Enterprise Risk Management Program



Similar documents
The College of New Jersey Enterprise Risk Management and Higher Education For Discussion Purposes Only January 2012

IIA POSITION PAPER: THE ROLE OF INTERNAL AUDITING IN ENTERPRISE-WIDE RISK MANAGEMENT

Key Components of Enterprise Risk Management (ERM) Framework

Attorney Perspectives: Enterprise Risk Management in a Time of Innovation

Infrastructure Ontario Enterprise Risk Management Program. National Executive Forum Yellowknife, NWT May 2013

Introduction to TTC s Enterprise Risk Management (ERM) Program. TTC Audit and Risk Management Committee

IT GOVERNANCE PANEL BRING VALUE BY AUDITING IT GOVERNANCE GET THE

Enterprise Risk Management. Breaking Down the Barriers at Emory

Continuous Monitoring in a Risk Management Framework. US Census Bureau Oct 2012

FINDING THE RISK IN RISK ASSESSMENTS NYSICA JULY 26, Presented by: Ken Shulman Internal Audit Director, New York State Insurance Fund

Organizational Change Management: A Best Practice to Effective ERM Implementation

The members of the Executive Risk Management Committee ( ERMC ) reviewed the proposed Policy and Charter and recommend their approval.

Understanding Enterprise Risk Management. Presented by Dorothy Gjerdrum Arthur J Gallagher

Introduction to Enterprise Risk Management at UVM DRAFT

RIMS Risk Management Models. Traditional Risk Management Progressive Risk Management Strategic Risk Management

Process Harmonization to address High Cost of Compliance : Insights from Implementation. Keerthana Mainkar & Jude Fernadez

Enterprise Risk Management & Information Technology

2013 Insurance Megatrends Survey Final Results

Beyond risk identification Evolving provider ERM programs

Linking Risk Management to Business Strategy, Processes, Operations and Reporting

Canadian Institute of Actuaries. L Institut canadien des actuaires Annual Meeting Assemblée annuelle 2008 Québec

How To Transform It Risk Management

APPENDIX 50. Enterprise risk management - Risk management overview

Professional. Compliance & Ethics. 19 The cost of unethical behavior. 33 Graduate degrees in Compliance: Training the next generation

Enterprise Risk Management Panel Discussion

Matthew E. Breecher Breecher & Company PC November 12, 2008

Managing Risk at Bank of America Corporation. Overview

C o m m i t t e e o f S p o n s o r i n g O r g a n i z a t i o n s o f t h e T r e a d w a y C o m m i s s i o n

Moving Forward with IT Governance and COBIT

GRC Program Best Practices & Lessons Learned

COBIT 5 For Cyber Security Governance and Management. Nasser El-Hout Managing Director Service Management Centre of Excellence (SMCE)

GAINING CONTROL: Building Your Existing Framework into an ERM Model

CORPORATE GOVERNANCE

How To Save Money At The University Of California

ENTERPRISE RISK MANAGEMENT FRAMEWORK

Developing an Effective Enterprise Risk Management Program

THE ROLE OF FINANCE AND ACCOUNTING IN ENTERPRISE RISK MANAGEMENT

Beyond ISO Intel's Product Security Maturity Model (PSMM)

APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES

Internal Controls over Financial Reporting. Integrating in Business Processes & Key Lessons learned

Analyzing Risks in Healthcare. February 12, 2014

COCA-COLA HELLENIC BOTTLING COMPANY RISK MANAGEMENT POLICY

Using Strategic Risk Management to Gain Assurance and Communicate More Effectively

FY15 Supplemental Information January 5, 2016

An Introduction to the Information Security Program Model (ISPM)

Sample risk committee charter

Risk Management Report. Thirty-Third Board Meeting. GF/B33/05 Board Information

Risk Management Policy Adopted by:

IT Compliance After Hours Seminar September 2007 Zurich. Improving IT Risk & Compliance Management (RCM)

Mapping COBIT 5 with IT Governance, Risk and Compliance at Ecopetrol S.A. By Alberto León Lozano, CISA, CGEIT, CIA, CRMA

How To Be A Successful Cio

How Global Data Management (GDM) within J&J Pharma is SAVE'ing its Data. Craig Pusczko & Chris Henderson

Explore the Possibilities

Enterprise Risk Management (ERM): In Action. January Co-presented by: Michael Yip, Marsh Risk Consulting Norma Essary, DFW International Airport

IT Governance Charter

By Ronald Ireland and Mary Adamy, Oliver Wight Americas, Inc.

Enterprise Risk Management

San Francisco International Airport Enterprise Risk Management

CSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting

Enterprise Risk Management in UNHCR

Certified Identity and Access Manager (CIAM) Overview & Curriculum

The Workplace of the Future and Mobile Device Risk ISACA Pittsburgh. May 20 th, 2013

How To Be A Successful Corporate Leader

CForum: A Community Driven Solution to Cybersecurity Challenges

2013 Healthcare Compliance Benchmark Study

Copyright 2015 The Ins4tutes

SI Special Topics: Data Security and Privacy: Legal, Policy and Enterprise Issues, Winter 2010

Legislative Compliance Management

ENTERPRISE RISK MANAGEMENT AN OVERVIEW. November 2011

Unlocking Value in Source-to-Pay. Customer Success. Realize Customer Success through Transformation and Cloud Software. Cloud Software.

Policy : Enterprise Risk Management Policy

Masterminding Data Governance

Driving Project Success with Organizational Change Management

System Auditing and Reporting for the Federal Reserve System

Auditing IT Governance Steve Hunt October 11, 2012

QA Engagement Models. Managed / Integrated Test Center A Case Study

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014

Enterprise Risk Management for Hospital Systems: What Counsel Needs to Know

Enterprise Risk Management

Organizing a Financial Institution to Deliver Enterprise-Wide Risk Management By Kaan H. Aksel PricewaterhouseCoopers

Alberta Pensions Services Corporation. Business Plan

Data Governance Primer. A PPDM Workshop. March 2015

Statement of Investment Policies and Procedures

Enterprise Risk Management Risk Inventory Summary. Prepared by: December 1, 201X

How To Understand And Understand The Value Of Enterprise Risk Management

Business Continuity Part 2 Converting Risk Assessments to Risk Mitigation Activities to Business Recovery Plans

Finding the Supply Chain Carbon Lever

IA Metrics Why And How To Measure Goodness Of Information Assurance

Demystifying Enterprise Risk Management:

Excerpt From The Small (Under $10 Million Revenues) Private Company Executive Compensation Digest

Sales Overnight, Brand Over Time The importance of brand and how to implement a successful lead gen campaign along with brand enhancement

Workplace Safety & Insurance Board of Ontario Organizational Structure

Enterprise Risk Management Program at HCA. ERM Roundtable. February 25, 2005 HCA. David Hughes, CPA, CIA AVP, ERM Office

How SAP Business Objects Dashboards Are Improving Decision Making at Caterpillar Parts Distribution

Global Technology Audit Guide. Auditing IT Governance

How to Succeed. Marketing Automation. A Change Management Lesson Plan. with

Chief Risk Officers in the Mutual Fund Industry: Who Are They and What Is Their Role Within the Organization?

Company A Project Plan

CIO s Corner: Practical ERP Justification, Selection and Deployment. August Interview and Case Study

Information Governance & Records Management for Today's World

Transcription:

Enterprise Risk Management Program APPA s Risk Management & Insurance Meeting Austin, Texas March 29, 2007 Presented by: L.D. Hollingsworth

Agenda Introduction - Why ERM? Governance & Reporting Structure CPS Energy s ERM Framework ERM Implementation Risk Assessment Process Benefits & Challenges The Future Copyright 2007 CPS Energy 2

Introduction Why Enterprise Risk Management ( ERM )? There are many reasons to implement an ERM program. Dynamically changing environment in the utility space Risk based decision making and allocation of resources Increasing focus by rating agencies It is the right thing to do Copyright 2007 CPS Energy 3

Governance Structure A key first step in developing a viable ERM Program is support from the top. Critical to have support from highest levels within the organization (GM or CEO) Establish governance structure appropriate for your company, Enterprise Risk Management Committee ( ERMC ) Chief Risk Officer is the champion of ERM at CPS Energy Copyright 2007 CPS Energy 4

Governance Structure Board of Trustees Enterprise Risk Management Committee Chair CEO CRO Co-Chair EVP/CFO EVP Energy Delivery EVP-Strategy EVP Energy Devel. VP Gen Counsel ERMC meetings to be conducted monthly Copyright 2007 CPS Energy 5

Reporting Structure The Chief Risk Officer reports to CPS Energy s EVP and CFO to ensure optimum risk management performance across enterprise risk risk Strategic Operational risk Financial Legal/ regulatory/ compliance risk risk Hazard/ event Copyright 2007 CPS Energy 6

CPS Energy s Approach Risk Assessments Energy Development Energy Delivery Financial Services Enterprise Risk Management CPS Energy ERM Enterprise Technology Risk Platform Assessment Achieve CPS Energy s Goals & Objectives IT Enterprise Risk Reporting Copyright 2007 CPS Energy 7

CPS Energy s Approach Best Practices Leverage COSO Leverage experience of mature ERM programs Conference calls and site visits of peers UTSA, Valero, Tesoro Selection of ERM Software Scalable improved efficiencies Automated platform Reporting Capabilities Management Reporting Via intranet Risk metrics customized for CPS Energy Integrated with Strategic Planning & Decision making process Utilize a Best in Class Consultant to jump-start your process Copyright 2007 CPS Energy 8

Implementation Process 1. Phase1: Lay Ground Work ERM Policy Governance Structure Enterprise Risk Management Committee (ERMC) Promote Culture Change & Risk Language Selection of ERM technology 2. Phase 2: Select Pilot Area Perform Pilot Risk Assessment 3. Phase 3: Lessons Learned 4. Phase 4: Rollout to Enterprise Copyright 2007 CPS Energy 9

Risk Assessment facilitated workshops to identify risks Copyright 2007 CPS Energy 10

Key Components of Risk Assessment Process Top Down Approach: Begin risk assessment process with Executive Management and work down through organization. Measure Risk: Heat maps provide a good communication medium Scale of 1 5 Impact: Each number is assigned a dollar value by CPS Energy based on internally determined materiality levels Probability of the occurrence over a defined time horizon Impact Probability Copyright 2007 CPS Energy 11

Key Components of Risk Assessment Process Prioritize Risk: Tier Concept Low Med High Validate Controls/Mitigation: Current state Mitigate Risks: Action Plans Developed by Risk/Control Owners with assistance from ERM Team & Audit Services Copyright 2007 CPS Energy 12

Key Components of Risk Assessment Process Audit Services Involvement Assist with validating risk assessments Leverage risk assessment results to guide Annual Audit Plan Copyright 2007 CPS Energy 13

Collateral Benefits Employee s make risk-based decisions Risk based allocation of resources Strong credit ratings lead to lower cost of capital Increased job ownership & accountability Identification of undocumented processes Copyright 2007 CPS Energy 14

Challenges LPPC members face challenges with successful development and implementation of ERM Buy-in from the top Endorsement Budget Insurance Services vs. Enterprise Risk Management Education Getting the word out Talent competition for staff Copyright 2007 CPS Energy 15

The Future Rating agencies are continuing to look for ERM capability in their client segments The energy sector will be first, then role out to other sectors By the end of 2007, S&P intends to move to a full ERM analysis Arleen Spangler, S&P director of utilities, power and project finance as reported by Treasury & Risk Copyright 2007 CPS Energy 16

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information