prev
next
out of 21

OM Risk Management

  • Upload
    farzil

  • View
    221

  • Download
    0

Embed Size (px)

Citation preview

  • 8/9/2019 OM Risk Management

    1/21

    Operational Risk & Business Continuity

    Management - An Effective And Integrated

    ApproachChris Lintern

    Co-operative Financial Services

    Leading the risk profession

  • 8/9/2019 OM Risk Management

    2/21

    Introduction & Approach

    Chris Lintern

    Background in all aspects of Business Continuity Management within

    Financial Services

    Part of central Operational Risk Management TeamCo-operative Financial Services

    Includes Co-operative Bank, Co-operative Insurance, Co-operative

    Investments

    Merged last year with Britannia Building Society

    Our vision is to be the UKs most admired financial services businessApproach to this session

    Active participation

    All views welcome and appreciated

  • 8/9/2019 OM Risk Management

    3/21

    Purpose

    To share thoughts on the benefits of integrating Operational

    Risk & Business Continuity

    Consider some of the key stakeholders, and the aims, and

    components for Operational Risk and Business Continuityframeworks

    Conclusions

  • 8/9/2019 OM Risk Management

    4/21

    What is Operational Risk Management?

    Managing the risk of loss resulting from inadequate or failed

    internal processes, people and systems or from external events

    (Basel Committee of the Bank of International Settlements)

    What is Business Continuity?

    A holistic management process that identifies potential threats to an

    organisation and the impacts to business operations that those

    threats, if realised, might cause and which provides a framework forbuilding organisational resilience with the capability for an effective

    response that safeguards the interests of its key stakeholders

    reputation, brand and value creating activities (BS25999 British

    Standard for BCM)

  • 8/9/2019 OM Risk Management

    5/21

    Back to Basics

    Preventing nasty surprises wherever practical, andhaving the confidence that your organisation can

    respond to and mitigate them - if and when they occur

    Health

    &

    Safety

    Key

    Suppliers /

    Outsource

    Partners

    System

    failures

    Property &

    Facilities

    Key person

    dependenciesExternal threats

  • 8/9/2019 OM Risk Management

    6/21

    Historic Positioning of Op Risk & BCM

    Focus on traditional business continuity denial ofaccess to premises, or loss of systems

    BCM and Operational Risk seen as separate entities

    BCM

    Operational

    Risk

  • 8/9/2019 OM Risk Management

    7/21

    Synergies between the twoStakeholders Framework

    Components

    Intended

    Outcome

    Board Policy &

    Procedures

    Understanding

    of appetite

    Executive & Senior

    Management

    Supporting

    documents

    Proactive

    assessment

    Operational

    Management

    Plans & Training Understanding

    of impact

    Other Considerations

    Impact on Capital Impact on Change Insurance

  • 8/9/2019 OM Risk Management

    8/21

    Operational Risk Integrated Approach

    Operational

    Risk

    Busi

    ness

    Cont

    inuity

    Insu

    ranc

    e

    Operat

    ional

    RiskCapital

    Contro

    l Self-

    Assessment

  • 8/9/2019 OM Risk Management

    9/21

    Operational Risk Integrated Approach

    Operational

    Risk

    Busi

    ness

    Cont

    inuity

    Insu

    ranc

    e

    Operat

    ional

    RiskCapital

    Proactive identification of risks

    Assessment and evaluation Scenario analysis

    Contro

    l Self-

    Assessment

  • 8/9/2019 OM Risk Management

    10/21

    Operational Risk Integrated Approach

    Operational

    Risk

    Busi

    ness

    Cont

    inuity

    Insu

    ranc

    e

    Operat

    ional

    RiskCapital

    Contro

    l Self-

    Assessment

    Assess controls

    CSA process

    Review control weaknesses Track actions

    Link control evidence to risks

    Review incidents as evidence of control failures

  • 8/9/2019 OM Risk Management

    11/21

    Operational Risk Integrated Approach

    Operational

    Risk

    Busi

    ness

    Cont

    inuity

    Insu

    ranc

    e

    Operat

    ional

    RiskCapital

    Contro

    l Self-

    Assessment

    Mitigation of operational risks

    Crisis Management Team & Plan

    Incident Management Teams Crisis Management Centre

    Work-Area Recovery

    Disaster Recovery strategy

  • 8/9/2019 OM Risk Management

    12/21

    Operational Risk Integrated Approach

    Operational

    Risk

    Busi

    ness

    Cont

    inuity

    Insu

    ranc

    e

    Operat

    ional

    RiskCapital

    Contro

    l Self-

    Assessment

    Risk transfer

    Placement

    Claims Handling Specific perils e.g. Buildings/Contents, Business

    Interruption Insurance

    Advice & Guidance

  • 8/9/2019 OM Risk Management

    13/21

    Operational Risk Integrated Approach

    Operational

    Risk

    Busi

    ness

    Cont

    inuity

    Insu

    ranc

    e

    Operat

    ional

    RiskCapital

    Contro

    l Self-

    Assessment

    Capital against unexpected losses

    Calculation

    Planning

  • 8/9/2019 OM Risk Management

    14/21

    Operational Risk Components

    PurposeVision

    3 Year StrategicPlan

    Strategy

    CoreProcesses

    CriticalSystems

    Colleagues

    External Eventse.g.Weather,

    Terrorism

    Change agenda

    Bottom-upOperational Risk

    Profile

    Scenarios

    Top-down

    Operational RiskProfile

    Facilities

    Operational

    Risk Capital

    OperationalRisk Appetite

    Business Continuity

    Incident & Near-Miss Reporting

    Resilience

    Work-Area

    Recovery

    DisasterRecovery

    Incident &

    CrisisManagement

    Insurance

    Programme

    Operational Risk strategy and plan

    ReportingSuppliers &OutsourcePartners

    Operational Risk

    End-to-endProcess view

    Key Controls

    Control Self-

    Assessment

    Policies

    Claims

  • 8/9/2019 OM Risk Management

    15/21

    Operational Risk Components

    PurposeVision

    3 Year StrategicPlan

    Strategy

    CoreProcesses

    CriticalSystems

    Colleagues

    External Eventse.g.Weather,

    Terrorism

    Change agenda

    Bottom-upOperational Risk

    Profile

    Scenarios

    Top-down

    Operational RiskProfile

    Facilities

    Operational

    Risk Capital

    OperationalRisk Appetite

    Business Continuity

    Incident & Near-Miss Reporting

    Resilience

    Work-Area

    Recovery

    DisasterRecovery

    Incident &

    CrisisManagement

    Insurance

    Programme

    Operational Risk strategy and plan

    ReportingSuppliers &OutsourcePartners

    Operational Risk

    End-to-endProcess view

    Key Controls

    Control Self-

    Assessment

    Policies

    Claims

  • 8/9/2019 OM Risk Management

    16/21

    Embedding the Culture

    Business buy-in of paramount importance

    Incident Management framework known and utilised

    importance of exercising

    Risk Division seen as involved not sat in Ivory Towers

    Part of the solution, not part of the problem - BC & Op Risk

    representatives heavily involved in Incident Management

    Keep things simple common language

    Linked to the CFS customer promise

  • 8/9/2019 OM Risk Management

    17/21

    Incident Framework

    Crisis

    Management

    Team

    Incident Management

    Teams

    IS ServiceContinuity

    Business units / areas

    BC plan owners and Plan co-ordinators

    Escalate

    up

    Cascade

    down

    Operational Risk(incl. BCM)

  • 8/9/2019 OM Risk Management

    18/21

    Incident Management Team - Structure

  • 8/9/2019 OM Risk Management

    19/21

    Integrated Approach

  • 8/9/2019 OM Risk Management

    20/21

    Conclusions

    An effective, and consistent framework

    Can be used to define overall risk appetite at Board level

    Practical considerations both areas need policies &

    procedures

    Simple for the business

    Aligned to business processes

    Crucial that its accepted from a cultural perspective within the

    newly merged organisation

    Potential to drive efficiencies and cost-savings

  • 8/9/2019 OM Risk Management

    21/21

    Thank You

    Any Further Questions

    [email protected]


OPERATIONAL RISK MANAGEMENT MODULE 1_OM_Consultation... · OPERATIONAL RISK MANAGEMENT MODULE . OM: ... OM-5 Business Continuity Planning OM-5.1 Introduction 10/2007 ... Page 1 of

OPERATIONAL RISK MANAGEMENT MODULE 1_OM_Consultation... · OPERATIONAL RISK MANAGEMENT MODULE . OM: ... OM-5 Business Continuity Planning OM-5.1 Introduction 10/2007 ... Page 1 of

Documents
Risk Management (3C05/D22) Unit 3: Risk Management · 2004. 4. 29. · Risk-management planning Risk resolution [Boehm 1991] Risk monitoring Software risk management steps & techniques

Risk Management (3C05/D22) Unit 3: Risk Management · 2004. 4. 29. · Risk-management planning Risk resolution [Boehm 1991] Risk monitoring Software risk management steps & techniques

Documents
Obsolescence Management (OM) · PROACTIVE OBSOLESCENCE MANAGEMENT Bill of Material Management Material Risk Index Health Monitoring Component Availability Figure: B. Bartels –ABSC

Obsolescence Management (OM) · PROACTIVE OBSOLESCENCE MANAGEMENT Bill of Material Management Material Risk Index Health Monitoring Component Availability Figure: B. Bartels –ABSC

Documents
RISICO ANALYSE: HÉT INSTRUMENT OM CORRECT VERZEKERD … · The problem with risks is not the uninevitable risk, but the unthinkable risk John Maynard Keynes In risk management, as

RISICO ANALYSE: HÉT INSTRUMENT OM CORRECT VERZEKERD … · The problem with risks is not the uninevitable risk, but the unthinkable risk John Maynard Keynes In risk management, as

Documents
OPERATIONAL RISK MANAGEMENT MODULE · Table of Contents: Page 1 of 2 MODULE OM Operational Risk Management Table of Contents Date Last Changed OM-A Introduction OM-A.1 Purpose 01/2020

OPERATIONAL RISK MANAGEMENT MODULE · Table of Contents: Page 1 of 2 MODULE OM Operational Risk Management Table of Contents Date Last Changed OM-A Introduction OM-A.1 Purpose 01/2020

Documents
OPERATIONAL RISK MANAGEMENT MODULE - Reuters...OM-A.1.1 The Operational Risk Management Module sets out the Central Bank of Bahrain’s (‘CBB’s’) rules and guidance to Conventional

OPERATIONAL RISK MANAGEMENT MODULE - Reuters...OM-A.1.1 The Operational Risk Management Module sets out the Central Bank of Bahrain’s (‘CBB’s’) rules and guidance to Conventional

Documents
Market Risk Management Market Risk Management … Market Risk Management Market Risk Management System System System ChecklistChecklist “Market risk” is the risk that a financial

Market Risk Management Market Risk Management … Market Risk Management Market Risk Management System System System ChecklistChecklist “Market risk” is the risk that a financial

Documents
OPERATIONAL RISK MANAGEMENT MODULE - cbb.gov.bh · OM-3 Outsourcing OM-3.1 Introduction 07/2011 OM-3.2 Supervisory Approach 10/2012 OM-3.3 Notifications and Prior Approval 01/2011

OPERATIONAL RISK MANAGEMENT MODULE - cbb.gov.bh · OM-3 Outsourcing OM-3.1 Introduction 07/2011 OM-3.2 Supervisory Approach 10/2012 OM-3.3 Notifications and Prior Approval 01/2011

Documents
Management Cloud Oracle Risk...Oracle Risk Management Cloud Securing Risk Management Chapter 1 Introduction 1 1 Introduction Overview of Risk Management Security In Risk Management

Management Cloud Oracle Risk...Oracle Risk Management Cloud Securing Risk Management Chapter 1 Introduction 1 1 Introduction Overview of Risk Management Security In Risk Management

Documents
Credit Risk Credit Risk Management System … Risk Credit Risk Management System Management System Management System ... the credit risk management systems of ... external auditors

Credit Risk Credit Risk Management System … Risk Credit Risk Management System Management System Management System ... the credit risk management systems of ... external auditors

Documents
Risk Management Techniques Beyond Price Risk Management

Risk Management Techniques Beyond Price Risk Management

Documents
Risk Management Agency Risk Management Services Division

Risk Management Agency Risk Management Services Division

Documents
GOVERNANCE, RISK MANAGEMENT, AND … Risk Manageme… · (GRC)? 3.1.2 Risk Management . GOVERNANCE, RISK MANAGEMENT, AND COMPLIANCE . GOVERNANCE, RISK MANAGEMENT, AND COMPLIANCE

GOVERNANCE, RISK MANAGEMENT, AND … Risk Manageme… · (GRC)? 3.1.2 Risk Management . GOVERNANCE, RISK MANAGEMENT, AND COMPLIANCE . GOVERNANCE, RISK MANAGEMENT, AND COMPLIANCE

Documents
Securing Risk Management Risk Management Cloud · Oracle Risk Management Cloud Securing Risk Management Release 13 (update 18B)

Securing Risk Management Risk Management Cloud · Oracle Risk Management Cloud Securing Risk Management Release 13 (update 18B)

Documents
EUREKA Risk Management Policy Risk Management... · • Approves the Risk Management Policy document. The Executive Board • Endorses the overall Risk Management Framework and Risk

EUREKA Risk Management Policy Risk Management... · • Approves the Risk Management Policy document. The Executive Board • Endorses the overall Risk Management Framework and Risk

Documents
Risk Management - SBM Group · Risk Management Rodrigues • Key Highlights • Executive Summary • Risk Management Framework • Credit Risk Management • Market Risk Management

Risk Management - SBM Group · Risk Management Rodrigues • Key Highlights • Executive Summary • Risk Management Framework • Credit Risk Management • Market Risk Management

Documents
Risk Management for Public Works - Risk Management User Manual · Risk Management for Public Works Risk Management User Manual ... Thus by implementing a systematic project risk management

Risk Management for Public Works - Risk Management User Manual · Risk Management for Public Works Risk Management User Manual ... Thus by implementing a systematic project risk management

Documents
Risk Management¸„ู่มือความเสี่ยง... · คู่มือการบริหารความเสี่ยง (Risk Management) โรงพยาบาลวารินช

Risk Management¸„ู่มือความเสี่ยง... · คู่มือการบริหารความเสี่ยง (Risk Management) โรงพยาบาลวารินช

Documents
Risk Analysis COEN 250. Risk Management Risk Management consists of Risk Assessment Risk Mitigation Risk Evaluation and Assessment Risk Management

Risk Analysis COEN 250. Risk Management Risk Management consists of Risk Assessment Risk Mitigation Risk Evaluation and Assessment Risk Management

Documents
OPERATIONAL RISK MANAGEMENT MODULE · 2020-06-12 · OM: Operational Risk Management July 2019 Table of Contents: Page 1 of 2 MODULE OM Operational Risk Management Table of Contents

OPERATIONAL RISK MANAGEMENT MODULE · 2020-06-12 · OM: Operational Risk Management July 2019 Table of Contents: Page 1 of 2 MODULE OM Operational Risk Management Table of Contents

Documents
Module Layout ERM503 Risk Management & Risk Management

Module Layout ERM503 Risk Management & Risk Management

Documents
Module Layout ERM503 Risk Management & Risk Management Standards ENTERPRISE RISK MANAGEMENT ... Module Layout ERM503 Risk Management & Risk Management Standards Faculty FEM FSS FACULTY

Module Layout ERM503 Risk Management & Risk Management Standards ENTERPRISE RISK MANAGEMENT ... Module Layout ERM503 Risk Management & Risk Management Standards Faculty FEM FSS FACULTY

Documents
The Risk Management JourneyThe Risk Management Journey€¦ · 21/11/2013 1 Risk Management at NCFERisk Management at NCFE The Risk Management JourneyThe Risk Management Journey Graeme

The Risk Management JourneyThe Risk Management Journey€¦ · 21/11/2013 1 Risk Management at NCFERisk Management at NCFE The Risk Management JourneyThe Risk Management Journey Graeme

Documents
Risk management for Tasmanian sport and recreation ... · 6. Risk management in practice 7. Risk management policy template 8. Risk management plan template 9. Risk management audits

Risk management for Tasmanian sport and recreation ... · 6. Risk management in practice 7. Risk management policy template 8. Risk management plan template 9. Risk management audits

Documents
Council Policy – No 178 Adopted: OM 20.07.2009 Amended: … · 2019-11-25 · The Geotechnical Risk Management Policy (the Policy) establishes the Risk Management approach for property

Council Policy – No 178 Adopted: OM 20.07.2009 Amended: … · 2019-11-25 · The Geotechnical Risk Management Policy (the Policy) establishes the Risk Management approach for property

Documents
Risk, Risk Assessments and Risk Management - ISACA€¦ · Risk, Risk Assessments and Risk Management Christopher Bowler CPA, ... 2) Aligns with Business ... consensus for risk management

Risk, Risk Assessments and Risk Management - ISACA€¦ · Risk, Risk Assessments and Risk Management Christopher Bowler CPA, ... 2) Aligns with Business ... consensus for risk management

Documents
RISK MANAGEMENT CHARTER EN RISK MANAGEMENT & …...Risk Management charter and framework v0.9 dd 15-6-2017 Tilburg University Risk Management Charter and Risk Management & Internal

RISK MANAGEMENT CHARTER EN RISK MANAGEMENT & …...Risk Management charter and framework v0.9 dd 15-6-2017 Tilburg University Risk Management Charter and Risk Management & Internal

Documents
Risk Management Podcast: Risk Management Web Seminar

Risk Management Podcast: Risk Management Web Seminar

Documents
Introduction to Risk Management. Basic areas: -defining risk management -objectives of risk management -the risk management process -personal risk management

Introduction to Risk Management. Basic areas: -defining risk management -objectives of risk management -the risk management process -personal risk management

Documents
OPERATIONAL RISK MANAGEMENT MODULE · ODULE OM: Operational Risk Management CHAPTER OM-6: Security Measures for Banks OM-6.6 Cyber Security Risk Management (Continued) Cyber Security

OPERATIONAL RISK MANAGEMENT MODULE · ODULE OM: Operational Risk Management CHAPTER OM-6: Security Measures for Banks OM-6.6 Cyber Security Risk Management (Continued) Cyber Security

Documents