Professional Documents
Culture Documents
There’s a global push to have firms appoint chief risk officers (CROs) who
attend board meetings and report directly to the board
Risk Governance
Board members must understand business
strategies and associated risks
The risks associated with business activities should be made
transparent to the stakeholders.
An appropriate risk appetite should be set for the firm and the board
should oversee the managerial activities and strategy formulation
process.
Risk management has to be part of business planning.
Risks associated with every target should be properly assessed to see
if they fit into the firm’s risk appetite.
Risk Governance
The risk management compass
For every risk, a firm has four basic choices:
Mitigate Preventive/detective
measures
Accept Transfer
Insurance/outsourcing
Reject
Risk Governance
Key points
Risk management strategies should be directed to impact economic
performance rather than accounting performance.
Policies, directives, and infrastructure related to risk management should
be properly placed in a firm.
Align risk and reward:
The board should make sure that staff get rewarded according to
their risk-adjusted performance.
This checks fraud related to financial manipulation and stock price
boosting.
The board should check the quality and reliability of information about
risks.
Risk Governance
Key points
The board should be educated on risk management and should be
able to determine the appropriate risk appetite for the firm.
o There should also be an assessment of risk metrics over a specified
time horizon that the board may set.
Some technical sophistication is required to build clear strategies and
directives in relation to key risk disciplines.
o A risk committee of the board should be qualified enough to handle
these technicalities.
o The risk committee should be separate from the audit committee on
grounds of difference in skills and responsibilities.
Role of Audit Committee of the
Board
The audit committee’s responsibility is to look into the accuracy of
financial and regulatory reporting of the firm and the quality of
processes that underlie such activities.
o The members should ideally be nonexecutives so as to keep the
audit committee clear from executive influence.
o The audit committee should interact with the management
productively and should keep all channels of communication open.
The audit committee verifies the activities of the firm to see if the
reports outline the same.
It ensures that a bank complies with standards in regulatory, risk
management, legal and compliance activities.
The Role of Risk Advisory
Director
Presence of nonexecutives without any risk management expertise
in the board may create an environment where decisions are made in a
manner not so well thought-out.
For this reason, there should be a risk management specialist – a risk
advisory director – on the board.
The risk advisory director should:
Oversee financial reporting and the dealings between the firm and its associates
Finance
Senior Risk Committee Step 1 : Approves market risk tolerance, stress and performance limits
each year; reviews business unit mandates and new business initiatives
Senior Risk Committee Step 2: Delegates authority to the CAO and holds additional authority in
reserves approved by the risk committee of the board
Business Unit Manager Responsible for risk and performance of the business Must ensure limits
are delegated to traders