SlideShare une entreprise Scribd logo

The Role of Risk Appetite in embedding the ORSA and linking with Business Strategy November 2015

S
Susan Young

The document discusses embedding an organization's Own Risk and Solvency Assessment (ORSA) and linking it to business strategy and risk appetite. It covers defining risk limits, articulating risk appetite statements, embedding risk appetite throughout the organization, and linking risk appetite to the ORSA process. The ORSA helps ensure risk appetite remains aligned with business plans and strategies and is a key component of an effective risk management system.

1  sur  18
Télécharger pour lire hors ligne
STRATEGY I INNOVATION I EXPERTISEPRIVATE & CONFIDENTIAL | WWW.RQIH.COM | EMBEDDING THE ORSA AND LINKING IT WITH BUSINESS STRATEGY THE ROLE OF RISK APPETITE 23RD NOVEMBER 2015 1 Susan Young Chief Risk Officer Randall & Quilter Investment Holdings Ltd.
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 2 DISCLAIMER The thoughts and opinions expressed in this presentation are my own and do not necessarily represent those of my organisation.
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 3 SESSION OUTLINE • Defining your Risk Limits • Effectively articulating your Risk Appetite • Embedding Risk Appetite throughout the Organisation • Linking Risk Appetite and the ORSA The whole process is a journey which never ends –nor should it……..
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | Back to basis – Terminology • Risk Appetite is defined as the level of risk acceptable to an organisation. • There are two elements to this;- - Capacity/Tolerance – to what extent is the organisation able to bear risk? - Appetite – to what extent is the organisation prepared to bear risk? • Risk Appetite applies to Risk categories where taking risk will potentially yield a return, namely Insurance Risk , Financial Market Risk and Strategic Risk. • Risk Tolerance applies to the other Risk categories, i.e. where taking risk will yield no return, namely Operational Risk, Credit Risk, Liquidity Risk, Regulatory Risk) 4 DEFINING RISK LIMITS (1) It is important to make the distinction – the terms are often used interchangeably
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 5 DEFINING RISK LIMITS (2) Benefits of formally defining an organisation’s Risk Appetite • Balanced approach to risk taking- avoidance of both uncontrolled innovation and excessive caution. • Framework, when properly designed and implemented, can guide the business on the level of risk permitted and encourage consistency of approach across an organisation. • Resource allocation - a defined acceptable levels of risk also means that resources are not spent on further reducing risks that are already at an acceptable level. • Proper MI (in the form of Key Risk Indicators) provides management with a framework for decision making. A Risk Appetite Framework is an important element of a mature Risk Management System
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 6 DEFINING RISK LIMITS (3) Some General Comments and Observations • Risk Appetite of capital providers is relevant and management of expectations is key. • The Board will in practice normally approve the overall Risk Appetite Framework on behalf of key stakeholders and the monitoring of adherence thereof. • The Risk Appetite Framework should be adaptable and flexible commensurate with the complexity of the business, recognising that “one size won’t necessarily fit all”. • Individual subsidiary level appetites and tolerances may well be agreed at a different level from the overall Group appetites/tolerances subject to the aggregate risk profile remaining within overall Group Appetite/Tolerance. • The framework and supporting metrics should be intuitive and easy to comprehend. Key is to start simple and add complexity as you go – if you can.
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 7 EFFECTIVELY ARTICULATING YOUR RISK APPETITE (1) • Risk Appetite is linked to the strategic and business objectives of the organisation as those are the parameters within which we manage risk. • Overall Risk Appetite is often represented by a high level strategic statement, and each material Risk Category is also represented by one or more risk category-related statements. • Adherence to each statement is measured and monitored by Key Risk Indicators (KRIs). Continued…. So how is it done?
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 8 EFFECTIVELY ARTICULATING YOUR RISK APPETITE (2) Risk Appetite Framework Suggested Components • Context –Significance of the risk category/potential impact on earnings/capital/ profitability etc., for example, underwriting risk would, in a risk bearing entity, attract significant scope and depth in terms of the risk monitoring framework. • Risk Appetite/Tolerance Statement – A qualitative statement of the organisation’s overall appetite for a given category of risk. • Approach: A description of the overall approach to managing the specific area of risk together with, where appropriate, consideration of any relevant factors when setting local appetite and tolerances (e.g. local capital or regulatory considerations). • Key Risk Indicator metric – Red/Amber/Green criteria. • KRI Owner and Frequency –Board/Executive/Frequency as appropriate. • Escalation Route – to the Board or a subcommittee? Continued….
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 9 EFFECTIVELY ARTICULATING YOUR RISK APPETITE (3) Risk Appetite Monitoring “Dashboard” - Example • “Reds” and Ambers will drive action • Greys are N/A • Reporting cuts may be taken at different times • Some metrics may take longer to evolve and develop Group Mean Return 1 Variability 2 Capital Sufficiency Return on Capital 3 Growth 4 Reserve Adequacy Exposure Management 5 Cycle Return Diversification 6 7 8 Currency Risk 9 Reinsurer Credit Broker Credit Liquidity Free Funds People Reputation Systems & Premises Regulatory Infringement 10 Entity Specifics Subsidiaries/Key Divisions CreditOperationalRegulatoryInsuranceRiskMarketStrategicObjectives
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 10 EMBEDDING RISK APPETITE THROUGHOUT THE ORGANISATION (1) • In practice – it will already in place for some elements – for example, underwriting authorities and line sizes are pre-set as part the planning process. • Data for indicators can usually be sourced from existing MI. • Reporting structure will depending on the size and complexity of the organisation - as it matures, exception reporting can evolve. • A “hierarchy” of reporting and monitoring facilitates ownership throughout the business. • If properly embedded, the framework will evolve with the business. • Keep educating! Structure and demonstrable reporting to what we are/should be doing anyway Practical Considerations
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 11 Prototype Risk Governance Structure Board of Directors All Risk Categories Underwriting and Claims Committee (Insurance Risk – Underwriting/Claims) Reserving Committee (Insurance Risk – Reserving) Investment/Finance Committee (Market/Liquidity/Credit Risk) Reinsurance /Security Committee (Credit Risks) Compliance Committee (Legal/Regulatory Risks) Operations Committee (Operational Risk) Risk Committee (Oversight) This is illustrative only and may be more/less complex in practice. The key is that detailed management and monitoring of Risk Appetite and Tolerance can be “pushed down” and reporting by exception encouraged as the process matures. EMBEDDING RISK APPETITE THROUGHOUT THE ORGANISATION (2)
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 12 EMBEDDING RISK APPETITE THROUGHOUT THE ORGANISATION (3) In summary - an ongoing process which should move and evolve with the business – which won’t be static! More later…. Understand/Define current status – what do we already have? Strategic Objectives – what are they? Stakeholder Expectations - alignment with strategy Risk Appetite and Tolerance Statements Key Risk Indicators Governance and Escalation Feedback loop: -Ongoing Monitoring -Escalation to Committee /Board Review of overall Framework
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 13 LINKING RISK APPETITE AND THE ORSA (1) Encapsulated in Article 44 of the Solvency II Framework Directive – requirement for an effective Risk Management System – comprising;- A clear, defined and documented risk management strategy that is consistent with the agent’s business strategy and includes: risk management objectives, key principles, risk appetite and assignment of risk management responsibilities across all the organisation’s activities. Written policies that implement the risk strategy and facilitate control mechanisms. They must include a definition and categorisation of the material risks faced by the agent, by type and the levels of acceptable risk limits for each risk type. These policies must reflect the nature, scope and time horizon of the business and the risks associated with it. Processes and procedures to enable identification, assessment, management, monitoring and reporting of risks the agent is, or may be, exposed to. Recognising Solvency II Continued…..
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 14 LINKING RISK APPETITE AND THE ORSA (2) •Reporting procedures and feedback loops to ensure that information on the risk management system is coordinated and challenged by the Risk Management Function and actively monitored and managed by all relevant staff and the organisation’s board. •Reports by the Risk Management Function submitted to the board, covering the material risks faced by the business and the effectiveness of its risk management system. •A suitable ORSA (Own Risk and Solvency Assessment ) process - defined as:- The entirety of the processes and procedures employed to identify, assess, monitor, manage, and report the short and long term risks a firm faces or may face and to determine the own funds necessary to ensure that overall solvency needs are met at all times. AKA – The “Shop Window” of an aligned Risk and Capital Management Framework
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 15 LINKING RISK APPETITE AND THE ORSA (3) • The ORSA is a process that has a number of potential triggers. • Practically, the annual Business Plan is the primary trigger although there are others. • A change in the Business Plan may trigger a rethink of the organisation’s Risk Appetite –or vice versa. • The ORSA (annual or otherwise) is a good opportunity to review the Business Plan/Risk Appetite and whether they are appropriately aligned. The ORSA capital assessment process entails an assessment of the Risk Appetite and Tolerance statements and whether they continue to be appropriate and/or aligned with the organisational strategy – the next slide illustrates this.
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 16 LINKING RISK APPETITE AND THE ORSA (4) ORSA Inputs and Outputs Own Risk and Solvency Assessment Outputs Capital and Liquidity Contingency Plan ORSA Report Risk Management Risk Appetite and Tolerance Changes Capital/ Liquidity Solvency Position Assessment of Capital and Liquidity Needs - Baseline Assessment of Capital and Liquidity Needs – Stressed Conditions Actions and Decisions (ORSA Inputs) Changes to Strategy and Business Plan Key Risk Indicators Economic Capital Assessment Data Quality Requirements Own Risk and Solvency Assessment Inputs Risk Universe Risk Appetite Governance Structure and Processes Stress and Scenario Testing Strategy and Planning Action and Decisions (ORSA Outputs) Internal Control Framework Internal Model Risk Management Framework Data Quality Risk Appetite is both an input to and output from the ORSA process
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 17 CONCLUDING THOUGHTS • Defining Limits – Formally setting Risk Appetite is a key component of monitoring adherence to business strategy. • Articulation - It needs proper communication throughout the organisation with all components defined so that it it is understood by all stakeholders. • Embedding - Proper embedding entails appropriate ownership and proportionate reporting as visibility and proper metrics are key – what gets measured gets monitored. • Link to ORSA - the ORSA process provides a formal mechanism for raising the profile of the Risk Appetite Framework as a key Risk Management tool and for keeping it current. Develop, Implement Live – it is a cycle of activity
STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 18 Thank you for listening! Any Questions? AND FINALLY…….. Susan.young@rqih.com DD +44 (0) 20 7780 5882 www.rqih.com

Recommandé

Aligning strategy decisions with risk appetite, presented by David Shearer, 1...
Aligning strategy decisions with risk appetite, presented by David Shearer, 1...Aligning strategy decisions with risk appetite, presented by David Shearer, 1...
Aligning strategy decisions with risk appetite, presented by David Shearer, 1...Association for Project Management
 
PECB Webinar: ISO 31000 - The Benchmark for Risk Management in uncertain times
PECB Webinar: ISO 31000 - The Benchmark for Risk Management in uncertain timesPECB Webinar: ISO 31000 - The Benchmark for Risk Management in uncertain times
PECB Webinar: ISO 31000 - The Benchmark for Risk Management in uncertain timesPECB
 
ISO 31000 risk management process
ISO 31000 risk management processISO 31000 risk management process
ISO 31000 risk management processMuizz Anibire
 
Risk Overview & Risk management
Risk Overview & Risk managementRisk Overview & Risk management
Risk Overview & Risk managementSubhendu Datta
 
Risk Appetite
Risk AppetiteRisk Appetite
Risk AppetiteTowers Perrin
 
GRI ERM Roadmap - Program Overview
GRI ERM Roadmap - Program OverviewGRI ERM Roadmap - Program Overview
GRI ERM Roadmap - Program OverviewDenise Robinson
 
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging RisksC-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging RisksAronson LLC
 
PECB Webinar: Aligning ISO 31000 and Management of Risk Methodology
PECB Webinar: Aligning ISO 31000 and Management of Risk MethodologyPECB Webinar: Aligning ISO 31000 and Management of Risk Methodology
PECB Webinar: Aligning ISO 31000 and Management of Risk MethodologyPECB
 

Recommandé

Aligning strategy decisions with risk appetite, presented by David Shearer, 1...
Aligning strategy decisions with risk appetite, presented by David Shearer, 1...Aligning strategy decisions with risk appetite, presented by David Shearer, 1...
Aligning strategy decisions with risk appetite, presented by David Shearer, 1...Association for Project Management
 
PECB Webinar: ISO 31000 - The Benchmark for Risk Management in uncertain times
PECB Webinar: ISO 31000 - The Benchmark for Risk Management in uncertain timesPECB Webinar: ISO 31000 - The Benchmark for Risk Management in uncertain times
PECB Webinar: ISO 31000 - The Benchmark for Risk Management in uncertain timesPECB
 
ISO 31000 risk management process
ISO 31000 risk management processISO 31000 risk management process
ISO 31000 risk management processMuizz Anibire
 
Risk Overview & Risk management
Risk Overview & Risk managementRisk Overview & Risk management
Risk Overview & Risk managementSubhendu Datta
 
Risk Appetite
Risk AppetiteRisk Appetite
Risk AppetiteTowers Perrin
 
GRI ERM Roadmap - Program Overview
GRI ERM Roadmap - Program OverviewGRI ERM Roadmap - Program Overview
GRI ERM Roadmap - Program OverviewDenise Robinson
 
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging RisksC-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging RisksAronson LLC
 
PECB Webinar: Aligning ISO 31000 and Management of Risk Methodology
PECB Webinar: Aligning ISO 31000 and Management of Risk MethodologyPECB Webinar: Aligning ISO 31000 and Management of Risk Methodology
PECB Webinar: Aligning ISO 31000 and Management of Risk MethodologyPECB
 
Risk Assessment and Management
Risk Assessment and ManagementRisk Assessment and Management
Risk Assessment and ManagementIsuru Asiri
 
Risk Management Process Steps PowerPoint Presentation Slides
Risk Management Process Steps PowerPoint Presentation Slides Risk Management Process Steps PowerPoint Presentation Slides
Risk Management Process Steps PowerPoint Presentation Slides SlideTeam
 
GRC Governance, Risk mgmt. & Compliance Executive
GRC Governance, Risk mgmt. & Compliance ExecutiveGRC Governance, Risk mgmt. & Compliance Executive
GRC Governance, Risk mgmt. & Compliance ExecutiveMax Neira Schliemann
 
Enterprise Risk Management and Sustainability
Enterprise Risk Management and SustainabilityEnterprise Risk Management and Sustainability
Enterprise Risk Management and SustainabilityJeff B
 
OPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATION
OPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATIONOPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATION
OPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATIONFrackson Kathibula-Nyoni
 
Grc governance, risk management & compliance
Grc governance, risk management & complianceGrc governance, risk management & compliance
Grc governance, risk management & complianceHR Globe Consulting
 
Risk Assessments
Risk AssessmentsRisk Assessments
Risk AssessmentsJoAnna Cheshire
 
Download risk management workshop
Download risk management workshopDownload risk management workshop
Download risk management workshopBestoutcome
 
Introduction to Business Continuity Management
Introduction to Business Continuity ManagementIntroduction to Business Continuity Management
Introduction to Business Continuity ManagementProf. David E. Alexander (UCL)
 
Risk Management Process And Procedures PowerPoint Presentation Slides
Risk Management Process And Procedures PowerPoint Presentation SlidesRisk Management Process And Procedures PowerPoint Presentation Slides
Risk Management Process And Procedures PowerPoint Presentation SlidesSlideTeam
 
Sharing Practice on Enterprise Risk Management (ERM)
Sharing Practice on Enterprise Risk Management (ERM)Sharing Practice on Enterprise Risk Management (ERM)
Sharing Practice on Enterprise Risk Management (ERM)Diane Christina
 
Risk Calculator PowerPoint Presentation Slides
Risk Calculator PowerPoint Presentation SlidesRisk Calculator PowerPoint Presentation Slides
Risk Calculator PowerPoint Presentation SlidesSlideTeam
 
Risk Management ERM Presentation
Risk Management ERM PresentationRisk Management ERM Presentation
Risk Management ERM Presentationalygale
 
Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite Andrew Smart
 
Enterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management ProcessEnterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management Processregio12
 
Risk Management Process Steps Powerpoint Presentation Slides
Risk Management Process Steps Powerpoint Presentation SlidesRisk Management Process Steps Powerpoint Presentation Slides
Risk Management Process Steps Powerpoint Presentation SlidesSlideTeam
 
Risk Management Framework
Risk Management FrameworkRisk Management Framework
Risk Management FrameworkAnand Subramaniam
 
Strategic Risk Management as a CFO: Getting Risk Management Right
Strategic Risk Management as a CFO: Getting Risk Management RightStrategic Risk Management as a CFO: Getting Risk Management Right
Strategic Risk Management as a CFO: Getting Risk Management RightProformative, Inc.
 
Risk management
Risk managementRisk management
Risk managementbaderali2141
 
Chap 11.7 Monitor Risks
Chap 11.7 Monitor RisksChap 11.7 Monitor Risks
Chap 11.7 Monitor RisksAnand Bobade
 
The Deloitte CFO Survey 2014 Q2 results - Risk appetite at new high
The Deloitte CFO Survey 2014 Q2 results - Risk appetite at new highThe Deloitte CFO Survey 2014 Q2 results - Risk appetite at new high
The Deloitte CFO Survey 2014 Q2 results - Risk appetite at new highDeloitte UK
 
DiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conferenceDiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conferenceLou DiSerafino
 

Contenu connexe

Tendances

Risk Assessment and Management
Risk Assessment and ManagementRisk Assessment and Management
Risk Assessment and ManagementIsuru Asiri
 
Risk Management Process Steps PowerPoint Presentation Slides
Risk Management Process Steps PowerPoint Presentation Slides Risk Management Process Steps PowerPoint Presentation Slides
Risk Management Process Steps PowerPoint Presentation Slides SlideTeam
 
GRC Governance, Risk mgmt. & Compliance Executive
GRC Governance, Risk mgmt. & Compliance ExecutiveGRC Governance, Risk mgmt. & Compliance Executive
GRC Governance, Risk mgmt. & Compliance ExecutiveMax Neira Schliemann
 
Enterprise Risk Management and Sustainability
Enterprise Risk Management and SustainabilityEnterprise Risk Management and Sustainability
Enterprise Risk Management and SustainabilityJeff B
 
OPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATION
OPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATIONOPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATION
OPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATIONFrackson Kathibula-Nyoni
 
Grc governance, risk management & compliance
Grc governance, risk management & complianceGrc governance, risk management & compliance
Grc governance, risk management & complianceHR Globe Consulting
 
Download risk management workshop
Download risk management workshopDownload risk management workshop
Download risk management workshopBestoutcome
 
Risk Management Process And Procedures PowerPoint Presentation Slides
Risk Management Process And Procedures PowerPoint Presentation SlidesRisk Management Process And Procedures PowerPoint Presentation Slides
Risk Management Process And Procedures PowerPoint Presentation SlidesSlideTeam
 
Sharing Practice on Enterprise Risk Management (ERM)
Sharing Practice on Enterprise Risk Management (ERM)Sharing Practice on Enterprise Risk Management (ERM)
Sharing Practice on Enterprise Risk Management (ERM)Diane Christina
 
Risk Calculator PowerPoint Presentation Slides
Risk Calculator PowerPoint Presentation SlidesRisk Calculator PowerPoint Presentation Slides
Risk Calculator PowerPoint Presentation SlidesSlideTeam
 
Risk Management ERM Presentation
Risk Management ERM PresentationRisk Management ERM Presentation
Risk Management ERM Presentationalygale
 
Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite Andrew Smart
 
Enterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management ProcessEnterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management Processregio12
 
Risk Management Process Steps Powerpoint Presentation Slides
Risk Management Process Steps Powerpoint Presentation SlidesRisk Management Process Steps Powerpoint Presentation Slides
Risk Management Process Steps Powerpoint Presentation SlidesSlideTeam
 
Strategic Risk Management as a CFO: Getting Risk Management Right
Strategic Risk Management as a CFO: Getting Risk Management RightStrategic Risk Management as a CFO: Getting Risk Management Right
Strategic Risk Management as a CFO: Getting Risk Management RightProformative, Inc.
 
Chap 11.7 Monitor Risks
Chap 11.7 Monitor RisksChap 11.7 Monitor Risks
Chap 11.7 Monitor RisksAnand Bobade
 

Tendances (20)

Risk Assessment and Management
Risk Assessment and ManagementRisk Assessment and Management
Risk Assessment and Management
 
Risk Management Process Steps PowerPoint Presentation Slides
Risk Management Process Steps PowerPoint Presentation Slides Risk Management Process Steps PowerPoint Presentation Slides
Risk Management Process Steps PowerPoint Presentation Slides
 
GRC Governance, Risk mgmt. & Compliance Executive
GRC Governance, Risk mgmt. & Compliance ExecutiveGRC Governance, Risk mgmt. & Compliance Executive
GRC Governance, Risk mgmt. & Compliance Executive
 
Enterprise Risk Management and Sustainability
Enterprise Risk Management and SustainabilityEnterprise Risk Management and Sustainability
Enterprise Risk Management and Sustainability
 
OPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATION
OPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATIONOPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATION
OPERATIONAL RISK MANAGEMENT FRAMEWORK PRESENTATION
 
Grc governance, risk management & compliance
Grc governance, risk management & complianceGrc governance, risk management & compliance
Grc governance, risk management & compliance
 
Risk Assessments
Risk AssessmentsRisk Assessments
Risk Assessments
 
Download risk management workshop
Download risk management workshopDownload risk management workshop
Download risk management workshop
 
Introduction to Business Continuity Management
Introduction to Business Continuity ManagementIntroduction to Business Continuity Management
Introduction to Business Continuity Management
 
Risk Management Process And Procedures PowerPoint Presentation Slides
Risk Management Process And Procedures PowerPoint Presentation SlidesRisk Management Process And Procedures PowerPoint Presentation Slides
Risk Management Process And Procedures PowerPoint Presentation Slides
 
Sharing Practice on Enterprise Risk Management (ERM)
Sharing Practice on Enterprise Risk Management (ERM)Sharing Practice on Enterprise Risk Management (ERM)
Sharing Practice on Enterprise Risk Management (ERM)
 
Risk Calculator PowerPoint Presentation Slides
Risk Calculator PowerPoint Presentation SlidesRisk Calculator PowerPoint Presentation Slides
Risk Calculator PowerPoint Presentation Slides
 
Risk Management ERM Presentation
Risk Management ERM PresentationRisk Management ERM Presentation
Risk Management ERM Presentation
 
Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite
 
Enterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management ProcessEnterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management Process
 
Risk Management Process Steps Powerpoint Presentation Slides
Risk Management Process Steps Powerpoint Presentation SlidesRisk Management Process Steps Powerpoint Presentation Slides
Risk Management Process Steps Powerpoint Presentation Slides
 
Risk Management Framework
Risk Management FrameworkRisk Management Framework
Risk Management Framework
 
Strategic Risk Management as a CFO: Getting Risk Management Right
Strategic Risk Management as a CFO: Getting Risk Management RightStrategic Risk Management as a CFO: Getting Risk Management Right
Strategic Risk Management as a CFO: Getting Risk Management Right
 
Risk management
Risk managementRisk management
Risk management
 
Chap 11.7 Monitor Risks
Chap 11.7 Monitor RisksChap 11.7 Monitor Risks
Chap 11.7 Monitor Risks
 

En vedette

The Deloitte CFO Survey 2014 Q2 results - Risk appetite at new high
The Deloitte CFO Survey 2014 Q2 results - Risk appetite at new highThe Deloitte CFO Survey 2014 Q2 results - Risk appetite at new high
The Deloitte CFO Survey 2014 Q2 results - Risk appetite at new highDeloitte UK
 
DiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conferenceDiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conferenceLou DiSerafino
 
Conference 2010 Risk Appetite Includes Handouts And Output
Conference 2010 Risk Appetite Includes Handouts And OutputConference 2010 Risk Appetite Includes Handouts And Output
Conference 2010 Risk Appetite Includes Handouts And Outputliztaylor
 
Risk Culture & Risk Appetite
Risk Culture & Risk AppetiteRisk Culture & Risk Appetite
Risk Culture & Risk AppetiteLászló Árvai
 
Solvency 2 it architecture
Solvency 2 it architectureSolvency 2 it architecture
Solvency 2 it architecturestelios75
 
Dynamic Stress Testing for an Insurance Company: Brian Rhoads, Practice Leade...
Dynamic Stress Testing for an Insurance Company: Brian Rhoads, Practice Leade...Dynamic Stress Testing for an Insurance Company: Brian Rhoads, Practice Leade...
Dynamic Stress Testing for an Insurance Company: Brian Rhoads, Practice Leade...Graham Jones
 

En vedette (6)

The Deloitte CFO Survey 2014 Q2 results - Risk appetite at new high
The Deloitte CFO Survey 2014 Q2 results - Risk appetite at new highThe Deloitte CFO Survey 2014 Q2 results - Risk appetite at new high
The Deloitte CFO Survey 2014 Q2 results - Risk appetite at new high
 
DiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conferenceDiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conference
 
Conference 2010 Risk Appetite Includes Handouts And Output
Conference 2010 Risk Appetite Includes Handouts And OutputConference 2010 Risk Appetite Includes Handouts And Output
Conference 2010 Risk Appetite Includes Handouts And Output
 
Risk Culture & Risk Appetite
Risk Culture & Risk AppetiteRisk Culture & Risk Appetite
Risk Culture & Risk Appetite
 
Solvency 2 it architecture
Solvency 2 it architectureSolvency 2 it architecture
Solvency 2 it architecture
 
Dynamic Stress Testing for an Insurance Company: Brian Rhoads, Practice Leade...
Dynamic Stress Testing for an Insurance Company: Brian Rhoads, Practice Leade...Dynamic Stress Testing for an Insurance Company: Brian Rhoads, Practice Leade...
Dynamic Stress Testing for an Insurance Company: Brian Rhoads, Practice Leade...
 

Similaire à The Role of Risk Appetite in embedding the ORSA and linking with Business Strategy November 2015

RiskIndia.com-Profile-01072016
RiskIndia.com-Profile-01072016RiskIndia.com-Profile-01072016
RiskIndia.com-Profile-01072016Rohit Chawda
 
Practical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal AuditPractical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal AuditManoj Agarwal
 
project risk management
project risk managementproject risk management
project risk managementAshima Thakur
 
Five Lines of Assurance A New ERM and IA Paradigm
Five Lines of Assurance A New ERM and IA ParadigmFive Lines of Assurance A New ERM and IA Paradigm
Five Lines of Assurance A New ERM and IA ParadigmTim Leech
 
10 Key Principles of Operational Risk Management
10 Key Principles of Operational Risk Management10 Key Principles of Operational Risk Management
10 Key Principles of Operational Risk ManagementColleen Beck-Domanico
 
IRM SIG What does the Second Line of Defence look like post SII July 2013
IRM SIG What does the Second Line of Defence look like post SII July 2013IRM SIG What does the Second Line of Defence look like post SII July 2013
IRM SIG What does the Second Line of Defence look like post SII July 2013Susan Young
 
Implementing an Enterprise Risk Management program (2022 updates).pdf
Implementing an Enterprise Risk Management program (2022 updates).pdfImplementing an Enterprise Risk Management program (2022 updates).pdf
Implementing an Enterprise Risk Management program (2022 updates).pdfRobert Serena, FSA, CFA, CPCU
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guideCenapSerdarolu
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guideAstalapulosListestos
 
127017438_RMA_OperationalRiskAppetite_v1.0
127017438_RMA_OperationalRiskAppetite_v1.0127017438_RMA_OperationalRiskAppetite_v1.0
127017438_RMA_OperationalRiskAppetite_v1.0Rachael Phelan
 
Portfolio Risk Challenges
Portfolio Risk ChallengesPortfolio Risk Challenges
Portfolio Risk Challengesdgeoghegan
 
Risk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesRisk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesManoj Agarwal
 
Risk Management Process in Islamic Banks
Risk Management Process in Islamic BanksRisk Management Process in Islamic Banks
Risk Management Process in Islamic BanksMahyuddin Khalid
 

Similaire à The Role of Risk Appetite in embedding the ORSA and linking with Business Strategy November 2015 (20)

Trustee Conference AM4: Effectively managing risk
Trustee Conference AM4: Effectively managing riskTrustee Conference AM4: Effectively managing risk
Trustee Conference AM4: Effectively managing risk
 
Creating Value Through Enterprise Risk Management
Creating Value Through Enterprise Risk Management Creating Value Through Enterprise Risk Management
Creating Value Through Enterprise Risk Management
 
RiskIndia.com-Profile-01072016
RiskIndia.com-Profile-01072016RiskIndia.com-Profile-01072016
RiskIndia.com-Profile-01072016
 
Practical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal AuditPractical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal Audit
 
project risk management
project risk managementproject risk management
project risk management
 
Five lines of assurance a new paradigm in internal audit & erm
Five lines of assurance a new paradigm in internal audit & ermFive lines of assurance a new paradigm in internal audit & erm
Five lines of assurance a new paradigm in internal audit & erm
 
Five Lines of Assurance A New ERM and IA Paradigm
Five Lines of Assurance A New ERM and IA ParadigmFive Lines of Assurance A New ERM and IA Paradigm
Five Lines of Assurance A New ERM and IA Paradigm
 
Risk Governance, Culture and CPS 220
Risk Governance, Culture and CPS 220Risk Governance, Culture and CPS 220
Risk Governance, Culture and CPS 220
 
10 Key Principles of Operational Risk Management
10 Key Principles of Operational Risk Management10 Key Principles of Operational Risk Management
10 Key Principles of Operational Risk Management
 
IRM SIG What does the Second Line of Defence look like post SII July 2013
IRM SIG What does the Second Line of Defence look like post SII July 2013IRM SIG What does the Second Line of Defence look like post SII July 2013
IRM SIG What does the Second Line of Defence look like post SII July 2013
 
Implementing an Enterprise Risk Management program (2022 updates).pdf
Implementing an Enterprise Risk Management program (2022 updates).pdfImplementing an Enterprise Risk Management program (2022 updates).pdf
Implementing an Enterprise Risk Management program (2022 updates).pdf
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guide
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guide
 
Controlling risk
Controlling riskControlling risk
Controlling risk
 
127017438_RMA_OperationalRiskAppetite_v1.0
127017438_RMA_OperationalRiskAppetite_v1.0127017438_RMA_OperationalRiskAppetite_v1.0
127017438_RMA_OperationalRiskAppetite_v1.0
 
Getting the risk basics right, 30th November 2016
Getting the risk basics right, 30th November 2016Getting the risk basics right, 30th November 2016
Getting the risk basics right, 30th November 2016
 
Portfolio Risk Challenges
Portfolio Risk ChallengesPortfolio Risk Challenges
Portfolio Risk Challenges
 
Risk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesRisk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling Techniques
 
Risk Management Process in Islamic Banks
Risk Management Process in Islamic BanksRisk Management Process in Islamic Banks
Risk Management Process in Islamic Banks
 
ERM ppt.pptx
ERM ppt.pptxERM ppt.pptx
ERM ppt.pptx
 

Plus de Susan Young

IRM SIG Presentation October2016.pptx [Read-Only]
IRM SIG Presentation October2016.pptx [Read-Only]IRM SIG Presentation October2016.pptx [Read-Only]
IRM SIG Presentation October2016.pptx [Read-Only]Susan Young
 
IRM SIG Quantifying Operational Risk November 2015
IRM SIG Quantifying Operational Risk November 2015IRM SIG Quantifying Operational Risk November 2015
IRM SIG Quantifying Operational Risk November 2015Susan Young
 
IRM SIG Embedding Risk - Group and Local Functions March 2014
IRM SIG Embedding Risk - Group and Local Functions March 2014IRM SIG Embedding Risk - Group and Local Functions March 2014
IRM SIG Embedding Risk - Group and Local Functions March 2014Susan Young
 
IRM SIG Avoiding the Pitfalls in ERM IT Solution Selection July 2012
IRM SIG Avoiding the Pitfalls in ERM IT Solution Selection July 2012IRM SIG Avoiding the Pitfalls in ERM IT Solution Selection July 2012
IRM SIG Avoiding the Pitfalls in ERM IT Solution Selection July 2012Susan Young
 
IACON Internal Audit Obligations under Solvency II June 2013
IACON Internal Audit Obligations under Solvency II June 2013IACON Internal Audit Obligations under Solvency II June 2013
IACON Internal Audit Obligations under Solvency II June 2013Susan Young
 
Managing Risk and Capital in the Lloyd's and London Market - Ensuring Boards ...
Managing Risk and Capital in the Lloyd's and London Market - Ensuring Boards ...Managing Risk and Capital in the Lloyd's and London Market - Ensuring Boards ...
Managing Risk and Capital in the Lloyd's and London Market - Ensuring Boards ...Susan Young
 
BCI Symposium Establishing a BCM Awareness Programmel 031008
BCI Symposium Establishing a BCM Awareness Programmel 031008BCI Symposium Establishing a BCM Awareness Programmel 031008
BCI Symposium Establishing a BCM Awareness Programmel 031008Susan Young
 

Plus de Susan Young (7)

IRM SIG Presentation October2016.pptx [Read-Only]
IRM SIG Presentation October2016.pptx [Read-Only]IRM SIG Presentation October2016.pptx [Read-Only]
IRM SIG Presentation October2016.pptx [Read-Only]
 
IRM SIG Quantifying Operational Risk November 2015
IRM SIG Quantifying Operational Risk November 2015IRM SIG Quantifying Operational Risk November 2015
IRM SIG Quantifying Operational Risk November 2015
 
IRM SIG Embedding Risk - Group and Local Functions March 2014
IRM SIG Embedding Risk - Group and Local Functions March 2014IRM SIG Embedding Risk - Group and Local Functions March 2014
IRM SIG Embedding Risk - Group and Local Functions March 2014
 
IRM SIG Avoiding the Pitfalls in ERM IT Solution Selection July 2012
IRM SIG Avoiding the Pitfalls in ERM IT Solution Selection July 2012IRM SIG Avoiding the Pitfalls in ERM IT Solution Selection July 2012
IRM SIG Avoiding the Pitfalls in ERM IT Solution Selection July 2012
 
IACON Internal Audit Obligations under Solvency II June 2013
IACON Internal Audit Obligations under Solvency II June 2013IACON Internal Audit Obligations under Solvency II June 2013
IACON Internal Audit Obligations under Solvency II June 2013
 
Managing Risk and Capital in the Lloyd's and London Market - Ensuring Boards ...
Managing Risk and Capital in the Lloyd's and London Market - Ensuring Boards ...Managing Risk and Capital in the Lloyd's and London Market - Ensuring Boards ...
Managing Risk and Capital in the Lloyd's and London Market - Ensuring Boards ...
 
BCI Symposium Establishing a BCM Awareness Programmel 031008
BCI Symposium Establishing a BCM Awareness Programmel 031008BCI Symposium Establishing a BCM Awareness Programmel 031008
BCI Symposium Establishing a BCM Awareness Programmel 031008
 

The Role of Risk Appetite in embedding the ORSA and linking with Business Strategy November 2015

  • 1. STRATEGY I INNOVATION I EXPERTISEPRIVATE & CONFIDENTIAL | WWW.RQIH.COM | EMBEDDING THE ORSA AND LINKING IT WITH BUSINESS STRATEGY THE ROLE OF RISK APPETITE 23RD NOVEMBER 2015 1 Susan Young Chief Risk Officer Randall & Quilter Investment Holdings Ltd.
  • 2. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 2 DISCLAIMER The thoughts and opinions expressed in this presentation are my own and do not necessarily represent those of my organisation.
  • 3. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 3 SESSION OUTLINE • Defining your Risk Limits • Effectively articulating your Risk Appetite • Embedding Risk Appetite throughout the Organisation • Linking Risk Appetite and the ORSA The whole process is a journey which never ends –nor should it……..
  • 4. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | Back to basis – Terminology • Risk Appetite is defined as the level of risk acceptable to an organisation. • There are two elements to this;- - Capacity/Tolerance – to what extent is the organisation able to bear risk? - Appetite – to what extent is the organisation prepared to bear risk? • Risk Appetite applies to Risk categories where taking risk will potentially yield a return, namely Insurance Risk , Financial Market Risk and Strategic Risk. • Risk Tolerance applies to the other Risk categories, i.e. where taking risk will yield no return, namely Operational Risk, Credit Risk, Liquidity Risk, Regulatory Risk) 4 DEFINING RISK LIMITS (1) It is important to make the distinction – the terms are often used interchangeably
  • 5. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 5 DEFINING RISK LIMITS (2) Benefits of formally defining an organisation’s Risk Appetite • Balanced approach to risk taking- avoidance of both uncontrolled innovation and excessive caution. • Framework, when properly designed and implemented, can guide the business on the level of risk permitted and encourage consistency of approach across an organisation. • Resource allocation - a defined acceptable levels of risk also means that resources are not spent on further reducing risks that are already at an acceptable level. • Proper MI (in the form of Key Risk Indicators) provides management with a framework for decision making. A Risk Appetite Framework is an important element of a mature Risk Management System
  • 6. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 6 DEFINING RISK LIMITS (3) Some General Comments and Observations • Risk Appetite of capital providers is relevant and management of expectations is key. • The Board will in practice normally approve the overall Risk Appetite Framework on behalf of key stakeholders and the monitoring of adherence thereof. • The Risk Appetite Framework should be adaptable and flexible commensurate with the complexity of the business, recognising that “one size won’t necessarily fit all”. • Individual subsidiary level appetites and tolerances may well be agreed at a different level from the overall Group appetites/tolerances subject to the aggregate risk profile remaining within overall Group Appetite/Tolerance. • The framework and supporting metrics should be intuitive and easy to comprehend. Key is to start simple and add complexity as you go – if you can.
  • 7. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 7 EFFECTIVELY ARTICULATING YOUR RISK APPETITE (1) • Risk Appetite is linked to the strategic and business objectives of the organisation as those are the parameters within which we manage risk. • Overall Risk Appetite is often represented by a high level strategic statement, and each material Risk Category is also represented by one or more risk category-related statements. • Adherence to each statement is measured and monitored by Key Risk Indicators (KRIs). Continued…. So how is it done?
  • 8. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 8 EFFECTIVELY ARTICULATING YOUR RISK APPETITE (2) Risk Appetite Framework Suggested Components • Context –Significance of the risk category/potential impact on earnings/capital/ profitability etc., for example, underwriting risk would, in a risk bearing entity, attract significant scope and depth in terms of the risk monitoring framework. • Risk Appetite/Tolerance Statement – A qualitative statement of the organisation’s overall appetite for a given category of risk. • Approach: A description of the overall approach to managing the specific area of risk together with, where appropriate, consideration of any relevant factors when setting local appetite and tolerances (e.g. local capital or regulatory considerations). • Key Risk Indicator metric – Red/Amber/Green criteria. • KRI Owner and Frequency –Board/Executive/Frequency as appropriate. • Escalation Route – to the Board or a subcommittee? Continued….
  • 9. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 9 EFFECTIVELY ARTICULATING YOUR RISK APPETITE (3) Risk Appetite Monitoring “Dashboard” - Example • “Reds” and Ambers will drive action • Greys are N/A • Reporting cuts may be taken at different times • Some metrics may take longer to evolve and develop Group Mean Return 1 Variability 2 Capital Sufficiency Return on Capital 3 Growth 4 Reserve Adequacy Exposure Management 5 Cycle Return Diversification 6 7 8 Currency Risk 9 Reinsurer Credit Broker Credit Liquidity Free Funds People Reputation Systems & Premises Regulatory Infringement 10 Entity Specifics Subsidiaries/Key Divisions CreditOperationalRegulatoryInsuranceRiskMarketStrategicObjectives
  • 10. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 10 EMBEDDING RISK APPETITE THROUGHOUT THE ORGANISATION (1) • In practice – it will already in place for some elements – for example, underwriting authorities and line sizes are pre-set as part the planning process. • Data for indicators can usually be sourced from existing MI. • Reporting structure will depending on the size and complexity of the organisation - as it matures, exception reporting can evolve. • A “hierarchy” of reporting and monitoring facilitates ownership throughout the business. • If properly embedded, the framework will evolve with the business. • Keep educating! Structure and demonstrable reporting to what we are/should be doing anyway Practical Considerations
  • 11. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 11 Prototype Risk Governance Structure Board of Directors All Risk Categories Underwriting and Claims Committee (Insurance Risk – Underwriting/Claims) Reserving Committee (Insurance Risk – Reserving) Investment/Finance Committee (Market/Liquidity/Credit Risk) Reinsurance /Security Committee (Credit Risks) Compliance Committee (Legal/Regulatory Risks) Operations Committee (Operational Risk) Risk Committee (Oversight) This is illustrative only and may be more/less complex in practice. The key is that detailed management and monitoring of Risk Appetite and Tolerance can be “pushed down” and reporting by exception encouraged as the process matures. EMBEDDING RISK APPETITE THROUGHOUT THE ORGANISATION (2)
  • 12. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 12 EMBEDDING RISK APPETITE THROUGHOUT THE ORGANISATION (3) In summary - an ongoing process which should move and evolve with the business – which won’t be static! More later…. Understand/Define current status – what do we already have? Strategic Objectives – what are they? Stakeholder Expectations - alignment with strategy Risk Appetite and Tolerance Statements Key Risk Indicators Governance and Escalation Feedback loop: -Ongoing Monitoring -Escalation to Committee /Board Review of overall Framework
  • 13. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 13 LINKING RISK APPETITE AND THE ORSA (1) Encapsulated in Article 44 of the Solvency II Framework Directive – requirement for an effective Risk Management System – comprising;- A clear, defined and documented risk management strategy that is consistent with the agent’s business strategy and includes: risk management objectives, key principles, risk appetite and assignment of risk management responsibilities across all the organisation’s activities. Written policies that implement the risk strategy and facilitate control mechanisms. They must include a definition and categorisation of the material risks faced by the agent, by type and the levels of acceptable risk limits for each risk type. These policies must reflect the nature, scope and time horizon of the business and the risks associated with it. Processes and procedures to enable identification, assessment, management, monitoring and reporting of risks the agent is, or may be, exposed to. Recognising Solvency II Continued…..
  • 14. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 14 LINKING RISK APPETITE AND THE ORSA (2) •Reporting procedures and feedback loops to ensure that information on the risk management system is coordinated and challenged by the Risk Management Function and actively monitored and managed by all relevant staff and the organisation’s board. •Reports by the Risk Management Function submitted to the board, covering the material risks faced by the business and the effectiveness of its risk management system. •A suitable ORSA (Own Risk and Solvency Assessment ) process - defined as:- The entirety of the processes and procedures employed to identify, assess, monitor, manage, and report the short and long term risks a firm faces or may face and to determine the own funds necessary to ensure that overall solvency needs are met at all times. AKA – The “Shop Window” of an aligned Risk and Capital Management Framework
  • 15. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 15 LINKING RISK APPETITE AND THE ORSA (3) • The ORSA is a process that has a number of potential triggers. • Practically, the annual Business Plan is the primary trigger although there are others. • A change in the Business Plan may trigger a rethink of the organisation’s Risk Appetite –or vice versa. • The ORSA (annual or otherwise) is a good opportunity to review the Business Plan/Risk Appetite and whether they are appropriately aligned. The ORSA capital assessment process entails an assessment of the Risk Appetite and Tolerance statements and whether they continue to be appropriate and/or aligned with the organisational strategy – the next slide illustrates this.
  • 16. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM |FOOTER PRESENTATION TITLE 16 LINKING RISK APPETITE AND THE ORSA (4) ORSA Inputs and Outputs Own Risk and Solvency Assessment Outputs Capital and Liquidity Contingency Plan ORSA Report Risk Management Risk Appetite and Tolerance Changes Capital/ Liquidity Solvency Position Assessment of Capital and Liquidity Needs - Baseline Assessment of Capital and Liquidity Needs – Stressed Conditions Actions and Decisions (ORSA Inputs) Changes to Strategy and Business Plan Key Risk Indicators Economic Capital Assessment Data Quality Requirements Own Risk and Solvency Assessment Inputs Risk Universe Risk Appetite Governance Structure and Processes Stress and Scenario Testing Strategy and Planning Action and Decisions (ORSA Outputs) Internal Control Framework Internal Model Risk Management Framework Data Quality Risk Appetite is both an input to and output from the ORSA process
  • 17. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 17 CONCLUDING THOUGHTS • Defining Limits – Formally setting Risk Appetite is a key component of monitoring adherence to business strategy. • Articulation - It needs proper communication throughout the organisation with all components defined so that it it is understood by all stakeholders. • Embedding - Proper embedding entails appropriate ownership and proportionate reporting as visibility and proper metrics are key – what gets measured gets monitored. • Link to ORSA - the ORSA process provides a formal mechanism for raising the profile of the Risk Appetite Framework as a key Risk Management tool and for keeping it current. Develop, Implement Live – it is a cycle of activity
  • 18. STRATEGY I INNOVATION I EXPERTISE | WWW.RQIH.COM | 18 Thank you for listening! Any Questions? AND FINALLY…….. Susan.young@rqih.com DD +44 (0) 20 7780 5882 www.rqih.com