Measuring and Managing Operational Risk. 2 Assessing Operational Risk Exposure Required Process of Continuous Risk Assessment, Monitoring and Reporting.

Slides:



Advertisements
Similar presentations
COSO I COSO II. Meycor COSO, a Comprehensive Solution for Enterprise Risk Management (ERM)
Advertisements

Module N° 4 – ICAO SSP framework
Integra Consult A/S Safety Assessment. Integra Consult A/S SAFETY ASSESSMENT Objective Objective –Demonstrate that an acceptable level of safety will.
Audit Evidence Week 11.
Accident and Incident Investigation
Operational risk. Introduction During the early part of the decade, much of the focus was on techniques for measuring and managing market risk. As the.
“High Performing Financial Institutions and the Keys to Success in an Uncertain Environment”
Introduction to Enterprise Risk Management (ERM)
IOR Scottish Chapter Annual Conference Glasgow Caledonian University – 1 st November 2013 Relevance of Operational Risk to the FCA Jill Savager Manager,
Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.
Projmgmt-1/33 DePaul University Project Management I - Risk Management Instructor: David A. Lash.
Chapter 9 The Study of Internal Control and Assessment of Control Risk
Internal Control in a Financial Statement Audit
Performance Monitoring All All Contracts require basic monitoring once awarded. The Goal of contract monitoring is to ensure that the contract is satisfactorily.
A Regulatory Perspective on Operational Risk World Bank Presentation May 20, 2004 Presented by: Eric Rosengren Senior Vice President Federal Reserve Bank.
1 Operational Risk Management Member Education Series Seminar Indian Institute of Banking & Finance Nagpur November 2005.
What SMS means for an Operator’s relationship with the CAA
PETER SCOTT CONSULTING Business Management Systemize your compliance with Rule 5 Peter Scott Peter Scott Consulting
Systemise your compliance management Peter Scott Consulting
Software Verification and Validation (V&V) By Roger U. Fujii Presented by Donovan Faustino.
For WFTO Fair Trade organisations. Why do we need an IMS for the Guarantee System? We need to ensure that Fair Trade is happening on the ground End producers.
Click to add text © 2010 IBM Corporation OpenPages Solution Overview Mark Dinning Principal Solutions Consultant.
1 Business Continuity and Compliance Working Together Kristy Justice, AVP WaMu Card Services 08/19/2008.
Operational Risk Chapter 18
Operational Risk Management + Six Sigma = Success Presenter: Roberta Pek Director of Operational Risk Freddie Mac 2012 ASQ Lean and Six Sigma Conference.
Fiduciary Key Risk Indicators
An Educational Computer Based Training Program CBTCBT.
Audits & Assessments: What are the Differences and How Do We Learn from the Results? Brown Bag March 12, 2009 Sal Rubano – Director, Office of the Vice.
E QUUS software Delivering transparent data to Senior Management: Data Analytics & Dashboard Reporting Alan Bell, VP Technology Solutions.
Risk Assessments/Risk Appetite Judith Gruenbaum 1.
Presented to President’s Cabinet. INTERNAL CONTROLS are the integration of the activities, plans, attitudes, policies and efforts of the people of an.
© Brammertz Consulting, 20091Date: Unified Financial Analysis Risk & Finance Lab Chapter 12: Operational risk Willi Brammertz / Ioannis Akkizidis.
Enterprise Risk Management (ERM) ABN AMRO Business Unit North America (BU NA) Risk Outlook Process May 14, 2007.
From Findings over KRIs to Process Control
Quality Assurance. Identified Benefits that the Core Skills Programme is expected to Deliver 1.Increased efficiency in the delivery of Core Skills Training.
Managing Risk Through Performance Measurement FIRMA Risk Management Training Conference Lori Loken-King - SVP Union Bank, N.A., Operational Risk Management.
Occurrence Reports. An occurrence report is a document used to record an event when it occurs Occurrences are reported each time an occurrence occurs.
IOPS Toolkit for Risk-based Supervision Module 4: Risk Mitigation and Scoring.
While preparing for Basel II implementation...
Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.
The views expressed in this presentation do not necessarily reflect those of the Federal Reserve Bank of New York or the Federal Reserve System Association.
Data Quality Assessment
CIA Annual Meeting LOOKING BACK…focused on the future.
OPERATIONAL RISK Issues & Challenges March 9, 2007 Partners in Risk & Compliance.
2006 General Meeting Assemblée générale 2006 Chicago, Illinois 2006 General Meeting Assemblée générale 2006 Chicago, Illinois Canadian Institute of Actuaries.
Formulating a Simulation Project Proposal Chapter3.
Future of Credit Risk Management: Supervisory Approach to Basel II CIA Annual Meeting Session 4405 Ben Gully Director, Basel Implementation Division Office.
Hubbard Decision Research The Applied Information Economics Company Follow-up Bootstrap Case Study.
Occurrence Reports. An occurrence report is a document used to record an event when it occurs Occurrences are reported each time an occurrence occurs.
Operational Risk Management at HSBC
Auditing Internal Control Studies & Risk Assessment Chapter 9 Internal Control Studies & Risk Assessment Chapter 9.
Developing an Investment Governance Framework
1  The objective of operational risk management is the same as for credit, market and liquidity risks that is to find out the extent of the financial.
FILLING THE GAPS THERE ARE NO PROBLEMS ONLY SOLUTIONS.
Software reviews Cost impact of software defects Defect amplification model Review metrics and their use – Preparation effort (E p ), assessment effort.
Sue Hartga, Quality Reviewer OCN Eastern Region Simplifying Standardisation.
Basel Committee Norms. Basel Framework Basel Committee set up in 1974 Objectives –Supervision must be adequate –No foreign bank should escape supervision.
Operational Risk. Introduction operational risk has proved to be an important cause of financial losses. Indeed, most financial disasters can be attributed.
Revision N° 11ICAO Safety Management Systems (SMS) Course01/01/08 Module N° 9 – SMS operation.
Dolly Dhamodiwala CEO, Business Beacon Management Consultants
Corliss Whitaker: Portfolio – Instructional Presentation Understanding BASEL II Concepts Author: Korki Whitaker Revised: 02/17/2007.
Randy Wadle, CEO. Client Profitability  Breaking Down the P&L  Billable Services  Measuring Cost of Service  Client Scorecards.
An Overview on Risk Management
Chris Lintern Co-operative Financial Services
Risk Management and the Treasury Function
Measurement of Operational Risk
Operational Risk Chapter 20
CAYMAN ISLANDS MONETARY AUTHORITY
Process & Methodology Creating a scalable business through efficient, effective delivery with repeatable quality. MODULE 7.
Cyber Security in a Risk Management Framework
Presentation transcript:

Measuring and Managing Operational Risk

2 Assessing Operational Risk Exposure Required Process of Continuous Risk Assessment, Monitoring and Reporting

3 The Process Risk Identification Assessment of Control Framework Risk Likelihood/Severity Assessment Measurement & Monitoring Reporting Mitigation

4 The Tools Control and Risk Self Assessment Key Risk Drivers and Indicators Loss Data Issue and Event Data Audit and Compliance Reports Scenario Analysis

5 Control and Risk Self Assessment (CRSA) Utilises business management to identify risks and controls Comes in various forms –Scorecard Closed Questionnaire –Open ended Questionnaire –Business defined risks and controls Can be based on interviews or brain storming sessions

6 Risk Drivers and Indicators Drivers Transaction Volume Staff Turnover Market Volatility Training hours vs. plan Product complexity Indicators Transaction errors Aged confirmations Reconciliations Audit points outstanding Settlement fails Operational loss

7 Loss Data Pinpoints actual areas of control failures Highlights cost of operational risk Losses should be assigned to the business areas where they originated Data required for modelling Operational Risk Capital requirement. Both internal and external loss data can be utilised

8 Internal Loss Data Apply a minimum reporting threshold E.g. Losses > Eur20,000 Make sure you record at least the 4 W’s (What, when, where, why) Allocate losses to correct business line and risk category. Ensure that you can revise the individual losses to record recoveries Include all losses !

9 Loss Event Types Internal Fraud External Fraud Employment Practices & Workplace Safety Clients, Products & Business Practices Damage to Physical Assets Business Disruption & System Failures Execution, Delivery & Process Management

10 External Loss Data A number of sources. E.g. BBA Gold database, OpVantage. Tends to focus on large tail event losses Good source of data to fill gaps in own data if using an LDA to capital allocation Issues of applicability and scalability Often used for control failure comparison and scenario analysis

11 Key Risk Drivers & Indicators Much of the data is already available Must agree limits beyond which risk is considered unacceptable Must be indicators of risk not just of performance Should try to be predictive Ideally should be aligned to risks identified in CRSA and scenario analysis

12 Common Problems with Risk Indicators Performance related not risk related Where do you set the targets Inconsistent and non-comparable Historical not predictive One dimensional. Management takes it personally

13 Possible Solutions Adapt performance indicators to become risk indicators with their own specific targets. Targets should be ratified by senior management. Try to be consistent across business lines. Its easier to compare and aggregate Combine drivers and risks E.g. Outstanding reconciliations compared to volume and estimated staff turnover/absence. Present KRI’s as risk management tools not instruments of blame.

14 Issue and Event Data Not all control failures result in loss “Near miss” data adds value by verifying controls are working and that risks exist Control failure profits are as important as losses. Good source for potential fraud. Evidences adequate monitoring and control awareness

15 Audit and Compliance Reports Ideal source of control verification Independent review may highlight risks that have been overlooked or evaded Underscore efforts for risk mitigation Highlight topical risk areas Can provide valid control comparison

16 Scenario Analysis Apply some formal real world “what if” analysis to your processes Highlight control weakness before it results in losses Stress test identified points of failure to test resilience Test again to ensure mitigation is working

17 Problems and Practicalities Continued management support. Management deniability. KRI’s focussed on performance. Loss data collection and apportionment. Time and resource. External loss data applicability. Real world scenario analysis. Turning the data into a workable capital allocation model for AMA.

18 Applying Common Sense to Control The better the controls the less the chance of loss The level of controls need to be equivalent to the level of risk Controls need to be consistently applied and measured. All controls should be documented and staff should be aware of the controls applicable to their function. Failures need to be highlighted investigated and understood. Operational Risk losses need to be tracked to reflect the levels of risk in a particular product or process. Risk measurement is the first step to evidencing risk management

Questions ?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.