Presentation is loading. Please wait.

Presentation is loading. Please wait.

Operational Risk Management Framework Control Self Assessment

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Operational Risk Management Framework Control Self Assessment"— Presentation transcript:

1 Operational Risk Management Framework Control Self Assessment
And Control Self Assessment Maurice A. Krisel Managing Director Broad Street Banking Associates, LLC Confidential (203) David E. Fisher Managing Director Broad Street Banking Associates, LLC. (203)

2 The Vision of Operational Risk Management
In 12 to 18 months, your goal should be to create a report for each department and group that summarizes all relevant information that gets combined into a rating for operational risk.

3 Pillars of Operational Risk Management
Senior Management Qualitative/Quantitative Analyses Losses Indicators Issues CSA Common Operational Risk Classification Scheme

4 Control Self Assessment Framework

5 Control Self Assessment
Outline Control-Self Assessment Definition Control-Self Assessment Objectives Enterprise wide Control Self Assessment Framework Balanced Scorecard CSA Methodology Results Corporate Governance CSA Rollout - Project Time Line Appendix - Delivered Solution 1. Risk Map 2. Excel Based Worksheets 3. HTML Interface 4. Excel Based

6 Control Self Assessment
Definition Control-Self Assessment is a risk management tool used by business managers to transparently assess risk and control strengths and weaknesses against a Control Framework. The “self” assessment refers to the involvement of management and staff in the assessment process.

7 Control Self Assessment
Objectives Communication To ensure better communication of CEO’s objectives and strategies to all business lines To ensure business line managers communicate their risks and controls more effectively Education To ensure business line managers have a better comprehension of effective risk control To ensure business line managers have a better comprehension of risk management Proactive Management To ensure business line managers align their objectives and strategies with the CEO's objectives and strategies To ensure business line managers assume greater responsibility and accountability for their risks and controls To ensure business line managers monitor their risk effectively and timely To ensure business line managers utilize and allocate their resources effectively

8 Enterprise-wide CSA Framework
Goal To foster a proactive management framework which is pervasive throughout a firm

9 Enterprise-wide CSA Framework

10 Step 1: Objective Setting
Balanced Scorecard * A tool that translates a firm’s mission and strategy into a comprehensive set of performance measures that provides the framework for a strategic measurement and management system Objectives Ensures linkage between the objective of senior management and the businesses Increased focus on the appropriateness of the objectives Reinforced as the central “top down” articulation of goals Provides a framework within which the oversight functions, risk management and the business lines operate

11 Objectives ORCA Framework Step 2: CSA Methodology
Risk Assessment of Key Processes Controls Action Plans The ORCA framework components fit logically together to form a comprehensive relationship between firm-wide objectives, processes and risks, and controls. This relationship may be viewed as the core of a firm’s internal control.

12 Step 2: CSA Methodology ORCA Framework
To find equilibrium, the business managers must carefully assess the risks inherent within their key processes and apply controls that will work at a reasonable cost.

13 Step 2: CSA Methodology ORCA Framework

14 Step 2: CSA Methodology Key Indicators
Metrics to measure the effectiveness of controls in the mitigating or managing risks TO measure operational problems TO monitor the quality of the services provided TO provide early warning for problems TO aid in the containment of losses TO determine trends TO set limits for risk or escalation criteria TO facilitate everyday decisions.

15 Step 3: Results Qualitative Quantitative
Bottom-up feedback to executive management to ascertain how successfully the organization accomplished its strategic vision Identification of the interdepartmental and thematic risks within the firm Quantitative CSA Metric Score Inherent & Residual Risks Model CSA Scenario Engine

16 Step 3: Results

17 Step 3: Results Inherent and Residual risk models provide a sense of the potential monetary impact before and after the implementation of controls. CSA scenario engine may shed insight on how the department’s or firm’s control environment may evolve – for better or worse.

18 Corporate Governance Furthermore, the framework readily lends itself to Sarbanes-Oxley and BIS II compliance The enterprise-wide CSA framework presented here is a key component of a robust corporate governance structure. It enables the organization to inform executive management of the current state of the firm’s risk environment on an ongoing basis The expected benefits of a strong corporate governance structure are:

19 Summary The presented enterprise-wide control self-assessment framework: Provides flexibility and dynamism to evolve with the changing firm Allows a firm to manage risks from both the “top-down” and “bottom-up” perspectives Is an integral component of a strong corporate governance structure

20 CSA Rollout - Project Time Line
Planning Project Scope Define CSA scope Evaluate current firm wide objectives Identify key business areas and processes Obtain Sr. Management support Project Planning Create project timeline Allocate resources Deliverables: Project Plan, Road map Design and Development (Prototype) Meet with Business Lines Gather Key business processes Establish Create Data Model Create Database Create user interface Load master tables data into database Create procedure guide Deliverables: CSA beta version software, User guide Analysis Define Op Risk components Firm wide objectives Risk map Define CSA components Objectives and key processes Risks Control Methods Action Plans Key Risk Indicators Refine Timeline and estimates Deliverables: Business requirements, User presentation Implementation Rollout Control Self Assessment Software Data Gathering of Business Units CSA Support business units performing CSA Deliverables: Cutover Plan, CSA application Close-out Review user feedback Establish cyclical review requirements Update CSA reporting package April May June June July August September October November December January February March Closeout Planning Analysis Implementation Design Development

Download ppt "Operational Risk Management Framework Control Self Assessment"

Similar presentations

COSO I COSO II. Meycor COSO, a Comprehensive Solution for Enterprise Risk Management (ERM)

COSO I COSO II. Meycor COSO, a Comprehensive Solution for Enterprise Risk Management (ERM)
360 Degrees: Conducting a Comprehensive Evaluation of Your Integrated Planning Processes Bri Hays Jill Baker San Diego Mesa College RP Conference April.

360 Degrees: Conducting a Comprehensive Evaluation of Your Integrated Planning Processes Bri Hays Jill Baker San Diego Mesa College RP Conference April.
E.g. 4.3.2 Act as a positive role model for innovation 4.3.1. Question the status quo 2.3.4 Keep the focus of contribution on delivering and improving.

E.g Act as a positive role model for innovation Question the status quo Keep the focus of contribution on delivering and improving.
Internal Control–Integrated Framework

Internal Control–Integrated Framework
The HR Paradigm Shift Discover Stakeholder Value for the Human Resources Function.

The HR Paradigm Shift Discover Stakeholder Value for the Human Resources Function.
Lisanne Sison Director ERM Bickmore

Lisanne Sison Director ERM Bickmore
HR Manager – HR Business Partners Role Description

HR Manager – HR Business Partners Role Description
© 2009 The MITRE Corporation. All rights Reserved. Evolutionary Strategies for the Development of a SOA-Enabled USMC Enterprise Mohamed Hussein, Ph.D.

© 2009 The MITRE Corporation. All rights Reserved. Evolutionary Strategies for the Development of a SOA-Enabled USMC Enterprise Mohamed Hussein, Ph.D.
Agency Risk Management and Internal Control Standards Presentation to the Board of Visitors November 14, 2014.

Agency Risk Management and Internal Control Standards Presentation to the Board of Visitors November 14, 2014.
Own Risk & Solvency Assessment (ORSA): The heart of Risk & Capital Management John Spencer Director, Ultimate Risk Solutions.

Own Risk & Solvency Assessment (ORSA): The heart of Risk & Capital Management John Spencer Director, Ultimate Risk Solutions.
IRSHAD Fourth Objective Dubai Islamic Bank – Performance Management Systems.

IRSHAD Fourth Objective Dubai Islamic Bank – Performance Management Systems.
It’s Time to Talk About Risk and Control

It’s Time to Talk About Risk and Control
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.

Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.

Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.
Program Management Overview (An Introduction)

Program Management Overview (An Introduction)
Contractor Assurance Discussion Forrestal Building Washington, D.C. December 14, 2011.

Contractor Assurance Discussion Forrestal Building Washington, D.C. December 14, 2011.
Return On Investment Integrated Monitoring and Evaluation Framework.

Return On Investment Integrated Monitoring and Evaluation Framework.
IT Planning.

IT Planning.
Business Performance Management (BPM)

Business Performance Management (BPM)
RSM McGladrey, Inc. is a member firm of RSM International – an affiliation of separate and independent legal entities. Operational Risk Management Framework.

RSM McGladrey, Inc. is a member firm of RSM International – an affiliation of separate and independent legal entities. Operational Risk Management Framework.

Similar presentations

Ads by Google