Professional Documents
Culture Documents
PGDM 22-24
N K V Roop Kumar
1
Disclaimer :
The views expressed by the trainer(s) are not those of the trainer’(s)
employer, firm, clients, or any other organization.
2
Profile :
N.K.V. Roop Kumar RF, RIMS CRMP, FLMI, FRMAI, ARM™
▪ Trainer , Consultant also Chairman RIMS India Chapter for the RIMS (The Risk
Management Society, USA) . last assignment was EVP, Chief of Risk, Info & Cyber Sec.
Mgmt. at SBI Life Insurance India.
▪ Over 34 Years of experience (20 Years in LIC of India & 14 Years in SBI Life Insurance)
handling critical portfolios in Enterprise Risk Management, Cyber Security, Data
Protection, Business Continuity, Fraud Monitoring, Operations,Insurance &
Marketing etc.
▪ Fellow of RIMS, USA (RF), Fellow of Life Management Office Association (FLMI LOMA-
USA), Fellow of Risk Management Association of India (FRMAI) & International
Council Member of the RIMS, USA.
▪ Visiting faculty in various National Institutes & B Schools like National Insurance
Academy (NIA, Pune), Insurance Institute of India (III), BIMtech, IIRM, ASCII.
• 1) Tolerable Uncertainty :
• It means aligning risks with the organization’s risk appetite (“the
total exposed amount that an organization wishes to undertake
• on the basis of risk-return trade-offs for one or more desired and
expected outcomes”).
• Risk management programs should use measurements that align
with the organization’s overall objectives and take into account the
risk appetite of senior management.
• 3) Survival :
• For risk management purposes, an organization can be viewed as a
structured system of resources such as financial assets, machinery
and raw materials, employees, and managerial leadership.
• The organization generates income for its employees and owners
by producing goods or services that meet others’ needs.
• Many risks can threaten the survival of an organization.
• Risk management professionals use techniques such as loss control
and risk transfer to manage hazard risks.
• financial risks such as the value of assets,
• competition, supply-chain risks, and technology .
Risk Management - Objectives, Goals 1.3
• 4) Business Continuity :
• Continuity of operations is a key goal for many private
organizations and an essential goal for all public entities.
• To be resilient, an organization cannot interrupt its operations for
any appreciable time.
• Risk management professionals must have a clear, detailed
understanding of the specific operations for which continuity is
essential and the maximum tolerable interruption interval for each
operation
Risk Management - Objectives, Goals 1.3
• 5) Earnings Stability :
• Earnings stability is a goal of some organizations.
• Rather than strive for the highest possible level of current profits
(or, for not-for-profit organizations, surpluses) in a given period,
some organizations emphasize earnings stability over time.
• Striving for earnings stability requires precision in forecasting
fluctuations in asset values; liability values; and risk management
costs, such as costs for insurance.
Risk Management - Objectives, Goals 1.3
• 7) Social Responsibility :
Glossary :
Value at Risk : A thresh hold value such that the probability of loss on
the portfolio over the given time horizon exceeds this value, assuming
normal markets and no trading in the portfolio
Risk Management - Objectives, Goals 1.3
• Risk Management Goals :
• Economy of Risk Management Operations :
• 1) Exposure
• 2) Volatility
• 3) Likelihood
• 4) Consequences
• 5) Time horizon
• 6) Correlation
Basic Risk Measures - 1.4
• 1) Exposure :
• Exposure provides a measure of the “maximum potential damage
associated with an occurrence”.
• The risk increases as the exposure increases, assuming the risk is
non-diversifiable.
• Ex : A bank underwrites mortgages to subprime borrowers.
• Underwriting home-owners policies in coastal areas.
• Data breach or Reputational risks, are not as easily quantified.
• The effect of reputational risk could be measured in terms of its
potential influence on an organization’s stock price, customer
loyalty, and employee turnover.
Basic Risk Measures - 1.4
• 2) Volatiility :
• 3) Likelihood :
• “The likelihood of an occurrence” is a key measure in risk
management.
• The ability to determine the probability of an event mathematically
is the foundation of insurance and risk management.
• The term “likelihood” is used rather than “probability” because
probability analysis relies on the law of large numbers.
• Ex :Insurers and some other organizations can use the law of large
numbers to accurately determine the probability of various risks.
• Ex :Banks can determine and quantify the likelihood of default on a
loan based on credit scores and other factors in the bank’s extensive
data.
Basic Risk Measures - 1.4
• 4) Consequences :
• The relationship between likelihood and consequences ie ( Prob.
* impact) is critical for risk management in assessing risk and
deciding whether and how to manage it.
• Therefore, organizations must determine to the extent possible ,the
likelihood of an event and then determine the potential
consequences if the event occurs.
• Consequences are the “measure of the degree to which an
occurrence could positively or negatively affect an organization”.
• The greater the consequences, the greater the risk.
Basic Risk Measures - 1.4
• Consequences (Contd.) :
• Risks with high likelihood and minor consequences should usually
be managed through an organization’s routine business procedures.
• Risks with potentially major consequences should be managed
even if the likelihood of their occurrence is low.
• Risks with significant likelihood and major consequences require
significant, continuous risk management.
• Ex : An international bank faces exchange rate risk that is likely
and that could result in considerable losses. The bank may use
hedging strategies and other techniques to modify this type of risk.
Basic Risk Measures - 1.4
• 5) Time Horizon :
• The time horizon of an exposure is another basic measure that is
applied in risk management.
• Ex : The time horizon associated with an investment risk, such as a
stock or bond, can be determined by specified bond duration or by
how quickly a stock can be traded.
• Longer time horizons are generally riskier than shorter ones.
• Ex. : a thirty-year mortgage is usually riskier for a bank than a
fifteen-year mortgage.
Basic Risk Measures - 1.4
• 6) Correlation :
• A measure that should be applied to the management of an
organization’s overall risk portfolio.
• If two or more risks are similar, they are usually highly correlated.
• “The greater the correlation, the greater the risk.”
• Ex : If a bank makes mortgage loans primarily to the employees of
a local manufacturer and business loans primarily to that same
manufacturer, the bank’s loan risks are highly correlated.
• Ex. : Supply chain risks in the same geography .
• Diversification is a risk management strategy that can reduce the
risk of correlation.
Basic Risk Measures - 1.4
• Risk management professionals should evaluate all of these
measures and their overall effect on an organization’s risk portfolio.
• Highly correlated risks with a high likelihood, major
• consequences, high volatility, and significant exposure over a long
time horizon should be a key focus of risk management.
• The Global financial crisis of 2007 resulted in part from the failure
to recognize or address this type of risk.
• Subprime mortgages represented highly correlated risk to the same
types of risky borrowers, large exposure with major consequences,
high volatility due to fluctuations in their market value (and in the
market value of the underlying real estate collateral), and a long
time horizon because of their duration.
Basic Risk Measures - 1.4
• Glossary :
• Insurance deals primarily with risks of loss, not risks of gain; that
is, with pure risks rather than speculative risks.
• However, the distinction between these two classifications of risk is
not always precise—many risks have both pure and speculative
aspects.
• Distinguishing between pure and speculative risks is important
because those risks must often be managed differently.
• For example, although a commercial building owner faces a pure
risk from causes of loss such as fire, he or she also faces the
speculative risk that the market value of the building will increase
or decrease during any one year.
Risk Classifications - 1.5
• 4) Systemic Risks :
• Generally non-diversifiable. For example, if excess leverage by
financial institutions causes systemic risk resulting in an event that
disrupts the financial system, this risk will have an effect on the
entire economy and, therefore, on all organizations.
• Because of the global interconnections in finance and industry,
many risks that were once viewed as non-systemic (affecting only
one organization) are now viewed as systemic.
• For instance, many economists view the failure of Lehman
Brothers in early 2008 as a trigger event: highlighting that the
systemic risk in the banking sector that resulted in the financial
crisis
Risk Classifications - 1.5
• Quadrants of Risk :
• Hazard risks : arise from property, liability, or personnel loss
exposures and are generally the subject of insurance.
• Operational risks : fall outside the hazard risk category and arise
from people or a failure in processes, systems, or controls,
including those involving information technology.
• Financial risks : arise from the effect of market forces on financial
assets or liabilities and include market risk, credit risk, liquidity risk
liquidity risk, and price risk.
• Strategic risks :arise from trends in the economy and society,
including changes in the economic, political, and competitive
environments, as well as from demographic shifts.
Risk Classifications - 1.5
• Just as a particular risk can fall into more than one classification, a
risk can also fall into multiple risk quadrants.
• Ex : Embezzlement of funds by an employee can be considered
both a hazard risk, because it is an insurable pure risk, and an
operational risk, because it involves a failure of controls
Risk Classifications - 1.5
Risk Classifications - 1.5
• Case Study :
• Case Study :
• Review: In the hazard risk quadrant, New Company would have
property damage risks to its plant and equipment resulting from
fire, storms, or other events.
• It would also have risk of injury to its employees and liability risks
associated with its products.
• In the operational risk quadrant, New Company would have risks
from employee turnover or the inability to find skilled employees.
It would also have business process risk related to how it manages
its supply chain and information technology risk related to its
automated manufacturing process.
Risk Classifications - 1.5
• Case Study :
• Review :
• In the financial risk quadrant, New Company would have
exchange rate risk related to its European sales.
• It would also have price risk for raw materials and supplies.
• Strategic risks include competition, economic factors that could
affect consumer demand, and
• the political risk arising from countries in which the company’s
component suppliers are located.
Risk Classifications - 1.5
• Glossary :
• Pure Risk : A chance of loss or no loss, but no chance of gain.
• Speculative Risk :A chance of loss, no loss, or gain.
• Credit Risk : The risk that customers or other creditors will fail to
make promised payments as they come due.
• Subjective Risk :The perceived amount of risk based on an
individual's or organization’s opinion.
• Objective Risk :The measurable variation in uncertain outcomes
based on facts and data.
• Diversifiable Risks :A risk that affects only some individuals,
businesses, or small groups.
Risk Classifications - 1.5
• Glossary :
• Non-Diversifiable Risks : A risk that affects a large segment of
society at the same time.
• Systemic Risk :The potential for a major disruption in the function
of an entire market or financial system.
• Market Risk :Uncertainty about an investment’s future value
because of potential changes in the market for that type of
investment.
• Liquidity Risk : The risk that an asset cannot be sold on short
notice without incurring
88