OSFI.SupFrm Flashcards
Briefly explain the main responsibility of OSFI relationship manager
Main point of contact between FRFI and OSFI
→ responsible for maintaining an up-to-date risk assessment of the FRFI
Briefly describe 4 key principles OSFI uses in its risk assessment of insurance companies.
- identify material risks
- should be forward-looking & allow for early intervention
- use sound predictive judgment
- understand risk drivers
- differentiate between inherent risks & management of those risks
- dynamic adjustment
- assess whole institution by calculation a CRR (Composite Risk Rating)
Briefly describe 3 primary concepts of OSFI’s risk assessment of insurance companies.
- Significant activities
- Inherent risk
- Quality of risk management
- NR (net risk)
- importance & ONR (Overall Net Risk)
- Earnings
- Capital
- Liquidity
- risk matrix & CRR (Composite Risk Rating)
Briefly explain the 4 steps that OSFI follows in risk assessment process.
STEP 1: identify significant activities
STEP 2: assess inherent risks and quality of risk management
STEP 3: calculate NR (Net Risk) for each significant activity using Appendix C
STEP 4: use risk matrix to assess intervention status and CRR (Composite Risk Rating) - Appendices D & E
Briefly describe what is meant by significant activities
Anything that is fundamental to to the business model (LOB, unit, process,…)
It’s the fundamental risk assessment concept within the supervisory framework
Briefly describe what is meant by quality of risk management. (2 controls)
CONTROL LEVEL 1: operational (day-to-day control of significant activities)
CONTROL LEVEL 2: oversight of finance, compliance, actuarial,…
Briefly describe NR (net risk )
Net Risk of significant activity = Judgment on inherent risk & quality of risk management
Can be (low, moderate, above average, high) + trend
Briefly describe risk matrix
Records assessment of significant activities and risks
What is the CRR (Composite Risk Rating)?
Culmination of assessment (can be low, moderate, above average, high)
Identify the 3 core supervisory processes in risk assessment.
- Planning
- Execution (& updating risk profile)
- Reporting & intervention