2011 Governance, Risk, and Compliance Conference August 29 – 31, 2011 / Orlando, FL, USA The Top Four Essential Objectives to Auditing ERM Stephen E. McBride,

Slides:



Advertisements
Similar presentations
Organizational Governance
Advertisements

Risk Management at Harvard – Panel Discussion Harvard IT Summit
Risk The chance of something happening that will have an impact on objectives. A risk is often specified in terms of an event or circumstance and the consequences.
Internal Control–Integrated Framework
Applying COSO’s Enterprise Risk Management — Integrated Framework
Lisanne Sison Director ERM Bickmore
IMFO Audit & Risk Indaba June 2012
Chapter 10 Accounting Information Systems and Internal Controls
Control and Accounting Information Systems
It’s Time to Talk About Risk and Control
Manulife Financial Corporation operates as John Hancock in the United States, and Manulife in other parts of the world. Enterprise Risk Management in Life.
Introduction to Enterprise Risk Management (ERM)
Executive Insight through Enhanced Enterprise Risk Management Leverage Value From Your Risk Management Investment.
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
6/2/20151 Enterprise Risk & Assurance Management in Zurich North America Brian Selby MA (Audit), FIIA, QiCA, MBCS, CISA.
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Risk Management at ANZ Banking Group Jun 18, 2008 Patrick Zhu Head of Retail Risk China Partnerships.
Applying COSO’s Enterprise Risk Management — Integrated Framework
CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.
Presented by: G. Lawrence Buhl, CPA Retired Audit Partner at Ernst & Young 1 Risk Management & ERM: What Insurer Boards Need to Know.
The Government Finance Officers Association
COBIT® 5 for Risk Introduction
Information Technology Audit
Internal Auditing and Outsourcing
Corporate Governance in Financial Institutions OCDE/IAIS/ASSAL Conference on Insurance Regulation & Supervision in Latin America Punta Cana, Dominican.
WHERE WE ARE 22 member associations in 20 countries Over 4300 individual members who are responsible for risk management and/or insurance in their organisations.
Governance of the Treasury Function CIPFA Scottish Treasury Management Forum Alan George, Regional Director 23rd February 2012.
8 – 12 December 2008 Bruce Le Bransky MAFC / APEC / AFDC Shanghai Conference: Session 7.2: Challenges to Governance Structures.
DPE Shareholder Oversight & Risk Management
The role of internal audit in enterprise-wide risk management (ERM)
Global Risk Management Solutions Risk Management and the Board of Director: Moving Beyond Concepts to Execution Anton VAN WYK Partner, Global Risk Management.
1 Bölgesel Rekabet Edebilirlik Operasyonel Programı’nın Uygulanması için Kurumsal Kapasitenin Oluşturulmasına Yönelik Teknik Yardım Technical Assistance.
2007 Annual Meeting ● Assemblée annuelle 2007 Vancouver 2007 Annual Meeting ● Assemblée annuelle 2007 Vancouver Canadian Institute of Actuaries Canadian.
Internal Audit Role in Order to Develop an Ethical Corporate Culture as a Competitiveness Factor A.I.I.A. - Internal Auditing body Università degli Studi.
IT Risk Management, Planning and Mitigation TCOM 5253 / MSIS 4253
Presented to President’s Cabinet. INTERNAL CONTROLS are the integration of the activities, plans, attitudes, policies and efforts of the people of an.
Stephen Vink Senior Vice President Group Risk Management and Internal Audit Lessons learned from ERM.
Building a Corporate Risk Culture Shane Troyer, CPA, CIA, CFE, CISSP Principal Operational Advisory Joost Houwen, CISA,
“ Heightened Expectations” for Corporate Governance AIBA 2 nd Annual Compliance Seminar June 14, 2012 Lester Miller, Senior International Advisor International.
Enterprise Risk Management (ERM) ABN AMRO Business Unit North America (BU NA) Overview for ERM Committee April 11, 2007.
COSO: Current ERM Challenges and Our Responses RIMS 2012 Annual Conference April 17, 2012 by David Landsittel COSO Chairman.
Copyright T. Rowe Price. All rights reserved 1 Ms. Deborah D. Seidel of T. Rowe Price Financial Services Vice President and Manager of Compliance.
CDS Operational Risk Management - October 28, 2005 Existing Methodologies for Operational Risk Mitigation - CDS’s ERM Program ACSDA Seminar - October 26.
Enterprise Risk Management Expectations Outpacing Capabilities and The Audit Committee’s Role July 30, 2013 Presented by: Suzette E. Ramsden (B.Sc., CISA,
IRS Enterprise Risk Management (ERM)
Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.
SANEDI. INDEX  KEY ACTIVITIES DURING FINANCIAL YEAR  DISCUSSIONS ON KEY ACTIVITIES  CONCLUSION  APPRECIATION.
Northern Trust Company Global Risk Management
The Connection between Risk Management and Internal Control in Organizations Mag. Norbert Wagner Budapest,
Enterprise Risk Management Chapter One Prepared by: Raval, Fichadia Raval Fichadia John Wiley & Sons, Inc
Geneva Association/International Insurance Society Research Presentation, Chicago Enterprise Risk Management in the Insurance Industry Madhusudan.
Bank Audit. Internal Audit Internal audit is an independent, objective assurance activity and can give valuable insight in providing assurance that major.
RISK MANAGEMENT : JOURNEY OR DESTINATION ?. What is Risk? “ Any uncertain event that could significantly enhance or impede a Company’s ability to achieve.
Divisional Chief Executives Supported by Divisional Risk Committees Executive Committee Group Chief Executive Group Functions Group Finance Director Group.
TREASURY REGULATIONS’ CHANGES AND POTENTIAL IMPACT
Copyright: Internal Auditing: Assurance and Advisory Services, by The Institute of Internal Auditors Research Foundation, 247 Maitland Avenue, Altamonte.
PD 8 OSFI Capital Update Stuart Wason Senior Director Actuarial Division OSFI CIA Appointed Actuary Seminar September 18, 2009.
Managing Uncertainty, Creating Opportunity Enterprise Risk Management J. Brown, CEO.
PIC EU-28 Conference Paris, 26 – 27 November 2015 PIC An EU Approach Assurance Maps An Introductory workshop Nathan Paget United Kingdom.
1 COSO ERM Framework Update Our Next Challenge and Opportunity September 2015.
Dolly Dhamodiwala CEO, Business Beacon Management Consultants
Internal Audit Section. Authorized in Section , Florida Statutes Section , Florida Statutes (F.S.), authorizes the Inspector General to review.
Company LOGO Chapter4 Internal control systems. Internal control  It is any action taken by management to enhance the likelihood that established objectives.
#327 – Legal and Regulatory Risk: Silent and Possibly Deadly Deborah Frazer, CPA CISA CISSP Senior Director, Internal Audit PalmSource, Inc.
Shared Services and Third Party Assurance: Panel May 19, 2016.
USDA 2016 Financial Management Training Transforming Shared Services
Chapter 5 ASX Guidelines for Listed Companies
HUMAN RESOURCE GOVERNANCE, RISK MANAGEMENT AND COMPLIANCE
Internal Audit & Enterprise Risk Management
Corporate Governance for Mutuals
Presentation transcript:

2011 Governance, Risk, and Compliance Conference August 29 – 31, 2011 / Orlando, FL, USA The Top Four Essential Objectives to Auditing ERM Stephen E. McBride, CIA

Agenda Definition of key terms Risk management principles & process Recent financial events Risk governance roles Key areas of focus in establishing audit objectives

Risk The possibility of an event occurring that will have an impact on the achievement of objectives. Measured in terms of likelihood and impact

Risk Management A process to identify, assess, manage, and control potential events or situations to provide reasonable assurance regarding the achievement of the organization’s objectives

Why Manage Risk? Decrease the cost of financial distress Reduce earnings volatility Facilitate optimal investments Incorporate portfolio theory

Enterprise Risk Management The application of risk management principles to all significant risks facing an organization

Risk Governance Roles Board of Directors Management Internal Auditors

Financial Events Enron Washington Mutual Bank AIG MF Global Were these events: – risk management process failures, – implementation failures, or – both?

Where to Begin Failures? – Financial: Credit, Market, Liquidity – Operational – Strategic Review models, assumptions, derivatives, strategies, black swan? Top 4 objectives

1. Business Strategies and Risk Appetite Determine approval of risk appetite Determine understanding of business model

Audit Objectives –Risk Appetite 1.Risk appetite – the entity’s risk appetite defines acceptable and undesirable risks. 2.Parameters for risk 1.Strategic – new products or initiatives 2.Financial – max acceptable loss or performance variations 3.Operating – capacity management, quality targets, environmental requirements.

2. Internal Environment The Board of active and possesses an appropriate degree of expertise Chief Risk Officer communication Management risk council reporting to the Board Management’s risk appetite is aligned throughout the organization

Ethics Determine methods for ensuring the Code of Conduct is communicated and complied with across the organization Ensure results are properly communicated Determine whether executives comply with discretionary expenditures policies

Follow the Money Determine how management is rewarded for performance

3. Event identification Management identifies potential events Techniques are used to look at both the past and the future Event identification is robust Management understands how events relate to one another

4. Control Activities Management indentifies control activities need to ensure risk responses are carried out properly Policies are implemented consistently Conditions are investigated and appropriate corrective action taken General and application controls are implemented

Volume of Exceptions Determine the volume of policy or internal control exceptions Determine steps taken for corrective action

Conclusion Determining the control framework and management practices in these areas will help determine risk culture Risk culture is the primary indicator of an organization’s risk management oversight and its likelihood of continued long term success