Professional Documents
Culture Documents
No part of this presentation may be reproduced, stored in a retrieval system, or transmitted in any form or by any means–electronic, mechanical, photocopying, recording
or otherwise–without prior permission of the Supervision and Examination Sector (SES), Bangko Sentral ng Pilipinas.
Operational risk is….
No part of this presentation may be reproduced, stored in a retrieval system, or transmitted in any form or by any means–electronic, mechanical, photocopying, recording
or otherwise–without prior permission of the Supervision and Examination Sector (SES), Bangko Sentral ng Pilipinas.
Definition of Operational Risk
People
OPERATIONAL
Risk
External Process
Events
Systems
Includes: Legal Risk
Excludes: Reputational & Strategic Risks
Governance: Three Lines of Defense
Board of Directors/Risk
Oversight Committee
Senior Management
External Audit
Regulator
1st Line of Defense 2nd Line of Defense 3rd Line of Defense
Risk Management
Business Internal
line Mgt Control Internal Audit
Controls Measures
Compliance
Adapted from ECIIA/FERMA Guidance on the 8th EU Company Law Directive, article 41
Source: IIA Position Paper: THE THREE LINES OF DEFENSE IN EFFECTIVE RISK MANAGEMENT AND CONTROL (JANUARY 2013)
Board of Directors
awareness & Observance of
Adequate expectations/
understanding
of the nature & Approval of oversight on all
requirements,
laws &
complexity of ORM outsourcing regulations,
the major framework industry
operational risks activities standards,
internal policies
Promotion of a Oversight on
Adequate CULTURE OF HIGH business
resources STANDARDS of continuity
management
ETHICAL BEHAVIOR framework
- PERFORMANCE MANAGEMENT
- RECRUITMENT AND SELECTION
- REMUNERATION &
- TRAINING AND DEVELOPMENT
COMPENSATION
MANAGEMENT OF
HUMAN-RESOURCE
RELATED RISKS
Risk
Identification
Risk Monitoring
& Reporting
External Audit
Reports Internal Audit Loss Events
Reports Database
Audited Financial
Statements
Management of Integrity of
Prudential Reports or Reports Submitted to BSP