Mark Carey, CPA, CISA President Toll free: 866.335.2736 x101 International: 001.801.756.4180 x101 Enterprise Risk Management:

Slides:



Advertisements
Similar presentations
DoD Logistics Human Capital Strategy (HCS) Executive Overview 1 October 2008.
Advertisements

AASHTO Internal Audit Conference 2012 – Phoenix Daniel Fodera, CMQ/OE Program Management Improvement Team Federal Highway Administration.
Risk Management at Harvard – Panel Discussion Harvard IT Summit
Auditing Governance Functions
Lisanne Sison Director ERM Bickmore
Lynn Ray ISO Towson University Strategic Planning for IT Security Copyright Lynn Ray, This work is the intellectual property rights of the author.
Primary Benefit Types Value Discipline Benefits – Operating Excellence Reduce Cost Reduce Risk – Product Leadership Increase Revenue – Customer Intimacy.
Operational Risk ACSDA Leadership Forum ACSDA Leadership Forum New York City, USA - October 8-10, 2007 Diana Downward, DTCC.
“High Performing Financial Institutions and the Keys to Success in an Uncertain Environment”
Introduction to Enterprise Risk Management (ERM)
Executive Insight through Enhanced Enterprise Risk Management Leverage Value From Your Risk Management Investment.
DoD and Cyber-Terrorism Eric Fritch CPSC 620. What is cyber-terrorism? "The premeditated, politically motivated attack against information, computer systems,
Enterprise Risk Management Its Meaning and Import Jerry A. Miccolis, FCAS, MAAA Tillinghast - Towers Perrin.
© 2003 DelCreo, Inc. All rights reserved. | U.S. Toll-free 866.DELCREO | International 001/ |
Mark Carey, CPA, CISA President Toll free: x101 International: x101 Business Continuity.
6/2/20151 Enterprise Risk & Assurance Management in Zurich North America Brian Selby MA (Audit), FIIA, QiCA, MBCS, CISA.
EBusiness Enterprise Risk Management Mark Carey, CPA, CISA President Toll free: x101 International: x101
Enterprise Risk Management and Business Continuity Planning Mark Carey, CPA, CISA President x8431
PPA 573 – Emergency Management and Homeland Security Lecture 9b - Department of Homeland Security Strategic Plan.
Saba Confidential 1 Next Generation HCDM April 16, 2003 E-Learning Brazil Conference Magna Session Bobby Yazdani President and COO.
Human and Technology Capital Advisors, LLC “Where Financial Accretion Intersect with People and Technology” April 3, 2008.
Risk Assessment Frameworks
CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.
©2013 CliftonLarsonAllen LLP cliftonlarsonallen.com See CLA PowerPoint User Guide for instructions to insert an image or change the icon on the business.
Privileged and Confidential Strategic Approach to Asset Management Presented to October Urban Water Council Regional Seminar.
Cybercrime Outlook on African banks Adwo Heintjes Global Head IT Audit & Ops Rabobank.
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
Why Information Governance….instead of Records & Information Management? Angela Fares, RHIA, CRM, CISA, CGEIT, CRISC, CISM or
© Compliance Aid 2011 ADOPTING A SYSTEM OF CONTINUOUS RISK MANAGEMENT 1.
Measuring for Performance: The Balanced Scorecard
2007 Annual Meeting ● Assemblée annuelle 2007 Vancouver 2007 Annual Meeting ● Assemblée annuelle 2007 Vancouver Canadian Institute of Actuaries Canadian.
BITS Proprietary and Confidential © BITS Security and Technology Risks: Risk Mitigation Activities of US Financial Institutions John Carlson Senior.
1 Enterprise Risk Management (ERM) Program PNM Resources, Inc. March 29, 2007 Presentation to American Public Power Association March 2007 Austin, Texas.
Page 1 Recording of this session via any media type is strictly prohibited. Page 1 ERM IN A CULTURE OF INNOVATION Laura Langone Sr. Director, Global Risk.
Stephen Vink Senior Vice President Group Risk Management and Internal Audit Lessons learned from ERM.
Enterprise Risk Management in the Insurance Industry July 30, 2003 Value Growth Return Consistenc y Capital.
1 Enterprise and Global Management of Information Technology.
EBusiness Enterprise Risk Management Mark Carey, CPA, CISA President x8431
Mark Carey, CPA, CISA President x8431 Management-ese: An Introductory Course.
An Integrated Control Framework & Control Objectives for Information Technology – An IT Governance Framework COSO and COBIT 4.0.
BPK Strategic Planning: Briefing for Denpasar Regional Office Leadership Team Craig Anderson Ahmed Fajarprana August 11-12, 2005.
Assessing ERM Practices ERM Working Group North Carolina State University Raleigh, February 24 th 2006 Copyright © 2005 Standard & Poor's, a division of.
DFA Capital Management Inc. DFA vs. ERM Is There A Difference? CAS Special Interest Seminar Understanding the Enterprise Risk Management Process San Francisco,
DelCreo, Inc. An Enterprise Risk Management Company 1 Changed World, New Risks Mark Carey, CPA, CISA DelCreo, Inc
ACCOUNTING AND FINANCIAL RESPONSIBILITY IN STRATEGIC PLANNING By Charles D. Little, Ph.D.
© 2003 DelCreo, Inc. All rights reserved. | U.S. Toll-free 866.DELCREO | International 001/ |
Public Affairs Management
Enterprise Cybersecurity Strategy
NEACS: CRO Perspective William Feher Vice President, Internal Audit and Chief Risk Officer October 27, 2015.
Jim Rozsypal Partner Risk Management Practice - Ernst & Young ERM Symposium focus | support | accelerate t.
CAS Spring Meeting June 2007 Introduction to ERM …The Measurements, Quadrants, Tools, and Solutions Prof. Mark C. Vonnahme Fox Family Clinical Professor.
Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
Organization  As a member of the Strategy & Business Development team, this position will support the development and execution of Corporate, Sector,
Risk Management Bill Ferguson, Ray Farmer, Tim Morris, Marty Wingate Insurance Summit
Trinity Industries, Inc. FEI Presentation May 31, 2012.
1 Internal Audit’s Role in Enterprise Risk Management March 22, 2016 Chris Kalafatis, Manager, Risk Advisory Services.
Financial Risks David Wong Friday 21 May 2004, Staple Inn Hall wp c.
#327 – Legal and Regulatory Risk: Silent and Possibly Deadly Deborah Frazer, CPA CISA CISSP Senior Director, Internal Audit PalmSource, Inc.
Draft - Enterprise Risk Management Risk Universe
JMFIP Financial Management Conference
Information Security Program
ENTERPRISE RISK MANAGEMENT IN THE CASE OF THE FINANCIAL SERVICE SECTOR
How can an Enterprise Risk Management (ERM), programme enable organizations achieve strategic objectives more effectively? Dr P S Sahota  
2017 HR Trends Report SAMPLE
FY15 High-Level Finance Goals
Privacy Project Framework & Structure
MAZARS’ CONSULTING PRACTICE
Session 8: Innovative Uses of Captives: Cyber and Beyond
MAZARS’ CONSULTING PRACTICE Helping your Business Venture Further
Presentation transcript:

Mark Carey, CPA, CISA President Toll free: x101 International: x101 Enterprise Risk Management: Recent Trends and Approaches

Why are you here? Why did this topic interest you? What do you think about enterprise risk management? What do you expect to get out of this presentation?

Risk Appetite Impact X Likelihood = Risk

Enterprise Risk Management Definition Enterprise Risk Management (ERM) is the capability to protect enterprise value by managing risk: –With a coordinated and systematic approach, –Organization-wide, and –Across all types of risk.

ERM Inflection Point 9/11, Anthrax, Terrorism near misses Corporate Governance Crisis –Enron –Arthur Andersen –WorldCom –Adelphia –GE Reveal and amplify underlying trends impacting need for “enterprise” approach to risk management

Trend: Interconnectivity and Infrastructure Today’s business system –Complex –Tightly coupled –Heavily dependent on infrastructure Interconnectivity of infrastructure –Telecommunications –power generation and distribution –Transportation –Medical care –National defense –Other critical government services Ripple effects of infrastructure failure Terrorist employed low tech weapons to inflict massive physical or psychological damage –Box cutters –Envelopes

Trend: Low Cost of Tools Technologies/tools that have the ability to inflict massive damage are getting cheaper and easier to obtain every day Being used by competitors, customers, employees, litigation teams, etc. Examples: –Recent wave of viruses and worms –Cyber Activism: The Electronic Disturbance Theater and Floodnet –CyberTerrorism: NATO computers hit with bombs and denial-of-service attacks during 1999 Kosovo conflict

Trend: New Laws, Regulations and Agencies Largest, most aggressive expansion HIPAA –Privacy –Information Security –Physical Security –Business Continuity C-TPAT (Customs-Trade Partnership Against Terrorism) –Process Control –Physical Security –Personnel Security Sarbanes-Oxley Act –Accounting –Internal Control Review –Executive Verification –Ethics and Whistleblower Protection Department of Homeland Security –Consolidation of Agencies with various “risk” responsibilities

Response: Be Strategic Be Strategic - Your issues matter more now than ever Position your program as more than “insurance” Speak Language of Senior Management – “Value”

Response: Be Strategic Are we in alignment with organizational value drivers and strategies Can we implement our strategy effectively? Do we have the right –Organizational structure –Tools –Metrics –“Go to market” approach?

Response: Value Drivers Customer Satisfaction –Impact on external customers –# of customers impacted –Duration of impact People –Loss/ access to private employee information –Workforce endangerment –Access to executive information, systems, etc Financial –Cost Increase –Revenue loss Intangible –Proprietary information –Damage to brand Computer Systems –Number of systems impacted –Number of internet facing systems impacted/vulnerable

Response: Update or Create Risk Profile Focus on risks that matter to value drivers Determine response triggers and thresholds Consider Interconnectivity of risks Present to management in their terms (Value Drivers) Drive your strategic planning

Response: Develop Strategic Plan Strategic Plan Implementation Framework Metrics Organizational Change Program Management

Tools RiskWeb Early Warning System Assessment and Quantification tools Culture Knowledge Mgmt Metrics Training Communication Assess Risk Treat Risk Monitor & Report Enterprise-wide Integration Strategic Planning Programs/PMO Processes Functions Risk Management Process Allocation of Capital Control Cost Drive Innovation Manage Growth Risk Attributes Lifecycle Individual Portfolio Qualitative Quantitative Organization Enterprise Risk Committee CRO or ERM Manager Risk Strategy & Appetite Internal Audit Risk Mgmt IT Security ERM BCP Legal EH&S Risk Strategy Appetite Prioritize Treatment Approach Program Strategy Develop Deploy Continuously Improve Risk Functions Business Objectives Risk Drivers Strategy Capability Capability Functions Process Organization Culture Tools Enterprise- Wide Integration Risk Attributes Risks Strategic Operational Stakeholder Financial Intangible ERM Framework

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.