Emerging Governance Practices in Enterprise Risk Management


Book Description

As the oversight role of the corporate board in Enterprise Risk Management (ERM) expands, companies feel the need to fill a knowledge gap on effective risk governance practices.The concept of correlating risk management, governance, and strategy in an enterprise-wide structure first appeared in the midst of merger frenzy of the late 1980s. At the time, many executives and strategists acknowledged that the enormous amount of risk undertaken through a series of corporate combinations was often not justified by a sound analysis of long-term prospects. In the 1990s, the debate continued and increasingly drew the attention of the business community, only to be obfuscated by the more exclusive focus on financial and accounting risks resulting from the wave of scandals of the Enron era. A few years into the implementation of the Sarbanes-Oxley Act of 2002, corporations are now ready to leverage their experience with mandatory internal control procedures to establish a more comprehensive ERM infrastructure.In response to the need for guidance in the design and implementation of ERM, The Conference Board instituted a case-study based Research Working Group on Enterprise Risk Management with select risk and governance officers. Intended as a complement to the recent paper on The Role of U.S. Corporate Boards in Enterprise Risk Management (by Carolyn K. Brancato, Matteo Tonello, and Ellen Hexter), this study presents an overview of the research group's findings, including insights from five case studies of companies at the forefront of ERM:- Bristol-Myers Squibb Company- Capital One Financial Corporation- International Paper- MetLife, Inc.- Moody's Investors ServiceThe paper also outlines a risk governance quot;road map,quot; with a detailed discussion of the oversight role of corporate boards in each stage of ERM development and execution.




Emerging Governance Practices in Enterprise Risk Management


Book Description

A few years into the implementation of the Sarbanes-Oxley Act of 2002, corporations are now ready to leverage their experience with mandatory internal control procedures to establish a more comprehensive enterprise risk management (ERM). Departing from the fragmented risk management solutions already in place at many companies, ERM is a tool to elevate risk discussions to a strategic level, a top-down initiative, fully supported by the corporate board, and ERM offers a holistic view of the enterprise designed to capture a variety of risks throughout the firm. This report discusses: 1) what ERM is and how it differs from traditional risk management solutions, 2) how legislatures, regulatory agencies, and the judiciary have been laying a legal foundation for ERM, 3) the role of corporate boards, senior executives, functional managers, and business unit risk owners in the ERM infrastructure, 4) what elements constitute a comprehensive ERM program, and 5) how corporate disclosure to stakeholders may be enhanced by ERM.




COSO Enterprise Risk Management


Book Description

Praise for COSO Enterprise Risk Management "COSO ERM is a thoughtful introduction to the challenges of risk management at the enterprise level and contains a wealth of information on dealing with it through the use of the COSO framework. Detailed procedures covering a wide variety of situations are followed by a thorough explanation of how each is deployed. As a project management professional, I appreciate how the author addresses the need for risk management at a project level. His background as someone who 'practices what they preach' and realizes the impact of the Sarbanes-Oxley auditing rules comes through clearly in the book, and it should be mandatory reading for anyone seeking to understand how to tackle their own ERM issues." --Greg Gomel, PMP, CQM, CSQE, ITIL, Director, Project Management, Insight North America "This volume clearly and comprehensively outlines the usefulness of COSO Enterprise Risk Management guidance. It should provide considerable benefit to those having governance responsibilities in this important area." --Curtis Verschoor, L & Q Research Professor, School of Accountancy and MISDePaul University, Chicago Transform your company's internal control function into a valuable strategic tool Today's companies are expected to manage a variety of risks that would have been unthinkable a decade ago. More than ever, it is vital to understand the dimensions of risk as well as how to best manage it to gain a competitive advantage. COSO Enterprise Risk Management clearly enables organizations of all types and sizes to understand and better manage their risk environments and make better decisions through use of the COSO ERM framework. A pragmatic guide for integrating ERM with COSO internal controls, this important book: Offers you expert advice on how to carry out internal control responsibilities more efficiently Updates you on the ins and outs of the COSO Report and its emergence as the new platform for understanding all aspects of risk in today's organization Shows you how an effective risk management program, following COSO ERM, can help your organization to better comply with the Sarbanes-Oxley Act Knowledgeably explains how to implement an effective ERM program COSO Enterprise Risk Management is the invaluable working resource that will show you how to identify risks, avoid pitfalls within your corporation, and keep it moving ahead of the competition.




Enterprise Risk Management


Book Description

Essential insights on the various aspects of enterprise risk management If you want to understand enterprise risk management from some of the leading academics and practitioners of this exciting new methodology, Enterprise Risk Management is the book for you. Through in-depth insights into what practitioners of this evolving business practice are actually doing as well as anticipating what needs to be taught on the topic, John Fraser and Betty Simkins have sought out the leading experts in this field to clearly explain what enterprise risk management is and how you can teach, learn, and implement these leading practices within the context of your business activities. In this book, the authors take a broad view of ERM, or what is called a holistic approach to ERM. Enterprise Risk Management introduces you to the wide range of concepts and techniques for managing risk in a holistic way that correctly identifies risks and prioritizes the appropriate responses. This invaluable guide offers a broad overview of the different types of techniques: the role of the board, risk tolerances, risk profiles, risk workshops, and allocation of resources, while focusing on the principles that determine business success. This comprehensive resource also provides a thorough introduction to enterprise risk management as it relates to credit, market, and operational risk, as well as the evolving requirements of the rating agencies and their importance to the overall risk management in a corporate setting. Filled with helpful tables and charts, Enterprise Risk Management offers a wealth of knowledge on the drivers, the techniques, the benefits, as well as the pitfalls to avoid, in successfully implementing enterprise risk management. Discusses the history of risk management and more recently developed enterprise risk management practices and how you can prudently implement these techniques within the context of your underlying business activities Provides coverage of topics such as the role of the chief risk officer, the use of anonymous voting technology, and risk indicators and their role in risk management Explores the culture and practices of enterprise risk management without getting bogged down by the mathematics surrounding the more conventional approaches to financial risk management This informative guide will help you unlock the incredible potential of enterprise risk management, which has been described as a proxy for good management.




Enterprise Risk Management


Book Description

A fully revised second edition focused on the best practices of enterprise risk management Since the first edition of Enterprise Risk Management: From Incentives to Controls was published a decade ago, much has changed in the worlds of business and finance. That's why James Lam has returned with a new edition of this essential guide. Written to reflect today's dynamic market conditions, the Second Edition of Enterprise Risk Management: From Incentives to Controls clearly puts this discipline in perspective. Engaging and informative, it skillfully examines both the art as well as the science of effective enterprise risk management practices. Along the way, it addresses the key concepts, processes, and tools underlying risk management, and lays out clear strategies to manage what is often a highly complex issue. Offers in-depth insights, practical advice, and real-world case studies that explore the various aspects of ERM Based on risk management expert James Lam's thirty years of experience in this field Discusses how a company should strive for balance between risk and return Failure to properly manage risk continues to plague corporations around the world. Don't let it hurt your organization. Pick up the Second Edition of Enterprise Risk Management: From Incentives to Controls and learn how to meet the enterprise-wide risk management challenge head on, and succeed.




Risk Management and Corporate Governance


Book Description

This sixth peer review of the OECD Principles of Corporate Governance analyses the corporate governance framework and practices relating to corporate risk management, in the private sector and in state-owned enterprises. The review covers 26 jurisdictions and is based on a general survey of all participating jurisdictions in December 2012, as well as an in-depth review of corporate risk management in Norway, Singapore and Switzerland. The report finds that while risk-taking is a fundamental driving force in business and entrepreneurship, the cost of risk management failures is often underestimated, both externally and internally, including the cost in terms of management time needed to rectify the situation. The reports thus concludes that corporate governance should ensure that risks are understood, managed, and, when appropriate, communicated.




Implementing Enterprise Risk Management


Book Description

A practical, real-world guide for implementing enterprise risk management (ERM) programs into your organization Enterprise risk management (ERM) is a complex yet critical issue that all companies must deal with in the twenty-first century. Failure to properly manage risk continues to plague corporations around the world. ERM empowers risk professionals to balance risks with rewards and balance people with processes. But to master the numerous aspects of enterprise risk management, you must integrate it into the culture and operations of the business. No one knows this better than risk management expert James Lam, and now, with Implementing Enterprise Risk Management: From Methods to Applications, he distills more than thirty years' worth of experience in the field to give risk professionals a clear understanding of how to implement an enterprise risk management program for every business. Offers valuable insights on solving real-world business problems using ERM Effectively addresses how to develop specific ERM tools Contains a significant number of case studies to help with practical implementation of an ERM program While Enterprise Risk Management: From Incentives to Controls, Second Edition focuses on the "what" of ERM, Implementing Enterprise Risk Management: From Methods to Applications will help you focus on the "how." Together, these two resources can help you meet the enterprise-wide risk management challenge head on—and succeed.




Corporate Value of Enterprise Risk Management


Book Description

The ultimate guide to maximizing shareholder value through ERM The first book to introduce an emerging approach synthesizing ERM and value-based management, Corporate Value of Enterprise Risk Management clarifies ERM as a strategic business management approach that enhances strategic planning and other decision-making processes. A hot topic in the wake of a series of corporate scandals as well as the financial crisis Looks at ERM as a way to deliver on the promise of balancing risk and return A practical guide for corporate Chief Risk Officers (CROs) and other business professionals seeking to successfully implement ERM ERM is here to stay. Sharing his unique insights and experiences as a recognized global thought leader in this field, author Sim Segal offers world-class guidance on how your business can successfully implement ERM to protect and increase shareholder value.




The Standard for Risk Management in Portfolios, Programs, and Projects


Book Description

This is an update and expansion upon PMI's popular reference, The Practice Standard for Project Risk Management. Risk Management addresses the fact that certain events or conditions may occur with impacts on project, program, and portfolio objectives. This standard will: identify the core principles for risk management; describe the fundamentals of risk management and the environment within which it is carried out; define the risk management life cycle; and apply risk management principles to the portfolio, program, and project domains within the context of an enterprise risk management approach It is primarily written for portfolio, program, and project managers, but is a useful tool for leaders and business consumers of risk management, and other stakeholders.




The Risk Management of Everything


Book Description

The report describes the development of a new risk management culture within professions, companies and governments. The obsession with managing risk is creating organisations which are not so much risk averse as ‘responsibility averse’. In medicine, doctors are practising ‘defensive medicine’ where opinions are heavily qualified with caveats and patients left to make big decisions. The report also refers to growing evidence that since Enron’s failure, major accountancy firms are declining to work with ‘high risk’ clients - the very ones that should be thoroughly audited. “When disclaimer paragraphs are longer than the professional opinions they follow, we know something has gone wrong,” says author Professor Michael Power, a director of the ESRC Centre for Analysis of Risk and Regulation at the London School of Economics. “In the interests of transparency, small print should be made large and ruled out as a secondary risk management ploy. “The trends in professions such as medicine and auditing signal a withdrawal of individual judgement from the public. Minimal records are kept, staff are cautioned about the use of email, and normal correspondence is littered with disclaimers. The risk management of everything implies a society of ‘small print’.” Power sees the rise of the ‘risk management of everything’ as a related trend to the audit culture, which included the government’s now widely criticised love of targets as a policy tool. The Audit Explosion, Power’s previous Demos pamphlet, predicted that the overuse of audit leads to a focus on measurable outputs rather than real outcomes. “The most influential dimension of the audit explosion is the process by which [organisations] are made auditable and structured to conform to the need to be monitored,” Power wrote in 1994. Power’s new book argues that risk management is the ‘new audit’ and is having a similar distorting effect on the performance of professionals, companies and government.