SlideShare uma empresa Scribd logo

Erm tm 10

Mulyadi Yusuf
Mulyadi Yusuf
Educação
1 de 15
Baixar para ler offline
ENTERPRISE RISK MANAGEMENT ISO 31000 - 2009 MOHAMAD HASSAN AK., MAFIS, QIA, CRMP, CRMA
ERM - ISO 31000
GETTING STARTED Obtain Mandate & Commitment Building Start ERM Implementation a Framework IA Role in getting started Design Framework Implement, Monitor, & Improve System
Building a Framework a set of components that provide the foundations and organizational arrangements for designing, implementing, monitoring, reviewing, and continually improving risk management throughout the organization
Building a Framework Obtain ERM Mandate and Commitment Design Framework Continuously Improve ERM System Implement ERM System Monitor & Review ERM System
Obtain ERM Mandate & Commitment Define & endorse the risk management policy Ensure organization’s culture and RM policy aligned Align RM object. with organization object. & strategies Determine RM performance align with performance indicators organization Assign accountabilities & responsibilities at appropriate levels within organization Ensure necessary resources are allocated to risk management Ensure legal and regulatory compliance Communicate benefits of risk management to shareholders Ensure framework for managing risk continues to remain appropriate
Some Considerations Why are we choosing implement ERM at this time? Where do we start? What outcome do we expect? What does success look like? What is our scope for implementation? How will we roll ERM out enterprisewide?
Design ERM Framework Understand the organization, its business, & context for ERM Frameworks Designing Determine organizational positioning of ERM Develop risk management policy Assign accountability and authority Allocate resources Establish internal & external reporting mechanisms Link ERM to performance appraisal process
Understanding organization, business, & context ERM • External Factors: – Social and cultural, political, legal, regulatory, financial, technological, economic, natural, & competitive environment (international, national, regional, or local). – Key driver and trends affecting the objectives of the organization. – Relationship with, and perception and values of, external stakeholders.
Understanding organization, business, & context ERM • Internal Factors: – Governance, organizational structure, roles, & responsibilities. – Policies, objectives, and strategies in place to achieve them. – Capabilities & knowledge (capital, time, people, processes, systems, and technologies). – Information systems, information flows, & decision making process. – Relationship with, and perceptions and values of, internal stakeholders. – Organizational cultures. – Standards, guidelines, and models adopted.
Determine organizational positioning of ERM • No single best practices • Challenges in perception: – ERM reports too low; therefore no have senior management full commitment. – ERM focuses primarily on financial reporting risks and excludes other important areas of risk. • Establish a risk committee • Key considerations: – Reporting line should be high enough – Sufficient span of responsibility to oversee ERM activities – Report directly to the board
Develop Risk Management Policy • Important elements include in policy: – Overall rationale and objectives for, and commitment to, implementing an effective ERM System. – Governance responsibilities, include tone and attitude board. – Application/scope across the organization – Framework used that provide support ERM approach – Authority and responsibilities for overseeing and executing ERM System – Commitment of Resources – Key terms and definitions – Limit and risk tolerance levels – Risk management performance measures and metrics – Expectations & practices to periodically review and update.
Implement, Monitor, & Improve ERM System Implement Monitor Improve
INTERNAL AUDIT’S ROLE IN GETTING STARTED Lead ERM Implementation Play Prominent Role • More experience, skill, & organizational perspective. • Understand value ERM & push to get implementation. • Steps to avoid impairment objectivity: (1) well-understood situation & agreed, (2) involve appropriate member of management as much as possible, (3) formal plan should be developed, & (4) hired outside resource for assurance • Implementing ERM; knowledge of a good ERM system looks like. • Conducting risk assessment; identifying, analyzing, & evaluating risks. • Considering risk treatment options. • Designing risk management activities. • Determining next steps to make ERM sustainable.
INTERNAL AUDIT’S ROLE IN GETTING STARTED Provide Consulting Support Provide Assurance Implementation • Advisory services of ERM • Facilitation of ERM Workshops • Instructional Services • Coaching management risk management process • Championing establishment of ERM • Giving assurance of risk management process • Giving assurance that risks correctly evaluated • Review management of Keys Risks • Evaluating reporting of key risks • Evaluating risk management process

Recomendados

Coso erm
Coso ermCoso erm
Coso erm
luisrobles_cl
 
Risk Management – The Building Blocks
Risk Management – The Building BlocksRisk Management – The Building Blocks
Risk Management – The Building Blocks
Continuity and Resilience
 
COSO ERM 2017
COSO ERM 2017COSO ERM 2017
COSO ERM 2017
Jorge A. Gomez P.
 
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and PerformanceEnterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Resolver Inc.
 
Erm tm 11
Erm tm 11Erm tm 11
Erm tm 11
Mulyadi Yusuf
 
Risk Management - A Journey
Risk Management - A JourneyRisk Management - A Journey
Risk Management - A Journey
Debashis Gupta
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
ComplianceOnline
 
Coso erm frmwrk
Coso erm frmwrkCoso erm frmwrk
Coso erm frmwrk
Ravinder Kumar Bhan
 

Recomendados

Coso erm
Coso ermCoso erm
Coso erm
luisrobles_cl
 
Risk Management – The Building Blocks
Risk Management – The Building BlocksRisk Management – The Building Blocks
Risk Management – The Building Blocks
Continuity and Resilience
 
COSO ERM 2017
COSO ERM 2017COSO ERM 2017
COSO ERM 2017
Jorge A. Gomez P.
 
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and PerformanceEnterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Resolver Inc.
 
Erm tm 11
Erm tm 11Erm tm 11
Erm tm 11
Mulyadi Yusuf
 
Risk Management - A Journey
Risk Management - A JourneyRisk Management - A Journey
Risk Management - A Journey
Debashis Gupta
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
ComplianceOnline
 
Coso erm frmwrk
Coso erm frmwrkCoso erm frmwrk
Coso erm frmwrk
Ravinder Kumar Bhan
 
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB
 
Coso erm
Coso ermCoso erm
Coso erm
Humberto Omar Valverde Taborga
 
Busines Continuity And Compliance
Busines Continuity And ComplianceBusines Continuity And Compliance
Busines Continuity And Compliance
salamali
 
Risk management and the role of the audit committee
Risk management and the role of the audit committeeRisk management and the role of the audit committee
Risk management and the role of the audit committee
Higher Education Funding Council for England
 
COSO Vs ERM - NMIMS INDORE
COSO Vs ERM - NMIMS INDORECOSO Vs ERM - NMIMS INDORE
COSO Vs ERM - NMIMS INDORE
Naresh Parandhaman
 
mr neeraj - day 1 - compliance
mr neeraj - day 1 - compliancemr neeraj - day 1 - compliance
mr neeraj - day 1 - compliance
Neeraj Verma
 
Enterprise Risk Management
Enterprise Risk ManagementEnterprise Risk Management
Enterprise Risk Management
Continuity and Resilience
 
Coso Erm(2)
Coso Erm(2)Coso Erm(2)
Coso Erm(2)
deeptica
 
Enterprise Risk Management & Fraud Sample Presentation
Enterprise Risk Management & Fraud Sample PresentationEnterprise Risk Management & Fraud Sample Presentation
Enterprise Risk Management & Fraud Sample Presentation
Alexander Larsen
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guide
AstalapulosListestos
 
Governance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge ElementsGovernance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge Elements
Iyad Mourtada, CMA, CIA, CFE, CCSA, CRMA, CPLP
 
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging RisksC-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
Aronson LLC
 
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
PMI Indonesia Chapter
 
How Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder ValueHow Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder Value
Ron Harasym
 
Upgrading Risk Management and Internal Control in Your Organization
Upgrading Risk Management and Internal Control in Your OrganizationUpgrading Risk Management and Internal Control in Your Organization
Upgrading Risk Management and Internal Control in Your Organization
International Federation of Accountants
 
FORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activityFORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activity
FERMA
 
HIRimsISO311KandERMFINAL
HIRimsISO311KandERMFINALHIRimsISO311KandERMFINAL
HIRimsISO311KandERMFINAL
Chris Mandel, RF, ARM-E
 
Enterprise risk management february 9th solution training
Enterprise risk management february 9th solution trainingEnterprise risk management february 9th solution training
Enterprise risk management february 9th solution training
veritama
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
SiteshUpadhyay
 
Beyond Compliance
Beyond ComplianceBeyond Compliance
Beyond Compliance
mikaelastafrace
 
Erm talking points
Erm talking pointsErm talking points
Erm talking points
EnterpriseGRC Solutions, Inc.
 
Manajemen Risiko Menurut COSO
Manajemen Risiko Menurut COSOManajemen Risiko Menurut COSO
Manajemen Risiko Menurut COSO
Dina Pramudianti
 

Mais conteúdo relacionado

Mais procurados

Busines Continuity And Compliance
Busines Continuity And ComplianceBusines Continuity And Compliance
Busines Continuity And Compliance
salamali
 
mr neeraj - day 1 - compliance
mr neeraj - day 1 - compliancemr neeraj - day 1 - compliance
mr neeraj - day 1 - compliance
Neeraj Verma
 
Coso Erm(2)
Coso Erm(2)Coso Erm(2)
Coso Erm(2)
deeptica
 
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
PMI Indonesia Chapter
 
How Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder ValueHow Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder Value
Ron Harasym
 
FORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activityFORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activity
FERMA
 
Enterprise risk management february 9th solution training
Enterprise risk management february 9th solution trainingEnterprise risk management february 9th solution training
Enterprise risk management february 9th solution training
veritama
 

Mais procurados (20)

PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
 
Coso erm
Coso ermCoso erm
Coso erm
 
Busines Continuity And Compliance
Busines Continuity And ComplianceBusines Continuity And Compliance
Busines Continuity And Compliance
 
Risk management and the role of the audit committee
Risk management and the role of the audit committeeRisk management and the role of the audit committee
Risk management and the role of the audit committee
 
COSO Vs ERM - NMIMS INDORE
COSO Vs ERM - NMIMS INDORECOSO Vs ERM - NMIMS INDORE
COSO Vs ERM - NMIMS INDORE
 
mr neeraj - day 1 - compliance
mr neeraj - day 1 - compliancemr neeraj - day 1 - compliance
mr neeraj - day 1 - compliance
 
Enterprise Risk Management
Enterprise Risk ManagementEnterprise Risk Management
Enterprise Risk Management
 
Coso Erm(2)
Coso Erm(2)Coso Erm(2)
Coso Erm(2)
 
Enterprise Risk Management & Fraud Sample Presentation
Enterprise Risk Management & Fraud Sample PresentationEnterprise Risk Management & Fraud Sample Presentation
Enterprise Risk Management & Fraud Sample Presentation
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guide
 
Governance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge ElementsGovernance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge Elements
 
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging RisksC-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
 
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
 
How Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder ValueHow Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder Value
 
Upgrading Risk Management and Internal Control in Your Organization
Upgrading Risk Management and Internal Control in Your OrganizationUpgrading Risk Management and Internal Control in Your Organization
Upgrading Risk Management and Internal Control in Your Organization
 
FORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activityFORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activity
 
HIRimsISO311KandERMFINAL
HIRimsISO311KandERMFINALHIRimsISO311KandERMFINAL
HIRimsISO311KandERMFINAL
 
Enterprise risk management february 9th solution training
Enterprise risk management february 9th solution trainingEnterprise risk management february 9th solution training
Enterprise risk management february 9th solution training
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
 
Beyond Compliance
Beyond ComplianceBeyond Compliance
Beyond Compliance
 

Semelhante a Erm tm 10

Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdfSun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
abdo badr
 
DiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conferenceDiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conference
Lou DiSerafino
 
Enterprise risk-management1973
Enterprise risk-management1973Enterprise risk-management1973
Enterprise risk-management1973
NATHAN Consulting
 

Semelhante a Erm tm 10 (20)

Erm talking points
Erm talking pointsErm talking points
Erm talking points
 
Manajemen Risiko Menurut COSO
Manajemen Risiko Menurut COSOManajemen Risiko Menurut COSO
Manajemen Risiko Menurut COSO
 
Creating Value Through Enterprise Risk Management
Creating Value Through Enterprise Risk Management Creating Value Through Enterprise Risk Management
Creating Value Through Enterprise Risk Management
 
COSO_ERM.ppt
COSO_ERM.pptCOSO_ERM.ppt
COSO_ERM.ppt
 
Hoover.2016 Texas Bankers CFO Conference
Hoover.2016 Texas Bankers CFO ConferenceHoover.2016 Texas Bankers CFO Conference
Hoover.2016 Texas Bankers CFO Conference
 
Presentation_20110802213554
Presentation_20110802213554Presentation_20110802213554
Presentation_20110802213554
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guide
 
CELOE MRKI Lecture Notes 02 v0.1_old.pptx
CELOE MRKI Lecture Notes 02 v0.1_old.pptxCELOE MRKI Lecture Notes 02 v0.1_old.pptx
CELOE MRKI Lecture Notes 02 v0.1_old.pptx
 
ThinkGRC justifying the transition to an Enterprise Risk Management (ERM) model
ThinkGRC justifying the transition to an Enterprise Risk Management (ERM) modelThinkGRC justifying the transition to an Enterprise Risk Management (ERM) model
ThinkGRC justifying the transition to an Enterprise Risk Management (ERM) model
 
ERM-STANDARD PPT.pptx
ERM-STANDARD PPT.pptxERM-STANDARD PPT.pptx
ERM-STANDARD PPT.pptx
 
IT Governance.pptx
IT Governance.pptxIT Governance.pptx
IT Governance.pptx
 
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdfSun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
 
DiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conferenceDiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conference
 
GRI ERM Roadmap - Program Overview
GRI ERM Roadmap - Program OverviewGRI ERM Roadmap - Program Overview
GRI ERM Roadmap - Program Overview
 
FX Risk Management – Best Practice Standards for Good Corporate Governance
FX Risk Management – Best Practice Standards for Good Corporate GovernanceFX Risk Management – Best Practice Standards for Good Corporate Governance
FX Risk Management – Best Practice Standards for Good Corporate Governance
 
Erm whitepaper (2)
Erm whitepaper (2)Erm whitepaper (2)
Erm whitepaper (2)
 
Bcu msc cg week 4 risk management
Bcu msc cg week 4 risk managementBcu msc cg week 4 risk management
Bcu msc cg week 4 risk management
 
Internal audits role in compliance
Internal audits role in complianceInternal audits role in compliance
Internal audits role in compliance
 
Enterprise risk-management1973
Enterprise risk-management1973Enterprise risk-management1973
Enterprise risk-management1973
 
Operational Risk Management & Strategic Planning
Operational Risk Management & Strategic PlanningOperational Risk Management & Strategic Planning
Operational Risk Management & Strategic Planning
 

Mais de Mulyadi Yusuf

Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udaraPaper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Mulyadi Yusuf
 
10. kertas kerja it audit
10. kertas kerja it audit10. kertas kerja it audit
10. kertas kerja it audit
Mulyadi Yusuf
 
09.2 audit siklus pembelian dan pembayaran
09.2 audit siklus pembelian dan pembayaran09.2 audit siklus pembelian dan pembayaran
09.2 audit siklus pembelian dan pembayaran
Mulyadi Yusuf
 
09.1 audit siklus penjualan dan penerimaan
09.1 audit siklus penjualan dan penerimaan09.1 audit siklus penjualan dan penerimaan
09.1 audit siklus penjualan dan penerimaan
Mulyadi Yusuf
 
05.2 auditing procedure application controls
05.2 auditing procedure application controls05.2 auditing procedure application controls
05.2 auditing procedure application controls
Mulyadi Yusuf
 
05.1 auditing procedure general controls
05.1 auditing procedure general controls05.1 auditing procedure general controls
05.1 auditing procedure general controls
Mulyadi Yusuf
 
03.2 application control
03.2 application control03.2 application control
03.2 application control
Mulyadi Yusuf
 
03.1 general control
03.1 general control03.1 general control
03.1 general control
Mulyadi Yusuf
 
02. cobit5 introduction
02. cobit5 introduction02. cobit5 introduction
02. cobit5 introduction
Mulyadi Yusuf
 
02. cobit 41 dan iso 17799
02. cobit 41 dan iso 1779902. cobit 41 dan iso 17799
02. cobit 41 dan iso 17799
Mulyadi Yusuf
 

Mais de Mulyadi Yusuf (20)

Paper seminar akuntansi pemerintah kel 1--sap berbasis akrual
Paper seminar akuntansi pemerintah kel 1--sap berbasis akrualPaper seminar akuntansi pemerintah kel 1--sap berbasis akrual
Paper seminar akuntansi pemerintah kel 1--sap berbasis akrual
 
Mckinsey kominfo
Mckinsey kominfoMckinsey kominfo
Mckinsey kominfo
 
Paper mssp analisis renstra dan capaian kinerja kemenhub (1)
Paper mssp analisis renstra dan capaian kinerja kemenhub (1)Paper mssp analisis renstra dan capaian kinerja kemenhub (1)
Paper mssp analisis renstra dan capaian kinerja kemenhub (1)
 
Paper mssp analisis renstra dan capaian kinerja kemenpan rb
Paper mssp analisis renstra dan capaian kinerja kemenpan rb Paper mssp analisis renstra dan capaian kinerja kemenpan rb
Paper mssp analisis renstra dan capaian kinerja kemenpan rb
 
Paper menstra kemenkes final-sapce
Paper menstra kemenkes final-sapcePaper menstra kemenkes final-sapce
Paper menstra kemenkes final-sapce
 
Peta strategi kementan
Peta strategi kementanPeta strategi kementan
Peta strategi kementan
 
Mssp analisis renstra ditjen ppi
Mssp analisis renstra ditjen ppiMssp analisis renstra ditjen ppi
Mssp analisis renstra ditjen ppi
 
Manstrapem bina upaya kesehatan final
Manstrapem bina upaya kesehatan finalManstrapem bina upaya kesehatan final
Manstrapem bina upaya kesehatan final
 
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udaraPaper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
 
Balanced scorecard amin subiyakto
Balanced scorecard amin subiyaktoBalanced scorecard amin subiyakto
Balanced scorecard amin subiyakto
 
10. kertas kerja it audit
10. kertas kerja it audit10. kertas kerja it audit
10. kertas kerja it audit
 
09.2 audit siklus pembelian dan pembayaran
09.2 audit siklus pembelian dan pembayaran09.2 audit siklus pembelian dan pembayaran
09.2 audit siklus pembelian dan pembayaran
 
09.1 audit siklus penjualan dan penerimaan
09.1 audit siklus penjualan dan penerimaan09.1 audit siklus penjualan dan penerimaan
09.1 audit siklus penjualan dan penerimaan
 
05.2 auditing procedure application controls
05.2 auditing procedure application controls05.2 auditing procedure application controls
05.2 auditing procedure application controls
 
05.1 auditing procedure general controls
05.1 auditing procedure general controls05.1 auditing procedure general controls
05.1 auditing procedure general controls
 
03.2 application control
03.2 application control03.2 application control
03.2 application control
 
03.1 general control
03.1 general control03.1 general control
03.1 general control
 
02. cobit5 introduction
02. cobit5 introduction02. cobit5 introduction
02. cobit5 introduction
 
02. cobit 41 dan iso 17799
02. cobit 41 dan iso 1779902. cobit 41 dan iso 17799
02. cobit 41 dan iso 17799
 
Erm tm 12
Erm tm 12Erm tm 12
Erm tm 12
 

Último

1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf
QucHHunhnh
 
Making and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdfMaking and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdf
Chris Hunter
 
An Overview of Mutual Funds Bcom Project.pdf
An Overview of Mutual Funds Bcom Project.pdfAn Overview of Mutual Funds Bcom Project.pdf
An Overview of Mutual Funds Bcom Project.pdf
SanaAli374401
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
kauryashika82
 
Gardella_Mateo_IntellectualProperty.pdf.
Gardella_Mateo_IntellectualProperty.pdf.Gardella_Mateo_IntellectualProperty.pdf.
Gardella_Mateo_IntellectualProperty.pdf.
MateoGardella
 
Gardella_PRCampaignConclusion Pitch Letter
Gardella_PRCampaignConclusion Pitch LetterGardella_PRCampaignConclusion Pitch Letter
Gardella_PRCampaignConclusion Pitch Letter
MateoGardella
 
The basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptxThe basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptx
heathfieldcps1
 

Último (20)

1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf
 
How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17
 
Making and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdfMaking and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdf
 
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
 
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
 
psychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docxpsychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docx
 
Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and Mode
 
Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impact
 
Advance Mobile Application Development class 07
Advance Mobile Application Development class 07Advance Mobile Application Development class 07
Advance Mobile Application Development class 07
 
An Overview of Mutual Funds Bcom Project.pdf
An Overview of Mutual Funds Bcom Project.pdfAn Overview of Mutual Funds Bcom Project.pdf
An Overview of Mutual Funds Bcom Project.pdf
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
 
Gardella_Mateo_IntellectualProperty.pdf.
Gardella_Mateo_IntellectualProperty.pdf.Gardella_Mateo_IntellectualProperty.pdf.
Gardella_Mateo_IntellectualProperty.pdf.
 
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
 
Gardella_PRCampaignConclusion Pitch Letter
Gardella_PRCampaignConclusion Pitch LetterGardella_PRCampaignConclusion Pitch Letter
Gardella_PRCampaignConclusion Pitch Letter
 
The basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptxThe basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptx
 
Introduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsIntroduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The Basics
 
Unit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptxUnit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptx
 

Erm tm 10

  • 1. ENTERPRISE RISK MANAGEMENT ISO 31000 - 2009 MOHAMAD HASSAN AK., MAFIS, QIA, CRMP, CRMA
  • 2. ERM - ISO 31000
  • 3. GETTING STARTED Obtain Mandate & Commitment Building Start ERM Implementation a Framework IA Role in getting started Design Framework Implement, Monitor, & Improve System
  • 4. Building a Framework a set of components that provide the foundations and organizational arrangements for designing, implementing, monitoring, reviewing, and continually improving risk management throughout the organization
  • 5. Building a Framework Obtain ERM Mandate and Commitment Design Framework Continuously Improve ERM System Implement ERM System Monitor & Review ERM System
  • 6. Obtain ERM Mandate & Commitment Define & endorse the risk management policy Ensure organization’s culture and RM policy aligned Align RM object. with organization object. & strategies Determine RM performance align with performance indicators organization Assign accountabilities & responsibilities at appropriate levels within organization Ensure necessary resources are allocated to risk management Ensure legal and regulatory compliance Communicate benefits of risk management to shareholders Ensure framework for managing risk continues to remain appropriate
  • 7. Some Considerations Why are we choosing implement ERM at this time? Where do we start? What outcome do we expect? What does success look like? What is our scope for implementation? How will we roll ERM out enterprisewide?
  • 8. Design ERM Framework Understand the organization, its business, & context for ERM Frameworks Designing Determine organizational positioning of ERM Develop risk management policy Assign accountability and authority Allocate resources Establish internal & external reporting mechanisms Link ERM to performance appraisal process
  • 9. Understanding organization, business, & context ERM • External Factors: – Social and cultural, political, legal, regulatory, financial, technological, economic, natural, & competitive environment (international, national, regional, or local). – Key driver and trends affecting the objectives of the organization. – Relationship with, and perception and values of, external stakeholders.
  • 10. Understanding organization, business, & context ERM • Internal Factors: – Governance, organizational structure, roles, & responsibilities. – Policies, objectives, and strategies in place to achieve them. – Capabilities & knowledge (capital, time, people, processes, systems, and technologies). – Information systems, information flows, & decision making process. – Relationship with, and perceptions and values of, internal stakeholders. – Organizational cultures. – Standards, guidelines, and models adopted.
  • 11. Determine organizational positioning of ERM • No single best practices • Challenges in perception: – ERM reports too low; therefore no have senior management full commitment. – ERM focuses primarily on financial reporting risks and excludes other important areas of risk. • Establish a risk committee • Key considerations: – Reporting line should be high enough – Sufficient span of responsibility to oversee ERM activities – Report directly to the board
  • 12. Develop Risk Management Policy • Important elements include in policy: – Overall rationale and objectives for, and commitment to, implementing an effective ERM System. – Governance responsibilities, include tone and attitude board. – Application/scope across the organization – Framework used that provide support ERM approach – Authority and responsibilities for overseeing and executing ERM System – Commitment of Resources – Key terms and definitions – Limit and risk tolerance levels – Risk management performance measures and metrics – Expectations & practices to periodically review and update.
  • 13. Implement, Monitor, & Improve ERM System Implement Monitor Improve
  • 14. INTERNAL AUDIT’S ROLE IN GETTING STARTED Lead ERM Implementation Play Prominent Role • More experience, skill, & organizational perspective. • Understand value ERM & push to get implementation. • Steps to avoid impairment objectivity: (1) well-understood situation & agreed, (2) involve appropriate member of management as much as possible, (3) formal plan should be developed, & (4) hired outside resource for assurance • Implementing ERM; knowledge of a good ERM system looks like. • Conducting risk assessment; identifying, analyzing, & evaluating risks. • Considering risk treatment options. • Designing risk management activities. • Determining next steps to make ERM sustainable.
  • 15. INTERNAL AUDIT’S ROLE IN GETTING STARTED Provide Consulting Support Provide Assurance Implementation • Advisory services of ERM • Facilitation of ERM Workshops • Instructional Services • Coaching management risk management process • Championing establishment of ERM • Giving assurance of risk management process • Giving assurance that risks correctly evaluated • Review management of Keys Risks • Evaluating reporting of key risks • Evaluating risk management process