Enterprise Risk Management Flashcards
What are stakeholders?
There are individuals and companies whose utility depends on how well a firm is doing but who cannot diversify the impact of firm risks on their individual situation. (i.e: workers, suppliers, customers); might be reluctant to make firm-specific investments if they question the firm’s financial health
What are shareholders?
They are owners of a firm, they want the firm to be managed in a way that maximizes their welfare.
What are ‘costs of financial distress’?
Costs firms incur because of a poor financial situation situation. They can occur even if the firm never files for bankruptcy or never defaults. (Reducing the costs of financial distress is one of the most important benefits of risk management).
What benefits are provided to a firm by risk management?
- It does not have to pay bankruptcy costs
- Claimholders (shareholders, debtors) get the firm’s entire cash flow
- In this situation, claimholders’ individual risk management cannot substitute risk management within the firm
What is a “Default Put Option”?
When facing the threat of insolvency, shareholders can hold the ‘default put option’; the max amount loss is what they put in, so the amount can never be negative.
What is “Asset Substitution Problem”
Investments in projects with negative net present value but with a high return if they are successful.
What is the definition of “Risk Management”?
(In the traditional sense, it’s pure risk) A scientific approach to dealing with pure risk by anticipating possible accidental losses and designing and implementing procedures that minimize the occurrence of loss or the financial impact of the losses that do occur.
What is the traditional Risk Management Silos?
1) Financial Risk – Treasury
2) Insurance Risk – Risk Management
3) Operational Risk – Business Units
What is “ERM”?
Enterprise Risk Management requires an organization to take a portfolio view of risk; this helps take into consideration how individual risks interrelate.
What are the 4 categories of the ERM Framework?
1) Strategic: high level goals, aligned with and supporting its mission
2) Operations: effective and efficient use of its resources
3) Reporting: reliability of reporting
4) Compliance: compliance with applicable laws and regulations
What is the Sarbanes Oxley Act (SOX 2002)?
Law extends the long-standing requirement for public companies to maintain systems of internal controls
What is COSO ERM Cube?
Shows the relationships of all the components of the ERM framework via a three-dimensional cube; 4 objective categories with 8 components.
What are some pros of the COSO?
- Helps to evaluate / improve firm’s ERM process
- Provides key principals / concepts
- Creates a common risk language
- Gives clear direction / guidance
- Helps to assess risk appetite / tolerance
What are some cons of of COSO?
- Excludes use of RM methods that do not involve ‘explicit’ event ID and risk assessment
- No talk of external environment
- Too large and convoluted
- Not enough of implementation of ERM
- No talk of big data risk, cuber security risk or I.T. risk
What are the steps of implementing the Risk Management Process?
1) Determination of objectives
2) Identification of all significant risks
3) Evaluation of potential frequency and severity of risks
4) Development and selection of methods for managing risks
5) Implementing the risk managements methods chosen
6) Monitoring performance and suitability of ERM methods and strategies on an ongoing basis
