Professional Documents
Culture Documents
1
Disclaimer :
The views expressed by the trainer(s) are not those of the trainer’(s)
employer, firm, clients, or any other organization.
2
Profile :
N.K.V. Roop Kumar RF, RIMS CRMP, FLMI, FRMAI, ARM™
▪ Trainer , Consultant also Chairman RIMS India Chapter for the RIMS (The Risk
Management Society, USA) . last assignment was EVP, Chief of Risk, Info & Cyber Sec.
Mgmt. at SBI Life Insurance India.
▪ Over 34 Years of experience (20 Years in LIC of India & 14 Years in SBI Life Insurance)
handling critical portfolios in Enterprise Risk Management, Cyber Security, Data
Protection, Business Continuity, Fraud Monitoring, Operations,Insurance &
Marketing etc.
▪ Fellow of RIMS, USA (RF), Fellow of Life Management Office Association (FLMI LOMA-
USA), Fellow of Risk Management Association of India (FRMAI) & International
Council Member of the RIMS, USA.
▪ Visiting faculty in various National Institutes & B Schools like National Insurance
Academy (NIA, Pune), Insurance Institute of India (III), BIMtech, IIRM, ASCII.
4
ERM Tools
Risk Registers
Scenario Analysis
5
ERM Tools
Risk Register
✓ A Risk Register is a tool for documenting risks, and
actions to manage each risk. The Risk Register is
essential to the successful management of risk.
Indicative List of Tools to
✓ As risks are identified they are logged on the
manage Risk
register and actions are taken to respond to the
risk.
12
ERM Tools
Scenario Analysis
• Scenario analysis is a challenging element in the
operational risk framework. Scenario analysis
provides the operational risk framework with a tool to
explore the rare but plausible losses that could arise
Indicative List of Tools to
as a result of operational risk.
manage Risk
Role Of Scenario Analysis
✓ Firms use scenario analysis to evaluate their
exposure to high-severity events.
✓ Scenario Analysis uses both Historical Data &
hypothetical scenarios
✓ Useful in Operational Risk Modeling 14
Let’s Start with
some Stories
Let’s Discuss .
– Designing .
Organizational Risk Strategy
.
15
Integrating Risk Governance into Organization Structure ->
Source: www.rims.org 17
Integrating Risk
Governance into Board of Directors • Ultimate Risk Oversight Responsibility
Organization
Structure -> • Overall Execution of Risk Management
Management • Establishes Risk Policies, reviews & reports top
(Risk) Committee
risks affecting the company
Business
• Engaging in Risk Assessment at defined frequency
Manager/Risk
Owners/Risk • Identify & report risk exposures in their day to day
Champions activities/business area
20
Risk oversight by the Board
2. Review if the Risk management Policies and procedures are consistent with the
Risk appetite, Risk Tolerance and is consistent with its Strategies.
5. Review primary elements comprising Risk Culture i.e. “ Tone at the Top “.
8. Analyse and assess the most likely areas of future risks and strategies for the same
.
22
Assessing Organisational Risk Competency
Approach :
23
Assessing Organisational Risk Competency
▪ Each Top risk to be assigned to risk owner responsible for its mitigation.
▪ Risk Metrics to monitor each Top Risk to be finalised with risk owner.
▪ Risk metrics for each Top Risk to be obtained & presented to RMC on a
quarterly basis.
▪ Justification / action plan for Top Risks whose risk metrics are out of
acceptable range
26
Assessing Organisational Risk Competency
Metrics to Monitor Top Risks (1/2)
27
Assessing Organisational Risk Competency
Metrics to Monitor Top Risks (2/2)
Regulatory
8 No of non compliances observed 0 >= 1 0 0
Risk
10 Fraud Risk Frauds loss vis-à-vis Net Profit < 1% 1% - 3% > 3% 0.9% 0.7%
People 15% -
11 Attrition Ratio <15% > 20% 15% 12%
Risk 20%
28
29