Legislative Compliance Management Insurance Industry Workshop 1 – 2 November 2005 Bangkok, Thailand Kim Norris Managing Director International Advisory.

Slides:



Advertisements
Similar presentations
Risk Management and Internal Controls ASSAL 20 November 2014 Annick Teubner Chair, IAIS Governance Working Group.
Advertisements

Investments Institute of Insurance and Risk Management (IIRM) Hyderabad, India 15 November 2005 Arup Chatterjee – Advisor International Association of.
Role of actuarial function supporting the FLAOR leading to the ORSA Ian Morris June 2014.
Quality evaluation and improvement for Internal Audit
Internal Control and Internal Audit
Purpose of the Standards
E XAMINATION AND E NFORCEMENT I SSUES : B EYOND T HE P ILLARS The AMLA Third Annual Full Day BSA/AML Conference October 4, 2013 Presented by: John M. Geiringer.
Corporate Governance in Financial Institutions OCDE/IAIS/ASSAL Conference on Insurance Regulation & Supervision in Latin America Punta Cana, Dominican.
INFORMATION SECURITY GOVERNANCE (ISG) Relates to the security of information systems Is an element of corporate governance.
Auditing Internal Control over Financial Reporting
“ Heightened Expectations” for Corporate Governance AIBA 2 nd Annual Compliance Seminar June 14, 2012 Lester Miller, Senior International Advisor International.
1 DOE IMPLEMENTATION WORKSHOP ASSESSING MY EMS Steven R. Woodbury
System of Governance Articles 41 to 49 of Directive 2009/138/EC 11 th May 2010 Eamonn Henry.
CDS Operational Risk Management - October 28, 2005 Existing Methodologies for Operational Risk Mitigation - CDS’s ERM Program ACSDA Seminar - October 26.
Monitoring Internal Control Systems Johann Rieser Senior Auditor, Ministry of Finance, Vienna.
Internal Control in a Financial Statement Audit
© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 9: Managing and Controlling Ethics.
Portfolio Committee Presentation Government printing Works Audit and Compliance 07 May 2013 Presented by: Chief Executive Officer.
Corporate Responsibility and Compliance A Resource for Health Care Boards of Directors By Debbie Troklus, CHC and Michael C. Hemsley, Esq.
SANEDI. INDEX  KEY ACTIVITIES DURING FINANCIAL YEAR  DISCUSSIONS ON KEY ACTIVITIES  CONCLUSION  APPRECIATION.
The views expressed in this presentation do not necessarily reflect those of the Federal Reserve Bank of New York or the Federal Reserve System Association.
1 The Future Role of the Food and Veterinary Office M.C. Gaynor, Director, FVO EUROPEAN COMMISSION HEALTH & CONSUMER PROTECTION DIRECTORATE-GENERAL Directorate.
Credit risk in banks - importance of appraisal and monitoring PRESENTED BY : KRATI VERMA (09bshyd0390)
S3: Understanding the Business. Session objective To explain why understanding of the business of the entity is important for the auditor To explain why.
International Security Management Standards. BS ISO/IEC 17799:2005 BS ISO/IEC 27001:2005 First edition – ISO/IEC 17799:2000 Second edition ISO/IEC 17799:2005.
McGraw-Hill/Irwin © The McGraw-Hill Companies 2010 Auditing Internal Control over Financial Reporting Chapter Seven.
MINE SAFETY MANAGEMENT PLAN. DIRECTORATE GENERAL OF MINES SAFETY DGMS n It is recommended that mines be required to put in place Mine Safety Management.
SOLGM Wanaka Retreat Health and Safety at Work Act 2015 Ready? 4 February 2016 Samantha Turner Partner DDI: Mob:
Page 1 Overview of the Internal Control Requirements for the Maltese Insurance Industry Dr. Marisa Attard Malta, 8 April 2010.
1 Friday 26 th July 2013 Gibson Hotel Jason Dowling CPA RISK MANAGEMENT & CORPORATE GOVERNANCE.
Organizations of all types and sizes face a range of risks that can affect the achievement of their objectives. Organization's activities Strategic initiatives.
1 Vereniging van Compliance Officers The Compliance Function in Banks Amsterdam, 10 June 2004 Marc Pickeur CBFA CBFA.
Business Continuity Planning 101
Chapter 6 Internal Control in a Financial Statement Audit McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.
SUNY Maritime Internal Control Program. New York State Internal Control Act of 1987 Establish and maintain guidelines for a system of internal controls.
JMFIP Financial Management Conference
An Overview on Risk Management
Internal Control Principles
CPA Gilberto Rivera, VP Compliance and Operational Risk
Well Trained International
IIASA Governance Review
How to Survive an External Quality Assessment
Briefing to the Portfolio Committee: Defence Audit outcomes of the Defence portfolio for the financial year October 2015.
Program Quality Assurance Process Validation
Understanding the Principles and Their Effect on the Audit
ALLPIRG/4 MEETING PARTICIPANTS (Montreal , 8 February 2001)
Safety Accountabilities
Corporate Governance Corporate Governance also plays an important role in maintaining corporate integrity and managing the risk of corporate fraud, combating.
A Framework for Control
PLANNING THE INTERNAL AUDIT (8 - 10%)
Corporate Governance for Mutuals
SAPS Audit Committee 26 October 2016.
Internal control - the IA perspective
Board of Directors Roles and Responsibilities
CAYMAN ISLANDS MONETARY AUTHORITY
Independent Internal Audit Quality Reviews
2017 Administration and Finance Conference
Reinsurance and Other Forms of Risk Transfer Risk Based Supervision of Reinsurers and Insurer’s Reinsurance Coverage - Case Study – Possible Responses.
CORPORATE & ACADEMIC GOVERNANCE STRUCTURE
The Elements of appropriate Internal Controls
Association of International Bank Audit
Taking the STANDARDS Seriously
Risks in Banking Operations
Briefing to the Portfolio Committee on Defence on the audit outcomes for the 2013/2014 financial year.
Briefing to the Portfolio Committee on Police Audit outcomes of the Police portfolio for the financial year 13 October 2015.
An overview of Internal Controls Structure & Mechanism
Briefing to the Portfolio Committee on Department of Correctional Services on the audit outcomes for the 2013/2014 financial year Presenter: Solly Jiyana.
Portfolio Committee on Communications
Document CWG-FHR-10/8 4 September 2019 English only
Presentation transcript:

Legislative Compliance Management Insurance Industry Workshop 1 – 2 November 2005 Bangkok, Thailand Kim Norris Managing Director International Advisory Group www.osfi-bsif.gc.ca

Legislative Compliance Management Discussion Points Legislative Compliance Management Overview Supervisory Framework Key Compliance Management Controls Role of the Board Role of Senior Management Role of Compliance Oversight Functions Role of Internal Audit/Independent Review Functions

Legislative Compliance Management Regulatory Guideline conveys expectations regarding controls through which insurance companies manage regulatory risk inherent in their activities worldwide

Legislative Compliance Management Regulatory Risk consolidated risk of non-compliance with applicable regulatory requirements governing legislation regulations/regulatory directives other legislation, regs/regulatory directives worldwide

Legislative Compliance Management Definition “the set of key controls through which an insurance company manages regulatory risk” Essential to an insurance company’s well being provides a means by which the company satisfies itself that it is in compliance with all governing legislation

Legislative Compliance Management Regulators’ expectations insurance companies will establish/maintain an enterprise – wide framework of regulatory risk management controls controls must include oversight by functions (groups/individuals) independent of the activities they oversee Not “one size fits all” – regulatory risk management approaches should consider size, complexity, geographical location(s), structure and ownership

Legislative Compliance Management Key Component of Risk-Based Supervision focus on significant activities assessment of the level of risk, including regulatory risk considers impact of risk mitigation by evaluating quality of risk management well managed companies relative to their risks will require less supervision

Legislative Compliance Management Key Component of Risk-Based Supervision (cont’d) two levels of risk management: day-to-day controls operational management includes policies procedures, processes, appropriate staffing independent oversight risk management control functions Board Senior management Internal audit Risk management Compliance Financial analysis

Legislative Compliance Management Control framework to mitigate regulatory risk should: include enterprise – wide definition of regulatory risk outline the process through which regulatory risk is to be identified/assessed outline key controls through which regulatory/risk is managed/mitigated include operational/independent oversight

Legislative Compliance Management Control framework to mitigate regulatory risk should (cont’d): define and clearly communicate respective oversight roles/responsibilities have clear lines of responsibility and control methodology should include a mechanism for holding individuals accountable

Legislative Compliance Management Key Legislative Compliance Management Controls Identification Assessment, Communication and Maintenance of Applicable Regulatory Requirements methodology required to identify, assess, communicate and maintain knowledge of applicable regulatory requirements ensure appropriate individuals have the information they need to manage regulatory risk effectively current/accurate reflect new/changing requirements and those applicable to new/changing products, activities, corporate structure

Legislative Compliance Management Key Legislative Compliance Management Controls Compliance Procedures on a day-to-day basis should be incorporated into and maintained in relevant business operations should include monitoring and reporting procedures

Legislative Compliance Management Key Legislative Compliance Management Controls Monitoring Procedures should regularly monitor adherence to controls established in business operations should evaluate effectiveness of controls and compliance management framework should monitor material exposures to regulatory risk

Legislative Compliance Management Key Legislative Compliance Management Controls Monitoring Methodology should include verification of key elements of info reported up through those with day-to-day compliance responsibilities to senior management and board should extend to significant remediation activities

Legislative Compliance Management Key Legislative Compliance Management Controls Reporting Procedures to ensure that sufficient pertinent/timely info about regulatory risk management effectiveness is communicated to senior management/board reports to include significant results of monitoring and findings of compliance oversight, internal audit, other independent review functions

Legislative Compliance Management Key Legislative Compliance Management Controls Reporting Procedures (cont’d) content/frequency of reports should be approved by CCO – must be sufficient to enable CCO, senior management and board to discharge compliance responsibilities often include regular formal/informal meetings between functions/management groups

Legislative Compliance Management Key Legislative Compliance Management Controls Compliance Oversight Function Reports to Board CCO must report material compliance issues to board on timely basis normal course reports – regular basis as approved by board – no less than annual material results of enterprise wide compliance oversight material weaknesses, non-compliance, related remedial action plans, material exposures to regulatory risk significant legislative/regulatory developments, industry compliance issues, emerging trends and regulatory risks – to assist board in decisions or strategic direction and controls

Legislative Compliance Management Key Legislative Compliance Management Controls Internal Audit or Other Independent Review Functions Reports to the Board should include: scope/results of compliance related reviews significant recommendations for correcting deficiencies management’s undertakings with respect to remedial action

Legislative Compliance Management Key Legislative Compliance Management Controls Internal Audit or Other Independent Review Functions Reports to the Board (cont’d) should contain sufficient pertinent info for board to assess compliance framework provided on a rotational or other regular basis as board considers appropriate

Legislative Compliance Management Key Legislative Compliance Management Controls Documentation expectation by regulator of adequate documentation (from operational management/independent risk management) to demonstrate how regulatory risk is managed to support flow of reports to senior management/board and to support board’s periodic reassessment of the compliance framework

Legislative Compliance Management Key Legislative Compliance Management Controls Regular Review and Improvement regulator’s expectation that key controls and methodology will be reviewed and updated regularly in order to address new/changing regulatory risks produces activities and corporate structure

Legislative Compliance Management Role of Board of Directors Approval of legislative compliance management framework/see that it is established and maintained Obtain sufficient info to address material issues Establish thresholds for the type, content and frequency of reports To monitor remediation progress in respect of material problems

Legislative Compliance Management Role of Board of Directors To periodically reassess effectiveness of legislative compliance management framework Ensure framework is subject to internal audit/other independent review and validated as appropriate Ensure material findings/recommendations are brought to its attention and that they are acted upon

Legislative Compliance Management Role of Senior Management To implement the legislative compliance management framework approved by board To ensure appropriate policies/procedures are developed/applied effectively by qualified individuals To ensure all staff understand their responsibilities for complying with such policies/procedures

Legislative Compliance Management Role of Senior Management To ensure that significant recommendations concerning issues of non-compliance or control improvements oversight/internal audit/other independent review are acted upon in a timely fashion

Legislative Compliance Management Role of Compliance Oversight Function To ensure that key day-to-day legislative management controls are sufficiently robust to control compliance and where significant issues arose, escalate them to senior management/board Function should be independent

Legislative Compliance Management Role of Compliance Oversight Function Responsibility for compliance oversight should be assigned to senior management – designated (at least functionally as CCO) CCO should have sufficient stature/authority and mandate, resources and access to CEO/board Appropriate skills/knowledge of business/regulatory environments essential to CCO effectiveness

Legislative Compliance Management Role of Internal Audit & Other Independent Review Function To validate effectiveness of and adherence to legislative compliance management framework by risk-based testing as board seems appropriate Scope of work to include consideration of material regulatory risks and corresponding controls

Legislative Compliance Management Role of Internal Audit & Other Independent Review Function Review function should be independent, have appropriate skills and a good knowledge of business/regulatory environments Significant review findings/recommendations should be reported to business operations management, senior management, board Actions taken in response to significant recommendations should be monitored

Thank-you

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.