Professional Documents
Culture Documents
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
STRATEGIC STEPS
Risk appetite
Measurement and
evaluation
Control environment.
Response
Stress testing
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
ERM CULTURE
At the center of the ERM
framework is culture.
If an institution lacks the right
culture and strong leadership at
the top, none of the other elements
will matter.
Organizations that comprehend
and adopt ERM as a way of
thinking typically outperform those
that do not.
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
Can we
do it?
Did we
do it?
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
The individual
components
are a dynamic
flow in both
directions.
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
Culture is at
the heart
without the
right culture,
the other
components
are somewhat
irrelevant.
Risk appetite
Culture, governance,
and policies
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
Measurement and
evaluation
Response
Stress testing
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
10
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
11
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
12
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
13
ERM COMPETENCIES
Risk exposures
Control
environment
Risk appetite
Culture,
governance,
and policies
Measurement
and evaluation
Scenario
planning and
stress testing
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
14
ERM COMPETENCIES:
RISK EXPOSURES
Regardless of a specific business strategy, an institution
is exposed to the following risks:
Credit
Market
Liquidity
Strategic/
Business/
Reputation
Operational
Compliance/
Legal/
Regulatory
Financial
Capital
Adequacy
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
15
ERM COMPETENCIES:
RISK APPETITE
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
16
ERM COMPETENCIES:
RISK APPETITE (CONT.)
The concepts of risk appetite and risk tolerance are
often used interchangeably, but they have distinct
differences in meaning.
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
17
ERM COMPETENCIES:
RISK APPETITE (CONT.)
18
ERM COMPETENCIES:
CULTURE, GOVERNANCE,
AND POLICIES
Culture can be described as
what people do when they are not
being watched.
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
Culture is
the most
important
aspect of
any good
ERM
competency.
19
ERM COMPETENCIES:
CULTURE, GOVERNANCE,
AND POLICIES (CONT.)
Policies express the risk
appetite of the company to the
masses.
Culture,
Governance, and
Policies
The statement of risk appetite is
executed through policies (what
to do?) and procedures (how to
do them?).
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
20
ERM COMPETENCIES:
CONTROL ENVIRONMENT (CONT.)
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
21
ERM COMPETENCIES:
CONTROL ENVIRONMENT (CONT.)
The system of internal controls includes:
Culture
Governance
Preventive and
detective
controls
Policies
Scenario
planning
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
22
ERM COMPETENCIES:
CONTROL ENVIRONMENT (CONT.)
Management relies on
internal controls to
manage residual risk to
an acceptable level.
Building an effective
internal control
environment allows
management to control
what can be controlled.
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
23
ERM COMPETENCIES:
MEASUREMENT AND
EVALUATION
The science and art of measurement
in ERM is about concluding which
risks are significant and which ones
are not, and where to invest time,
energy, and effort.
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
At any given
time, boards
of directors
and
management
must
manage a
portfolio of
risks
24
ERM COMPETENCIES:
MEASUREMENT AND EVALUATION (CONT.)
In order to accomplish the goal of
measurement and evaluation, an
institution may adopt:
A simple model of color rating
(green, yellow, and red).
A middle-of-the-road failure
mode and effect analysis
(FMEA) model.
Or a highly sophisticated risk
adjusted return on capital
(RAROC)
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
25
ERM COMPETENCIES:
MEASUREMENT AND EVALUATION (CONT.)
Measurement
and evaluation
help boards
and
management
answer the
question, so
what?
Include the
system of
internal
controls and
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
Determine how
well the risks
can be
managed.
26
ERM COMPETENCIES:
SCENARIO PLANNING AND
STRESS TESTING
The art of ERM is the ability to answer
the question, what can go wrong and,
hence, create deviation from expected
outcomes?
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
Management
must
address
known,
knowable,
and
unknowable
risks.
27
A robust scenario
planning and stress
testing discipline is a
must from a capital
planning perspective.
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
28
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending
29
RMA helps its members use sound risk principles to improve institutional
performance and financial stability, and enhance the risk competency of
individuals through information, education, peer sharing, and networking.
Become a member today.
Enterprise Risk Credit Risk Market Risk Operational Risk Regulatory Compliance Securities Lending