How to Develop Successful Enterprise Risk and Vendor Management Programs



Similar documents
Tying It All Together: Practical ERM Integration. Richard Scanlon Vice President Enterprise Risk Management CIGNA Corporation

ENTERPRISE RISK MANAGEMENT AN OVERVIEW. November 2011

Placing a Value on Enterprise Risk Management ADVISORY

The PNC Financial Services Group, Inc. Business Continuity Program

Risk Management Policy

Enterprise-Wide Risk Assessment

Commodity Price Risk Management (CPRM) - Trends and Challenges for Corporates

Enterprise Risk Management

Cyber security Building confidence in your digital future

Principles for An. Effective Risk Appetite Framework

CHAPTER 7 PLANNING THE AUDIT: IDENTIFYING AND RESPONDING TO THE RISKS OF MATERIAL MISSTATEMENT

The PNC Financial Services Group, Inc. Business Continuity Program

RISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY

Model Risk, A company perspective Peter K. Reilly, FSA Valuation Actuary & Head of Actuarial Strategic Initiatives Aetna, Inc

FlyntGroup.com. Enterprise Risk Management and Business Impact Analysis: Understanding, Treating and Monitoring Risk

Zurich s approach to Enterprise Risk Management. John Scott Chief Risk Officer Zurich Global Corporate

Enterprise Risk Management

Remarks by. Carolyn G. DuChene Deputy Comptroller Operational Risk. at the

Designing an Operational Risk Program for a Community Bank Stephan Salvador Managing Director, Risk Management Consulting

Beyond risk identification Evolving provider ERM programs

Managing Risk at Bank of America Corporation. Overview

Organization transformation in times of change

Corporate Governance and Enterprise Risk Management Derek Jackson, Senior Manager 5 September 2005

Enterprise Risk Management & Information Technology

Consumer Goods and Services

Tailoring enterprise risk management strategies to the Main-Street insurer

Driving business performance with enterprise risk management

Matthew E. Breecher Breecher & Company PC November 12, 2008

PART A: OVERVIEW Introduction Applicability Legal Provisions Effective Date...2

GUIDANCE NOTE FOR DEPOSIT-TAKERS. Operational Risk Management. March 2012

Enterprise Risk Management in Colleges and Universities

Risk Management. Did you know? What is Risk Management?

Leveraging bank risk management practices for the insurance industry

THE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK

The College of New Jersey Enterprise Risk Management and Higher Education For Discussion Purposes Only January 2012

Enhanced Portfolio Management in uncertain times

Enterprise Risk Management A View. Clive Kelly CRO Zurich Insurance plc/zfs Europe (GI)

The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework

Risk Assessment & Enterprise Risk Management

Business Resiliency Business Continuity Management - January 14, 2014

Leveraging Information For Smarter Business Outcomes With IBM Information Management Software

Developing a robust cyber security governance framework 16 April 2015

THE ROLE OF FINANCE AND ACCOUNTING IN ENTERPRISE RISK MANAGEMENT

Board oversight of risk: Defining risk appetite in plain English

Transforming risk management into a competitive advantage kpmg.com

Driving Operational Risk Management Into the Customer/Product Value Chain

Client Relationship Management When does an organisation need to formalise its processes?

Cyber security Building confidence in your digital future

STANDARDS OF SOUND BUSINESS AND FINANCIAL PRACTICES. ENTERPRISE RISK MANAGEMENT Framework

Risk management + Strategic planning IT TAKES AN ENTIRE ORGANIZATION

Operational Risk Management - The Next Frontier The Risk Management Association (RMA)

Types of Fraud and Recent Cases. Developing an Effective Anti-fraud Program from the Top Down

From ICAAP/ORSA to ERM: Board and Senior Management Oversight. Leon Bloom, Partner, Deloitte & Touche LLP lebloom@deloitte.ca

University of St. Gallen Law School Law and Economics Research Paper Series. Working Paper No June 2007

SABPP IT GOVERNANCE COMMITTEE TERMS OF REFERENCE

Linking Risk Management to Business Strategy, Processes, Operations and Reporting

Article from: The Actuary Magazine. June/July Volume 12, Issue 3

The Allstate Corporation

Intel Reports Fourth-Quarter and Annual Results

Integrating Risk and Capital Management into Strategy and Planning. Key to Assessing Risk and Reward for Insurers

Supplier Management for Complex Outsourced Services: A Strategic Framework

Capital Requirements Directive Pillar 3 Disclosure. December 2015

The Essentials of Enterprise Risk Management. Steven C. Tourek, Senior Vice President, General Counsel & Secretary, The Marvin Companies

Successfully identifying, assessing and managing risks for stakeholders

GUIDELINES ON RISK MANAGEMENT AND INTERNAL CONTROLS FOR INSURANCE AND REINSURANCE COMPANIES

Tapping the benefits of business analytics and optimization

Project Governance A N T I C I P A T I N G A N A U D I T

3 rd Party Vendor Risk Management

Applying Risk Assessment to Your Audit Plan Break-out Session T3, Tuesday, October 26 2:00-2:50pm

INTERACTIVE DATA REPORTS FOURTH-QUARTER AND FULL- YEAR 2014 RESULTS

ERM Symposium. ERM in Corporate Decision Making April 25, 2006 J. Chris Karow. Where is Risk Relevant in Corporate Decision Making?

RISK MANAGEMENT REPORT (for the Financial Year Ended 31 March 2012)

Guiding Principles for Implementing Enterprise Risk Management (ERM)

A Framework for Managing Crime and Fraud

COMPARATIVE STUDY BETWEEN TRADITIONAL AND ENTERPRISE RISK MANAGEMENT A THEORETICAL APPROACH

Risks and uncertainties

Business Process Services. White Paper. Effective Credit Risk Assessment Strengthening the Financial Spreading with Technology Enablers

Business Continuity Management

Building Competence in Reputation Risk Management

Risk Mapping A Risk Management Tool with Powerful Applications in the New Economy

unlocking the True Potential of Enterprise Risk Management Six steps to improve your company s financial performance

Integration of Risk Management and Internal Audit. Chartered Institute of Management Accountants, New Zealand

2013 Insurance Megatrends Survey Final Results

Profile. Business solutions with a difference

Enterprise Risk Management (ERM): In Action. January Co-presented by: Michael Yip, Marsh Risk Consulting Norma Essary, DFW International Airport

IT Governance Regulatory. P.K.Patel AGM, MoF

POLICY. Number: Title: Enterprise Risk Management. Authorization

Hewlett-Packard Separation Will Create Two New Industry-Leading Public Companies

Knowing the customer: this time it s personal. How analytics can help banks achieve superior CRM, secure growth and drive high performance

ENTERPRISE. - David L. Olson University of Nebraska, USA. Desheng Dash Wu University of Toronto, Canada. World Scientific

RISK MANAGEMENT POLICY

ENTERPRISE RISK MANAGEMENT FOR BANKS

Effective risk management

DTZ Corporate Finance Limited Pillar 3 Disclosures as at 30 April 2009

BEST PRACTICES IN CYBER SUPPLY CHAIN RISK MANAGEMENT

Operational Risk Management Program Version 1.0 October 2013

COMMERCIAL LENDING POLICY DEVELOPMENT GUIDE Minimum Considerations

OAC Presentation to UNESCO Member States

Effective Supplier Relationship Management

Cyber security: Are consumer companies up to the challenge?

Transcription:

Project Management Institute New York City Chapter January 2014 Chapter Meeting How to Develop Successful Enterprise Risk and Vendor Management Programs Christina S. Kite Senior Vice President Corporate Group Strategy and Operations Federal Reserve Bank of New York January 15, 2014 1

Opening Thought. They don t put brakes in race cars so they can go slower; they put brakes in race cars so they can go faster. 2

Introduction to Risk Businesses continuously seek to forecast tomorrow in order to make better decisions today. Risk Management is the process of dealing with uncertainty. 3

Introduction to Risk Effective Risk Management includes: Identifying and recognizing sources of uncertainty; Measuring and assessing the frequency of occurrence and severity impact of the risk; and, Evaluating alternative approaches to wear, transfer, mitigate, or take advantage of the risk 4

New Approach to Managing Risk Increasing business complexity, globalization, competition, innovation and technological advances Financial crisis and the inability to quantify and understand the risk early enough to avoid the impact Increased focus on Corporate Governance and Shareholder value protection and creation New regulatory and reporting requirements Eighty percent of the risks can not be transferred through traditional insurance products Expanded set of sophisticated risk management tools and big data capabilities available and growing 5

Approach to Risk Management Business Risk Monitoring Risk Responsiveness Risk Tolerance and Appetite Business Risk Analytics Risk Assessment Compliance Business Resilience Insurance Infrastructure Enterprise Risk Management Innovation Community Employees Disciplined Decision Making Risk Taking and Timing Business & Technology Innovation 6

Key Partnerships: Network of Networks BOARD Oversight and Sponsorship Full Board Compensation Committee Audit Committee RISK OWNERS Measure, Manage and Improve Business Unit Executives Line Management Outsourced 3 rd Parties EXECUTIVE MANAGEMENT Policy, Strategy and Appetite CFO, COO and CGO CEO and Operating Group Auditors RISK MANAGEMENT Monitor, Report and Educate Global Risk Officer Risk Review Group External Risk Partners 7

Integrated Risk Strategy Program Identify inter and intra-enterprise-wide risks and opportunities Assess the magnitude of risks and opportunities Aggregate business unit risk assessments and determine risk tolerance and appetite Communicate key risks and risk response strategies Empower business units in risk management Embed risk consideration in long range planning, budgeting and forecasting processes 8

Integrated Approach to Risk Management Info HR Security Finance (FP&A, Tax, SOX) Audit Sales Risk Review Group Tax ERM Quality Legal Engineering And Mfg IT Risk Assessments Coordinated approach to conduct interviews and use outcomes to drive initiatives and work flow (i.e., ERM initiatives, Audit Plan, etc.). Risk Review Group Oversight body to share information that is comprised of a cross functional team. Risk Analytics Database that is developed to capture and categorize risks as well as predict new risks for scenario analysis. Improves the overall management and tracking of risk but, more importantly, analyzes the trends, patterns and interdependencies among risks. 9

Ecosystem Risk Management Customers, Shareholders, and Investors Risk Process Response Ecosystem Risk Management Risk Quantification Partners, Suppliers and Vendors Regulators, Government and Community 10

Vendor Management - Risk Category? Strategic Risk Competitors Business Model and Portfolio Reputation and Brand Intellectual Property Strategic Partners Cash Flow Interest Rate Credit Rating Debt Financial Risk VENDOR MANAGEMENT External Risk Regulatory Disease Weather Legal Business Process Information Security Human Resources Supply Chain Operational Risk 11

Vendor Management Considerations VENDOR CRITICALITY and SEGMENTATION PERFORMANCE MEASUREMENT and MONITORING VENDOR RISK MANAGEMENT INFORMATION CLASSIFICATION AND SHARING GLOBALIZATION CONTRACT INCENTIVES vs PENALTIES 12

Robust Vendor Management Program Resilient Create a vendor readiness state that leads to less volatility, greater predictability and fewer surprises. Make the capability scalable, flexible, modular and agile. Integrated Identify vendor concentrations, criticality and interdependencies as well as offsetting risk patterns to optimize scarce resources and to ensure superior vendor performance and value. Adaptable Design a vendor management program whose approach is real time, driven by dynamic data and the ability to self-correct. 13

Vendor Management Program Capability Culture Ensure the vendor or partner understands the organization s risk appetite, performance expectations and common language Strategy Link to overall strategic mission of the organization, including risk appetite, performance standards, and measurement framework Process Tools Understand and assign clear roles and responsibilities, develop consistent performance assessment methodologies and outline communication channels and escalation paths Develop real-time performance measurement monitoring including governance and reporting that is transparent and consistent 14

Closing Thought. Organizations make money taking risk. They also lose money taking the wrong risks. Create efficiencies and gain value from integrating existing risk management activities including designing a culturally acceptable process for managing vendor risk. 15

Thank You.? 16

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information