1 COSO ERM Framework Update Our Next Challenge and Opportunity September 2015.

Slides:



Advertisements
Similar presentations
Risk Management at Harvard – Panel Discussion Harvard IT Summit
Advertisements

Lisanne Sison Director ERM Bickmore
Federal Audit Executive Council (FAEC) June 2012 Bi-Monthly Meeting Heather I. Keister Doris G. Yanger June 14, 2012 Green Book Update.
Chapter 10 Accounting Information Systems and Internal Controls
It’s Time to Talk About Risk and Control
Executive Insight through Enhanced Enterprise Risk Management Leverage Value From Your Risk Management Investment.
2011 Governance, Risk, and Compliance Conference August 29 – 31, 2011 / Orlando, FL, USA The Top Four Essential Objectives to Auditing ERM Stephen E. McBride,
Eliot M. Stenzel, CPA,CIA IIA Instructor for many years Risk Based Auditing.
Office of the Secretary of Defense – Comptroller Financial Improvement and Audit Readiness Directorate Unclassified 17 September 2014 GAO Revised “Green.
Expanded Version of COSO a presentation by Steve Wadleigh Expanded Version of COSO a presentation by Steve Wadleigh Standards for Internal Control in the.
Euseden INTERNAL AUDIT & ASSURANCE SERVICES.
Board responsibility for internal control and risk management by Kiattisak Jelatianranat Chairman, The Institute of Internal Auditors of Thailand Director,
Establishing an Effective Enterprise risk management (ERM) program
CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.
Copyright © 2016 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
McGraw-Hill/Irwin © 2013 The McGraw-Hill Companies, Inc., All Rights Reserved. Chapter 3 Internal Controls.
GOOD GOVERNANCE PRINCIPLES AND GUIDANCE for Not-for-Profit Organisations Promoting good governance and supporting directors and boards of not-for-profit.
COSO Framework Update IIA Columbus Chapter May 17, 2013
Competency Models Impact on Talent Management
Chicagoland IASA Spring Conference
Internal Auditing and Outsourcing
Challenges Faced in Developing Audit Plans and Programs 21 st March, 2013.
COMMON CHALLENGES AND SOLUTIONS IN ERM IMPLEMENTATION TO IMPROVE MUNICIPAL CLEAN ADMINISTRATION PROCESS. M.J. RAMAKGOLO (CCSA)
Higher Education Solutions 1 Internal Audit for Colleges and Universities By: Wally Wetherill, Regional Industry Partner – East Region John McKay, Supervisory.
SAR as Formative Assessment By Rev. Bro. Dr. Bancha Saenghiran February 9, 2008.
1 Bölgesel Rekabet Edebilirlik Operasyonel Programı’nın Uygulanması için Kurumsal Kapasitenin Oluşturulmasına Yönelik Teknik Yardım Technical Assistance.
Chapter 3 Internal Controls.
1 Enterprise Risk Management (ERM) Program PNM Resources, Inc. March 29, 2007 Presentation to American Public Power Association March 2007 Austin, Texas.
IT Risk Management, Planning and Mitigation TCOM 5253 / MSIS 4253
Organically evolving CBC opportunities and areas of work INTOSAI Capacity Building Committee - Meeting in Lima, Peru 9-11 September 2014.
Campaign Readiness Project Overview Enabling a structured, scalable approach to customer-centric campaigns.
Stephen Vink Senior Vice President Group Risk Management and Internal Audit Lessons learned from ERM.
COSO: Current ERM Challenges and Our Responses RIMS 2012 Annual Conference April 17, 2012 by David Landsittel COSO Chairman.
Copyright T. Rowe Price. All rights reserved 1 Ms. Deborah D. Seidel of T. Rowe Price Financial Services Vice President and Manager of Compliance.
Enterprise Risk Management
Introduction In 1992, the Committee Of Sponsoring Organizations of the Treadway Commission (COSO) published Internal Control-Integrated Framework (1992.
Enterprise Risk Management Expectations Outpacing Capabilities and The Audit Committee’s Role July 30, 2013 Presented by: Suzette E. Ramsden (B.Sc., CISA,
Enterprise Risk Management & IT Compliance March 30, 2010 Presented by: Ken Rowe, Director Enterprise Systems Assurance & Chief Security Officer University.
IRS Enterprise Risk Management (ERM)
An Integrated Control Framework & Control Objectives for Information Technology – An IT Governance Framework COSO and COBIT 4.0.
Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.
The Connection between Risk Management and Internal Control in Organizations Mag. Norbert Wagner Budapest,
April 2008 Global Developments in Corporate Reporting Charles Tilley Chartered Institute of Management Accountants Chief Executive Global Developments.
Enterprise Risk Management Chapter One Prepared by: Raval, Fichadia Raval Fichadia John Wiley & Sons, Inc
An Update of COSO’s Internal Control–Integrated Framework
CAS Spring Meeting June 2007 Introduction to ERM …The Measurements, Quadrants, Tools, and Solutions Prof. Mark C. Vonnahme Fox Family Clinical Professor.
Enterprise Governance, Risk and Compliance Management Pharma Colloquium Princeton University June 6, 2005 
Linkage of Risk, Capital and Financial Management CAS Annual Meeting Aaron Halpert, ACAS, MAAA Leslie R. Marlo, FCAS, MAAA November 12, 2007 INSURANCE.
The Role of the CRO in ERM Networking Evening Colin Ledlie 12/05/08.
Dolly Dhamodiwala CEO, Business Beacon Management Consultants
ICAJ/PAB - Improving Compliance with International Standards on Auditing Planning an audit of financial statements 19 July 2014.
INTERNAL AUDIT & RISK MANAGEMENT ROLE IN PROVISION OF SUSTAINABLE SERVICES Institute of Municipal Finance Officers & Related Professions.
ERM and Information Risks July 2013 Advisory. 1 © KPMG, a partnership established under Ghanaian law and a member firm of the KPMG network of independent.
The International Professional Practices Framework
An Overview on Risk Management
International Federation of Accountants
With current ethical challenges, is it safe to say Risk Management processes are responsive to an accountable government? CIGFARO- AUDIT &RISK INDABA.
COSO and ERM Committee of Sponsoring Organizations (COSO) is an organization dedicated to providing thought leadership and guidance on internal control,
COSO’s New ERM Exposure Draft: What You Should Know
PEM PAL IA COP Internal Control Working Group COSO Principles
Internal Audit & Enterprise Risk Management
A Framework for Control
Internal Control–Integrated Framework
COSO Internal Control s Framework
EER Assurance September 2018
Corporate Governance It is a system by which companies are managed and directed in the best interests of the owners and shareholders. It refers to the.
An Update of COSO’s Internal Control–Integrated Framework
- COSO Enterprise Risk Management Integrated Framework (2004)
- COSO Enterprise Risk Management Integrated Framework (2004)
Yvette Connor Strategic Risk Management Engagement Leader
Presentation transcript:

1 COSO ERM Framework Update Our Next Challenge and Opportunity September 2015

2 Topics for Today’s Presentation Project Background – Background – Governance – Approach Updates to Document Structure Next Steps

3 COSO Announces Project to Update Enterprise Risk Management- Integrated Framework October 21, The Committee of Sponsoring Organizations of the Treadway Commission (COSO) announced a project to review and update the 2004 Enterprise Risk Management–Integrated Framework (Framework). The Framework, originally published in 2004, is a widely accepted Framework used by management to enhance an organization’s ability to manage uncertainty and to consider how much risk to accept as it strives to increase stakeholder value. This initiative is intended to enhance the Framework’s content and relevance in an increasingly complex business environment so that organizations worldwide can attain better value from their enterprise risk management programs. The initiative also will develop tools to assist management in reporting risk information and in reviewing and assessing the application of enterprise risk management.

4 Why Update the Framework Now? ERM concepts and practices have evolved Incorporate lessons learned from recent crises The bar is rising with respect to enterprise risk management Business and operating environments are more complex, technologically driven, and global in scale Stakeholders are more engaged and seeking greater transparency and accountability Risk discussions increasingly prominent at the board level

5 We are updating this…

6 …Not This

7 Foundational concepts of ERM Every entity exists to provide value for its stakeholders All entities face uncertainty Uncertainty presents both risk and opportunity The challenge for management is to determine how much uncertainty to accept as it strives to grow stakeholder value ERM enables management to effectively manage uncertainty and associated risk and opportunity

8 Topics included in the COSO ERM Framework… Aligning Risk Appetite and Strategy Enhancing Risk Response Decisions Reducing Operational Surprises and Losses Identifying and Managing Multiple and Cross-enterprise Risks Seizing Opportunities Improving Deployment of Capital

9 In Case You Had Forgotten… ERM is defined as…. A process affected by an entity’s board of directors, management and other personnel, applied in a strategic setting and across the enterprise, designed to identify potential events that may affect the entity, and manage risk to be within its risk appetite, to provide reasonable assurance regarding the achievement of entity objectives

10 Project Governance COSO Board PwC Project Team Advisory CouncilObservers Advisory Council and Observers: Consists of over 25 professionals Provides input, expertise, feedback, insight, and ideas throughout the update. Obtains and synthesizes feedback from their respective constituency, organization, industry

11 The Advisory Council is comprised of: Chief Risk Officers Chief Audit Executives Company Executives Board Members Public Sector Representatives Risk Management, ERM University Professors Professional Services’ Risk Practice Partners

12 Observers from the following organizations are represented FDIC – Federal Deposit Insurance Corporation OIG – Office of Inspector General IMA – Institute of Management Accounts IFAC – International Federation of Accountant RIMS – Risk Management Society ISACA – Information Systems, Audit and Control Association China Ministry of Finance (Special )

13 Updating the Framework is undertaken using the following five phase approach 1. Assess2. Envision 3. Design and Build 4. Public Exposure Process 5. Finalize

14 Key questions helping to inform the update of the Framework 1.What is your ideal view of ERM? 2.What are three strengths of the 2004 Framework? 3.What are three significant areas for update and revision? 4.What should the Framework do to stay relevant for the next 10 years? 5.What would improve user acceptance?

15 What we have heard so far… Baked in, imbedded, not a bolt-on Accelerates growth and success Improves decision making and performance Discipline, not a process Ability to take on more risk Continuous, identifiable, structured 1.What is your ideal view of ERM?

16 2. What are Three Strengths of the 2004 Framework? Framework user have told us… Linking Risk to Strategy setting Linkage to objectives Discussion of risk responses Linkage to internal control Evaluation/Attestation criteria concept Discussion of Board governance and oversight Due process

17 3. What are Three Significant Areas for Update and Revision? Risk Practitioners have indicated that: Update principles and points of focus Revise definitions of Risk, ERM and other key terms Improve its usefulness Consider introducing maturity models Review format, structure, length, complexity Emphasis the opportunity side of risk

18 4. What Should the Framework Do to Stay Relevant for the Next 10 years? Project Team research and surveys highlighted the following: Include maturity models Highlight sustainability Focus on governance Review Principles Stay a Framework Add update materials, papers

19 5.What Would Improve User Acceptance? Discussions in Round Tables, Advisory Councils and Survey Feedback suggested: Increased CEO and Board engagement and buy-in Inclusion of case studies and examples of success Clearer value proposition Greater and more effective promotion Alignment to relevant regulatory requirements

20 Bridging Between COSO ERM and Internal Control Frameworks Articulate the relationship between the 2013 Internal Controls and ERM Frameworks Identify impacts to the structure/update of the ERM Framework

21 Updates to the Document Structure We anticipate that the updated Framework will apply principles and points of focus – The 2004 Framework contained over 100 key principles in an appendix. The updated Framework will significantly reduce this number The Project Team will also be reviewing aspects of the update including: – Components – Categories of objectives – The business model

22 Finally…. How would you like to meet more of your objectives more of the time?

23

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.