B1 - M2: ERM Frameworks

Question 1

Purpose of Enterprise Risk Management (ERM) Framework

Answer 1

Assist organizations in developing a comprehensive response to risk management

Question 2

How does management affect an organizations value?

Answer 2

“make it CEPR”

• Creation: benefit > resource cost +NPV
• Preservation: sustainable operating profit
• Erosion: cost > benefit -NPV
• Realization: received by stakeholders - stock appreciation or dividends

Question 3

How does management manage risk and create value

Answer 3

“CCPIS”

• Culture: core values
• Capabilities: competitive advantage - exploit it
• Practices: continually applied at all levels
• Integration with Strategy: why do they exist? - mission // what’s your vision/strategy

Question 4

How are value and risk appetite related?

Answer 4

• Directly
• risk assumed (independent variable)
• expected risk (dependent variable)

Question 5

Components of ERM

Answer 5

5 - “GO PRO”

• Governance and culture: tone at the top
• strategy and Objective setting: mission/vision - define risk appetite
• Performance: evaluate, identify, and respond to risks using ARTs
• Review and revision: assess substantial changes, pursue improvements
• info, communication, and reporting (Ongoing): - obtain FACTs

Question 6

Principles of Governance and Culture

Answer 6

“DOVES”

• Desired culture
• board Oversight
• core Values: tone at the top
• attract, retain, develop Employees
• operating Structure

Question 7

Principles of Strategy and Objective-Setting

Answer 7

“SOAR”

• evaluate Strategies: what is the vision
• formulate Objectives: why do we exist - mission
• Analyze
• define Risk appetite

Question 8

Principles of Performance

Answer 8

“VAPIR”

• develop portfolio View: parent level
• Assess risk
• Prioritize risk
• Identify risk (events)
• Respond to risks

Question 9

Principles of Review and Revision

Answer 9

“SIR”

• assess Substantial change
• Improve ERM
• Review risk and performance: How did we do managing risk

Question 10

Principles of Info, Communication, and Reporting (Ongoing)

Answer 10

“TIP”

• leverage information Tech
• communicate risk Info
• report on risk, culture, and Performance

Question 11

What does the ERM framework do?

Answer 11

assist management identify, address, and manage risk

Question 12

What is Sharing?

Answer 12

insuring against losses or entering into join ventures as a way to mitigate risk

Question 13

What is organizational sustainability

Answer 13

ability of an entity to withstand the impact of large-scale events

Question 14

What is residual risk?

Answer 14

• risk to an organization AFTER management takes action to reduce the likelihood of impact of a negative event
• RR = inherent risk - impact of mgmt actions

Question 15

Statistical risk ranking methodolgoy

Answer 15

organize product of (likelihood x severity) in descending order

Question 16

How do you find the optimum implementation solution when conducting a cost-benefit analysis

Answer 16

Use a “Net Benefit Calculation”

Benefit = Potential Loss x (% Likely - New Potential % Loss)

Net Benefit = Benefit - Cost

• best solution is the solution with the highest net benefit