Risk Management How to manage your brand & build business resilience to improve your bottom line

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "Risk Management How to manage your brand & build business resilience to improve your bottom line"

Transcription

1 2010 RMIA Members Forum Primary focus for RMIA in 2011 Risk Management How to manage your brand & build business resilience to improve your bottom line Grant Whitehorn RMIA Chief Executive Officer CPA Congress - Brisbane, Melbourne & Sydney October /05/2012 0

2 Overview What is your Brand and reputation worth Risk Management vs. Business Resilience... what s the difference? What are the essential elements of a resilient organisation How to achieve Business Resilience & KPI s for measuring success

3 What is your Brand & Reputation worth?

4

5

6 $$$$$???

7 What is Reputation Risk Management? The effective management of risks associated with your corporate reputation (identity, brand and stakeholder perceptions).

8 What is Corporate Reputation? Corporate Identity: Name, logo, typeface, look & feel, colour scheme, etc + Corporate Image: Total impression the entity makes on people + Perceptions: Appropriate role and behaviour of the entity = Corporate Brand or Reputation

9 Reputation risks are important as they impact on your stakeholders... Customers Employees Regulators Suppliers Advisers Banks / Investors Ratings Agencies Shareholders Competitors Communities

10 And is increasingly important because... The move from products and services to the customer experience customer expectations The rise of consumer power Globalisation and ease of access eg: shopping online, e-commerce, etc Regulatory and reporting requirements Brand value = $$$ (considered a commodity) Share Market expectations Competitive advantage

11 The consequences of a damaged reputation... Loss of Share Price Reduction in Brand Value Poor Employee Morale Loss of Sales / Turnover Loss of Clients / Customer Retention Loss of Staff / Recruitment and Retention Damage to Strategic Relationships Bankruptcy

12

13

14 The benefits of effective reputation risk management... Improve relations with shareholders Increase customer satisfaction Increase investment attraction Recruit and retain valued employees Customer loyalty Supplier stability Secure premium pricing for products and services Minimise threat of litigation or more regulation Reduce the potential for crisis Reinforce trust and market credibility

15 Who is responsible for managing reputation risks?

16 Everyone!!!

17 Reputation Risks... Brand / Image Website Annual Report Poor Governance Marketing Campaigns / Public Education Programs / Advertising Defective Products and Services Competition / Competitors Organisational Capability / Business Continuity Customer Expectations & Satisfaction Breaches of Contractual obligations Disasters fire, flood, scandals, etc Environmental Standards / Pollution Staff Behaviour / Corporate Culture WHS Regulations & Standards Politics Fraud / Financial mismanagement Terrorism Regulatory failure Strikes / Industrial Action

18 Risk Management vs. Business Resilience......what s the difference?

19 Risk Management Philosophy: All Management is Risk Management!

20 What is a Risk? Risk is defined as: the effect of uncertainty on objectives (AS/NZS ISO 31000:2009 Risk Management Principles and Guidelines)

21 What is Risk Management? Coordinated activities to direct and control an organisation with regard to risk (AS/NZS ISO 31000:2009 Risk Management Principles and Guidelines)

22 What s the Difference between Risk & Uncertainty? Uncertainty Things that will happen uncertainty about their magnitude Risk Things that may or may not happen Have a probability of occurrence & an impact if they happen

23 What is the Relationship between a Hazard and a Risk? RISK = [HAZARD] x [EXPOSURE] Hazard x Exposure = Iceberg x Travelling too close to it = Risk Risk of Collision

24 What is an Opportunity or Upside Risk? The occurrence of a favourable event that is due to: Changes in the environment Risks that were managed efficiently and effectively A chance to save time or money or improve capability A chance to sell a positive message

25 Business Resilience It is not the strongest or most intelligent that survive, it is the most adaptable to change Charles Darwin,

26 Defining Resilience... The adaptive capacity of an organisation in a complex and changing environment. Source: ISO Guide 73

27 Defining Resilience... Resilience is an organisation s state of being resulting from the management of uncertainty in a complex adaptive system. An indicator of this state of being is an organisations adaptive capacity. Source: RMIA Resilience White Paper, 2009

28 There are 4 different types of Resilience: 1) Individual Resilience 2) Community Resilience 3) Organisational Resilience 4) Sector Resilience

29 For example Individual Resilience Healthy or weak, support from Family & Friends, educated or ignorant, etc. Community Resilience Rural vs. Urban, Transportation, Internet access, Electricity, Bushfires, etc. Organisational Resilience Proactive vs. reactive leadership, adaptive culture, survival vs. injury/death, profit or loss, etc. Sector Resilience Global Financial Crisis or business opportunity?

30 Reference: Page 5

31 What are the essential elements of a resilient organisation?

32 Resilience arises from a combination of culture and attitude, process and framework.

33 Are these practices embedded into your organisation s policies, processes, systems, values & culture? Enterprise Risk Management or Risk & Opportunity Management Business Continuity Management & Crisis/Emergency Management Security Risk Management Safety Management Environmental Management Sustainability & Ecologically Sustainable Development (ESD) Corporate Social Responsibility Quality Management Ethics, Integrity, Fraud Control, AML & Corruption Control Corporate Governance, Strategy & Business Planning Compliance & Audit Management - Legal, Regulatory, Policy, Process, Performance, IT, Finance, etc Cultural Change Management & Organisational Development

34 INTERNAL COMPONENTS Physical Components Human Components Process Components Risks, Hazards, Risk Management & ERM what s the difference? Buildings Offices / Sites Comms Board Direct Planning ERM and IT Hardware and Management Continuity Plans Equipment Security Relationships Staff Emergency Management Hazard - a source of potential harm (HB ) Vehicles Management Leadership Cash flow Occupational Health and Safety (OH&S) refers mainly to hazards. Software/IP Succession Brand knowledge Inventory Staff Welfare Insurance Risk the chance of something happening that will have an impact on objectives (AS/NZS 4360:2004) Services Generators Information & Backup Fuel Supplies Knowledge Privacy Risk the effect of uncertainty on objectives (ISO31000 Draft International Risk Management Standard, due for release in late 2008) IT Networks Training/review EXTERNAL COMPONENTS Risk Management coordinated activities to direct and Physical control Components an organisation Human with Components regard to risk Process Components (Draft ISO31000) Services Electricity Comms Emergency Services Indirect Interconnectedness The purpose Water of managing and risk is to Local give authority you more Planning control over Govt. your Legislation business to maximise the achievement of objectives. Sewerage Relationships Customers Contracts Telecomms Suppliers Reputation/Image Transport Media

35 How to achieve Business Resilience & KPI s for measuring success

36 SQE (QMS, SMS, EMS & Sustainability Strategy) Governance (Strategy / Leadership / Succession Planning / AS8000) Finance (AASB / IFRS / Payroll) BCM (AS5050 / Cairns Office Cyclone Preparedness Plan) Human Resources (Workplace Relations / L&D / AS4811) Risk Management (ERM / ISO31000) Business Resilience Legal & Contracts Facilities (Offices / Property / Assets) Security (ISO28000 / SRMBOK) Project Management (IPP / PMBOK) Marketing & Comm s (Reputation / Brand / CRM) Compliance & Audit (AS3806 / International Auditing Standards) ICT (Records & Knowledge Management / ISO27001)

37 Situation Awareness Indicators: Situation Awareness Attribute Indicator Description Roles and Responsibilities Hazards and Consequences SA 1 SA 2 Awareness of roles and responsibilities of staff internally in an organisation and the roles and responsibilities of the organisation to its community of stakeholders Awareness of the range of hazard types and their consequences (positive and negative) that the organisation may be exposed to. Network Interdependencies SA3 Awareness of the links between the organisation and its entire community of stakeholders, internally (staff) and externally (customers, local authorities, consultants, competitors etc). Insurance SA 4 Awareness of the obligations and limitations in relation to business interruption insurance and other insurance packages that the organisation may have or have available, business advice and mentoring services, government aid etc. Recovery Priorities SA 5 Awareness of minimum operating requirements and the priorities involved in meeting these requirements, together with expectations of key stakeholders.

38 Keystone Vulnerabilities Indicators: Key Vulnerabilities Attribute Indicator Description Planning KV 1 The extent to which the organisation has participated in planning activities including risk management, business continuity and emergency management planning. Exercises KV 2 The extent to which the organisation has been involved in external emergency exercises or created exercises internally for staff and stakeholders. Internal Resources KV 3 The capability and capacity of physical, human and process related resources to meet expected minimum operating requirements in a crisis. Includes economic strengths, succession and structural integrity of buildings. External Resources KV 4 The expectations of the organisation for the availability and effectiveness of external resources to assist the organisation in a crisis. Connectivity KV 5 The extent to which the organisation has become involved with other critical organisations to ensure the availability of expertise and resources in the event of a crisis.

39 Adaptive Capacity Indicators: Adaptive Capacity Attribute Indicator Description Silo Mentality AC 1 The degree to which the organisation experiences the negative impacts of silo mentality and the occurrence of strategies in place for mitigating them. Communications and Relationships AC 2 The effectiveness of communication pathways and relationships with all stakeholders, both internally and externally in day-to-day and crisis situations. Strategic Vision AC 3 The extent to which the organisation has developed a strategic vision for future operations and the degree to which that is successfully articulated through the organisation. Information and Knowledge AC 4 The degree to which information and knowledge is acquired, retained and transferred throughout the organisation and between linked organisations. Leadership and Management AC 5 The degree to which leadership and management encourage flexibility and creativity in the organisation and how successful decision making is in times of crisis.

40 What s your risk appetite?

41

42 Questions? Grant Whitehorn Chief Executive Officer Risk Management Institution of Australasia Limited Phone: (02)

43 Representing the practice of Risk Management for over 30 years.

44 We value your feedback. Visit Congress Mobile and rate this session Join the conversation:

APPLICABLE TO: Flow Systems Group and all employees. Risk Management

APPLICABLE TO: Flow Systems Group and all employees. Risk Management PURPOSE: Flow Systems is committed to managing its risks and ensuring compliance with all relevant laws and regulations in a proactive, on-going and positive manner. This document outlines Flow s Risk

More information

Version Adoption by Council: 2013 Resolution Number: 2013/177 Current Version: V1.0 Administered by: Governance Coordinator

Version Adoption by Council: 2013 Resolution Number: 2013/177 Current Version: V1.0 Administered by: Governance Coordinator Risk Management Framework Version Adoption by Council: 2013 Resolution Number: 2013/177 Current Version: V1.0 TRIM CON: 12/1132 Administered by: Governance Coordinator Last Review Date: 2013 Next Review

More information

WHAT IS CORPORATE RESILIENCE AND HOW IS IT ACHIEVED. Bruce Braes David Brooks

WHAT IS CORPORATE RESILIENCE AND HOW IS IT ACHIEVED. Bruce Braes David Brooks WHAT IS CORPORATE RESILIENCE AND HOW IS IT ACHIEVED Bruce Braes David Brooks Disagreement exists whether Organisational Resilience is A Behaviour, An Ability or Principle. So What Is Corporate Resilience?

More information

A guide for members APES 325 Risk Management for Firms

A guide for members APES 325 Risk Management for Firms A guide for members APES 325 Risk Management for Firms An explanation and introduction to APES 325 Risk Management for Firms Overview of the scope and application of a risk management framework. APES 325

More information

Role Profile: Risk and Compliance Manager

Role Profile: Risk and Compliance Manager Role Profile: Risk and Compliance Manager Location: Adelaide, South Australia. Reports to: Executive Director School Services. Qualifications: Relevant tertiary qualifications. Remuneration: Based on skills,

More information

APPENDIX 50. Enterprise risk management - Risk management overview

APPENDIX 50. Enterprise risk management - Risk management overview APPENDIX 50 Enterprise risk management - Risk management overview Energex regulatory proposal October 2014 ENTERPRISE RISK MANAGEMENT Risk Management Overview (RMO) 06 11 2013 Table of Contents 1. INTRODUCTION...

More information

Supporting information technology risk management

Supporting information technology risk management IBM Global Technology Services Thought Leadership White Paper October 2011 Supporting information technology risk management It takes an entire organization 2 Supporting information technology risk management

More information

ENTERPRISE RISK MANAGEMENT FRAMEWORK

ENTERPRISE RISK MANAGEMENT FRAMEWORK ROCKHAMPTON REGIONAL COUNCIL ENTERPRISE RISK MANAGEMENT FRAMEWORK 2013 Adopted 25 June 2013 Reviewed: October 2015 TABLE OF CONTENTS 1. Introduction... 3 1.1 Council s Mission... 3 1.2 Council s Values...

More information

Benchmarking resilience Organisational Resilience to Extreme Climatic Events

Benchmarking resilience Organisational Resilience to Extreme Climatic Events Benchmarking resilience Organisational Resilience to Extreme Climatic Events This project compares Sydney Water s organisational resilience and practices with other water utilities to identify strengths

More information

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS 1 Module 1: Principles of Risk and Risk Management Module aims The aim of this module is to provide an introduction to the principles and concepts of risk and

More information

Reputation. Further excellence. business continuity. risk management. Data security

Reputation. Further excellence. business continuity. risk management. Data security Reputation competitive advantage speed to market safety Further excellence trust Data security risk management business continuity HOW CAN YOU CREATE AND SECURE SUSTAINABLE BUSINESS? SOLUTIONS FOR MANAGING

More information

Get More Out of Your Risk Assessment. Austin Chapter of the IIA

Get More Out of Your Risk Assessment. Austin Chapter of the IIA Get More Out of Your Risk Assessment Austin Chapter of the IIA Speakers Alyssa G. Martin, CPA Dallas Executive Partner, Advisory Services 25 years of public accounting experience, with a practice emphasis

More information

International Diploma in Risk Management Syllabus

International Diploma in Risk Management Syllabus International Diploma in Risk Management Syllabus Module 1: Principles of Risk and Risk Management The aim of this module is to provide an introduction to the principles and concepts of risk and risk management.

More information

Risk Management Policy

Risk Management Policy Risk Management Policy Risk Management Policy Record Number D14/79827 Responsible Manager Manager Strategy and Governance Last reviewed 10 March 2015 Adoption reference Council Resolution number 90.5 Previous

More information

Risks and uncertainties

Risks and uncertainties Risks and uncertainties Our risk management approach We have a well-established risk management methodology which we use throughout the business to allow us to identify and manage the principal risks that

More information

SAI GLOBAL LIMITED Risk Management Policy

SAI GLOBAL LIMITED Risk Management Policy SAI GLOBAL LIMITED Risk Management Policy SAI Global Ltd ABN 67050611642 Last Updated: February 2012 Contents 1. Risk Management... 3 2. Policy... 3 3. Risk Management Philosophy... 3 4. Risk Appetite...

More information

Integrated Risk Management Policy

Integrated Risk Management Policy Integrated Management Policy Document reference number Document developed by Quality and Patient Safety Directorate Revision number 4 Document approved by Quality and Patient Safety Directorate Approval

More information

Business Continuity Management

Business Continuity Management Business Continuity Management Factsheet To prepare for change, change the way you prepare In an intensely competitive environment, a permanent market presence is essential in order to satisfy customers

More information

BUSINESS CONTINUITY MANAGEMENT SINGAPORE SS540 BCM STANDARDS. LSA Consultants Pte Ltd

BUSINESS CONTINUITY MANAGEMENT SINGAPORE SS540 BCM STANDARDS. LSA Consultants Pte Ltd BUSINESS CONTINUITY MANAGEMENT SINGAPORE SS540 BCM STANDARDS LSA Consultants Pte Ltd BCM SINGAPORE LSA Consultants Who are we? Business Continuity Management (BCM) What is it? Singapore Standard SS540

More information

Risk Management Policy and Framework

Risk Management Policy and Framework Risk Management Policy and Framework December 2014 phone 1300 360 605 08 89589500 email info@centraldesert.nt.gov.au location 1Bagot Street Alice Springs NT 0870 post PO Box 2257 Alice Springs NT 0871

More information

15 December 2015. General Risk Control and Management Policy

15 December 2015. General Risk Control and Management Policy 15 December 2015 General Risk Control and Management Policy Content 1. Purpose 3 2. Scope 3 3. Risk Factors - Definitions 3 4. Basic Principles 4 5. Comprehensive Risk Control and Management System 4 6.

More information

Module 4. Risk assessment for your AML/CTF program

Module 4. Risk assessment for your AML/CTF program Module 4 Risk assessment for your AML/CTF program AML/CTF Programs Risk assessment for your AML/CTF program Page 1 of 27 Module 4 Risk assessment for your AML/CTF program Risk assessment for your AML/CTF

More information

Risk Management. Risk Policy and Procedures. Risk Management Framework

Risk Management. Risk Policy and Procedures. Risk Management Framework Risk Management Risk Policy and Procedures Risk management is attempting to identify and then manage threats that could severely impact or bring down the organization. Generally, this involves reviewing

More information

Awareness-raising questionnaire

Awareness-raising questionnaire 1. Introduction This questionnaire will help you think about your company s efforts towards responsible entrepreneurship by raising questions on the possible ways you could improve your business in a profitable

More information

COCA-COLA HELLENIC BOTTLING COMPANY RISK MANAGEMENT POLICY

COCA-COLA HELLENIC BOTTLING COMPANY RISK MANAGEMENT POLICY COCA-COLA HELLENIC BOTTLING COMPANY RISK MANAGEMENT POLICY 1. INTRODUCTION The effective management of risk is central to the ongoing success and resilience of Coca-Cola Hellenic Bottling Company (CCHBC).

More information

Understanding Principles and Concepts of Quality, Safety and Environmental Management System Graham Caddies

Understanding Principles and Concepts of Quality, Safety and Environmental Management System Graham Caddies Understanding Principles and Concepts of Quality, Safety and Environmental Management System Graham Caddies Owner / Principal Advance Profitplan Understanding Principles & Concepts Page 1 of 10 Revision

More information

Australian Work Health and Safety Strategy 2012 2022. Healthy, safe and productive working lives

Australian Work Health and Safety Strategy 2012 2022. Healthy, safe and productive working lives Australian Work Health and Safety Strategy 2012 2022 Healthy, safe and productive working lives Creative Commons ISBN 978-0-642-78566-4 [PDF online] ISBN 978-0-642-78565-7 [Print] With the exception of

More information

The Lowitja Institute Risk Management Plan

The Lowitja Institute Risk Management Plan The Lowitja Institute Risk Management Plan 1. PURPOSE This Plan provides instructions to management and staff for the implementation of consistent risk management practices throughout the Lowitja Institute

More information

Operational Risk Management Policy

Operational Risk Management Policy Operational Risk Management Policy Operational Risk Definition A bank, including a development bank, is influenced by the developments of the external environment in which it is called to operate, as well

More information

Health, Safety and Environment Management System

Health, Safety and Environment Management System Health, Safety and Environment Management System For Bridgeport Energy Ltd Level 7, 111 Pacific Highway North Sydney 2011 June, 2010 DOCUMENT CONTROL Title: Document Number: Health, Safety and Environmental

More information

FRAMEWORK FOR AN ETHICAL MATURITY INDEX. Authors: Elena Demidenko and Patrick McNutt

FRAMEWORK FOR AN ETHICAL MATURITY INDEX. Authors: Elena Demidenko and Patrick McNutt FRAMEWORK FOR AN ETHICAL MATURITY INDEX Authors: Elena Demidenko and Patrick McNutt Across key Enterprise risk management frameworks, COSO ERM (http://www.coso.org) and ASNZ4360 (ASNZ 4360: 2004 (http://www.standards.com.au)

More information

Effective risk management

Effective risk management Effective risk management Our holistic and disciplined risk management program is designed to mitigate risks at all levels of our business in order to protect our clients interests. 2 Vanguard > Effective

More information

WHS Risk Assessment and Control Form

WHS Risk Assessment and Control Form WHS Risk Assessment and Control Form Step 1: Who has conducted the Risk Assessment Risk Assessment completed by (name): Staff / Student Number: Signature: Date: Step 4: Documentation and initial approval

More information

Policy and Procedure Statement

Policy and Procedure Statement Policy and Procedure Statement SUBJECT: Enterprise Risk CATEGORY: General Administration NO. 502-G PREAMBLE Risk exists in all activities and cannot be avoided, nor can it always be eliminated. However,

More information

Chapter 1: An Overview of Emergency Preparedness and Business Continuity

Chapter 1: An Overview of Emergency Preparedness and Business Continuity Chapter 1: An Overview of Emergency Preparedness and Business Continuity After completing this chapter, students will be able to: Describe organization and facility stakeholder needs during and after emergencies.

More information

Risk Management Policy Adopted by:

Risk Management Policy Adopted by: Risk Management Policy Adopted by: Infigen Energy Limited Infigen Energy (Bermuda) Limited Infigen Energy RE Limited in its capacity as Responsible Entity of Infigen Energy Trust Adopted: 17 December 2009

More information

Transmission Standard Design PART 1- POLICY REQUIREMENTS AND DESIGN GUIDELINES

Transmission Standard Design PART 1- POLICY REQUIREMENTS AND DESIGN GUIDELINES Transmission Standard Design PART 1- POLICY REQUIREMENTS AND DESIGN GUIDELINES Original Issue: 31 January 2009 Prepared by: Transmission Primary Engineering Services This Revision: 1 Date for Next Review:

More information

Corporate Risk Management Policy

Corporate Risk Management Policy Corporate Risk Management Policy Managing the Risk and Realising the Opportunity www.reading.gov.uk Risk Management is Good Management Page 1 of 19 Contents 1. Our Risk Management Vision 3 2. Introduction

More information

TO GAS TRANSMISSION OPERATOR GAZ-SYSTEM S.A.

TO GAS TRANSMISSION OPERATOR GAZ-SYSTEM S.A. TO GAS TRANSMISSION OPERATOR GAZ-SYSTEM S.A. CONTENTS INTRODUCTION 2 Our commitments and values 2 Objectives 3 Scope 3 Application 4 Compliance 4 Cooperation with Suppliers 5 TO GAS TRANSMISSION OPERATOR

More information

KPMG Information Risk Management Business Continuity Management Peter McNally, KPMG Asia Pacific Leader for Business Continuity

KPMG Information Risk Management Business Continuity Management Peter McNally, KPMG Asia Pacific Leader for Business Continuity INFORMATION RISK MANAGEMENT KPMG Information Risk Management Business Continuity Management Peter McNally, KPMG Asia Pacific Leader for Business Continuity ADVISORY Contents Agenda: Global trends and BCM

More information

Risk Management Policy

Risk Management Policy Risk Management Policy DOCUMENT CONTROL Developed by: Date: Origination: Quality, Systems & Shared s March 2014 Authorised by: Colette Kelleher April 2014 DOCUMENT REVIEW HISTORY Original Circulation date:

More information

Strategic Plan. New Zealand Fire Service Commission to 2005 2010

Strategic Plan. New Zealand Fire Service Commission to 2005 2010 Strategic Plan New Zealand Fire Service Commission to 2005 2010 Table of contents Forward from the Chairperson...3 Summarises the purpose, content and logic behind the Commission s strategic direction.

More information

Business Continuity Management Governance. Frank Higgins Abu Dhabi March 2015

Business Continuity Management Governance. Frank Higgins Abu Dhabi March 2015 Business Continuity Management Governance Frank Higgins Abu Dhabi March 2015 Different Names Same Concept BCM (Business Continuity Management) BSI 25999 IPOCM (Incident Preparedness & Operational Continuity

More information

What is reputation / reputation risk? What is a reputation risk?

What is reputation / reputation risk? What is a reputation risk? REPUTATION RISK 1 What is reputation / reputation risk? Reputation is : an intangible asset greater than brand offering premium value growth opportunities to shareholders sum total of all stakeholders

More information

Enterprise Risk Management

Enterprise Risk Management Cayman Islands Society of Professional Accountants Enterprise Risk Management March 19, 2015 Dr. Sandra B. Richtermeyer, CPA, CMA What is Risk Management? Risk management is a process, effected by an entity's

More information

ENTERPRISE RISK MANAGEMENT POLICY

ENTERPRISE RISK MANAGEMENT POLICY ENTERPRISE RISK MANAGEMENT POLICY TITLE OF POLICY POLICY OWNER POLICY CHAMPION DOCUMENT HISTORY: Policy Title Status Enterprise Risk Management Policy (current, revised, no change, redundant) Approving

More information

Hume Community Housing Association MARKETING COMMUNICATIONS SPECIALIST

Hume Community Housing Association MARKETING COMMUNICATIONS SPECIALIST Position Title: Reports To: Marketing Communications Specialist CEO initially Department: Business Services Direct Reports: NA Location: Fairfield or Parramatta Position Purpose: This position is responsible

More information

Five steps to Enterprise Risk Management

Five steps to Enterprise Risk Management risk decisions 2011 Five steps to Enterprise Risk Management by Val Jonas CEO Risk Decisions Group www.riskdecisions.com management solutions Val Jonas: Five steps to Enterprise Risk Management Five steps

More information

EXECUTIVE SAFETY LEADERSHIP

EXECUTIVE SAFETY LEADERSHIP EXECUTIVE SAFETY LEADERSHIP EXECUTIVE SUMMARY This guide offers clear explanations of health and safety concepts that are important to executives and board members, and provides practical solutions that

More information

A structured approach to Enterprise Risk Management (ERM) and the requirements of ISO 31000

A structured approach to Enterprise Risk Management (ERM) and the requirements of ISO 31000 A structured approach to Enterprise Risk Management (ERM) and the requirements of ISO 31000 Contents Executive summary Introduction Acknowledgements Part 1: Risk, risk management and ISO 31000 1 Nature

More information

Maryland Association of Boards of Education Insurance Programs

Maryland Association of Boards of Education Insurance Programs Insurance Programs ENTERPRISE RISK MANAGEMENT John Magoon, ARM (P, E), CBCP, MBCI Risk Management Officer, MABE jmagoon@mabe.org 443 603 0399 A PERFECT DAY Our Goals 1.2 1 0.8 0.6 0.4 0.2 0 Actual Goal

More information

Emergency Planning and Crisis Management initiatives rolled up into a viable Business Continuity and Enterprise Risk Management Program.

Emergency Planning and Crisis Management initiatives rolled up into a viable Business Continuity and Enterprise Risk Management Program. Emergency Planning and Crisis Management initiatives rolled up into a viable Business Continuity and Enterprise Risk Management Program. Or: How I Learned to Stop Worrying and Love the ERM! Is this You?

More information

Risk management + Strategic planning IT TAKES AN ENTIRE ORGANIZATION

Risk management + Strategic planning IT TAKES AN ENTIRE ORGANIZATION 1 Risk management + Strategic planning IT TAKES AN ENTIRE ORGANIZATION Background 2 Technology has become the central component of business operations Businesses have become more vulnerable to risks associated

More information

LEICESTERSHIRE COUNTY COUNCIL RISK MANAGEMENT POLICY STATEMENT 2011-2012

LEICESTERSHIRE COUNTY COUNCIL RISK MANAGEMENT POLICY STATEMENT 2011-2012 106 LEICESTERSHIRE COUNTY COUNCIL RISK MANAGEMENT POLICY STATEMENT 2011-2012 Leicestershire County Council believes that managing current and future risk, both opportunity and threat, is increasingly vital

More information

Reputation and the Board. Guidance for PR Consultants and Board Directors

Reputation and the Board. Guidance for PR Consultants and Board Directors Reputation and the Board Guidance for PR Consultants and Board Directors Contents Foreword... 3 About This Guidance... 4 What is Reputation?... 4 Why is Reputation Important?... 4 Reputation: A Board s

More information

PAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA

PAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA 1 Chapter-4: Business Continuity Planning and Disaster Recovery Planning PAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA Learning Objectives 2 To understand the concept of Business Continuity Management To understand

More information

Integrating Risk Management with Performance Management * Margaret Woods Aston Business School

Integrating Risk Management with Performance Management * Margaret Woods Aston Business School Integrating Risk Management with Performance Management * Margaret Woods Aston Business School Why Risk Management Matters Sometimes it is the things you don t see that really matter. Source: Enron Corporation

More information

PROCEDURES BUSINESS CONTINUITY MANAGEMENT FRAMEWORK PURPOSE INTRODUCTION. 1 What is Business Continuity Management? 2 Link to Risk Management

PROCEDURES BUSINESS CONTINUITY MANAGEMENT FRAMEWORK PURPOSE INTRODUCTION. 1 What is Business Continuity Management? 2 Link to Risk Management PROCEDURES BUSINESS CONTINUITY MANAGEMENT FRAMEWORK PURPOSE This Framework has been developed in support of both the Business Continuity and Crisis Management Policy and the Emergency and Fire Evacuation

More information

13. Identifying stakeholders and their 1relevance

13. Identifying stakeholders and their 1relevance 13. Identifying stakeholders and their 1relevance All successful public relations work is built on the foundation of good working relationships. These relationships foster trust and open communication,

More information

BSO Board Director of Human Resources & Corporate Services Business Continuity Policy. 28 February 2012

BSO Board Director of Human Resources & Corporate Services Business Continuity Policy. 28 February 2012 To: From: Subject: Status: Date of Meeting: BSO Board Director of Human Resources & Corporate Services Business Continuity Policy For Approval 28 February 2012 The Board is asked to agree the attached

More information

ISO 31000:2009 - ISO/IEC 31010 & ISO Guide 73:2009 - New Standards for the Management of Risk

ISO 31000:2009 - ISO/IEC 31010 & ISO Guide 73:2009 - New Standards for the Management of Risk Kevin W Knight AM CPRM; Hon FRMIA; FIRM (UK); LMRMIA: ANZIIF (Mem) ISO 31000:2009 - ISO/IEC 31010 & ISO Guide 73:2009 - New Standards for the Management of Risk History of the ISO and Risk Management Over

More information

Release: 1. BSBCON601B Develop and maintain business continuity plans

Release: 1. BSBCON601B Develop and maintain business continuity plans Release: 1 BSBCON601B Develop and maintain business continuity plans BSBCON601B Develop and maintain business continuity plans Modification History Release Release 1 Comments This version first released

More information

Need to reassure customers that your cloud services are secure? Inspire confidence with STAR Certification from BSI

Need to reassure customers that your cloud services are secure? Inspire confidence with STAR Certification from BSI Need to reassure customers that your cloud services are secure? Inspire confidence with STAR Certification from BSI What is STAR Certification? TM STAR Certification is a unique new certification which

More information

Want to exceed customer expectations and stand out from the crowd? Third party approval of management systems from BRE Global. www.bre.co.

Want to exceed customer expectations and stand out from the crowd? Third party approval of management systems from BRE Global. www.bre.co. Want to exceed customer expectations and stand out from the crowd? Third party approval of management systems from BRE Global www.bre.co.uk Demonstrate your commitment to quality Quality Management Systems

More information

St Patrick s Catholic School

St Patrick s Catholic School St Patrick s Catholic School Risk Management Policy Date 2012 Version No 1 Responsible Person Rodney Linhart Approved By Rodney Linhart Review Date 2016 Related Documents 2a WHS Hazard and Risk Register,

More information

Coordinate, develop, and manage the sales team to achieve objectives

Coordinate, develop, and manage the sales team to achieve objectives Page 1 of 6 Coordinate, develop, and manage the sales team to achieve objectives Level 6 Credits 10 Purpose People credited with this unit standard are able to: develop objectives for sales team; evaluate

More information

Understanding and articulating risk appetite

Understanding and articulating risk appetite Understanding and articulating risk appetite advisory Understanding and articulating risk appetite Understanding and articulating risk appetite When risk appetite is properly understood and clearly defined,

More information

RISK MANAGEMENT IN A FOR-

RISK MANAGEMENT IN A FOR- RISK MANAGEMENT IN A FOR- PROFIT ORGANISATION 1 OBJECTIVES Explain the risk management framework The underlying process and cycle, and resources and people involved The framework can be applied in for

More information

A GOOD PRACTICE GUIDE FOR EMPLOYERS

A GOOD PRACTICE GUIDE FOR EMPLOYERS MITIGATING SECURITY RISK IN THE NATIONAL INFRASTRUCTURE SUPPLY CHAIN A GOOD PRACTICE GUIDE FOR EMPLOYERS April 2015 Disclaimer: Reference to any specific commercial product, process or service by trade

More information

Top Ten Issues facing Internal Auditing in the Future

Top Ten Issues facing Internal Auditing in the Future Top Ten Issues facing Internal Auditing in the Future The IIA Dallas Chapter April 6, 2006 Presented by: David A. Richards, CIA, CPA President The Institute of Internal Auditors drichards@theiia.org 1

More information

Charities & Not for Profit Protecting your organisation, supporting its success. Risk Management Insurance Employee Benefits Investment Management

Charities & Not for Profit Protecting your organisation, supporting its success. Risk Management Insurance Employee Benefits Investment Management Charities & Not for Profit Protecting your organisation, supporting its success Risk Management Insurance Employee Benefits Investment Management Charities are there to help those in need. But who helps

More information

CLIENT INFORMATION PACK

CLIENT INFORMATION PACK CLIENT INFORMATION PACK VICTORIAN OFFICE Ground Floor, 51-65 Clarke Street Southbank Victoria 3006 Fax: +61 8689 1888 INTRODUCING BRI BUSINESS RISKS INTERNATIONAL WAS INCORPORATED IN 1989. DURING THE FIRST

More information

Need to reassure customers that your cloud services are secure? Inspire confidence with STAR Certification from BSI

Need to reassure customers that your cloud services are secure? Inspire confidence with STAR Certification from BSI Need to reassure customers that your cloud services are secure? Inspire confidence with STAR Certification from BSI What is STAR Certification? TM STAR Certification differentiates you from your competition.

More information

Risk Based Internal Auditing & Enterprise Risk

Risk Based Internal Auditing & Enterprise Risk Risk Based Internal Auditing & Enterprise Risk Management PRESENTERS: JUDITH NELSON, UNIVERSITY MANAGEMENT AUDITOR DWIGHT WALTERS, MANAGER, PROJECTS & COMMERCIAL OPERATIONS What we will cover today: 1.

More information

Accreditation Application Forms

Accreditation Application Forms The Institute of Risk Management The Institute of Risk Management Accreditation Application Forms Universities and Professional Associations The Institute of Risk Management Accreditation Application Forms

More information

APES 325 Risk Management for Firms

APES 325 Risk Management for Firms APES 325 Risk Management for Firms Prepared and issued by Accounting Professional & Ethical Standards Board Limited ISSUED: December 2011 Copyright 2011 Accounting Professional & Ethical Standards Board

More information

Business Continuity Management Policy

Business Continuity Management Policy Governance 1 Purpose The purpose of this policy is to communicate Business Continuity Management (BCM) framework, responsibilities and guiding principles for Victoria to effectively prepare for and achieve

More information

Fraud Risk Management

Fraud Risk Management Fraud Risk Management Overview Discussion Questions 1) Does your organization follow a specific risk management model? If so, which one? Do you think this model adequately addresses the risks your organization

More information

Business Continuity Policy and Business Continuity Management System

Business Continuity Policy and Business Continuity Management System Business Continuity Policy and Business Continuity Management System Summary: This policy sets out the structure for ensuring that the PCT has effective Business Continuity Plans in place in order to maintain

More information

Risk & Opportunity Management Framework

Risk & Opportunity Management Framework Risk & Opportunity Management Framework January 2010 Version 1.0 Table of Contents 1 Preface... 14 1.1 Risk and Opportunity Management What is it?... 14 1.2 Purpose... 15 2 Risk Management Process... 15

More information

Enterprise Risk Management Framework 2012 2016. Strengthening our commitment to risk management

Enterprise Risk Management Framework 2012 2016. Strengthening our commitment to risk management Enterprise Risk Management Framework 2012 2016 Strengthening our commitment to risk management Contents Director-General s message... 3 Introduction... 4 Purpose... 4 What is risk management?... 4 Benefits

More information

The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework

The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework Dorothy Gjerdrum, ARM-P, Chair of the ISO 31000 US TAG and Executive Director,

More information

THE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK

THE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK THE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK ACCOUNTABLE SIGNATURE AUTHORISED for implementation SIGNATURE On behalf of Chief Executive Officer SAHRA Council Date Date

More information

What it examines. Business Working Responsibly CR/Sustainability Governance Section

What it examines. Business Working Responsibly CR/Sustainability Governance Section Business Working Responsibly CR/Sustainability Governance Section 1. Corporate Responsibility/ Sustainability Governance What it examines The Corporate Responsibility (CR)/Sustainability Governance area

More information

Procurement of Goods, Services and Works Policy

Procurement of Goods, Services and Works Policy Procurement of Goods, Services and Works Policy Policy CP083 Prepared Reviewed Approved Date Council Minute No. Procurement Unit SMT Council April 2016 2016/0074 Trim File: 18/02/01 To be reviewed: March

More information

POL ENTERPRISE RISK MANAGEMENT SC51. Executive Services Department BUSINESS UNIT: Executive Support Services SERVICE UNIT:

POL ENTERPRISE RISK MANAGEMENT SC51. Executive Services Department BUSINESS UNIT: Executive Support Services SERVICE UNIT: POL ENTERPRISE RISK MANAGEMENT SC51 POLICY CODE: SC51 DIRECTORATE: Executive Services Department BUSINESS UNIT: Executive Support Services SERVICE UNIT: Executive Support Services RESPONSIBLE OFFICER:

More information

14 October General Risk Control and Management Policy

14 October General Risk Control and Management Policy 14 October 2016 General Risk Control and Management Policy Content 1. PURPOSE 3 2. SCOPE 3 3. RISK FACTORS - DEFINITIONS 3 4. BASIC PRINCIPLES 4 5. COMPREHENSIVE RISK CONTROL AND MANAGEMENT SYSTEM 4 6.

More information

Joint Universities Computer Centre Limited ( JUCC ) Information Security Awareness Training- Session Four

Joint Universities Computer Centre Limited ( JUCC ) Information Security Awareness Training- Session Four Joint Universities Computer Centre Limited ( JUCC ) Information Security Awareness Training- Session Four Data Handling in University Business Impact Analysis ( BIA ) Agenda Overview Terminologies Performing

More information

Role Description Director ICT Governance, Security and Risk

Role Description Director ICT Governance, Security and Risk Role Description Director ICT Governance, Security and Risk Classification/Grade/Band Band 1 Senior Executive Work Level Standards ANZSCO Code 262112 PCAT Code 1226892 Date of Approval 03 March 2014 Work

More information

Coping with a major business disruption. Some practical advice

Coping with a major business disruption. Some practical advice Coping with a major business disruption Some practical advice Coping with a major business disruption What is business continuity? Business continuity planning (BCP) is a management process that helps

More information

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014 WOOLWORTHS HOLDINGS LIMITED CORPORATE GOVERNANCE PRINCIPLES 2014 CORPORATE GOVERNANCE PRINCIPLES 2014 CORPORATE GOVERNANCE PRINCIPLES 2014 This table is a useful reference to each of the King III principles

More information

Risk Management for Industrial Control Systems (ICS) And Supervisory Control Systems (SCADA) Information For Senior Executives

Risk Management for Industrial Control Systems (ICS) And Supervisory Control Systems (SCADA) Information For Senior Executives Risk Management for Industrial Control Systems (ICS) And Supervisory Control Systems (SCADA) Information For Senior Executives (Revised March 2012) Disclaimer: To the extent permitted by law, this document

More information

CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT

CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT JANUARY 2008 GUIDELINE ON BUSINESS CONTINUITY GUIDELINE CBK/PG/14

More information

Principal risks and uncertainties

Principal risks and uncertainties Principal risks and uncertainties Our risk management approach We have a well-established risk management methodology which we use throughout the business to allow us to identify and manage the principal

More information

Guidance notes: Financial Planning & Managing Risk

Guidance notes: Financial Planning & Managing Risk Guidance notes: Financial Planning & Managing Risk This guidance note is particularly for governors on the audit or finance committee, but will be of interest to all governors. What is the governing body

More information

Compliance with the Standards is a condition for GTOs to be registered. These Standards are the National Standards for Group Training Organisations.

Compliance with the Standards is a condition for GTOs to be registered. These Standards are the National Standards for Group Training Organisations. National Standards for Group Training Organisations Purpose A review of the National Standards for Group Training Organisations was undertaken by Escalier Consulting Pty Ltd on behalf of the Commonwealth,

More information

ENGINEERING COUNCIL. Guidance on Risk for the Engineering Profession. www.engc.org.uk/risk

ENGINEERING COUNCIL. Guidance on Risk for the Engineering Profession. www.engc.org.uk/risk ENGINEERING COUNCIL Guidance on Risk for the Engineering Profession www.engc.org.uk/risk This guidance describes the role of professional engineers and technicians in dealing with risk, and their responsibilities

More information

Council Policy Business Continuity Management

Council Policy Business Continuity Management Policy Name: Business Continuity Management Council Policy Business Continuity Management ADOPTED BY COUNCIL: 19 th April 2016 DATE OF NEXT REVIEW: 18 th April 2020 RESPONSIBLE OFFICER: REFERENCES: Chief

More information

GMFRS Strategy. Procurement Finance and Technical Services. Greater Manchester Fire and Rescue Service. Policy Template (Draft)

GMFRS Strategy. Procurement Finance and Technical Services. Greater Manchester Fire and Rescue Service. Policy Template (Draft) GMFRS-45-38 Strategy Procurement 2015-2018 Finance and Technical Services Greater Manchester Fire and Rescue Service Policy Template (Draft) July 2012 Contents Contents... 2 Document Details... 3 Document

More information

Risk Management Framework

Risk Management Framework Risk Management Framework Mandate and commitment Design of framework for managing risks Continual improvement of the framework Implementing risk management Monitoring and review of the framework Source:

More information