Ethical Maturity Index: Questionnaire Authors: Elena Demidenko and Patrick McNutt



Similar documents
Sample risk committee charter

RISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY

RSA ARCHER OPERATIONAL RISK MANAGEMENT

Internal Controls and Risk Management Report

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014

APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES

Aligning organisational culture with Enterprise Risk Management. Krishna Nagar & Mark Hayes

Operational Risk Management in a Debt Management Office

CFE 2. Enterprise Risk Management. Study Guide - Supplemental Background Material

Using COSO Small Business Guidance for Assessing Internal Financial Controls

STANDARDS OF SOUND BUSINESS AND FINANCIAL PRACTICES. ENTERPRISE RISK MANAGEMENT Framework

Transport for London. Projects and Planning Panel

Introduction Assessment Tools... 2

COSO 2013 Internal Control Framework

Enterprise-Wide Risk Assessment

Audit Committee self-assessment

M a r k e t i n g. About managing the doing of marketing for management roles

Intelligent Customer Function (ICF)

WHITE PAPER INTERNAL CONTROL WITH ADRA

Prosci Change Management Maturity Model Audit

Audit of the Policy on Internal Control Implementation

The Role of the Board in Enterprise Risk Management

Regulatory Compliance Framework An Electric Utility Model. Abstract. Grier Consulting Group LLC

How To Manage A Board In The Kandijan Germany

Effective Contract Management

CHARTER OF SUCCESSION PLANNING COMMITTEE

IT Governance Charter

Corporate Governance Guidelines

Solutions Master Data Governance Model and Mechanism

An Effective Approach to Transition from Risk Assessment to Enterprise Risk Management

Five Years of CAF 2006: From Adolescence to Maturity What Next?

Prosci Change Management Maturity Model Audit Preparation Guide

COMPLIANCE CHARTER 1

Application of King III Corporate Governance Principles

Enterprise Risk Management

The AICPA s Enterprise Risk Management Initiative

COMPANY LEVEL CONTROLS A PRACTICAL FRAMEWORK

Application of King III Corporate Governance Principles

Enterprise Risk Management Best Practices. From Assessment to Ongoing Compliance. Wiley Corporate F&A

Governance and Greater Financial Awareness in Nonprofit Organizations

Network Rail Limited (the Company ) Terms of Reference. for. The Nomination and Corporate Governance Committee of the Board

Guidance note: Appraisal and assessment of the Chair

South East Coast Ambulance Service NHS Trust. Information Governance Working Group. Terms of Reference

AUDIT OF READINESS FOR THE IMPLEMENTATION OF THE POLICY ON INTERNAL CONTROL

IIA POSITION PAPER: THE ROLE OF INTERNAL AUDITING IN ENTERPRISE-WIDE RISK MANAGEMENT

SUMMARY OF MONITOR S WELL-LED FRAMEWORK FOR GOVERNANCE REVIEWS: GUIDANCE FOR NHS FT S PUBLICATION Report by Trust Secretary

COSO 2013: WHAT HAS CHANGED & STEPS TO TAKE TO ENSURE COMPLIANCE

Release: 1. ICAPMG601A Establish IT project governance

Benefits of conducting a Project Management Maturity Assessment with PM Academy:

The Road to Enterprise Data Governance: Applying the Data Management Maturity Model in a Financial Services Firm

THE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK

Guidance Note: Corporate Governance - Board of Directors. March Ce document est aussi disponible en français.

JOB AND PERSON SPECIFICATION

IT Governance: framework and case study. 22 September 2010

The Audit Committee self-assessment checklist

Effective risk management

Impact of New Internal Control Frameworks

Criticism of Implementation of ITSM & ISO20000 in IT Banking Industry. Presented by: Agus Sutiawan, MIT, CISA, CISM, ITIL, BSMR3

The audit committee and risk management

Audit Committee Self-Assessement

DIA tasked with raising the maturity level of Data and Information Governance across Government

Risk management practices and the role of internal audit

What Every Director. How to get the most from your internal audit. Endorsed by

Project, Programme and Portfolio Management Delivery Plan 6

Quality assurance in an Agile delivery method

ATHENA Ethical Framework (Version 1- February 2014)

EQT HOLDINGS LIMITED BOARD CHARTER (ACN )

Internal Control Questionnaire and Assessment

The amount of data you have doubles every 12 to 18 months. Information Asset Management that Drives Business Performance Jeremy Pritchard 10/06/2015

Best Value toolkit: Performance management

Quality Assurance. Policy P7

Manage Compliance with External Requirements

February Audit committee performance evaluation

Developing an effective internal audit plan profiling our experiences 10 December 2015

SPORT CLUBS COMMITTEE ROLES AND RESPONSIBILITIES Last Modified: May 2016

Mapping COBIT 5 with IT Governance, Risk and Compliance at Ecopetrol S.A. By Alberto León Lozano, CISA, CGEIT, CIA, CRMA

The College of New Jersey Enterprise Risk Management and Higher Education For Discussion Purposes Only January 2012

How To Manage Information Security At A University

Hunter Hall International Limited

GREAT PLAINS ENERGY INCORPORATED BOARD OF DIRECTORS CORPORATE GOVERNANCE GUIDELINES. Amended: December 9, 2014

Information Governance Toolkit Policy

Foreword 2 STO BR IBBS

SABPP IT GOVERNANCE COMMITTEE TERMS OF REFERENCE

Take the right steps 9 principles for building the Risk Intelligent Enterprise

Fraud Prevention and Deterrence

Management Employees Pension Board

Occupational Therapy Assistant Program

ITAG RESEARCH INSTITUTE

LEVERAGING COSO ACROSS THE THREE LINES OF DEFENSE

Enhancing IT Governance, Risk and Compliance Management (IT GRC)

Audit and risk assurance committee handbook

Honours Degree (top-up) Business Abbreviated Programme Specification Containing Both Core + Supplementary Information

ESKITP Implement procedures and standards relating to metrics for IT service delivery

Information pack for the role of Education and Development Project Manager Find a Future

The Business Value of Predictive Analytics

Information Governance Strategy

University Audit and Compliance. Internal Controls Enterprise-Wide Risk Assessment

Macquarie Group Limited Board Charter

Enterprise Risk Management

NHS Boards will: Action required Accountable Support Target dates Progress / Status

Transcription:

Ethical Maturity Index: Questionnaire Authors: Elena Demidenko and Patrick McNutt Patrick McNutt and Elena Demidenko have developed a questionnaire to enable management self assessment of current situation and articulation of the future state of Ethical Maturity of Risk Governance in an organisation and areas for improvement. The questionnaire is based on the criteria presented in the Framework for an Ethical Maturity Index and conceptual fundamentals of sound Corporate Governance as well as Internal Environment articulated in COSO ERM. The targeted audience of the questionnaire are senior management and nonexecutive directors. Some questions are designed in such a way that an answer to one question can lead to conclusions on multiple components of the risk governance. The self-assessment can be conducted as a survey or by an external facilitator during interviews with directors and management The answers to such questions are analysed after the interview / survey and the assessment of the current and future situation is completed based on the scores which follow the questionnaire. 1

Ethical Maturity Questionnaire Date Name Position Company # Ethical risk Question Answer Current maturity 1 1. Ethical values Have ethical values been articulated, documented and consistently demonstrated in your 2. Duties What level of management is accountable for risk management responsibilities? 3 Responsibility Has your organisation assigned responsibility for risk management function to a single individual or a particular level of corporate / functional management? 4 Responsibility What level of corporate management should be responsible for risk management function? 5 Responsibility What level of corporate management maintains primary accountability for management of the risks in your 6 Accountability What level of corporate management should be accountable for management of the risks in your 7 Accountability Are there owners of key risks in your company? Who are they? 8 Risk management Is the risk management function centralised in your 9 Risk management Is there a senior risk management officer in your Desired maturity 1 Maturity assessment relates to the levels of the Ethical Maturity Framework and a score relevant to a maturity level is assigned, vide table Ethical Maturity score : 2

Does the officer provide focus and leadership to the risk management? 10 Accountability Is risk management a performance measure of your 11 Accountability Is risk management is embedded as a performance measure at the individual performance level? 12 Responsibility Do risk management roles and responsibilities contribute to business success and achievement of organisations competitive advantage? Or are they focused only on risk assessment, reporting, and assurance around risks and their controls? 13 Responsibility Are roles and responsibilities for risk management consistently applied at all levels of the 14 Accountability How do you ensure that accountabilities for risk management are effectively implemented and performed on the regular basis? Is it done mostly by internal or external means? 15 Internal controls / In your opinion, what is the role of internal audit in the activities 16 Accountability Does an audit committee have powers to enforce accountability for good risk management? Does it exercise these powers? 17 Sponsorship Who is the main sponsor / sponsors of good risk management in your organisation: board, executive, audit committee? 18 Risk management Are risk management principles articulated in your philosophy and policy What documents do articulate the principles? 19 Communication What other means of risk management communication 3

exist in your 20 Communication Who initiates the communication on risk management: Board, Senior Executives, employees when need arises? 21 Communication In your opinion, is external and internal communication on risk management consistent? 22 Communication Is risk have a consistent interpretation on all level of management? Does the value of risk management vary on the board, executive and middle management levels? 23 Risk management In your opinion, is management involved in setting the appropriate risk for the 24 Risk management What role does management have to play within the? 25 Risk management Is functional oversight incorporated into the risk management organisational? 26 Board and Senior How are the Board s operations defined in your 27 Board and Senior Do Board and executive agendas include risk and control as a core item? 28 Board and Senior What is the main focus of operation of audit / risk 29 Board and Senior 30 Board and Senior 31 Board and Senior management committee in your Does audit / risk management committee challenge the information contained on the organisational risk profile? How does the board delegate authorities around risk management and control to the? How and at what corporate level risk management strategy is set? 4

32 Board/Executive /Committees 33 Commitment to competency How and at what stage of the business planning cycle is risk management strategy linked to the business strategy? Are skills of the Board, audit committee and management reviewed to ensure that they are capable of fulfilling their responsibilities in relation to risk management? Ethical maturity score Maturity Score Risk governance ethical maturity level Assessment implications 0 Ad-hoc, not in compliance No developed / defined 1 Isolated activities Significant improvement is required 2 Coordinated activities Minor improvement is required / desirable 3 Holistic ethical system Effective 5

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information