Enterprise Risk Management Seminar Presenters Marcus Harwood - - PowerPoint PPT Presentation

enterprise risk management seminar presenters
SMART_READER_LITE
LIVE PREVIEW

Enterprise Risk Management Seminar Presenters Marcus Harwood - - PowerPoint PPT Presentation

Jan 20, 2023 340 likes •557 views

Enterprise Risk Management Seminar Presenters Marcus Harwood Christine DiMenna Partner Principal blumshapiro blumshapiro cdimenna@blumshapiro.com mharwood@blumshapiro.com 860.570.6439 860.570.6474 2 Agenda Discuss recent ERM trends

slide-1
SLIDE 1

Enterprise Risk Management Seminar

slide-2
SLIDE 2

2

Presenters

860.570.6439 cdimenna@blumshapiro.com

Marcus Harwood Partner blumshapiro

860.570.6474 mharwood@blumshapiro.com

Christine DiMenna Principal blumshapiro

slide-3
SLIDE 3

» Discuss recent ERM trends with boards and executives » Learn about a four-step ERM methodology » Explore how you can create your own ERM process » Discover how ERM can be used to explore and create exciting possibilities

Agenda

3

slide-4
SLIDE 4

» What is ERM?

‒ Important strategic tool that helps Management and the Board of Trustees evaluate risks that might impact the organization’s long-term strategic success ‒ Business strategy and process that helps to identify, assess and prepare for issues that may interfere with an organization’s overall operations

4

Enterprise Risk Management (ERM)

slide-5
SLIDE 5

» What is the goal?

‒ Identify and prioritize the core risks (internal/external) to the organization and create a set of tasks/activities to minimize the effects of those risks

5

Enterprise Risk Management (ERM)

slide-6
SLIDE 6

Recent Trends

6

» Ownership of ERM is changing » Organizations are realizing the value » Boards are recognizing ERM as a best practice » ERM is being integrated with other business processes » Alignment with strategic plan » Increasing collaboration

slide-7
SLIDE 7

7

blumshapiro’s Four Step Methodology

Phase I Risk Governance Structure Phase II Risk Identification & Prioritization Phase III Risk Mitigation & Testing Phase IV Risk Monitoring & Tracking Reevaluate Risks & Prioritizations

» Confirm ERM steering committee » Confirm governance structure/approach » Develop/confirm risk management policy and standards » Develop/confirm communication policy and standards » Develop/confirm ERM process and approach » Identify/confirm core ERM categories » Identify risk owners to interview » Initiate focus group/individual interviews with risk owners » Send risk surveys to risk

  • wners

» Develop/confirm ERM risks by category » ERM steering committee prioritizes risk » Final review/approval of risk matrix » Identify/confirm risk mitigation strategies for high/medium risks » Assess design effectiveness

  • f risk mitigation plans

» Test operating effectiveness

  • f risk mitigation plans

» Review results with ERM steering committee » Ongoing monitoring of due dates of risk mitigation tasks » Ongoing monitoring of emerging risks » Develop quarterly reports of risk mitigation results

slide-8
SLIDE 8

8

Phase I: Risk Governance Structure

Confirm ERM Management Team Confirm Governance Structure & Approach Develop/Confirm Risk Management Policy Standards Confirm Communication Standards/Policy

Deliverables

» List of ERM steering committee members (name, position, email, phone number) » Documented governance structure and approach used by ERM steering committee » Documented risk management policy standards » Document communication policy standards » Document ERM process and approach Develop/Confirm ERM Process & Approach

Facilitated Meetings

slide-9
SLIDE 9

9

Phase II: Risk Identification & Prioritization

Identify/Confirm Core ERM categories Identify Risk Owners to Interview Initiate Focus Group/Individual Interviews with Risk Owners Send Risk Surveys to Risk Owners Develop/Confirm ERM Risks by Category ERM Steering Committee Prioritizes Risk Final Review/Approval

  • f Risk Matrix

Phase IV: Emerging Risks

slide-10
SLIDE 10

Phase II Deliverables

10

» List of ERM categories » List of risk owners to interview » Memorandum to risk owners apprising them of the goals/objectives of the ERM project » Risk survey based on interviews (to be determined) » List of ERM risks, prioritized by category (risk matrix/register) » Risk heat map » Steering committee sign-off of prioritized ERM risks

slide-11
SLIDE 11

EXECUTIVE SUMMARY

Example

slide-12
SLIDE 12

Enterprise Risk Management (ERM) is the discipline by which an organization in any industry assesses, controls, exploits, finances, and monitors risks from all sources. ERM helps to address the needs of management and Boards, who want to understand the broad spectrum of risks facing complex organizations to ensure they are appropriately managed.

Loss of Trust

  • The Community

trusts the Organization

Adverse Event

  • Negative events can

impact the perception of the Organization

Philanthropy

  • The region expects

lasting philanthropic solutions

Outcomes

  • Organization needs

to create innovative community

  • utcomes

All Risks Impact the Organization’s Reputation

12

Organization ERM Project Facts

» 12 individual or department interviews were held, including key team members » 47 risks were identified » The leadership team met and rated risks online » Risks were rated based on impact and probability » Final risk ratings reviewed to ensure consistency » Heat map developed; risks clustered to center right half

ERM Overview

slide-13
SLIDE 13

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 1 0.5 1 1.5 2 2.5 3 3.5 4 4.5 5 0.5 1 1.5 2 2.5 3 3.5 4 4.5 5

Probability/Likelyhood Impact

Organization ERM Risk Assessment

13

Heat Map

slide-14
SLIDE 14

Top Risks by Combined Risk Ratings

Based on the ERM project, the following risks have been identified as most critical to the

  • Organization. The Leadership Team will identify which risks to remediate first and assign
  • wnership responsibilities to key people within the organization to help create remediation

strategies.

Reputational Risk Continuum

Risk RankingRisk Description Impact Probability Combined Risk Rating 1. 4.29 4.86 20.85 2. 4.57 4.43 20.25 3. 4.43 4.57 20.25 4. 4.29 4.43 19.00 5. 4.43 4.29 19.00 6. 4.57 4 18.28 7. 4.43 4 17.72 8. 4.57 3.86 17.64 9. 4.14 4.14 17.14 10. 4.71 3.57 16.81

14

ERM Briefing

slide-15
SLIDE 15

15

Phase III: Risk Mitigation & Testing

Identify/Confirm Risks Mitigation Strategies for High/Medium Risk Assess Design Effectiveness of Risk Mitigation Plans Test Operating Effectiveness of Risk Mitigation Plans Review Results with ERM Steering Committee

Deliverables » Risk mitigation work plans » Testing results and observations document(s)

slide-16
SLIDE 16

16

Phase IV: Risk Monitoring & Tracking

Ongoing Monitoring of Due Dates of Risk Mitigation Tasks Ongoing Monitoring of Emerging Risks Review Risk Results Quarterly with Steering Committee

Deliverables » Updated risk matrix/register document » Quarterly risk results document Phase II Review

slide-17
SLIDE 17

» Demonstrating the benefit of ERM » Defining risk » Establishing ownership » Determining the appropriate approach » Identifying and quantifying risks

17

Challenges

slide-18
SLIDE 18

» Prioritizing risks » Developing mitigation plans » Follow through of risk mitigation plans » Risk reporting » Keeping ERM alive

18

Challenges

slide-19
SLIDE 19

Other ERM Outcomes

19

» Risk mitigation plans can expose previously unidentified risks and/or

  • pportunities

‒ Information technology ‒ Human resources ‒ Data and analytics

slide-20
SLIDE 20

Q&A

slide-21
SLIDE 21

THANK YOU