Module 5.1

Question 1

need to be able to appreciate the risks in buying and selling securities to understand their own or their respective clients’ risk profile.

Answer 1

Brokers/ dealers

Question 2

in their exercise of their supervisory authority over brokers/ dealers, need to understand risks to get a big picture overview and perspective of the risk implications of business decisions taken.

Answer 2

associated persons

Question 3

in their duty of providing independent oversight and check over the business activities of brokers/ dealers, should be familiar with the risk consequences of their respective business activities.

Answer 3

Compliance

Question 4

in the course of the performance of their duty to buy and sell securities need to understand the risk of the securities they are selling and the suitability and appropriateness of these securities to be sold to their respective clients especially in their performance of the level of care they are expected to exercise for their clients.

Answer 4

salesman

Question 5

simple working definition of risk provided by ISO 31000

Answer 5

Effect of uncertainty on objectives

Question 6

the distance away from the predictable value or expected value.

Answer 6

risk

Question 7

most popular measures of risk

Answer 7

standard deviation or volatility

Question 8

statistical measure that measures the spread or deviation away from the average.

Answer 8

Standard deviation

The farther you are from the predictable variable (expected value or average), the higher the standard deviation or risk

Question 9

T or F. Risk is associated with certainty

Answer 9

F. Risk is uncertainty

Question 10

as the “state, even partial, of deficiency information related to, understanding or knowledge of an event, its consequence or likelihood”.

Answer 10

Uncertainty

Question 11

This uncertainty exists in two dimensions:

Answer 11

1. Likelihood that the adverse event will happen
2. Consequence or impact of the adverse event

Question 12

refers to the “chance of something happening”.

Answer 12

Likelihood

The higher the likelihood that the adverse event will happen, the higher the level of risk is

Question 13

Likelihood:

• Quality:
• Quantity:

Answer 13

• Quality: not possible to certainty
• Quantity: probability

Question 14

refers to the “outcome of a risk event”

Answer 14

Consequence

Question 15

Consequence:

• Quali:
• Quanti:

Answer 15

• Quali: minor to extreme
• Quanti: losses

Question 16

Risk = Consequence x Likelihood
Results framework

Answer 16

see page 9 module

Question 17

compensation for the time value of money and for credit risk the investor is taking on the borrower or issuer of the fixed income security.

Answer 17

Interest

Question 18

T or F. Investing in a short-term fixed income security is always riskier than investing in a long-term fixed income security.

Answer 18

F. not all the time. General rule is still the longer the tenor, the higher the risk

Question 19

three levels of risk that organizations face

Answer 19

Level 1: Known Risk
Level 2: Developing Risk
Level 3: Black Swan Risk

Question 20

are risks that an organization are aware of and can identify and plan for

Answer 20

Known risks

Question 21

are risks that an organization are aware of but the full extent and implications are not completely clear.

Answer 21

Developing risks

Question 22

are risks that are unforeseen and hard to predict or avoid. It is an popular term in risk management to describe low probability but significantly high impact risk events that could threaten the ability of the organization to continue or operate as a going concern.

Answer 22

Black swan risks

Question 23

T or F. black swans are high-impact, hard to predict but rare events; difficult to quantify probability and psychological biases of people as the role of uncertainty

Answer 23

T

Question 24

Black swan risks are risks that are:
A. High probability, low impact
B. Low probability, low impact
C. High probability, high impact
D. Low probability, high impact

Answer 24

D. Low probability, high impact

Question 25

Risk can be broadly categorized into two different types:

Answer 25

• financial risk
• non-financial risk.

Question 26

are risks that are associated with financing and investments. These risks are associated with transactions that have a direct financial impact.

Answer 26

Financial risks

Question 27

Financial Risks

Answer 27

1. Market risk
2. Credit risk
3. Liquidity risk
4. Refinancing risk

Question 28

To understand the nature and sources of financial risks, it will be helpful to look at the ___________ of a typical company.

Answer 28

balance sheet

Question 29

Funds that come from sources with contractual obligations to repay

Answer 29

Liabilities

Question 30

Funds that come from owners or sources with discretionary payments

Answer 30

Equity

Question 31

is the risk that the investment will not be as profitable as the investor expected because of fluctuations in the market. It involves the risk that prices or rates will significantly change due to economic forces

Answer 31

Market risk

Question 32

Market risk can be categorized into:

Answer 32

interest rate risk, foreign exchange risk, equity price risk and commodity price risk.

Question 33

JG Summit, the investment holding firm of the family of tycoon John Gokongwei, incurred a net loss of PHP 694 million last year, a reversal of the PHP 8.61 billion net profit reported in 2007. The mark-to-market losses were brought about by the combined effects of the following factors: lower market value of its financial assets and fuel hedges volatility of global financial and commodity markets, and the lower value of the peso.

a. Market risk
b. Credit risk
c. Liquidity risk
d. Refinancing risk

Answer 33

a. Market risk

Question 34

is the exposure of a company’s earnings and financial condition to fluctuation or adverse movements in interest rates.

Answer 34

Interest rate risk

Question 35

As interest rates increase, their respective cost of borrowing also increases. This is also known as ______________.

Answer 35

cash flow interest rate risk

Question 36

if bonds are purchased and market interest rates subsequently rise, the price of bonds that carry fixed interest rate will decline to entice future buyers of the bond as the fixed interest carried by the bond is now lower compared to market interest rates. This is also known as _____________________.

Answer 36

fair value interest rate risk

Question 37

is the exposure of a company’s earnings and financial condition to movements in exchange rate.

Answer 37

Foreign exchange risk

Question 38

A company with ownership of overseas subsidiaries also faces _____________ from changes in the reported domestic accounting results of foreign operations due to changes in foreign exchange rates.

Answer 38

revaluation risk

Question 39

The Philippine Peso is among Asia’s worst performers in 2018. San Miguel Corp, SM Investments Corp and Ayala Corp are some of the leading groups with dollar-denominated obligations who need to refinance or repay in the next five years. The most at risk from the peso slump are construction and transportation companies, whose revenues are in Peso but they make large investments in dollars.

a. interest rate risk
b. foreign exchange risk
c. equity price risk
d. commodity price risk.

Answer 39

b. foreign exchange risk

Question 40

is the exposure of a company’s earnings and financial conditions to adverse movements in equity prices. It is the risk that arises from security price volatility.

Answer 40

Equity price risk

Question 41

is the exposure of a company’s earnings and financial condition to fluctuations in commodity prices.

Answer 41

Commodity price risk

Question 42

Commodity price risk exposure usually arises from _____________________ or __________________.

Answer 42

commodity price-linked revenues; commodity price-linked expenses

Question 43

is the risk that the borrower will fail to meet its obligations as they come due. This is largely dependent on the ability and willingness of the borrower to pay their obligations as they come due.

Answer 43

Credit risk

Question 44

Credit risk can be understood in two main dimensions:

Answer 44

a. Probability of default
b. Loss given default

Question 45

likelihood that the borrower will not be able to repay their obligations as it comes due. It is dependent on the characteristics of the borrower or counterparty. The higher the probability of default,
the higher the credit risk of the borrower.

Answer 45

Probability of default.

Question 46

the amount of loss that will be incurred if the borrower defaults. It can be measured as 100% minus the recovery rate, which is the amount that a creditor can claim from the borrower or counterparty in the event of default.

Answer 46

Loss given default.

Question 47

Credit ratings of five Philippine banks are in danger after they were exposed to the biggest default in Philippine corporate history as it could mean higher credit costs and reduction in profit according to Moody’s.

a. interest rate risk
b. foreign exchange risk
c. credit risk
d. commodity price risk.

Answer 47

c. credit risk

Question 48

is the risk arising from the inability of the company to pay its obligation as they come due. describes the ability of the company to convert its assets to cash to meet short-term obligations

Answer 48

Liquidity risk

Question 49

Liquidity risk arises from two factors:

Answer 49

a. Inability to sell or liquidate assets to meet obligations
b. Inability to obtain adequate funding through new borrowings

Question 50

is the inability of the company to replace existing funding to repay existing maturing obligations.

Answer 50

Refinancing risk

Question 51

Hanjin Philippines - the biggest investor in the Subic Bay Freeport Zone filed for bankruptcy on 8 Jan 2019. The company has become financially distressed due to its heavy debt. With revenues falling behind, it cannot support its operations anymore under the burden of heavy debt.

a. interest rate risk
b. liquidity risk
c. credit risk
d. commodity price risk

Answer 51

b. liquidity risk

Question 52

are risks that do not have a direct financial impact

Answer 52

Non-financial risks

Question 53

Examples of non-financial risks are:

Answer 53

1. Operational risk
2. Legal and Compliance risk
3. Strategic risk
4. Reputational risk

Question 54

is the risk of loss resulting from inadequate or failed internal processes, people and systems or from external events.

Answer 54

Operational risk

Question 55

Causes of operational risk

Answer 55

1. People risk
2. Process risk
3. Systems risk
4. External events risk

Question 56

is the risk that people do not follow the organization’s procedures, practices and/or rules. It is the risk that people deviate from expected behaviors.

Answer 56

People risk

Question 57

There are two types of people risks:

Answer 57

• Non-deliberate deviations:
• Deliberate deviations:

Question 58

these are deviations from expected behaviors or set of rules that are not intended

Answer 58

Non-deliberate deviations:

Question 59

these are deviations from expected behaviors or set of rules intended to result in personal or financial gain

Answer 59

Deliberate deviations:

Question 60

The bank has been hit by internal fraud that a senior official perpetrated causing it to lose at least PHP 900 million. The senior official funnelled disbursed loans into fictitious accounts created in the name of a legitimate client. The funds in the fake account, controlled by the rogue officer, were then siphoned off electronically to other accounts in other financial institutions and into the pockets of the suspect.

a. Operational risk
b. Legal and Compliance risk
c. Strategic risk
d. Reputational risk

Answer 60

a. Operational risk

Question 61

is the risk arising from a faulty overall design and application of business processes.

Answer 61

Process risk

Question 62

There are three types of process risks:

Answer 62

a. Model risk
b. Transaction risk
c. Operational control risk

Question 63

This is the risk of incurring consequences, including financial losses, as a result of making decisions based on models that are incorrect or misused.

Answer 63

Model risk.

Question 64

This is the risk that occurs due to failure in execution of transactions.

Answer 64

Transaction risk.

Question 65

This risk arises from the failure of established controls to work as intended

Answer 65

Operational control risk

Question 66

is the risk of failure arising from deficiencies in a company’s infrastructure and information technology systems. Risks associated with information technology systems are identified with deficiency or inadequacy in software quality, IT security, interruption of day-to-day operations and outsourcing.

Answer 66

Systems risk

Question 67

is the risk associated with events outside the company’s control.

Answer 67

External events risk

Question 68

Operational Risk Events

Answer 68

a. Internal Fraud
b. External Fraud
c. Employment Practices and Worker Safety
d. Clients, Products and Business Practices
e. Damage to physical assets
f. Business disruption and system failures
g. Execution, delivery and process management

Question 69

is an operational risk event that arises due to acts intended to defraud, misappropriate property or circumvent regulations, the law or company policy, excluding diversity/ discrimination events, which involves at least one internal part

Answer 69

Internal fraud

Question 70

is an operational risk event that arises due to acts intended to defraud, misappropriate property or circumvent the law, which involves a third party

Answer 70

External fraud

Question 71

Operational risk events that arise from human resource related policies, such as employment practices and workplace safety

Answer 71

Employment Practices and Worker Safety

Question 72

These arise from intentional or negligent failure to meet a professional obligation to specific clients (including fiduciary and suitability requirements), or from the nature or design of a product

Answer 72

Clients, Products and BusinessPractices

Question 73

These arise from due to natural disasters or other events.

Answer 73

Damage to physical assuming

Question 74

These arise from the disruption of business or system failures

Answer 74

Business disruption and system failures

Question 75

These arise from failures in transactionprocessing, process management and relations with trade counterparties and vendors

Answer 75

Execution, delivery and process management

Question 76

is the possibility that lawsuits, adverse judgments or faulty contracts can disrupt or adversely affect the operations or conditions of the organization. It can also refer to the exposure to fines, penalties or punitive damages resulting from the supervisory actions as well as private settlements.

Answer 76

Legal risk

Question 77

is the risk of legal or regulatory sanctions, material financial loss, or loss to reputation that an organization may suffer as a result of its failure to comply with laws, regulations, rules, related self-regulatory organizational standards, code of conduct applicable to its activities and internet policies.

Answer 77

Compliance risk

Question 78

A Philippine Regulatory Agency penalized millions of pesos on two (2) ride-hailing companies for violating the Agency’s order to keep operations separate until the merger of both was approved.

a. Strategic Risk
b. Legal and Compliance Risk
c. Reputational Risk
d. People Risk

Answer 78

b. Legal and Compliance Risk

Question 79

is the risk of loss in earnings, capital or reputation arising from changes in the business environment, adverse strategic decisions, and improper implementation of decisions or lack of responsiveness to an industry, political, economic or technological changes.

Answer 79

Strategic risk

Question 80

T or F. Strategic risk arises from failure to properly formulate or implement strategies leading to significant damage to an organization’s financial position, reputation, competitiveness or business development prospects.

Answer 80

T

Question 81

is the risk that may arise from negative publicity regarding an institution’s business practices.

Answer 81

Reputational risk

Question 82

Risk management is defined by ISO 31000 as:

Answer 82

“Coordinated activities to direct and control an organization with regard to risk”

Question 83

Risk management is everyone’s responsibility. As one saying goes:

Answer 83

“everyone in an organization is a risk manager”.

Question 84

This model aims to remind everyone that each department or unit has a role to play in risk management

Answer 84

three lines of defense models

Question 85

three lines of defense model

Answer 85

First Line: Business Lines/ Operation
Second Line: Risk Management and Compliance
Third Line: Internal Audit

Question 86

It has the primary ownership, responsibility and accountability of risk. They originate risk for the organization and are therefore, in the best position to manage risk.

Answer 86

The first line of defense is the business unit.

Question 87

They are expected to exercise oversight and control on the first line of defense. They are also responsible for developing and implementing the risk management framework.

Answer 87

The second line of defense is risk management and compliance.

Question 88

which reviews the effectiveness of internal control and risk management practices of both the first and second line of defense.

Answer 88

The third line of defense is internal audit

Question 89

Risk management can be viewed as a set of activities that includes:

Answer 89

1. Communication and consultation
2. Establishing the context
3. Identifying risk
4. Analyzing risk
5. Evaluating risk
6. Treating risk
7. Monitoring and reviewing risk

Question 90

the objective of risk management is not to avoid risk. Instead, the objective of risk management is to ___________________.

Answer 90

direct and control risk

Question 91

aims to make risks more manageable and acceptable in line with the capacity of the individual or the organization

Answer 91

Risk management

Question 92

What are the objectives of risk management?

Answer 92

1. Increase the likelihood of achieving business objectives
2. Encourage proactive management of risks
3. Compliance with laws and regulations
4. Efficient allocation of resources
5. Enhance competitive advantage

Question 93

Risk management aims to increase the likelihood of the organization reaching its business objectives by designing and executing strategies that will manage risks.

Answer 93

Increase the likelihood of achieving business objectives

Question 94

The lack of formal process to manage risk makes the organization vulnerable to unwanted risk exposure and weakens the ability of the organization to respond to risks.

Answer 94

Encourage proactive management of risks

Question 95

Failure to comply with laws and regulations is an important risk exposure that would ordinarily be captured in the organization’s risk management practices. Thus, having a strong risk management framework and process reduces the likelihood or instances of violation of laws and regulations.

Answer 95

Compliance with laws and regulations

Question 96

A way to do this is to embed risk management considerations in performance measurements. How an organization rewards or allocates capital says a lot about the values of the organization more than the official value statement or organizational credo.

Answer 96

Efficient allocation of resources

Question 97

Risk management is increasingly being seen as a source of significant competitive advantage. History has shown that organizations that withstood unforeseen crises are organizations with strong and sound risk management.

Answer 97

Enhance competitive advantage

Question 98

is a structured process of identifying, analyzing, evaluating, mitigating and monitoring risk.

Answer 98

risk management process

Question 99

Risk Management Process

Answer 99

1. Identification
2. Analysis
3. Evaluation
4. Mitigation
5. Monitoring and Review

Question 100

is the process of finding, recognizing and describing risks.

Answer 100

Risk identification

Question 101

Risk Identification

Answer 101

1. Risk source
2. Risk event and cause
3. Consequences

Question 102

an element which alone or in combination has the intrinsic potential to give rise to risk

Answer 102

Risk source

Question 103

is an occurrence or change of a particular set of circumstances. The event can be one or more occurrences, and can have several causes.

Answer 103

Risk event

Question 104

is the outcome of an event affecting objectives. The event can lead to a range of consequences, which can be certain or uncertain and can have positive or negative impact on the objectives.

Answer 104

Risk consequence

Question 105

is the process of understanding the nature of risk and determining the level of the risk

Answer 105

Risk analysis

Question 106

Risk analysis involves the consideration of:

Answer 106

1. Causes and sources of risk
2. Positive and negative consequences of risk
3. Likelihood that the risk event happens
4. Factors that can affect the consequences and likelihood

Question 107

When quantifying risk, three factors are typically analyzed and quantified in detail:

Answer 107

1. Likelihood
2. Consequence
3. Exposure

Question 108

This is the chance that the risk event happens.

Answer 108

Likelihood

Question 109

This is the potential gain or loss if the risk event happens.

Answer 109

Consequence

Question 110

This is the total amount of potential loss or gain at the time the risk event occurs disregarding potential recoveries from collateral or other securities.

Answer 110

Exposure

Question 111

is a Latin word for “after the fact”. Involves collection of data on historical losses

Answer 111

Ex-post Analysis

Question 112

is a Latin phrase that means “before the event”. involves the use of flexible methodologies to think about hypothetical events.

Answer 112

Ex-ante Analysis

Question 113

“a story that describes a possible future. It identifies some significant events, the main actors and their motivations and it conveys how the world functions”.

Answer 113

Scenario

Question 114

involves identification of key risks on the organization’s business and adopts a forward looking view on these risks.

Answer 114

scenario analysis

Question 115

Scenario analysis involves the following process:

Answer 115

1. Generate Scenarios
2. Impact Assessment
3. Implementing

Question 116

In generating scenarios, there are generally three approaches:

Answer 116

In generating scenarios, there are generally three approaches:
● Bottom-up
● Top-down
● Consensus workshop

Question 117

is the process of comparing the results of risk analysis with predetermined risk criteria to determine whether risk and/or its magnitude are acceptable or tolerable.

Answer 117

Risk evaluation

Question 118

risk criteria are based on an organization’s ___________________.

Answer 118

risk appetite and tolerance

Question 119

is the aggregate level and types of risk an organization is willing to assume within its risk capacity to achieve its strategic objectives and business plan.

Answer 119

Risk appetite

Question 120

refers to the level of risk an organization can bear after the application of risk treatment mitigation strategies.

Answer 120

Risk tolerance,

Question 121

involves selecting one or more options for modifying risks and implementing those options.

Answer 121

Risk treatment

Question 122

Risk Treatment Options

Answer 122

1. Avoid risk
2. Take or increase risk
3. Transfer Risk
4. Change likelihood
5. Change consequence
6. Share the risk

Question 123

deciding not to pursue or continue with the activity that generates risk.

Answer 123

Avoid Risk

Question 124

This option is only taken if the company is confidence that it has the ability, expertise and willingness to tolerate and manage the residual risk arising from the business opportunity that generates the specific risk.

Answer 124

Take or Increase Risk

Question 125

is a strategy that involves the contractual shifting of risk from one party to another.

Answer 125

Risk transfer

Question 126

to reduce the chance or likelihood of a risk event from happening. This can be done through investments in preventive control to keep risk events from occurring.

Answer 126

Change likelihood

Question 127

The purpose of the adoption of the Risk Based Capital Adequacy (RBCA) Rules of the SEC is to ______________________.

Answer 127

protect the firms, investors, and its clients

Question 128

refers to the requirement to maintain sufficient liquid assets to cover the total risk exposure of the company.9 It is an approach to treat risk from the likelihood of happening as it ensures that companies have enough capital to cover its exposure to risks and that they are liquid enough to promptly settle obligations to clients.

Answer 128

RBCA

Question 129

refers to a risk treatment strategy where the consequence of risk is modified. Note that the difference between this and the other risk treatment is that this treatment applies only after the risk occurs

Answer 129

Change consequence

Question 130

There are many ways to change consequence such as:

Answer 130

● Changing the amount of loss if a risk event happen
● Changing the party who will bear the consequence of risk

Question 131

is a risk treatment option where the consequence of risk is distributed among several participants.

Answer 131

Risk sharing

Question 132

is the process of checking, supervising, critically observing or determining the status of the risk in order to enable change from the required or expected performance level.

Answer 132

Risk monitoring

Question 133

is the process of determining the suitability, adequacy and effectiveness of the risk management process.

Answer 133

Risk review

Question 134

is an important part of the risk monitoring and reviewing process. It involves documenting and communicating the results of the organization’s risk assessment and treatment measures to both internal and external stakeholders.

Answer 134

Risk reporting