exploring the maturity of risk exploring the maturity of
play

Exploring the Maturity of Risk Exploring the Maturity of Risk - PowerPoint PPT Presentation

Nov 14, 2022 •275 likes •592 views

Exploring the Maturity of Risk Exploring the Maturity of Risk Management Process in Government: Management Process in Government: An Integrated ERM Model at the An Integrated ERM Model at the U.S. Department of Education U.S. Department of

  1. Exploring the Maturity of Risk Exploring the Maturity of Risk Management Process in Government: Management Process in Government: An Integrated ERM Model at the An Integrated ERM Model at the U.S. Department of Education U.S. Department of Education FEDERAL STUDENT AID ENTERPRISE RISK MANAGEMENT GROUP Cynthia Vitters

  2. 1. ERM in the Federal Government 2. Drivers for Risk Management in Government 3. Risk Management in Federal Agencies 4. FSA – A Performance Based Organization 5. ERM Drivers at FSA 6. FSA’s ERM Organization 7. FSA’s ERM Program & Strategy 8. Current State of FSA ERM Program 9. Next Steps 10. Lessons Learned/Strategies to Consider Slide 1

  3. • “ Risk Management “ is not a new concept within federal government Need to integrate RM into strategic and • decision making process • Need to abandon outdated practices of managing risks in solos and stovepipes • Few success stories, best practices, and a standard methodology in and across the federal sector • Problems aren’t unique to federal sector Slide 1

  4. New Legislation & Regulations Requiring Better Management of Risk & Improved Controls • American Recovery & Reinvestment Act • Revised OMB Circular A-123 Federal Managers’ Financial Integrity Act • (FMFIA) of 1982 Improper Payments Information Act of 2002 • • Federal Information Security Management Act (FISMA) of 2002 Slide 1

  5. • Health Risk - Food and Drug Administration, Center for Disease Control Security Risks - Department of Defense, • Homeland Security • Financial Risks – Government National Mortgage Association, Securities and Exchange Commission • Transportation and Safety Risks – National Transportation Safety Board • External Risks – United States Postal Service Slide 1

  6. An Integrated ERM Model at the An Integrated ERM Model at the U.S. Department of Education U.S. Department of Education Office of Federal Student Aid Office of Federal Student Aid

  7. Federal Student Aid (FSA) is the largest • program office in the U.S. Department of Education (ED) • Administers programs that provide the nations largest source of student aid • Responsible for administration and oversight of Federal financial aid programs (Pell Grants, Stafford Loans, PLUS Loans and “Campus- Based” programs) Has approximately 1,000 employees • (augmented by 6,000 contractors) across the county at its headquarters in Washington, D.C, and at 10 regional offices throughout the U.S. Slide 2

  8. Annual budget of approximately $690 million in • FY’09 Administers approximately $100 billion of • financial aid a year to college students • Directly manages or oversees more than $575 billion in outstanding loans representing almost 95 million student loans to more than 30 million borrowers • Is led by the Chief Operating Officer who is appointed by the Secretary of Education Slide 3

  9. In 1998, Congress established Federal Student • Aid as the first Performance-Based Organization (or PBO) in the Federal Government • As a PBO, FSA operates under a congressional mandate to achieve concrete results while improving performance FSA is required to plan and report its • operational and portfolio performance in administering the federal student financial assistance programs Slide 4

  10. GAO ‘High Risk List’ Designation • Regulatory and reporting requirements (e.g., • A-123, Improper Payments Act, President’s Management Agenda, etc.) • Increasing external threats (i.e., terrorism, pandemics, natural disasters, privacy and/or data security breaches, etc.) Desire to reduce Fraud, Waste, and Abuse • More proactive approach to addressing risk • • Desire for improved risk management information across the organization Slide 5

  11. • Includes the Enterprise Risk Management Group (ERMG) and ERM Committee • The ERMG was formally established in May 2006 and is headed by FSA’s Chief Risk Officer (CRO) • The CRO reports to the General Manager of Enterprise Performance Management Services (EPMS) with a ‘dotted line’ to FSA’s Chief Operating Officer • FSA’s ERM Committee is comprised of five executives: Chief Financial Officer, Chief Information Officer, Chief Business Operations Officer, Chief of Staff to the COO, and the CRO Slide 7

  12. Chief Operating Officer Enterprise Performance Management Services Enterprise Risk Management Group Chief Risk Officer Risk Analysis & Reporting Division Internal Review Division Risk Analysis Data Analysis Internal Review Audit Liaison Slide 9

  13. The Enterprise Risk Management Group (ERMG): • Provides risk management oversight & guidance to Federal Student Aid • Is responsible for driving enterprise risk strategy and implementing FSA’s ERM Program • Performs internal reviews and risk assessments • Is organized into two main areas: � Risk Analysis & Reporting Division � Internal Review Division Slide 10

  14. Vision “To create the premier Enterprise Risk Management Program in the Federal government. One that provides for an integrated view of risk across the entire Federal Student Aid organization; aligns strategic risks with the organization’s goals and objectives; ensures that risk issues are integrated into strategic decision making process; and manages risk to further the achievement of performance goals.” Slide 11

  15. Mission “To enhance the ability of Federal Student Aid to identify, assess and manage risk across the enterprise” Slide 12

  16. • Strategy Involves “Top Down” and “Bottom Up” Approaches • ERM Program is multi-phased effort Implementing a COSO-Based ERM framework • Current Timeline & Project Plan • • Contractor assistance Slide 13

  17. “Top Down” Approach = High Level Risk Assessment (Targeted effort to identify & assess high-level, or strategic risks at Federal Student Aid) “Bottom Up” Approach = Detailed Risk Assessment Activities (Comprehensive effort to identify & assess risks across the organization’s 28 business units) Slide 14

  18. PHASE I Creation of ERM Organization • • Development of Strategic Plan for ERM Program • Adoption of Common Risk Language and Categories High-Level Risk Assessment • PHASE II Adoption of COSO-Based ERM Framework • Development of Risk Assessment Methodology • Implementation of Risk Technology Solutions • • Conduct of Initial COSO-Based Risk Activities Slide 15

  19. PHASE III • Completion of Initial COSO Framework activities • Use of Risk Tracking System to develop ERM reports for executive management Development of Key Risk Indicators (KRI’s), • trending reports and other means of risk monitoring Methodology, planning and completion of • remaining framework activities: Risk Response, Control, Information, Communication, and Monitoring Slide 16

  20. COSO ERM – Integrated Framework The COSO ERM CUBE Slide 17

  21. • FSA’s ERM Framework is based on the ERM framework issued by Committee of Sponsoring Organizations of the Treadway Commission (COSO) in September 2004 • The COSO ERM – Integrated Framework consists of eight interrelated components and four objective categories applied across an entity’s units • The COSO Framework was developed with a focus on stockholder owned, for profit institutions • FSA is conducting activities based on the COSO framework, but utilizing additional practices, measures and approaches to maximize value in a government, PBO setting • FSA’s ERM Framework also includes consideration of concepts and/or guidance from other Risk Management Frameworks (e.g., ISO 31000 and AZ/NZ 4360) Slide 18

  22. • Creation and staffing of ERMG Organization • Development of ERM Strategy and Program • Adoption of COSO-Based ERM Framework • Development of risk tools & resources (e.g., common risk vocabulary, categories and definitions) • Development & implementation of Risk Tracking System (RTS) • Conduct of High-Level (Strategic) Risk Assessments Slide 19

  23. Risk Activities complete in over half of FSA’s • business units Over 600 business unit risks inventoried and • assessed • Associated risk information entered into Risk Tracking System Development of Enterprise and Strategic Level • Risk Reporting Slide 20

  24. FSA (Source: U.S. Postal Office) Slide 21

  25. Documentation of Business Unit objectives • Facilitated Risk Discussions • • Risk identification and categorization Cross-walk risks with A-123 and project risks • Risk Ratings (Significance & Likelihood) and • Aggregate Risk Scoring Heat Map • • Summary Report Slide 22

  26. Risk Identification, Categorization & Scoring Slide 23

  27. Heat Map 5 16 10 4 1 Aggregate Risk Scores 11 12 Critical (>10) - Likelihood 17 5 6 20 18 High (9 - 10) - 2 3 28 19 21 22 7 8 Medium (7.0 - 8.5) - 26 13 3 Moderate (5 - 6.5) - 29 2 27 14 15 4 Low (1 - 4.5) - 23 9 1 24 25 1 2 3 4 5 Significance Slide 24

  28. • ERM fully integrated into strategic planning and decision-making process All major risk types for FSA incorporated • into ERM Program (i.e., business unit, project, program, and portfolio risks) Advanced risk monitoring, modeling, and • trending capabilities • Executive-level and comprehensive risk management organization • Key risk functions fall under ERM umbrella Slide 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

KLU Building a Maturity Model A Maturity Model WHAT ARE MATURITY MODELS? Maturity means

KLU Building a Maturity Model A Maturity Model WHAT ARE MATURITY MODELS? Maturity means

KLU Building a Maturity Model A Maturity Model WHAT ARE MATURITY MODELS? Maturity means ripeness and describes the transition from an initial to a more advanced state of a process, project, etc. Maturity Models reflect the degree to

399 views • 26 slides
ERM Practices, Risk Quantification and Risk Maturity FEI NE Wisconsin Chapter Meeting April 18,

ERM Practices, Risk Quantification and Risk Maturity FEI NE Wisconsin Chapter Meeting April 18,

ERM Practices, Risk Quantification and Risk Maturity FEI NE Wisconsin Chapter Meeting April 18, 2018 Prepared by Aon Risk Solutions Global Risk Consulting | Risk Advisory Services Enterprise Risk Management Defined Defining Enterprise Risk

745 views • 35 slides
Banking on Deposits: Maturity Transformation without Interest Rate Risk Itamar Drechsler 1 Alexi

Banking on Deposits: Maturity Transformation without Interest Rate Risk Itamar Drechsler 1 Alexi

Banking on Deposits: Maturity Transformation without Interest Rate Risk Itamar Drechsler 1 Alexi Savov 2 Philipp Schnabl 2 1 Wharton and NBER 2 NYU Stern and NBER October 15, 2020 Textbook View of Banking and Maturity Transformation 1. Banks

416 views • 29 slides
Use of Concrete Maturity For Use of Concrete Maturity For Measuring In-Place Strength of

Use of Concrete Maturity For Use of Concrete Maturity For Measuring In-Place Strength of

Use of Concrete Maturity For Use of Concrete Maturity For Measuring In-Place Strength of Measuring In-Place Strength of Concrete Concrete Prasad Rangaraju, Ph.D., P.E. Assistant Professor Department of Civil Engineering Clemson University

1.08k views • 63 slides
ICH and IT-AAC FITARA Roadmap for Sustainable IT Reform A decision analytics maturity model for

ICH and IT-AAC FITARA Roadmap for Sustainable IT Reform A decision analytics maturity model for

ICH and IT-AAC FITARA Roadmap for Sustainable IT Reform A decision analytics maturity model for measuring business value and risk of commercial IT 1 ICH and IT-AAC Public/Private Partnership Used on the Risk Assessment Best Practices, Design

410 views • 23 slides
Maturity of Interest-only Mortgages (MIOM) C3 & C4 lenders thematic project overview Council

Maturity of Interest-only Mortgages (MIOM) C3 & C4 lenders thematic project overview Council

Maturity of Interest-only Mortgages (MIOM) C3 & C4 lenders thematic project overview Council of Mortgage Lenders Interest-only Working Group 7 October 2014 Darcy Tallon & John Hindle 1 Experians analysis IO by maturity date 2

570 views • 9 slides
FROM ANALYTICS TO DATA SCIENCE How to build your data maturity on Google Cloud Platform AGENDA

FROM ANALYTICS TO DATA SCIENCE How to build your data maturity on Google Cloud Platform AGENDA

ANTTI ERONEN | @AEVARR | APRIL 17, 2018 FROM ANALYTICS TO DATA SCIENCE How to build your data maturity on Google Cloud Platform AGENDA 1 2 3 DATA MATURITY MODEL BUSINESS CASE EXAMPLES ARCHITECTURE Characteristics of each What did we do?

654 views • 22 slides
WEBINAR: Solving the Process Maturity Challenge Presented by David Consulting Group (DCG) and

WEBINAR: Solving the Process Maturity Challenge Presented by David Consulting Group (DCG) and

WEBINAR: Solving the Process Maturity Challenge Presented by David Consulting Group (DCG) and MKS, Inc. Establishing Effective Measurements in Support of the SEI CMMI 1 Terms CMMI Capability Maturity Model Integration Set of

457 views • 28 slides
Taking account of maturity: assessment and good practice European alternatives to custody

Taking account of maturity: assessment and good practice European alternatives to custody

Taking account of maturity: assessment and good practice European alternatives to custody workshop. By Amy Hall Equality Officer What we will look at Introduction to maturity What the evidence tell us Best practice for staff and

384 views • 24 slides
A Comparative Advantage Approach to Government Debt Maturity Robin Greenwood Sam Hanson Jeremy

A Comparative Advantage Approach to Government Debt Maturity Robin Greenwood Sam Hanson Jeremy

A Comparative Advantage Approach to Government Debt Maturity Robin Greenwood Sam Hanson Jeremy C. Stein Introduction I How should the govt. manage the maturity structure of its debt? I Tax-smoothing (Barro 79; Lucas and Stokey 83; Bohn

573 views • 34 slides
Organizing for Innovation Excellence Introduction to an International Innovation Maturity Model

Organizing for Innovation Excellence Introduction to an International Innovation Maturity Model

Organizing for Innovation Excellence Introduction to an International Innovation Maturity Model Product Development and Management Association 1 Why should organizations implement an Innovation Maturity Model? Commoditization is

428 views • 25 slides
Traffic Incident Management Capability Maturity Self-Assessment 2018 Results 1 TIM Capability

Traffic Incident Management Capability Maturity Self-Assessment 2018 Results 1 TIM Capability

Traffic Incident Management Capability Maturity Self-Assessment 2018 Results 1 TIM Capability Maturity Self-Assessment Originally developed by FHWA in 2002 as a way to assess current state-of-practice in TIM and for local/regional/state

560 views • 20 slides
Adverse Selection on Maturity: Evidence from Online Consumer Credit Andrew Hertzberg (Columbia)

Adverse Selection on Maturity: Evidence from Online Consumer Credit Andrew Hertzberg (Columbia)

Adverse Selection on Maturity: Evidence from Online Consumer Credit Andrew Hertzberg (Columbia) with Andrs Liberman (NYU) and Daniel Paravisini (LSE) December 2016 Fixed rate loans: what does maturity really mean? Example: $13,000 fixed

578 views • 39 slides
Spiritual Maturity: Be Filled with the Spirit Bruce Baker, Pastor Washington County Bible

Spiritual Maturity: Be Filled with the Spirit Bruce Baker, Pastor Washington County Bible

Spiritual Maturity: Be Filled with the Spirit Bruce Baker, Pastor Washington County Bible Church Definition of Spiritual Maturity The spiritually mature are those who, through the power of the Holy Spirit , (1) understand Gods Word well

532 views • 29 slides
Purpose of Testing Beizer s testing levels on test process maturity There

Purpose of Testing Beizer s testing levels on test process maturity There

Purpose of Testing Beizer s testing levels on test process maturity There are four levels of maturity Fundamental differences In viewpoint Effect on the individual Effect on the organization

823 views • 43 slides
Central Banks Balde alpha mamoudou 22/05/2019 Agenda Degree of maturity of African financial

Central Banks Balde alpha mamoudou 22/05/2019 Agenda Degree of maturity of African financial

Focus on the Risk management of African Central Banks Balde alpha mamoudou 22/05/2019 Agenda Degree of maturity of African financial markets Focus on the Risk management of Trade banks default payments risk credit challenges of central

254 views • 21 slides
CTSA Program Steering Committee January 14, 2019 2:30 4:00 ET Agenda 2:30 Welcome Barry

CTSA Program Steering Committee January 14, 2019 2:30 4:00 ET Agenda 2:30 Welcome Barry

CTSA Program Steering Committee January 14, 2019 2:30 4:00 ET Agenda 2:30 Welcome Barry Coller, Christopher Austin 2:35 2:45 Introduction of New Roles and New SC Members! Names as Stated Barry Coller as new SC Co-Chair

734 views • 44 slides
The Open IoT Stack: Architecture and Use Cases James Kirkland Chief IoT Architect, Red Hat

The Open IoT Stack: Architecture and Use Cases James Kirkland Chief IoT Architect, Red Hat

The Open IoT Stack: Architecture and Use Cases James Kirkland Chief IoT Architect, Red Hat Marco Carrer CTO, Eurotech 1 TODAYS IoT CHALLENGES Lack of Open Standards Vendor Lock-in Fragmentation Avoid being locked in by a single

644 views • 28 slides
Managing Superfund Field Data Joe Schaefer Environmental Response Team 24 th NARPM Training

Managing Superfund Field Data Joe Schaefer Environmental Response Team 24 th NARPM Training

Managing Superfund Field Data Joe Schaefer Environmental Response Team 24 th NARPM Training Program Objective: Improve the Information Currency of Superfund u Translate the work that happens on your site to readily accessible information u Move

992 views • 55 slides
The Future of Banking April 26, 2018 How to Utilize ERM to Invoke a Positive Change Within Your

The Future of Banking April 26, 2018 How to Utilize ERM to Invoke a Positive Change Within Your

WELCOME The Future of Banking April 26, 2018 How to Utilize ERM to Invoke a Positive Change Within Your Institution Steven Bank and Jessica Miller April 26, 2018 1 Agenda Current Risk Landscape Key Risk Areas for Financial

795 views • 45 slides
Inner Sourcing Enterprise Lessons Learned from the Open Source Community Jim Jagielski @jimjag

Inner Sourcing Enterprise Lessons Learned from the Open Source Community Jim Jagielski @jimjag

Inner Sourcing Enterprise Lessons Learned from the Open Source Community Jim Jagielski @jimjag About Me Apache Software Foundation Co-founder, Director, Member and Developer Director Outercurve, MARSEC-XL, OSSI, OSI (ex)

1.62k views • 38 slides
23. Ente terprise Java Beans sehr vereinfachten Lect ecturer: Dr. Sebastian Gtz 1. Basics

23. Ente terprise Java Beans sehr vereinfachten Lect ecturer: Dr. Sebastian Gtz 1. Basics

Fakultt Informatik - Institut Software- und Multimediatechnik - Softwaretechnologie Prof. Amann - CBSE 23. Ente terprise Java Beans sehr vereinfachten Lect ecturer: Dr. Sebastian Gtz 1. Basics Prof. Dr. Uwe Amann 2. Parts of the

1.08k views • 60 slides
Oracle Developer Day Agenda 9.00 am 9.00 am SOA & The Agile Enterprise SOA & The Agile

Oracle Developer Day Agenda 9.00 am 9.00 am SOA & The Agile Enterprise SOA & The Agile

Oracle Developer Day Agenda 9.00 am 9.00 am SOA & The Agile Enterprise SOA & The Agile Enterprise SOA & The Agile Enterprise Developing Enterprise JavaBeans Developing Enterprise JavaBeans EJB 3.0 EJB 3.0 9:55 am 9:55 am

446 views • 15 slides
Intro to Java Week 7 Tuesday, December 9, 14 Homeworks 5 6 Tuesday, December 9, 14 JUnit

Intro to Java Week 7 Tuesday, December 9, 14 Homeworks 5 6 Tuesday, December 9, 14 JUnit

Intro to Java Week 7 Tuesday, December 9, 14 Homeworks 5 6 Tuesday, December 9, 14 JUnit Hugely popular unit test framework Simple, easy to use Eclipse integration Right click on source file, click on JUnit Test Case next,

544 views • 39 slides

More recommend