23 Risk Management & Controls Flashcards

1
Q

What are the three lines in the “Three Lines of Defence” model of enterprise risk management? (3)

A
  1. Business Operations: a well established control environment in day-to-day operations.
  2. Oversight Functions: responsible for the production, implementation and monitoring of risk management policies and procedures.
  3. Independent Assurance Providers: internal and external audit to provide evaluation and challenge of the risk management process.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the factors to take into account when monitoring credit risk exposure. (6)

A
  1. Counterparty exposure - the amounts the company would lose from each counterparty.
  2. Adequacy of diversification.
  3. Likelihood of default.
  4. Amount that could be recovered in event of default.
  5. Period of exposure.
  6. Risk mitigating arrangements (e.g. credit risk insurance or credit default swaps).
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How may a company manage market risk? (4)

A
  1. Define governance arrangements for investment management decisions.
  2. Define authorisation levels for investment management decisions.
  3. Ensure management understand the sensitivity of the liability calculations to movements in market values.
  4. Define management actions in the events of movements in the level of key market indicators.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How may a company manage liquidity risk? (4)

A
  1. Monitor the potential for short-term cashflow mismatches due to the volatility of claim payments and policyholder options.
  2. Monitor investment operations (e.g. collateral requirements for derivatives)
  3. Clear inclusion of liquidity risk in the company’s risk policy.
  4. Include liquidity risk assessment in the risk-based capital framework.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

List possible sources of operational risk. (16)

A
  1. Mis-selling
  2. Mis-pricing
  3. Inadequate experience analysis
  4. Model risk
  5. Admin errors
  6. IT failures
  7. Transaction processing errors
  8. Data issues
  9. Damage to physical assets
  10. Business disruptions
  11. Customer services standards
  12. Staff retention
  13. Key person risk
  14. Fraud
  15. Failure to comply with health and safety regulation
  16. Conduct risk
  17. TCF contraventions
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Define conduct risk and give six examples of issues to consider. (6)

A

The risk that behaviour results in poor outcomes for customers.

Examples include:

  1. Operational failures.
  2. Information asymmetries.
  3. Keeping pace with regulatory requirements.
  4. Market conditions.
  5. Product development activities. 6. Strategic objectives.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

List nine types of model risk. (9)

A
  1. Incorrectly specified.
  2. Correctly specified, but incorrectly built.
  3. Correctly specified and built but inappropriately used.
  4. An inappropriate level of complexity.
  5. Misinterpretation of results.
  6. Data or assumptions that are inconsistent with the methodology.
  7. Errors in the process of using the model.
  8. Inappropriate use where the models limitations indicate that the results will be inappropriate.
  9. Where expert judgement is inadequately applied.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What actions can be taken to manage model risk? (6)

A
  1. Model owners being required to approve the methodology.
  2. Model owners evidencing that testing of the model is adequate.
  3. Review of model assumptions and limitations to ensure they are appropriate.
  4. Having documented processes with sufficient checks to ensure they are carried out correctly.
  5. Regular validation of models to ensure their use remains appropriate.
  6. Model validation being repeated when material changes occur.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

List eight possible sources of unit pricing risk. (8)

A
  1. Errors in the calculation of the prices at which units are allocated or deallocated from policyholders.
  2. Errors in the calculation of the prices at which units are created or cancelled.
  3. Errors in the way that compensation for mistakes is determined.
  4. Not changing between bid and offer prices when needed.
  5. The tax allowance for unrealised gains and realised and unrealised losses.
  6. Where surrenders are allowed at a preceding price, anti-selective surrenders occurring due to a fall in the underlying value of assets.
  7. Management charge rebates being incorrect when unit funds invest in other internal or external funds.
  8. System errors e.g. out of date or inaccurate asset prices.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Define insurance risk and give three examples. (5)

A

The risk of fluctuations in the timing, frequency and severity of insured events, relative to expectations at the time of underwriting.

It can also refer to the risk of fluctuations in the timing and amount of claim settlements.

Examples:

  1. Variations in mortality and persistency rates.
  2. Guarantees acquiring a value that adversely affects the finances of the company.
  3. Potential expense overruns relative to pricing.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

In addition to the standard proposal form, list four sources of medical evidence used by insurers for medical underwriting. (4)

A
  1. Medical examinations.
  2. Nurse screening.
  3. Medical history.
  4. Supplementary questionnaires.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Describe five steps UK insurers can take to address non-disclosure. (5)

A
  1. Cotinine testing for tobacco related non-disclosure.
  2. Comprehensive, clearly worded application forms.
  3. Client declarations on application.
  4. Random sampling of cases after acceptance.
  5. Abide by the industry code of practice when non-disclosure is discovered.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

List three risks generated by reinsurance. (3)

A
  1. Counterparty risk
  2. Legal risk
  3. Systems and data risk
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Describe a longevity swap that could be used by an insurance company to hedge the risk of an immediate annuity portfolio. (4)

A

The insurance company pays a fixed series of payments agreed at the outset of the swap.

The reinsurer pays a floating series of payments linked to either the actual annuity amounts paid or a specified mortality index.

Collateral is calculated regularly and paid to reflect the value of the swap at any given date.

To determine collateral, the counterparties have to agree a discount rate and the forward mortality rate for the floating leg.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

State two risks that may be introduced or increased by an insurance company entering into a longevity swap. (2)

A
  1. Counterparty risk
  2. Basis risk (if the floating leg of the swap is based on a generic population mortality index).
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Define ‘group risk’. (1)

A

When the activities of one firm within a group may impact the reputation or financial soundness of another firm within the group.

17
Q

Describe risk controls that may make up part of the management framework of an insurance company (6)

A
  1. External audit
  2. Internal audit function reporting directly to the board.
  3. Control accounts to ensure different sources of data within the company reconciled with each other.
  4. MI: Actual vs Budget results
  5. MI: Analysis of Surplus
  6. MI: Analysis of Change in Embedded Value
18
Q

Name four sources of market risk. (4)

A

Movements in:

  1. Interest rates
  2. Market value of equities
  3. Exchange rates
  4. Real estate prices

Note that these are not independent of each other!