Risk Management Nots
Risk Management Nots
John Hawkins (2001:6) defines it as: The management of all risks facing an
enterprise on a comprehensive & holistic basis, taking into account their
interrelationships & resources available for their management. Hawkins (2001)
emphasises that enterprise risk management is regarded as an approach to or
philosophy of risk management rather than a particular technique or series of
techniques.
ERM is thus a new strategic process that identifies & addresses the full range of
business opportunities & risks. It is also a value-generating business risk
management process that provides the discipline & tools for mastering risk as the
enterprise creates value. This approach represents a paradigm shift in the way
enterprises manage the uncertainties that stand in the way of achieving their
strategic, operational & financial objectives. This approach integrates & coordinates
the management of risks throughout the enterprise & creates a culture of risk
awareness. ERM helps CEOs to meet the challenges they face by improving the
linkage between risk & opportunity & positioning business risk management as a
source of competitive advantage. ERM features shared enterprise goals & broad
coordination but also accommodates individual actions within well-defined
boundaries. It facilitates the management of risk in a world of uncertainty & fosters
continual feedback & re-evaluation by capitalising on the enormous advances in
technology & knowledge-sharing.
Research on the current status of ERM has identified the following trends &
emerging practices:
-Enterprises consider the desire for a unifying risk management framework &
corporate governance regimes to be key drivers of ERM.
-Earnings growth & revenue growth are considered to be top business issues today
with earnings consistency expected to grow in significance over the next few years.
-ERM is seen as a tool to help manage the most important business issues of
enterprises of enterprises.
-Although ERM is in its early stages of application, few respondents to the survey
indicated that they are ignoring it.
-ERM initiatives & activities are led by senior executives & internal audits play a
substantial role in the implementation of ERM.
-ERM may initially be more of a management information tool than a driver for
enterprise performance.
-Enterprises in the process of adapting ERM are more likely to use a variety of tools
-certain organisational barriers have been identified that hamper the successful
implementation of ERM. These include the following:
-A weak risk culture is one in which employees have little sense of the importance of
risk management & their role in it. Such a culture will compromise efforts to manage
risk, which might have disastrous consequences. A culture in which risk is seen as a
central part of everyday operations, allows for truly effective risk management.
-Many managers, however do not fully grasp the implications of ERM, arguing that
there is large gap between theory & application of ERM, that the value attached to
ERM is difficult to measure & that they do not have sufficient hard data to support
any form of credible enterprise-wide risk assessment.
-Risk communication is often hampered by definitions of risk that are too broad,
poorly understood or open to interpretation. In order to effectively implement ERM it
is essential for risk management decision making to be incorporated into strategic &
operational decision making throughout the enterprise.
BARRIERS TO SUCCESSFUL IMPLEMENTATION OF ERM
Organisational culture
-Risk culture is critical to the success of the enterprise & will determine how
successful its ERM will be. A weak risk culture is one in which employees have little
sense of the importance of risk management & their role in it.Such a culture will
compromise efforts to manage risk, which might have disastrous consequences. A
culture in which risk is seen as a central part of everyday operations, allows for truly
effective risk management.
-Many managers, however, do not fully grasp the implications of ERM, arguing that
there is a large gap between theory & application of ERM that the value attached to
ERM is difficult to measure & that they do not have sufficient hard data to support
any form of credible enterprise-wide risk assessment.
-Risk communication is often hampered by definitions of risk that are too broad,
poorly understood or open to interpretation. Risk management decision making to be
incorporated into strategic & operational decision making throughout the enterprise.
Improper yardsticks
-Adopting ERM entails a major cultural change for an enterprise.CEOs & boards of
directors can create momentum for change by demonstrating a serious leadership
commitment to ERM.
A capable & dedicated group of cross-functional staff who can drive the
implementation of ERM & continue to push it in its operation phase
A close linkage of ERM to the key strategic & financial objectives of the enterprise &
the business planning process
-should implement a risk management model that links risk-taking activities to capital
consumption & performance evaluation at the business unit level & enterprise-wide
level.
-Are reporting processes in place to capitalise on information from inside & outside
the enterprise? It is important for enterprises to develop organisational processes
that allow them to learn from their own as well as from the mistakes or best practices
of others.
BENEFITS OF ERM
-by appointing a chief risk officer who will provide the top-down coordination
necessary to make these various functions work efficiently.
Better risk reporting
-ERM enables enterprises to adopt a portfolio view of all risks, manage the
interdependencies between risk, capital & profitably & rationalise the risk transfer
strategies of the enterprise. These efforts support key management decisions such
as capital allocation, product development & pricing, & mergers & acquisitions,
which, in turn, lead to lower earnings volatility, increased earnings, reduced losses &
enhancement of shareholder value.ERM is integral to the achievement of the value-
creating objectives of the enterprise & the successful execution of its strategies.
BRMP
-Identifying & communicating the top risks currently faced by the enterprise
-conducting stress tests, simulations & scenario planning for critical risks
Strategies should be aligned with the goals & objectives of the enterprise. They
should provide practical, executable solutions that will enable the enterprise to take
appropriate risks.
-By establishing a proper risk management infrastructure. This entails the integration
of processes, people, management reports, methodogies & systems & data, with the
purpose of delivering the desired outcomes. Risk management should be an integral
part of everyone’s job & online resources should be upgraded continuously to
provide guidance on risk management.
Monitor performance
-An enterprise should endeavour to instil a culture that challenges the status quo.
-Relevant & reliable information is essential for the efficient management of risk. It is
vital to establish a common set of processes that will lay the foundation for defining ,
organising & reporting information that is relevant across business units & the
enterprise as an entity.