Professional Documents
Culture Documents
Contents
Section 1 Introduction Section 2 Risk definition and language Section 3 Risk appetite 3 7 33
Section 4 Risk governance, roles and responsibilities 51 Section 5 Risk policy Section 6 Risk and control self assessment Section 7 Key risk indicators Section 8 Internal loss events Section 9 External loss data Section 10 Management information Section 11 Stress and scenario testing Section 12 Risk culture 65 93 113 129 143 147 153 169
Introduction
Section 1
1 Introduction
The risk management toolkit
Lloyds has developed a risk management toolkit to help to develop risk management practice across the Lloyds market. The toolkit provides a range of tools, techniques and templates, worked examples, and practical advice for key aspects of risk management. The toolkit supports the Lloyds risk management standards and guidance documents.
Section 1 Introduction
Structure
With exception of section 9 and 12, each component section of the tools is split between four pages covering the following: what is it? explains / defines the aspect of risk management that is discussed in this section; why is it important? discusses why this is a key aspect of robust risk management; some practical steps necessary for implementation highlights some key steps necessary for an organisation to take in order to implement and address this aspect of risk management; and relevant toolkit contents presents the tools and gives a brief explanation of what each tools does / should be used for.
Tool downloads
Lloyds is keen for managing agents and syndicates to use the toolkit to help review and, if necessary, improve their risk management functions, however Lloyds accepts no liability for incorrect use or subsequent risk management failure from use of tools. Risk management is commensurate to the organisation in question and it is important to remember that even if all tools from the toolkit are used, this does not necessarily mean that an organisation will have a perfect risk management function. The last page in each section, the Relevant toolkit contents page contains links to all associated tools. The tools are either in Word or Excel format and a range of tools can be tailored for use by organisations. There are also complete section documents available in Word format for editing and PDF format for printing. These complete section documents can also be found in section homepages along with, where applicable, zip files containing all the section Excel tools. A full PDF version of the toolkit can be found on the toolkit contents page, Risk management toolkit.
Section introductions
The following a brief introductions to the various sections of the toolkit:
Section 2 Risk definition & language: Having a set risk definition and language in an organisation is an important step in providing a consistent framework for the organisation of risk management activity; Section 3 Risk appetite: Articulating the amount of risk taking that is acceptable to the organisation and helping staff to understand the relative significance of the risks faced by the organisation allows for more efficient and effective risk management; Section 4 Risk governance, roles & responsibilities: Effective risk management requires the appropriate definition and assignment of roles, responsibilities, accountabilities and authorities to support managed risk taking. Risk governance is an integral aspect of corporate governance. Section 5 Risk policy: A risk policy sets out the approach to be adopted for the management of risk for a given risk group, which will typically include risk strategy and objectives, articulation of risk definition and language, appetite and the governance structure; Section 6 Risk & control self assessment: A critical part of the risk management process is the regular identification and assessment of the key risks to the business objectives and the key controls which are in place to mitigate those risks. The results are recorded in a risk register, which acts as a central repository of the nature and status of the key business risks and controls; Section 7 Key risk indicators: Using indicators to highlight the level of and potential change in the risk profile of an organisation can help to enable timely action to be taken in respect of risk; Section 8 Internal loss event data: The tracking of actual loss, potential loss and nearmiss events can contribute to the assessment and monitoring of risk, enable timely action on issues arising and be a key component of robust risk management; Section 9 External loss data: Drawing on the loss experience of other organisations can give an indication of the size, frequency and sources of losses which could be experienced by organisations, providing a wider frame of reference when assessing potential risk exposures; Section 10 Management information: Every organisation identifies and captures a wide range of information relating to events and activities, both internal and external, which is relevant to managing the organisation. Providing the right information to the right people at the right time enables better, more informed risk taking, as well as more effective monitoring of key risks within the business; Section 11 Stress & scenario tests: Stress tests & scenario analyses help give a better understanding of the significant risks that an organisation potentially faces under extreme conditions and provide input into the determination of capital requirements. Stress tests and scenario analyses are therefore integral elements of an organisations risk management framework; Section 12 Risk culture: Effective risk management requires a risk aware culture, where staff are encouraged and supported, throughout the organisation, to fulfil their risk management responsibilities in an open and honest manner.