Part 2 Flashcards
What are the 5 types of risk assessment and quantification tools?
1) risk assessments
2) loss event database
3) KRI
4) risk analytical models
5) economic capital models
Economic capital modelling and aggregation of risks
Lam - ERM Textbook - pg. 369
What are the 3 main reasons that operational risk management is important?
1) Investigations of major financial disasters over the past few decades have identified operational risk issues as the main culprits in most cases.
2) Operational risks are often correlated with credit and market risks. Operational failures during stressed market conditions can be very costly.
3) If operational risk is not managed as a distinct discipline of risk, it tends to be managed differently across the company. This leads to inconsistencies and inaccurate information fed to senior leaders.
Risk measurement and assessment
Lam - ERM Textbook - pg. 238
What 3 benefits are achieved with successful operational risk management?
In short, it helps management achieve business objectives.
1) Reduce day-to-day losses and potential losses for major incidents.
2) Frees management’s time to focus on revenue-generating activities instead of dealing with operational crises.
3) Strengthens the enterprise risk management system. Incorporates correlation between operational, credit, and market risks.
Risk measurement and assessment
Lam - ERM Textbook - pg. 240
What are the 5 risks that make up operational risk?
1) process risk
2) people risk
3) system risk
4) event risk
5) business risk
Risk measurement and assessment
Lam - ERM Textbook - pg. 241
What is process risk?
An element of operational risk that arises from ineffective and inefficient processes. The key is to balance efficiency and effectiveness of business processes.
Risk measurement and assessment
Lam - ERM Textbook - pg. 241
What is people risk?
An element of operational risk that arises from staff constraints, incompetence, dishonesty, and a corporate culture that does not cultivate risk awareness.
Risk measurement and assessment
Lam - ERM Textbook - pg. 243
What is system risk?
An element of operational risk that arises from system availability, data integrity, systems capacity, data security, business recovery from contingencies, faulty financial models, programming errors, etc.
Risk measurement and assessment
Lam - ERM Textbook - pg. 244
What is event risk?
An element of operational risk that arises from single, unlikely, major incidents like natural disasters.
Risk measurement and assessment
Lam - ERM Textbook - pg. 245
What is business risk (within the operational risk context)?
An element of operational risk that arises from unexpected…
1) changes in the competitive environment
2) trends that damange the franchise and/or operating economics of a business.
It is the risk that revenue will not cover costs within a given period of time.
Risk measurement and assessment
Lam - ERM Textbook - pg. 246
What are the steps to managing operational risk?
1) risk policy and organization
2) risk identification and assessment
3) capital allocation and performance measurement
4) risk mitigation and control
5) risk transfer and finance
Risk measurement and assessment
Lam - ERM Textbook - pg. 246
What should be included in an operational risk management policy?
1) Management principles for operational risk
2) Definitions and taxonomy
3) Objectives and goals
4) Processes and tools
5) Organizational structure
6) Roles and responsibilities
Risk measurement and assessment
Lam - ERM Textbook - pg. 247
In an operational risk management policy, roles and responsibilities should be defined for…
1) Operational risk management overall to ensure the framework is established
2) Strategic planning to ensure risks are addressed in plans and reviews
3) Finance and accounting to ensure accuracy of records and profitability models
4) Legal to ensure activities are in compliance
5) IT to ensure information security
6) Corporate security to ensure corporate assets are protected
Risk measurement and assessment
Lam - ERM Textbook - pg. 248
What is a key issue to consider when assigning roles and responsibilities in an operational risk management policy?
Determine which groups are consultants, checkers, or both. For example, typically, operational risk management groups are consultants, audit groups are checkers, and legal groups are both.
Risk measurement and assessment
Lam - ERM Textbook - pg. 248
What are the 4 main risk identification and assessment tools used for managing operational risk?
1) Loss-incident database. Every loss and incident represents a learning opportunity. The database supports root-cause analysis and risk mitigation strategies.
2) Control self-assessment. Each business unit assesses their own key risks, controls, and management implications which fosters ownership and an idea of how to proceed.
3) Risk mapping. Management ranks key risk exposures with respect to probability and severity (supported by the control self-assessments).
4) Risk indicators and performance triggers
Risk measurement and assessment
Lam - ERM Textbook - pg. 249
What does MAP mean?
minimum acceptable performance
Risk measurement and assessment
Lam - ERM Textbook - pg. 250
What are the most common methodologies for the capital allocation and performance measurement step of operational risk management?
1) Top-down models
2) Implied-capital model
3) Income-volatility model
4) Economic pricing model
5) Analog model
6) Bottom-up (Loss Distribution) Model
Risk measurement and assessment
Lam - ERM Textbook - pg. 250
What is a top-down model in regards to operational risk management?
1) A model for capital allocation and performance measurement.
2) It involves leveraging sophisticated methodologies already developed for credit and market risk to calculate the overall implied operational risk by using data that is usually readily available.
3) Examples are the implied-capital model, the income-volatility model, the economic-pricing model, and the analog model
Risk measurement and assessment
Lam - ERM Textbook - pg. 250
What is an implied-capital model in regards to operational risk management?
1) A model for capital allocation and performance measurement.
2) Capital allocated to operational risk = total risk capital - credit risk capital - market risk capital
Risk measurement and assessment
Lam - ERM Textbook - pg. 251