OSFI.ORSA Flashcards
What does ORSA stand for?
Own Risk & Solvency Assessment
What is the general goal of ORSA?
Enhance insurers’ understanding of the relationship between risk profile and capital needs
Does OSFI approve an insurer’s ORSA?
NO, but OSFI will REVIEW a company’s ORSA as part of its assessment of the company
What is the relationship between ERM (Enterprise Risk Management) & ORSA?
ERM and ORSA should be WELL-INTEGRATED so that the analysis and its results are consistent between them.
Identify the ORSA's 5 key elements
.
- RISK identification & assessment
- RELATE risk to capital
- Oversight
- MONITORING & REPORTING
- INTERNAL controls & OBJECTIVE review
Briefly describe the ORSA key element 'risk identification & assessment'
.
Identify all material risks
, including emerging
, foreseeable
, and non-quantifiable
risks
Briefly describe the ORSA key element 'relating risk to capital'
.
Internal Targets should be set to reflect the insurer’s risk profiles, regarding its scope and nature of operations.
Briefly describe the ORSA key element ' oversight'
.
- BoD to review and discuss OSRA, should understand the decisions and plans undertaken by Sr Management
- Sr Management to have a good understanding of the nature of risks , risk mitigants, capital adequacy
Briefly describe the ORSA key element 'Monitoring & Reporting'
.
Annual reports
( or more often if risk profiles changs) to Board of Directors
& Sr Management on risk profile & capital assessment.
Briefly describe the ORSA key element 'Internal control & Objective review'
.
- Controls: Ensure accuracy, integrity, reasonableness
-
Independent Review: Conducted by auditors or external experts
not involved
in ORSA execution.
Is the ORSA process the same for all federal insurers?
YES and NO:
- 5 key elements are the same (list them)
BUT
- specifics differ by company depending on risk profile & NSC (Nature/Scale/Complexity) of operations
Should ORSA be used to set ICT (Internal Capital Target)?
YES:
An important part of ORSA is to set ICT since ICT considers insurer-specific risks
Is cyber risk accounted for in the MCT calculation? Briefly explain whether it should be considered in the company’s internal capital target.
MCT
- not specifically part of MCT
ORSA
- should be considered in setting ICT (Internal Capital Target)
- product is sold through a mobile app
Is interest rate risk accounted for in the MCT calculation? Briefly explain whether it should be considered in the company’s internal capital target.
MCT
- part of market risk within MCT
ORSA
- should be considered in setting ICT (Internal Capital Target)
- government bonds are subject to fluctuations in interest rate
Is geographical diversification accounted for in the MCT calculation? Briefly explain whether it should be considered in the company’s internal capital target.
MCT
- not part of MCT (aside from earthquake + not part of diversification credit)
ORSA
- should be considered in setting ICT (Internal Capital Target)
- company operates in several provinces