions. The new conduct training now forms part of the induction for all new IB Sales and Trading staff. We have banned the use of personal mobile devices on trading floors globally. We have been industry leaders in setting new procedures to ensure appropriate usage of chat rooms as a form of communication, including closure of chat rooms (ca 50%), banning of social chat and implementation of new policy including room owners, moderators and guidance on usage. Systems and Organisation: We have consolidated analytical surveillance activities into a single C&ORC Function to enhance our controls and to integrate into our trade surveillance infrastructure. We have increased staffing levels to enhance management oversight. We have further strengthened our infrastructure to ensure segregation of duties to avoid any conflicts of interest. Process and Control: We are continuing to roll out a new Employee Conduct Risk dashboard regionally. We have issued guidance on completion of Trade Entry Error reports to ensure errors are reviewed and escalated in a timely manner. We are introducing new procedures to ensure enhanced regular review of key front-to-back controls. We have defined, and are in the process of implementing, a new set of metrics to enhance our management information in relation to our usage of third-party brokers In control in business campaign (launched in July 2012) Group wide awareness campaign highlighting the importance of risk control and the responsibility of the individual as a risk manager. 2

4 Considering the lessons learned from the financial crisis and other internal and external events, UBS has taken a range of measures to improve the firm's risk management and control processes and drive the right behaviors to protect the firm's reputation and achieve the strategic goals Refresh of the code of business conduct and ethics Introduction of Group Significant Operational Risk Issues (GSORIs) Creation of the Master List of Significant Issues (MLSI) Risk Effectiveness program Enhanced remuneration framework introduction of deferred compensation and forfeiture of compensation > ongoing Enhanced Operational Risk Framework (ORF2) Master List of Significant Issues Managing Director ownership and independent assurance Strengthening front-to-back control accountabilities through the Chief Operating Officers Investment Bank Unauthorized Trading Accident remediation including behavioral program Risk embedded in performance and compensation Enhanced Supervision In Control In Business communication campaign Performance Management assessment and promotions Enhanced Incidents and Consequences process > ongoing Independent management testing of key controls Development of an intelligence capability enhanced monitoring Libor Lessons learned initiatives on the 2 nd line of defense Enhanced investigation framework Whistleblowing communication campaign Comprehensive program on leadership and behaviors Market Conduct Enhancement Program > ongoing Enhancements to the whistleblowing process Integration of Compliance and Operational Risk Control Conduct Risk FX Spot Review and associated controls and governance remediation Control Remediation Increasing Complementary Focus on Behavioral Aspects Strengthening the culture takes time programs are in progress 3

5 Measures and programs Enhanced Operational Risk Framework (ORF2) Complementing current Operational Risk assessments with sub divisional Front to Back risk assessments Key controls continue to be embedded into the Chief Operating Officer dashboards and run the bank operations Control assessment process embedded within strategic change programme design phase Positive regulatory assessment received of Enhanced Operational Risk Framework implementation Independent management testing of key controls Introduction of independent management testing of key controls and full testing of relevant population of bank Complementary to the internal control testing and provides an additional level of assurance CONTROLS Commenced development of an 'intelligence capability' enhanced monitoring Libor Lessons learned initiatives on the 2 nd line of defense The 'intelligence capability' contains 3 elements: Development and implementation of a capability to link disparate information from multiple sources at employee level Enhancements to electronic communications monitoring and discovery capabilities Enhancement of alert generation capabilities The assessment of current measures in place ensuring that they are completed and embedded in the firm Clarification of control expectations for the 2 nd line of defense for conduct, regulatory and reputations risks FX Controls and Governance Review Group Internal Audit and Operational Risk Control review of the Front to Back control and governance aspects of the FX spot business including - FX Business Profile and Organizational set up - Front Office supervision / Performance Review - Control Function Processes In addition the applicability of FX remediation actions against other Investment Bank Business lines is conducted to determine where control enhancements can be leveraged to mitigate against threats to the wider organisation. Investment Bank 'Look Across' Review A firm wide risk assessment, the "Look Across Process" was conducted in Q to test the hypothesis that markets and businesses which share some of the same attributes common to LIBOR and FOREX events could also be susceptible to market misconduct 4

6 Measures and programs Introduction of Group Significant Operational Risk Issues (GSORIs) Creation of the Master List of Significant Issues (MLSI) Master List of Significant Issues Managing Director ownership and independent assurance Identification of the key operational risks for the firm and establishment of effective remediation Clear ownership with individual Group Executive Board members Common rating scale in place across the firm Level 4 and 5 issues assigned to MDs and included in Performance Management objectives Independent assurance of associated remediation by GIA for all risk issues and actions impacting the firm PROCESS Strengthening front-to-back control accountabilities through the Chief Operating Officers Investment Bank Unauthorized Trading Accident remediation including behavioral program Revised mandate for Chief Operating Officers to re-emphasize the Front to Back control responsibility Chief Operating Officers dashboards introduced to provide visibility of the Front to Back control environment Completion of complex and broad remediation program on time Included a behavioral program led by the Investment Bank Executive Committee Risk and Behaviors embedded in performance and compensation Process to embed control function feedback into the performance assessment and compensation processes Enhanced Investigations framework Common approach and governance for level 4 and 5 investigations Conduct Risk Develop an approach to identification, assessment and reporting of Conduct Risk across the firm 5

7 Measures and programs Refresh of the Code of business conduct and ethics The Code reflects principles and practices that are binding for all of UBS's employees and Board members to follow unreservedly It is available on the intranet in 10 languages Online training is also available Implemented training activities to ensure that it is properly understood and correctly applied Enhanced supervision Critical initiative to set and embed higher expectations of supervisors across all functions. Group Executive Board approved the "Principles of Good Supervision" (2H12) and self assessment completed by each function Online mandatory training modules introduced for both supervisors and non-supervisors CULTURE Communications programs In control In Business Whistleblowing Comprehensive program on leadership and behaviors "In Control In Business" (ICIB) is a Group-wide internal communications campaign designed to help establish a stronger risk culture across the firm "In Control In Business" campaign was launched in June 2012 "Principles of Good Supervision" were published and reinforced through "In Control In Business" campaign Whistleblowing policy has been reviewed to confirm it adequately covers ethical matters A campaign around whistleblowing procedures was launched by the Chairman and Group CEO to encourage staff to raise concerns Program set-up in 1Q13 Tone from the top engagement and reinforcement actions are being implemented across the firm Key behaviors defined and rolled out to the firm. All employees touched. Performance Management assessment and promotions Key behaviors embedded in the Performance Management/comp process Enhanced Incident and Consequences process Promotion proposals assessed against behavior / disciplinary actions Senior leadership using "Master List of Significant Issues" assurance work as a factor in compensation decisions Compliance and Operational Risk Control Integration Move of Compliance to Risk Control and integration with Operational Risk Control to consolidate the second line of defence for consequential risk Positioning the Compliance organization as a control function within the firm 6

Confident in our Future, Risk Management Policy Statement and Strategy

Confident in our Future, Risk Management Policy Statement and Strategy Confident in our Future, Risk Management Policy Statement and Strategy Risk Management Policy Statement Introduction Risk management aims to maximise opportunities and minimise exposure to ensure the residents

More information

ENTERPRISE RISK MANAGEMENT FRAMEWORK

ENTERPRISE RISK MANAGEMENT FRAMEWORK ENTERPRISE RISK MANAGEMENT FRAMEWORK COVENANT HEALTH LEGAL & RISK MANAGEMENT CONTENTS 1.0 PURPOSE OF THE DOCUMENT... 3 2.0 INTRODUCTION AND OVERVIEW... 4 3.0 GOVERNANCE STRUCTURE AND ACCOUNTABILITY...

More information

The anglo american Safety way. Safety Management System Standards

The anglo american Safety way. Safety Management System Standards The anglo american Safety way Safety Management System Standards 2 The Anglo American Safety Way CONTENTS Introduction 04 Anglo American Safety Framework 05 Safety in anglo american 06 Monitoring and review

More information

Basel Committee on Banking Supervision. Review of the Principles for the Sound Management of Operational Risk

Basel Committee on Banking Supervision. Review of the Principles for the Sound Management of Operational Risk Basel Committee on Banking Supervision Review of the Principles for the Sound Management of Operational Risk 6 October 2014 This publication is available on the BIS website (www.bis.org). Bank for International

More information

HEALTH SAFETY & ENVIRONMENT MANAGEMENT SYSTEM

HEALTH SAFETY & ENVIRONMENT MANAGEMENT SYSTEM HEALTH SAFETY & ENVIRONMENT MANAGEMENT SYSTEM September 2011 OUR HEALTH, SAFETY AND ENVIRONMENT POLICY OUR PRINCIPLE OF DUE CARE We care about the wellbeing of our people and our impact on the environment.

More information

Principles for An. Effective Risk Appetite Framework

Principles for An. Effective Risk Appetite Framework Principles for An Effective Risk Appetite Framework 18 November 2013 Table of Contents Page I. Introduction... 1 II. Key definitions... 2 III. Principles... 3 1. Risk appetite framework... 3 1.1 An effective

More information

RISK MANAGEMENT STRATEGY 2014-17

RISK MANAGEMENT STRATEGY 2014-17 RISK MANAGEMENT STRATEGY 2014-17 DOCUMENT NO: Lead author/initiator(s): Contact email address: Developed by: Approved by: DN128 Head of Quality Performance Julia.sirett@ccs.nhs.uk Quality Performance Team

More information

APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES

APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES Ethical Leadership and Corporate Citizenship The board should provide effective leadership based on ethical foundation. that the company

More information

Governance, Risk and Compliance Charter

Governance, Risk and Compliance Charter Governance, Risk and Compliance Charter Charter Owner Director GRC Charter Approver Board of Management Effective date November 15 th, 2013 Date of issue Version Name Title 15 Nov 2013 1.0 Fokko Kool Group

More information

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014 WOOLWORTHS HOLDINGS LIMITED CORPORATE GOVERNANCE PRINCIPLES 2014 CORPORATE GOVERNANCE PRINCIPLES 2014 CORPORATE GOVERNANCE PRINCIPLES 2014 This table is a useful reference to each of the King III principles

More information

FFIEC Cybersecurity Assessment Tool

FFIEC Cybersecurity Assessment Tool Overview In light of the increasing volume and sophistication of cyber threats, the Federal Financial Institutions Examination Council 1 (FFIEC) developed the Cybersecurity Tool (), on behalf of its members,

More information

JOB AND PERSON SPECIFICATION. It has an annual budget of approximately 50 million and currently a staff of approximately 300.

JOB AND PERSON SPECIFICATION. It has an annual budget of approximately 50 million and currently a staff of approximately 300. JOB AND PERSON SPECIFICATION Job Title: Division Grade: HR Adviser - HR Operations Section G Reports To: Head of HR Operations General Information The Commonwealth Secretariat is the principal intergovernmental

More information

COMPLIANCE CHARTER 1

COMPLIANCE CHARTER 1 COMPLIANCE CHARTER 1 Contents 1. Compliance Policy Statement... 2 2. Purpose... 2 3. Mission and objective of the Directorate: Compliance... 2 3.1 Mission... 2 3.2 Objective... 3 4. Compliance risk management...

More information

Enterprise Compliance Risk. AIBA June 14, 2012 Presented by: Jack Sonnenschein

Enterprise Compliance Risk. AIBA June 14, 2012 Presented by: Jack Sonnenschein Enterprise Compliance Risk Management Program AIBA June 14, 2012 Presented by: Jack Sonnenschein 1 Agenda Regulatory Expectations Enterprise Compliance Risk Management Program Risk Assessments Monitoring

More information

Risk Management Strategy & Implementation Plan 2014 2016

Risk Management Strategy & Implementation Plan 2014 2016 St George s Healthcare NHS Trust: the next decade Risk Management Strategy & Implementation Plan 2014 2016 DRAFT VERSION 6.0 UPDATED 19.11.14 Executive summary We know, from external assurances received

More information

IFAD Policy on Enterprise Risk Management

IFAD Policy on Enterprise Risk Management Document: EB 2008/94/R.4 Agenda: 5 Date: 6 August 2008 Distribution: Public Original: English E IFAD Policy on Enterprise Risk Management Executive Board Ninety-fourth Session Rome, 10-11 September 2008

More information

APPENDIX 50. Enterprise risk management - Risk management overview

APPENDIX 50. Enterprise risk management - Risk management overview APPENDIX 50 Enterprise risk management - Risk management overview Energex regulatory proposal October 2014 ENTERPRISE RISK MANAGEMENT Risk Management Overview (RMO) 06 11 2013 Table of Contents 1. INTRODUCTION...

More information

EURIBOR - CODE OF OBLIGATIONS OF PANEL BANKS

EURIBOR - CODE OF OBLIGATIONS OF PANEL BANKS D2725D-2013 EURIBOR - CODE OF OBLIGATIONS OF PANEL BANKS Version: 1 October 2013 1. Objectives The European Money Markets Institute EMMI previously known as Euribor-EBF, as Administrator for the Euribor

More information

ING Group Compliance Risk Management Charter and Framework

ING Group Compliance Risk Management Charter and Framework ING Group Compliance Risk Management Charter and Framework Corporate Compliance Risk Management ING GROUP COMPLIANCE RISK MANAGEMENT CHARTER AND FRAMEWORK Information sheet Target audience: All employees

More information

Forensic Audit Building a World Class Program

Forensic Audit Building a World Class Program Forensic Audit Building a World Class Program PAUL E. ZIKMUND DIRECTOR GLOBAL INTEGRITY AND FORENSIC AUDIT 1 2012 ACFE ANNUAL FRAUD CONFERENCE ORLANDO, FL Why the Need for Forensic Audit Program In response

More information

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS 1 Module 1: Principles of Risk and Risk Management Module aims The aim of this module is to provide an introduction to the principles and concepts of risk and

More information

International Diploma in Risk Management Syllabus

International Diploma in Risk Management Syllabus International Diploma in Risk Management Syllabus Module 1: Principles of Risk and Risk Management The aim of this module is to provide an introduction to the principles and concepts of risk and risk management.

More information

Reputation, Brand & Communications

Reputation, Brand & Communications Group Standard Reputation, Brand & Communications Serco is committed to building a positive reputation with its stakeholders, wherever we operate SMS-GS-BC4 Reputation, Brand and Communication December

More information

3 August 2012 Policy updated to reflect name changes and alignment with current Aurora Energy Group Policy standards.

3 August 2012 Policy updated to reflect name changes and alignment with current Aurora Energy Group Policy standards. Aurora Energy Risk Management Policy Version History REV NO. DATE REVISION DESCRIPTION APPROVAL 0 19/11/98 Risk Management Policy Prepared by: Manager Internal Audit 1 March 2007 Risk Management Policy

More information

Introduction from Chairman... 3. Chairman Role Profile... 4. Charter of Expectations... 6. Deputy Chairman Role Profile... 7

Introduction from Chairman... 3. Chairman Role Profile... 4. Charter of Expectations... 6. Deputy Chairman Role Profile... 7 Charter of Expectations and Role Profiles Barclays Corporate Secretariat Approved by the Board on 14 November 2013 Table of Contents Page Introduction from Chairman... 3 Chairman Role Profile... 4 Charter

More information

Henkel s Compliance Management System (CMS)

Henkel s Compliance Management System (CMS) Henkel s Compliance Management System (CMS) As a company that operates in an ethically and legally correct manner, Henkel s image and reputation is inseparable from the appropriate conduct of each of its

More information

GUIDANCE NOTE FOR DEPOSIT-TAKERS. Operational Risk Management. March 2012

GUIDANCE NOTE FOR DEPOSIT-TAKERS. Operational Risk Management. March 2012 GUIDANCE NOTE FOR DEPOSIT-TAKERS Operational Risk Management March 2012 Version 1.0 Contents Page No 1 Introduction 2 2 Overview 3 Operational risk - fundamental principles and governance 3 Fundamental

More information

Information Governance Management Framework

Information Governance Management Framework Information Governance Management Framework Responsible Officer Author Business Planning & Resources Director Governance Manager Date effective from October 2015 Date last amended October 2015 Review date

More information

Annual Governance Statement 2013/14

Annual Governance Statement 2013/14 31 Annual Governance Statement 2013/14 1. SCOPE OF RESPONSIBILITY ESPO is responsible for ensuring that its business is conducted in accordance with the law and proper standards, and that public money

More information

CSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting www.corostrandberg.

CSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting www.corostrandberg. Introduction CSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting www.corostrandberg.com June 2015 Companies which adopt CSR or sustainability 1

More information

Policy Document Control Page

Policy Document Control Page Policy Document Control Page Title Title: Information Governance Policy Version: 5 Reference Number: CO44 Keywords: Information Governance Supersedes Supersedes: Version 4 Description of Amendment(s):

More information

Operational Risk Management - The Next Frontier The Risk Management Association (RMA)

Operational Risk Management - The Next Frontier The Risk Management Association (RMA) Operational Risk Management - The Next Frontier The Risk Management Association (RMA) Operational risk is not new. In fact, it is the first risk that banks must manage, even before they make their first

More information

Risk Management. Group Standard

Risk Management. Group Standard Group Standard Risk Management Effective risk management allows Serco to improve customer service, maximize opportunities and reduce business loss from overruns and cost from risks that materialise SMS

More information

SAFETY and HEALTH MANAGEMENT STANDARDS

SAFETY and HEALTH MANAGEMENT STANDARDS SAFETY and HEALTH STANDARDS The Verve Energy Occupational Safety and Health Management Standards have been designed to: Meet the Recognised Industry Practices & Standards and AS/NZS 4801 Table of Contents

More information

ORACLE ENTERPRISE GOVERNANCE, RISK, AND COMPLIANCE MANAGER FUSION EDITION

ORACLE ENTERPRISE GOVERNANCE, RISK, AND COMPLIANCE MANAGER FUSION EDITION ORACLE ENTERPRISE GOVERNANCE, RISK, AND COMPLIANCE MANAGER FUSION EDITION KEY FEATURES AND BENEFITS Manage multiple GRC initiatives on a single consolidated platform Support unique areas of operation with

More information

Final Version April 2014 JOB DESCRIPTION. Audit and Governance Manager. Corporate Governance and Support MAIN PURPOSE

Final Version April 2014 JOB DESCRIPTION. Audit and Governance Manager. Corporate Governance and Support MAIN PURPOSE JOB DESCRIPTION POST: SERVICE: GRADE: Audit and Governance Manager Corporate Governance and Support SE1 MAIN PURPOSE The Governance Manager will form part of the Council s bronze level of management and

More information

Harness Enterprise Risks With Oracle Governance, Risk and Compliance

Harness Enterprise Risks With Oracle Governance, Risk and Compliance Hardware and Software Engineered to Work Together Harness Enterprise Risks With Oracle Governance, Risk and Compliance Is the plethora of financial, operational and regulatory policies and mandates overwhelming

More information

SAI GLOBAL LIMITED Risk Management Policy

SAI GLOBAL LIMITED Risk Management Policy SAI GLOBAL LIMITED Risk Management Policy SAI Global Ltd ABN 67050611642 Last Updated: February 2012 Contents 1. Risk Management... 3 2. Policy... 3 3. Risk Management Philosophy... 3 4. Risk Appetite...

More information

Accreditation Application Forms

Accreditation Application Forms The Institute of Risk Management The Institute of Risk Management Accreditation Application Forms Universities and Professional Associations The Institute of Risk Management Accreditation Application Forms

More information

Aegon Global Compliance

Aegon Global Compliance Aegon Global Compliance GLOBAL Charter COMPLIANCE CHARTER aegon.com The Hague, June 1, 2013 Information sheet Target audience: All employees and management of Aegon companies Issued by: Aegon N.V. Group

More information

ESM Management Comments on Board of Auditors Annual Report to the Board of Governors for the period ended 31 December 2014

ESM Management Comments on Board of Auditors Annual Report to the Board of Governors for the period ended 31 December 2014 ESM Management Comments on Board of Auditors Annual Report to the Board of Governors for the period ended 31 December 2014 Dear Chairperson, I would like to thank you for the opportunity to provide management

More information

Intelligent Customer Function (ICF)

Intelligent Customer Function (ICF) CAPABILITY AUDIT FOR HEIs Higher Education Institutions (HEIs) should organically develop their own to successfully manage the process of strategic sourcing. The capability audit provides an assessment

More information

B o a r d of Governors of the Federal Reserve System. Supplemental Policy Statement on the. Internal Audit Function and Its Outsourcing

B o a r d of Governors of the Federal Reserve System. Supplemental Policy Statement on the. Internal Audit Function and Its Outsourcing B o a r d of Governors of the Federal Reserve System Supplemental Policy Statement on the Internal Audit Function and Its Outsourcing January 23, 2013 P U R P O S E This policy statement is being issued

More information

What Every Director. How to get the most from your internal audit. Endorsed by

What Every Director. How to get the most from your internal audit. Endorsed by What Every Director Should Know How to get the most from your internal audit Endorsed by Foreword This is the second edition of our flagship governance guide What every director should know. Since we published

More information

Operations. Group Standard. Business Operations process forms the core of all our business activities

Operations. Group Standard. Business Operations process forms the core of all our business activities Standard Operations Business Operations process forms the core of all our business activities SMS-GS-O1 Operations December 2014 v1.1 Serco Public Document Details Document Details erence SMS GS-O1: Operations

More information

RISK MANAGEMENT POLICY

RISK MANAGEMENT POLICY RISK MANAGEMENT POLICY 1. Purpose The purpose of the Risk Management Policy is to embed risk management as part of the culture of AFTRS where a shared understanding of risk leads to well-informed decision

More information

Basel Committee on Banking Supervision

Basel Committee on Banking Supervision Basel Committee on Banking Supervision Guidelines Corporate governance principles for banks July 2015 This publication is available on the BIS website (www.bis.org). Bank for International Settlements

More information

Operational Risk Management Program Version 1.0 October 2013

Operational Risk Management Program Version 1.0 October 2013 Introduction This module applies to Fannie Mae and Freddie Mac (collectively, the Enterprises), the Federal Home Loan Banks (FHLBanks), and the Office of Finance, (which for purposes of this module are

More information

INFORMATION GOVERNANCE POLICY & FRAMEWORK

INFORMATION GOVERNANCE POLICY & FRAMEWORK INFORMATION GOVERNANCE POLICY & FRAMEWORK Version 1.2 Committee Approved by Audit Committee Date Approved 5 March 2015 Author: Responsible Lead: Associate IG Specialist, YHCS Corporate & Governance Manger

More information

RSA ARCHER OPERATIONAL RISK MANAGEMENT

RSA ARCHER OPERATIONAL RISK MANAGEMENT RSA ARCHER OPERATIONAL RISK MANAGEMENT 87% of organizations surveyed have seen the volume and complexity of risks increase over the past five years. Another 20% of these organizations have seen the volume

More information

Office of Compliance and Ethics Introductory Report. Lynette Fons, Chief Compliance Officer

Office of Compliance and Ethics Introductory Report. Lynette Fons, Chief Compliance Officer Office of Compliance and Ethics Introductory Report Lynette Fons, Chief Compliance Officer Why the Office of Compliance and Ethics was Created The City operates in a highly complex regulatory environment

More information

Compliance. Group Standard

Compliance. Group Standard Group Standard Compliance Serco is committed to good governance practices and the management of risks supported by a robust business compliance process SMS-GS-G2 Compliance July 2014 v1.0 Serco Public

More information

AIS Sports Science/Sports Medicine Best Practice Principles

AIS Sports Science/Sports Medicine Best Practice Principles AIS Sports Science/Sports Medicine Best Practice Principles Introduction For the Australian Sports Commission (ASC) and Australian Institute of Sport (AIS), integrity in sport is paramount. Accordingly,

More information

RISK MANAGEMENT REPORT (for the Financial Year Ended 31 March 2012)

RISK MANAGEMENT REPORT (for the Financial Year Ended 31 March 2012) RISK MANAGEMENT REPORT (for the Financial Year Ended 31 March 2012) Integrated Risk Management Framework The Group s Integrated Risk Management Framework (IRMF) sets the fundamental elements to manage

More information

Government Communication Professional Competency Framework

Government Communication Professional Competency Framework Government Communication Professional Competency Framework April 2013 Introduction Every day, government communicators deliver great work which supports communities and helps citizens understand their

More information

GOVERNANCE AND MANAGEMENT OF CITY COMPUTER SOFTWARE NEEDS IMPROVEMENT. January 7, 2011

GOVERNANCE AND MANAGEMENT OF CITY COMPUTER SOFTWARE NEEDS IMPROVEMENT. January 7, 2011 APPENDIX 1 GOVERNANCE AND MANAGEMENT OF CITY COMPUTER SOFTWARE NEEDS IMPROVEMENT January 7, 2011 Auditor General s Office Jeffrey Griffiths, C.A., C.F.E. Auditor General City of Toronto TABLE OF CONTENTS

More information

NHS Boards will: Action required Accountable Support Target dates Progress / Status

NHS Boards will: Action required Accountable Support Target dates Progress / Status NHS Borders Action Plan NHSScotland Staff Survey 2013 NHS s will: Action required Accountable Support Target dates Progress / Status Through the 20:20 Implementation Plan, implement core NHS Scotland values

More information

Health and Safety Management Standards

Health and Safety Management Standards Health and Safety Management Standards Health and Safety Curtin University APR 2012 PAGE LEFT INTENTIONALLY BLANK Page 2 of 15 CONTENTS 1. Introduction... 4 1.1 Hierarchy of Health and Safety Documents...

More information

Department of Veterans Affairs VHA HANDBOOK 1030.02. Washington, DC 20420 November 8, 2010 COMPLIANCE AND BUSINESS INTEGRITY (CBI) PROGRAM STANDARDS

Department of Veterans Affairs VHA HANDBOOK 1030.02. Washington, DC 20420 November 8, 2010 COMPLIANCE AND BUSINESS INTEGRITY (CBI) PROGRAM STANDARDS Department of Veterans Affairs VHA HANDBOOK 1030.02 Veterans Health Administration Transmittal Sheet Washington, DC 20420 November 8, 2010 COMPLIANCE AND BUSINESS INTEGRITY (CBI) PROGRAM STANDARDS 1. REASON

More information

A Guide to Corporate Governance for QFC Authorised Firms

A Guide to Corporate Governance for QFC Authorised Firms A Guide to Corporate Governance for QFC Authorised Firms January 2012 Disclaimer The goal of the Qatar Financial Centre Regulatory Authority ( Regulatory Authority ) in producing this document is to provide

More information

Auditor General s Office. Governance and Management of City Computer Software Needs Improvement

Auditor General s Office. Governance and Management of City Computer Software Needs Improvement Auditor General s Office Governance and Management of City Computer Software Needs Improvement Transmittal Report Audit Report Management s Response Jeffrey Griffiths, C.A., C.F.E Auditor General, City

More information

Risk Management Policy

Risk Management Policy Risk Management Policy DOCUMENT CONTROL Developed by: Date: Origination: Quality, Systems & Shared s March 2014 Authorised by: Colette Kelleher April 2014 DOCUMENT REVIEW HISTORY Original Circulation date:

More information

Fraud Risk Management Procedures

Fraud Risk Management Procedures Fraud Risk Management Procedures 1. Introduction KCE Electronics Public Company Limited ( KCE or the Company ) is committed to achieving the highest levels of business integrity, morals and transparency

More information

3.6 - REPORT BY THE CHAIRMAN OF THE BOARD OF DIRECTORS ON CORPORATE GOVERNANCE, RISK MANAGEMENT AND INTERNAL CONTROLS

3.6 - REPORT BY THE CHAIRMAN OF THE BOARD OF DIRECTORS ON CORPORATE GOVERNANCE, RISK MANAGEMENT AND INTERNAL CONTROLS RISK FACTORS Report by the Chairman of the Board of Directors on corporate governance, risk management and internal controls Property damage and operating loss insurance Property damage/operating loss

More information

Governance, Risk & Compliance Management. Julian Hunn, Operations Manager Professional Standards

Governance, Risk & Compliance Management. Julian Hunn, Operations Manager Professional Standards Governance, Risk & Compliance Management Julian Hunn, Operations Manager Professional Standards Session Plan GRC Governance, Risk & Compliance Management What is corporate governance? Directors duties

More information

Safety Excellence Matrix

Safety Excellence Matrix Safety Excellence Matrix 1 = Performance just meets minimum standards 2 = Performance is satisfactory got the basics 3 = Performance is good going beyond the norm 4 = Performance is very good best practice

More information

SCHOOL E-SAFETY SELF REVIEW TOOL

SCHOOL E-SAFETY SELF REVIEW TOOL SCHOOL E-SAFETY SELF REVIEW TOOL The South West Grid for Learning, Belvedere House, Woodwater Park, Pynes Hill, Exeter, Devon, UK, EX2 5WS. Tel: 0845 601 3203 Fax: 01392 366 494 Email: esafety@swgfl.org.uk

More information

State of Oregon. State of Oregon 1

State of Oregon. State of Oregon 1 State of Oregon State of Oregon 1 Table of Contents 1. Introduction...1 2. Information Asset Management...2 3. Communication Operations...7 3.3 Workstation Management... 7 3.9 Log management... 11 4. Information

More information

International Diploma in Risk Management Application for Non-standard Exemption

International Diploma in Risk Management Application for Non-standard Exemption Insitute of Risk Management Qualifications International Diploma in Risk Management Application for Non-standard Exemption For office use only Date received: Ackn. date: EDU: Membership number: PLEASE

More information

FRAUD CONTROL POLICY

FRAUD CONTROL POLICY FRAUD CONTROL POLICY Contents Fraud Control Policy 1 Leadership Message 4 1.1 Purpose 4 1.2 Definitions 4 1.3 Policy Objectives and Scope 4 2 Governance and Professional Ethics Statement 5 2.1 Code of

More information

Annual Governance Statement

Annual Governance Statement Annual Governance Statement 2014/15 1 Fareham Borough Council Civic Offices, Civic Way, Fareham PO16 7AZ Scope of Responsibility Fareham Borough Council is responsible for ensuring that its business is

More information

Guidance Note: Corporate Governance - Board of Directors. March 2015. Ce document est aussi disponible en français.

Guidance Note: Corporate Governance - Board of Directors. March 2015. Ce document est aussi disponible en français. Guidance Note: Corporate Governance - Board of Directors March 2015 Ce document est aussi disponible en français. Applicability The Guidance Note: Corporate Governance - Board of Directors (the Guidance

More information

Loan Origination Governance & Controls:

Loan Origination Governance & Controls: Loan Origination Governance & Controls: Fannie Mae s Expectations of Lender Management Looking at Loan Quality as an Example 2011 Fannie Mae. Trademarks of Fannie Mae. 2013 Fannie Mae Trademarks of Fannie

More information

IT Service Desk Unit Opportunities for Improving Service and Cost-Effectiveness

IT Service Desk Unit Opportunities for Improving Service and Cost-Effectiveness AUDITOR GENERAL S REPORT ACTION REQUIRED IT Service Desk Unit Opportunities for Improving Service and Cost-Effectiveness Date: September 18, 2013 To: From: Wards: Audit Committee Auditor General All Reference

More information

Pharmaceutical Compliance and Regulatory Congress 2009

Pharmaceutical Compliance and Regulatory Congress 2009 Pharmaceutical Compliance and Regulatory Congress 2009 Compliance Program Elements Track I: How Program Management Can Keep You On Track Edward H. Leskauskas Director, Compliance and Ethics Operations

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Version: 4 Bodies consulted: Caldicott Guardian, IM&T Directors Approved by: MT Date Approved: 27/10/2015 Lead Manager: Governance Manager Responsible Director: SIRO Date

More information

Department of Infrastructure and Planning: Governance Framework for Infrastructure Delivery Special Purpose Vehicles

Department of Infrastructure and Planning: Governance Framework for Infrastructure Delivery Special Purpose Vehicles Department of Infrastructure and Planning: Governance Framework for Infrastructure Delivery Special Purpose Vehicles Governance Framework for Special Purpose Vehicles Table of Contents Executive Summary...3

More information

Appendix 14 CORPORATE GOVERNANCE CODE AND CORPORATE GOVERNANCE REPORT

Appendix 14 CORPORATE GOVERNANCE CODE AND CORPORATE GOVERNANCE REPORT Appendix 14 CORPORATE GOVERNANCE CODE AND CORPORATE GOVERNANCE REPORT The Code This Code sets out the principles of good corporate governance, and two levels of recommendations: code provisions; and recommended

More information

JOB ANNOUNCEMENT. Chief Security Officer, Cheniere Energy, Inc.

JOB ANNOUNCEMENT. Chief Security Officer, Cheniere Energy, Inc. JOB ANNOUNCEMENT Chief Security Officer, Cheniere Energy, Inc. Position Overview The Vice President and Chief Security Risk Officer (CSRO) reports to the Chairman, Chief Executive Officer and President

More information

Risk Management Framework

Risk Management Framework Risk Management Framework Mandate and commitment Design of framework for managing risks Continual improvement of the framework Implementing risk management Monitoring and review of the framework Source:

More information

Privacy Governance and Compliance Framework Accountability

Privacy Governance and Compliance Framework Accountability Privacy Governance and Framework Accountability Agenda Global Data Protection and Privacy (DPP) Organization Structure Privacy The 3 Lines of Defense (LOD) Model: Overview Privacy The 3 Lines of Defense

More information

EXECUTIVE SAFETY LEADERSHIP

EXECUTIVE SAFETY LEADERSHIP EXECUTIVE SAFETY LEADERSHIP EXECUTIVE SUMMARY This guide offers clear explanations of health and safety concepts that are important to executives and board members, and provides practical solutions that

More information

Rolls Royce s Corporate Governance ADOPTED BY RESOLUTION OF THE BOARD OF ROLLS ROYCE HOLDINGS PLC ON 16 JANUARY 2015

Rolls Royce s Corporate Governance ADOPTED BY RESOLUTION OF THE BOARD OF ROLLS ROYCE HOLDINGS PLC ON 16 JANUARY 2015 Rolls Royce s Corporate Governance ADOPTED BY RESOLUTION OF THE BOARD OF ROLLS ROYCE HOLDINGS PLC ON 16 JANUARY 2015 Contents INTRODUCTION 2 THE BOARD 3 ROLE OF THE BOARD 5 TERMS OF REFERENCE OF THE NOMINATIONS

More information

The Compliance Universe

The Compliance Universe The Compliance Universe Principle 6.1 The board should ensure that the company complies with applicable laws and considers adherence to non-binding rules, codes and standards This practice note is intended

More information

FFIEC Cybersecurity Assessment Tool Overview for Chief Executive Officers and Boards of Directors

FFIEC Cybersecurity Assessment Tool Overview for Chief Executive Officers and Boards of Directors Overview for Chief Executive Officers and Boards of Directors In light of the increasing volume and sophistication of cyber threats, the Federal Financial Institutions Examination Council 1 (FFIEC) developed

More information

Master of Studies in Manufacturing

Master of Studies in Manufacturing University of Cambridge: Programme Specifications Every effort has been made to ensure the accuracy of the information contained in this programme specification. At the time of publication, the programme

More information

Quality Assurance Checklist

Quality Assurance Checklist Internal Audit Foundations Standards 1000, 1010, 1100, 1110, 1111, 1120, 1130, 1300, 1310, 1320, 1321, 1322, 2000, 2040 There is an Internal Audit Charter in place Internal Audit Charter is in place The

More information

Audit and Performance Committee Report

Audit and Performance Committee Report Audit and Performance Committee Report Date: 3 February 2016 Classification: Title: Wards Affected: Financial Summary: Report of: Author: General Release Maintaining High Ethical Standards at the City

More information

State Agency Cyber Security Survey v 3.4 2 October 2014. State Agency Cybersecurity Survey v 3.4

State Agency Cyber Security Survey v 3.4 2 October 2014. State Agency Cybersecurity Survey v 3.4 State Agency Cybersecurity Survey v 3.4 The purpose of this survey is to identify your agencies current capabilities with respect to information systems/cyber security and any challenges and/or successes

More information

Northern Grampians Shire Council FRAUD CONTROL PLAN

Northern Grampians Shire Council FRAUD CONTROL PLAN Northern Grampians Shire Council FRAUD CONTROL PLAN Northern Grampians Shire Council does not tolerate fraud or improper conduct by its employees, officers or members, nor the taking of reprisals against

More information

Basel Committee on Banking Supervision

Basel Committee on Banking Supervision Basel Committee on Banking Supervision Consultative document Guidelines Corporate governance principles for banks Issued for comments by 9 January 2015 October 2014 This publication is available on the

More information

Compliance & Internal Audit Collaboration

Compliance & Internal Audit Collaboration www.pwc.com Compliance & Internal Collaboration Developing a compliance third line of October 2015 The Society of Corporate Compliance & Ethics 14 th Annual Compliance & Ethics Institute Conference Introductions

More information

Antifraud program and controls assessment grid*

Antifraud program and controls assessment grid* Advisory Services Antifraud program and * Fraud risks & controls February 2008 *connectedthinking 2008 PricewaterhouseCoopers LLP. All rights reserved. PricewaterhouseCoopers refers to PricewaterhouseCoopers

More information

Does Fraud Matter? ASIS Middle East Security Conference and Exhibition Dubai, February 16, 2015. Torsten Wolf, CPP Head of Group Security Operations

Does Fraud Matter? ASIS Middle East Security Conference and Exhibition Dubai, February 16, 2015. Torsten Wolf, CPP Head of Group Security Operations Does Fraud Matter? ASIS Middle East Security Conference and Exhibition Dubai, February 16, 2015 Torsten Wolf, CPP Head of Group Security Operations Agenda Introduction Economic Crime Landscape Economic

More information

Information Governance Policy

Information Governance Policy Policy Policy Number / Version: v2.0 Ratified by: Audit Committee Date ratified: 25 th February 2015 Review date: 24 th February 2016 Name of originator/author: Name of responsible committee/individual:

More information

Dear , Sub: Appointment as Independent Director

<Name and Address> <Date> Dear <Name of the Director>, Sub: Appointment as Independent Director Dear , Sub: Appointment as Independent Director I am pleased to inform you that upon the recommendation of the Nominations and Remuneration Committee, the

More information

Compliance Policy AGL Energy Limited

Compliance Policy AGL Energy Limited Compliance Policy AGL Energy Limited November 2013 Table of Contents 1. About this Document... 3 2. Policy Statement... 4 3. Purpose... 4 4. AGL Compliance Context... 4 5. Scope... 5 6. Objectives... 5

More information

Audit of the Test of Design of Entity-Level Controls

Audit of the Test of Design of Entity-Level Controls Audit of the Test of Design of Entity-Level Controls Canadian Grain Commission Audit & Evaluation Services Final Report March 2012 Canadian Grain Commission 0 Entity Level Controls 2011 Table of Contents

More information

Global Preamble: Codes of Best Market Practice and Shared Global Principles 1

Global Preamble: Codes of Best Market Practice and Shared Global Principles 1 30 March 2015 Global Preamble: Codes of Best Market Practice and Shared Global Principles 1 The wholesale foreign exchange (FX) market is a global market used by banks and other institutions, as well as

More information