Professional Documents
Culture Documents
August25,2011
Agenda
IntroductiontoRiskManagement SevenDeadlySins APracticalApproach Q&A
FinancialRisk
OperatingReserves AccountingProcess MarketRisk FinancialReporting
StrategicRisk
ComplianceRisk
TotheLayman:
A way of managing my business.
VS.
Controlled Risk Maximum Performance
Transportation Education
65%
of Public Firms
Source: Excellence in Risk Management VI, Marsh | RIMS
RM Implementation Drivers p
Technology T h l
7 Deadly Sins
7 Deadly Sins
Vanity / Pride
Common Themes: I know my risks already I dont need Risk Management We have good people and pretty good controls We have done well without it
9
Potential Risks: Inadequate disaster planning No succession planning Lack of financial savvy Fraud risk
7 Deadly Sins
Greed
Common Themes: We will take all funding Our donors trust us with their Contributions To date, we have not had any major problems Our controls are good g enough
10
Potential Risks: Funding risk Concentration risk Insufficient working capital Misallocation/misuse of restricted funds
7 Deadly Sins
Envy
Common Themes: Others seem to do well without risk management Taking on areas of risk beyond the organizations expertise In order to keep up we must focus on growth not on risk management
11
Potential Risks: Lack of business discipline Inadequate policies and Procedures Lack of attention to controls Failure to execute on new business
7 Deadly Sins y
Anger
Common Themes: Low morale creates additional risk (potential fraud risk) Were just not appreciated for what we do and how well we do it Our organization pushes its staff hard. This is the only way g to get the results we need.
12
7 Deadly Sins
Lust
Common Themes: Significant short termterm growth without changing structure As more funding comes in, we will expand our capacity to accommodate this demand Potential Risks: Lack of change management Inadequate focus on updating risks internal processes and controls Structure (people, processes and systems) has not kept pace with growth
13
7 Deadly Sins
Gluttony
Common Themes: L k of contentment Lack f t t t Rushing into the next big idea id Taking on too many initiatives initiati es Potential Risks: Lack of long term planning/stability Inadequate reserves for future deficits Taking unnecessary risks (e.g. investment exposures)
14
7 Deadly Sins
Sloth
Common Themes: I trust my people The It wont happen to me me sentiment My processes/people work fine I dont need to don t review them Potential Risks: Lack of formalized structure for Governance, Risk and Compliance Lack of proper segregation
15
A Practical Approach
Wh Risk M Why Ri k Management? t? Best Practices Risk Management Principles Risk Management Framework
16
objectives
Encourageproactivemanagement Beawareoftheneedtoidentifyandtreat
riskthroughouttheorganization andthreats
Improvetheidentificationofopportunities Complywithrelevantlegalandregulatory
requirementsandinternationalnorms
17
reporting
makingandplanning
Improvecontrols Effectivelyallocateanduseresourcesfor
risktreatment
18
efficiency
Enhancehealthandsafetyperformance,as
wellasenvironmentalprotection management
Principles Framework
Process
20
RM Principals
RiskManagementmust:
1. 2. 3. 3 4. 5. 6. 7. 8. 9. 10. 11. Createandprotectvalue Beanintegralpartofallorganizationalprocesses Bepartofdecisionmaking Explicitlyaddressuncertainty Besystematic,structuredandtimely Bebasedonthebestavailableinformation Betailoredtotheorganization Takehumanandculturalfactorsintoaccount Betransparentandinclusive Bedynamic,iterativeandresponsivetochange Facilitatethecontinualimprovementofthe organization
21
Continualimprovement
Implementingriskmanagement Frameworkandprocess
Monitoringandreview
22
Risk Monitoring Observe the completed implementation and report the results
Risk Response Develop an action plan; determine what risks to control and assign l d i responsible individuals
23
Impacton nObjective es
R-3 R - 72
1 O - 14
O-8 R - 34
Opportunities pp
24
Likelihood
Likelihood
Risks
Impacton nObjective es
O - 21
R - 11
Control Now
Imp portanc ce
Control Soon
Likelihood
FrameworkDesign:ClarifyingWhoDoesWhat
(SampleFederalOrganization)
(BasedontheInstitute ofInternalAuditors PositionPaper& revisedbyCSA)
J. Scott Denlinger, CPA, is the Director in charge of the CBIZ MHM Outsourced Services practice and has more than 20 years experience in accounting, tax and auditing.
Mr. Denlinger designs and manages outsourced CFO and accounting engagements serving both for-profit and nonprofit organizations. He also performs CFO duties for several organizations, assisting in the preparation of p internal financial statements and presentation to their Boards. With his extensive auditing experience, Mr. Denlinger is able to assist our outsourcing clients in preparing for their year-end audits. Combining his communication skills and ability to translate difficult accounting concepts into laymens terms, as well as his penchant for teaching, Mr. Denlinger is frequently asked to teaching Mr lead seminars and workshops by various organizations on a broad range of financial management and reporting topics. He is a member of the MACPA Government and Nonprofit Conference Committee and serves on the Board of Family and Children Services of Central Maryland.
11thAnnualPublicPrivatePartnershipConference
August25,2011
28