Chris Lintern Co-operative Financial Services

Slides:

Advertisements

Similar presentations

Audit Committee Risk Management Training September 2010 John Allsop Marcus Richards.

Advertisements

Risk The chance of something happening that will have an impact on objectives. A risk is often specified in terms of an event or circumstance and the consequences.

Get Started in e-Business. Aim This presentation is prepared to support and give a general overview of the ‘How to Get Started in e-Business’ Guide and.

Appendix H: Risk training slides (sample). What is Risk? “ Risk is the effect of uncertainty on objectives ” AS/NZS ISO31000:2009.

Business Continuity Training & Awareness by Sulia Toutai (ANZ)

IMFO Audit & Risk Indaba June 2012

A briefing about your BCM Programme.  Why BCM  Benefits of BCM  Programme Objectives  Methodology  Tasks & Deliverables Programme Overview.

BUSINESS CONTINUITY MANAGEMENT THROUGH STANDARDS AND BEST PRACTICES Jasmina Trajkovski, CISA, CISM.

Your Role in the New Normal Increased knowledge and active participation in disaster preparedness and recovery prepare you for the New Normal Baton Rouge,

New Realities in Handling a Crisis

IOR Scottish Chapter Annual Conference Glasgow Caledonian University – 1 st November 2013 Relevance of Operational Risk to the FCA Jill Savager Manager,

Implementing BCM Lynda McMullan CBCI Business Continuity Manager.

Viewpoint Consulting – Committed to your success.

CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.

1 Business Continuity and Compliance Working Together Kristy Justice, AVP WaMu Card Services 08/19/2008.

Welcome Councillor Michael Braley. ‘ Helping you deliver your promises’ The Business Case for Resilience Planning ‘ Helping you deliver your promises’

Crisis Management Planning Employee Health Safety and Security Expertise Panel · Presenter Name · 2008.

Information Security Governance 25 th June 2007 Gordon Micallef Vice President – ISACA MALTA CHAPTER.

Making Business Continuity Child’s Play Solutions Ltd Business Continuity Management Contact details: Contact : Mick O’Regan Mobile :

IT Risk Management, Planning and Mitigation TCOM 5253 / MSIS 4253

CDS Operational Risk Management - October 28, 2005 Existing Methodologies for Operational Risk Mitigation - CDS’s ERM Program ACSDA Seminar - October 26.

Expecting the Unexpected By Shaun Lindfield. Nearly 1 in 5 businesses suffer a major disruption every year. Yours could be next. With no recovery plan,

Risk Management For the Board of The Law Society 16 February 2005.

2010 Virginia RIMS and PRIMA Conference October 5, 2010 Business Impact Analysis: The Road Map to Managing Risks.

Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.

Geneva Association/International Insurance Society Research Presentation, Chicago Enterprise Risk Management in the Insurance Industry Madhusudan.

Presenter’s Name June 17, Directions for this Template  Use the Slide Master to make universal changes to the presentation, including inserting.

Wipro Consulting Vinay N Disley Implementation Challenges in BCM.

RISK MANAGEMENT : JOURNEY OR DESTINATION ?. What is Risk? “ Any uncertain event that could significantly enhance or impede a Company’s ability to achieve.

WEC MADRID 18 TH MARCH 2004 ASTRAZENECA’S APPROACH TO SUPPLIER RISK MANAGEMENT.

TREASURY REGULATIONS’ CHANGES AND POTENTIAL IMPACT

Kathy Corbiere Service Delivery and Performance Commission

Governance for SMEs Nigeria

PD 8 OSFI Capital Update Stuart Wason Senior Director Actuarial Division OSFI CIA Appointed Actuary Seminar September 18, 2009.

12-CRS-0106 REVISED 8 FEB 2013 APO (Align, Plan and Organise)

Erman Taşkın. Information security aspects of business continuity management Objective: To counteract interruptions to business activities and to protect.

Swedish Risk Management System Internal management and control Aiming to Transport Administration with reasonable certainty to.

Risk Management and the Audit Plan abc CIPFA in the Midlands Audit Training Seminar Wednesday 24th November 2004 Tina Spiers.

Managing Uncertainty, Creating Opportunity Enterprise Risk Management J. Brown, CEO.

Business Continuity Disaster Planning

Business Continuity Management 101. KeepItSafe Professional Services The portfolio of business continuity management is to ensure we assist our clients.

Dolly Dhamodiwala CEO, Business Beacon Management Consultants

Chapter 13 Risk Management. Chapter Objectives 1.Define risk and risk management 2.Outline key risk issues and types of risk 3.Identify concrete methods.

Breakout Session 3 QHSE Strategic Risk Management.

Business Continuity Planning 101

ISACA Accra, Kumasi Workshop September 2013 Business Continuity Management Compiled and presented by: Eric Magnusen ( BCM Consultant) BCM-Consult, Al Faslu.

Cyber Security Phillip Davies Head of Content, Cyber and Investigations.

Strategic Information Systems Planning

Title of the Change Project

An Overview on Risk Management

Maintenance BC - NZTA assessment in TIO

Local Government Risk Agency

How can an Enterprise Risk Management (ERM), programme enable organizations achieve strategic objectives more effectively? Dr P S Sahota

Strategic Workforce Planning Chris MacRae

Unit 2: Recovery Pre-Disaster Planning Guidance for Local Governments

Personal Introduction

Guidance notes for Project Manager

CAYMAN ISLANDS MONETARY AUTHORITY

Understanding the current Public Sector landscape from an risk management point of view Applying the ethical responsibility to the Triple Bottom-line:

Business Continuity Program Overview

Plan your journey.

INPUT OUTPUT ASSURANCE

Cyber Security in a Risk Management Framework

A COMPETENCY FRAMEWORK FOR GOVERNANCE GOVERNORS’ BRIEFING LANGLEY HALL PRIMARY ACADEMY 14 JULY 2017 Clive Haines & Rebecca Walker.

A Risk Management Approach to Business Continuity

A Risk Management Approach to Business Continuity

Strategy April 2018 – March 2022.

Operational Risk Management

Strategic Management and

Strategic Management and

Presentation transcript:

Chris Lintern Co-operative Financial Services Leading the risk profession Operational Risk & Business Continuity Management - An Effective And Integrated Approach Chris Lintern Co-operative Financial Services

Introduction & Approach Chris Lintern Background in all aspects of Business Continuity Management within Financial Services Part of central Operational Risk Management Team Co-operative Financial Services Includes Co-operative Bank, Co-operative Insurance, Co-operative Investments Merged last year with Britannia Building Society Our vision is to be the UK’s most admired financial services business Approach to this session Active participation All views welcome and appreciated

Purpose To share thoughts on the benefits of integrating Operational Risk & Business Continuity Consider some of the key stakeholders, and the aims, and components for Operational Risk and Business Continuity frameworks Conclusions

What is Operational Risk Management? Managing the risk of loss resulting from inadequate or failed internal processes, people and systems or from external events (Basel Committee of the Bank of International Settlements) What is Business Continuity? A holistic management process that identifies potential threats to an organisation and the impacts to business operations that those threats, if realised, might cause and which provides a framework for building organisational resilience with the capability for an effective response that safeguards the interests of its key stakeholders reputation, brand and value creating activities (BS25999 – British Standard for BCM)

Back to Basics Preventing nasty surprises wherever practical, and having the confidence that your organisation can respond to and mitigate them - if and when they occur Health & Safety Key Suppliers / Outsource Partners System failures Property & Facilities Key person dependencies External threats

Historic Positioning of Op Risk & BCM Focus on “traditional” business continuity – denial of access to premises, or loss of systems BCM and Operational Risk seen as separate entities BCM Operational Risk

Synergies between the two Stakeholders Framework Components Intended Outcome Board Policy & Procedures Understanding of appetite Executive & Senior Management Supporting documents Proactive assessment Operational Management Plans & Training Understanding of impact Other Considerations Impact on Capital Impact on Change Insurance

Operational Risk – Integrated Approach Control Self-Assessment Business Continuity Insurance Operational Risk Capital

Operational Risk – Integrated Approach Control Self-Assessment Business Continuity Insurance Operational Risk Capital Proactive identification of risks Assessment and evaluation Scenario analysis

Operational Risk – Integrated Approach Control Self-Assessment Business Continuity Insurance Operational Risk Capital Assess controls CSA process Review control weaknesses Track actions Link control evidence to risks Review incidents as evidence of control failures

Operational Risk – Integrated Approach Control Self-Assessment Business Continuity Insurance Operational Risk Capital Mitigation of operational risks Crisis Management Team & Plan Incident Management Teams Crisis Management Centre Work-Area Recovery Disaster Recovery strategy

Operational Risk – Integrated Approach Control Self-Assessment Business Continuity Insurance Operational Risk Capital Risk transfer Placement Claims Handling Specific perils e.g. Buildings/Contents, Business Interruption Insurance Advice & Guidance

Operational Risk – Integrated Approach Control Self-Assessment Business Continuity Insurance Operational Risk Capital Capital against unexpected losses Calculation Planning

Operational Risk Components Purpose Strategy 3 Year Strategic Plan External Events e.g. Weather, Terrorism Operational Risk Appetite Vision Operational Risk Capital Change agenda Scenarios Reporting Core Processes Critical Systems Colleagues Facilities Suppliers & Outsource Partners Control Self-Assessment Operational Risk Business Continuity Insurance Programme Resilience Incident & Crisis Management Top-down Operational Risk Profile Policies Key Controls Work-Area Recovery Claims Bottom-up Operational Risk Profile End-to-end Process view Disaster Recovery Incident & Near-Miss Reporting Operational Risk strategy and plan

Operational Risk Components Purpose Strategy 3 Year Strategic Plan External Events e.g. Weather, Terrorism Operational Risk Appetite Vision Operational Risk Capital Change agenda Scenarios Reporting Core Processes Critical Systems Colleagues Facilities Suppliers & Outsource Partners Control Self-Assessment Operational Risk Business Continuity Insurance Programme Resilience Incident & Crisis Management Top-down Operational Risk Profile Policies Key Controls Work-Area Recovery Claims Bottom-up Operational Risk Profile End-to-end Process view Disaster Recovery Incident & Near-Miss Reporting Operational Risk strategy and plan

Embedding the Culture Business buy-in of paramount importance Incident Management framework known and utilised – importance of exercising Risk Division seen as involved – not sat in Ivory Towers Part of the solution, not part of the problem - BC & Op Risk representatives heavily involved in Incident Management Keep things simple – common language Linked to the CFS customer promise

Incident Framework Crisis Management Team Incident Management Teams Escalate up Cascade down Incident Management Teams Operational Risk (incl. BCM) IS Service Continuity Business units / areas BC plan owners and Plan co-ordinators

Incident Management Team - Structure

Integrated Approach

Conclusions An effective, and consistent framework Can be used to define overall risk appetite at Board level Practical considerations – both areas need policies & procedures Simple for the business Aligned to business processes Crucial that it’s accepted from a cultural perspective within the newly merged organisation Potential to drive efficiencies and cost-savings

Thank You Any Further Questions – Chris.Lintern@cfs.coop