ERM 2014 The Implementation of ERM at The University of Kentucky.

Slides:

Advertisements

Similar presentations

The Regulatory Impact Analysis Statement (RIAS) in Canada

Advertisements

AASHTO Internal Audit Conference 2012 – Phoenix Daniel Fodera, CMQ/OE Program Management Improvement Team Federal Highway Administration.

Business Planning & Strategy. What is going on? What are we good at? What is happening around us? How will we get there? Build networks Fundraise from.

Twelve Cs for Team Building

Institutional Insurance: Creating a Comprehensive Campus-wide IT Security Risk Management Program Brian Davis IT Security & Policy Office of Information.

Course: e-Governance Project Lifecycle Day 1

Test Automation Success: Choosing the Right People & Process

NORTHERN TERRITORY TREASURY Performance Development Framework (PDF) Review 2003 Original Treasury PDF Implemented 2009 November reviewed.

Building a Better Business Model Start with a discussion of Risk Higher Education Policy Commission Board of Governors Summit August 2, 2014.

Risk Identification Chapter 6.

System Office Performance Management

A Portfolio Approach to Enterprise Risk Management Bruce B. Thomas November 11, 2002.

By Collin Smith COBIT Introduction By Collin Smith

Enterprise Risk Management EXECUTIVE POLICY GROUP Enterprise Risk Managementwww.utdallas.edu Enterprise Risk Management Campus Safety.

Managing Risk in Information Systems Strategies for Mitigating Risk

Risk Assessment Frameworks

System Office Performance Management

Enterprise Risk Management at Your School: Getting Started Constance Neary, VP for Risk Management, United Educators Debra Wilson, Legal Counsel, National.

CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.

61 What is hazard risk management?. 62 Emergency risk management is “a systematic process that produces a range of measures that contribute to the well.

UNCW Institutional Risk Management IRM Overview and Policy Development & Implementation Plan Overview.

Opportunities & Implications for Turkish Organisations & Projects

National Association of College and University Attorneys 1 November 11, 2009 NACUA Fall 2009 Workshop November 2009.

What is Business Analysis Planning & Monitoring?

DAA and GEP Orlando Audit & Compliance or Audit vs. Compliance.

Risk Management & Liability Informa Brownfield Hospital Development Summit June 2009.

An Overview of Environmental Management Systems (EMS)

The role of internal audit in enterprise-wide risk management (ERM)

Audits & Assessments: What are the Differences and How Do We Learn from the Results? Brown Bag March 12, 2009 Sal Rubano – Director, Office of the Vice.

Higher Education Solutions 1 Internal Audit for Colleges and Universities By: Wally Wetherill, Regional Industry Partner – East Region John McKay, Supervisory.

Lockton Companies International Limited. Authorised and regulated by the Financial Services Authority. A Lloyd’s Broker. Insurance Practitioners’ Association.

Corporate Support Richard Brown, Business Director.

Developing an IS/IT Strategy

1 Enterprise Risk Management (ERM) Program PNM Resources, Inc. March 29, 2007 Presentation to American Public Power Association March 2007 Austin, Texas.

Lone Working Contents What is lone working? Health and Safety Legislation Increased risks Tools for assessing risks Measures to keep safe Travelling.

Copyright T. Rowe Price. All rights reserved 1 Ms. Deborah D. Seidel of T. Rowe Price Financial Services Vice President and Manager of Compliance.

CDS Operational Risk Management - October 28, 2005 Existing Methodologies for Operational Risk Mitigation - CDS’s ERM Program ACSDA Seminar - October 26.

An Integrated Control Framework & Control Objectives for Information Technology – An IT Governance Framework COSO and COBIT 4.0.

Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.

Conducting Compliance Assessments and Building Internal Controls In Pharmaceutical R&D Third Annual Medical Research Summit – Session 2.01 Michael Swiatocha.

ISO GENERAL REQUIREMENTS. ISO Environmental Management Systems 2 Lesson Learning Goals At the end of this lesson you should be able to: 

© 2003 DelCreo, Inc. All rights reserved. | U.S. Toll-free 866.DELCREO | International 001/ |

1 Introducing Enterprise Risk Management (ERM) - The KOC Experience November 2012 Khaled Al-Awadhi Risk Management Team Kuwait Oil Company.

RISK MANAGEMENT : JOURNEY OR DESTINATION ?. What is Risk? “ Any uncertain event that could significantly enhance or impede a Company’s ability to achieve.

Casualty Actuarial Society ERM for the CAS. Centennial Goal The CAS will be recognized globally as a leading resource in educating casualty actuaries.

Guidance Training (F520) §483.75(o) Quality Assessment and Assurance.

Enterprise Risk Management Dr. Doug Webster, CGFM, PMP Financial Management in Challenging Times May 13, 2009.

CAS Spring Meeting June 2007 Introduction to ERM …The Measurements, Quadrants, Tools, and Solutions Prof. Mark C. Vonnahme Fox Family Clinical Professor.

ISO CONCEPTS Is a management standard, it is not performance or product standard. The underlying purpose of ISO 1400 is that companies will improve.

Dolly Dhamodiwala CEO, Business Beacon Management Consultants

RISK MANAGEMENT FOR COMMUNITY EVENTS. Today’s Session Risk Management – why is it important? Risk Management and Risk Assessment concepts Steps in the.

DARSHANA RAGHU MANAGEMENT. Risk Management Risk management is the identification, assessment, and prioritization of risks followed by coordinated and.

Enterprise Risk Management in the Construction Industry

Organizations of all types and sizes face a range of risks that can affect the achievement of their objectives. Organization's activities Strategic initiatives.

Info-Tech Research Group1 1 Info-Tech Research Group, Inc. is a global leader in providing IT research and advice. Info-Tech’s products and services combine.

USDA 2016 Financial Management Training Transforming Shared Services

ARE YOU READY? Activating Risk Management Practices.

Introduction to Enterprise Risk Management (“ERM”)

JMFIP Financial Management Conference

Campus Wide Safety Committee Initial Meeting 11/9/16

Physical Security Governance Model

A comprehensive approach to recognizing and managing risk in business

MANAGEMENT of INFORMATION SECURITY, Fifth Edition

IS4550 Security Policies and Implementation

Safety Culture Safety culture refers to the ways that safety issues are addressed in a workplace. It often reflects "the attitudes, beliefs, perceptions.

FHWA Risk Management Framework – Update 2012

Enterprise Risk Management (ERM) at Clayton State University

Safety Self-Inspections

OECD good practices for setting up an RIA system Regional Capacity-Building Seminar on Regulatory Impact Assessment Istanbul, Turkey 20 November 2007.

MAZARS’ CONSULTING PRACTICE Helping your Business Venture Further

Presentation transcript:

ERM 2014 The Implementation of ERM at The University of Kentucky

There are risks in everything we do. We can take actions to manage the amount of risk we need to take compared to the reward that we hope to achieve. The objective is to optimize our risk taking in order to optimize positive outcomes and achieve institutional goals.

What is ERM? The term Enterprise Risk Management is intended to cover risk management in the broadest possible terms, encompassing all forms of risk management activity across the entire organization.

There are many definitions but the bottom line of all of them is that they share the concept of “managing risk to help an organization meet its strategic goals”

A definition that is easier to understand from a “to do” standpoint is: A structured, consistent, and continuous risk management process applied across the entire organization that brings value by:  Proactively identifying, assessing, and prioritizing material risks  Developing and deploying effective mitigation strategies  Aligning with strategic objectives and administrative processes  Embedding key components into the organization’s culture

The history of ERM at UK The Risk Focus Project was UK’s initial experience with ERM in 2006, conducted by our insurance broker, Marsh, Inc. 2 areas – Non-Clinical and Clinical 37 interviews with selected management 2 workshops to prioritize risk exposures We decided to build UK’s ERM program from the ground up.

Current Status We developed a preliminary ERM training session which was presented to several areas of campus Athletics and Campus Recreation have done extensive development of Risk Management practices. 4-H is developing a Risk Management Manual. At a Treasurer’s Office Manager’s meeting and subsequently in Treasury Services we identified risks and developed preliminary “heat maps” using the UC Dashboard Program. Broadening the representation on the RMAC to all areas of UK.

Risk Assessment & Management Process Organizational context Risk Identification Risk Assessment Risk Evaluation Risk Treatment Monitoring, Review & Corrective Action Communication

Goal Instill risk consciousness throughout the institution The ERM process identifies the risk owners and as such, they are responsible for risk treatment. Risk issues that cross several operations may share a solution and/or rise to the attention of upper management and consult with the Risk Management Department/RMAC for a broad based solution.

Not “One Size Fits All” There are many risks that impact different parts of the institution in different ways, hence, there may be several mitigating factors applicable in these areas. A high priority risk in one area may be a low priority or non existent in another area and this requires a flexible program to deal with them effectively.

How does this benefit UK? Works to resolve “what keeps me awake at night?” Awareness of risk issues throughout the organization Reduce costs Increase safety Makes a better managed organization by helping to achieve strategic goals Protects reputational risk Aids in legal and regulatory compliance

Risk Mapping “Risk Maps” or “Heat Maps” come in all shapes and sizes from simplistic to complicated. Our recommendation is to “Keep it Simple”, at least in the beginning and then grow into a more sophisticated risk mapping strategy.

Risk Maps – Simplistic

Risk Maps - Moderate

Low High FREQUENCY Medium High Low Student Organizations Slips, Trips and Falls Failed Response to Crisis Study Abroad Programs Work Comp Injury Sexual Abuse & Molestation Educators Legal Liability Assault, Date Rape, Student on Student Violence SEVERITYSEVERITY Third Party Use of Facility Transportati on Reputation Employment Practices E-Risks Time Element / Business Interruption Risk Map: Public University

Implementation Process Present concept and timeline to RMAC (March meeting) We will distribute risks identified in “what keeps me awake at night” to RMAC members to review and resubmit by May 1. Marsh’s Higher Ed Practice Leader, Jean Demchak, will moderate a risk prioritization session at our May 29 th meeting and demonstrate Marsh’s ERM Tool. Jean will review results at our June 26 th meeting. Administrators will assume risk ownership and Risk Management will provide guidance to the various areas of campus in risk identification and prioritizing of risks on an enterprise wide basis.

Questions ?