book

Implementing Enterprise Risk Management: Case Studies and Best Practices

by John Fraser, Betty Simkins, Kristina Narvaez

October 2014

Intermediate to advanced

688 pages

22h

English

Wiley

Read now

Unlock full access

Foreword
Chapter 1: Enterprise Risk Management Case Studies: An Introduction and Overview
The Evolution of Enterprise Risk ManagementWhy the Need for a Book with ERM Case Studies?Summary of the Book ChaptersPart I: Overview and Insights for Teaching ERMPart II: ERM Implementation at Leading OrganizationsPart III: Linking ERM to Strategy and Strategic Risk ManagementPart IV: Specialized Aspects of Risk ManagementPart V: Mini-Cases on ERM and RiskPart VI: Other Case StudiesConclusionNotesReferencesAbout the Editors
Part I: Overview and Insights for Teaching ERM
Chapter 2: An Innovative Method to Teaching Enterprise Risk Management: A Learner-Centered Teaching Approach
Learner-Centered Teaching: The WHYFive Key Changes to Practice the WHATConclusionQuestionsAppendix: LCT ERM Examples from the HOWReferencesAbout the Contributors
Part II: ERM Implementation at Leading Organizations
Chapter 3: ERM at Mars, Incorporated: ERM for Strategy and Operations
Mars' ERM HistoryPhase 2—SuccessGlobal RolloutReporting2007 Operating Plan WorkshopsTechnologyAggregationTemplate EvolutionSpecial SituationsMajor AcquisitionConclusionQuestionsNoteAbout the Contributor
Chapter 4: Value and Risk: Enterprise Risk Management at Statoil
ERM at Statoil: A Brief HistoryERM FoundationsERM Processes in Statoil TodayOptimizing Total RiskTotal Risk Optimization: Lessons LearnedRisk AggregationThe FrontiersConclusionQuestionsNotesReferencesAbout the Contributors
Chapter 5: ERM in Practice at the University of California Health System
The Enterprise Risk Management ProgramPremium Rebate ProgramErm and the Center for Health Quality and InnovationProtected Health Information Value Estimator (PHIve)QuestionsNotesAbout the Contributor
Chapter 6: Strategic Risk Management at the LEGO Group: Integrating Strategy and Risk Management
About the LEGO GroupThe LEGO Group StrategyLEGO Strategic Risk ManagementEnterprise Risk Management (Step 1)Monte Carlo Simulation (Step 2)AROP: Active Risk Assessment of Business Projects (Step 3)Preparing for Uncertainty: Defining and Testing Strategies (Step 4)The PAPA ModelStategic Risk Management Return on InvestmentConclusionQuestionsNotesReferencesAbout the Contributors
Chapter 7: Turning the Organizational Pyramid Upside Down: Ten Years of Evolution in Enterprise Risk Management at United Grain Growers
Background—Operating EnvironmentGovernanceERM Credit Financing OutcomesAgricore UnitedHarvesting ValueConclusionQuestionsAcknowledgmentsNotesAbout the Contributor

Chapter 8: Housing Association Case Study of ERM in a Changing Marketplace
BackgroundSector IssuesCharitable StatusSome Useful MethodologyFour AssociationsAssociation A: London & QuadrantAssociation B: RCT HomesAssociation C: Ability Housing AssociationAssociation D: GreenSquareQuestionsNotesReferencesAbout the Contributor
Chapter 9: Lessons from the Academy: ERM Implementation in the University Setting
The Higher Education EnvironmentEmergence of ERM in Higher EducationAdopting and Implementing ERM in Colleges and UniversitiesThe University of Washington: A Journey of DiscoveryEvolution of ERM at UWERM Structure at UWUW's ERM ModelOutcomes and Lessons LearnedWhat Next?: Current Priorities and Future DirectionConclusionQuestionsNotesReferencesAbout the Contributor
Chapter 10: Developing Accountability in Risk Management: The British Columbia Lottery Corporation Case Study
BackgroundThe Beginnings of the Risk Management JourneyLearning from the First ERM InitiativeRestarting the Program―2006–2008Key Steps in the Development of the ERM ProgramRevitalizing the ERM Program—2009–2010Strengthening the Program—2010–2013Building the Risk ProfileThe Role of Risk Managers, Champions, and CommitteesDeveloping a More Sophisticated Approach to Risk Analysis and EvaluationConclusionQuestionsNotesReferencesAbout the Contributor
Chapter 11: Starting from Scratch: The Evolution of ERM at the Workers' Compensation Fund
Toward ERM Program InitiationInitial ActionsMaturing: Years 1 and 2The FutureQuestionsNotesAbout the Contributor
Chapter 12: Measuring Performance at Intuit: A Value-Added Component in ERM Programs
Intuit's ERM JourneyERM Maturity ModelBenefits of Measuring Performance in ERM ProgramsERM Performance Measurement and Reporting at IntuitConclusionQuestionsAbout the Contributor
Chapter 13: TD Bank's Approach to an Enterprise Risk Management Program
BackgroundConclusionQuestionsReferencesAbout the Contributors
Part III: Linking ERM to Strategy and Strategic Risk Management
Chapter 14: A Strategic Approach to Enterprise Risk Management at Zurich Insurance Group
Enterprise Risk Management at ZurichZurich Group's Enterprise Risk Management FrameworkRole of the Chief Risk Officer and Group Risk Management at ZurichWorking with External StakeholdersZurich's Proprietary Tools Used in ERM FrameworkCategorizing Various Risks at ZurichCapital ManagementZurich's Business Resilience ToolsHow Zurich Uses Its ERM Tools to Create New ValueConclusionAppendixAbout the ContributorsQuestionsReferences
Chapter 15: Embedding ERM into Strategic Planning at the City of Edmonton
Context—City of EdmontonERM Development in the PastCurrent Overall ERM DevelopmentLinks to Strategic Plan and to Other Strategic ToolsSelecting and Testing a Strategic Risk Management ModelSelecting an ERM FrameworkRecommended Strategic ERM ModelLessons LearnedConclusionAppendix: Summary of THE WAY AHEAD, Edmonton's Strategic PlanQuestionsNotesAbout the Contributor
Chapter 16: Leveraging ERM to Practice Strategic Risk Management
ERM: A Reexamination of PurposeRegulatory EnvironmentLeveraging ERM to Practice Strategic Risk ManagementManaging and Measuring Value CreationRisk Management Fault LineValue MapsAdditional Tools and TechniquesConclusionQuestionsNotesAbout the Contributors
Part IV: Specialized Aspects of Risk Management
Chapter 17: Developing a Strategic Risk Plan for the Hope City Police Service
The ContextSome Background on the Hope City Police ServiceWhat the Consultant HeardCommunity Views on Police IssuesQuestionsNotesAbout the Contributor
Chapter 18: Blue Wood Chocolates
BackgroundThe CompanyMarket OverviewBlue Wood Financial PerformanceConclusionAppendix I: Blue Wood ChocolatesAppendix II: The Hershey CompanyAppendix III: Rocky Mountain Chocolate Factory, Inc.QuestionsNotesAbout the Contributors
Chapter 19: Kilgore Custom Milling
BackgroundKilgore Custom MillingThe Management TeamThe CompanyThe New ContractThe Financial Risk Management MeetingQuestionsAbout the Contributors
Chapter 20: Implementing Risk Management within Middle Eastern Oil and Gas Companies
Company BackgroundOrganization CultureLocal CultureMECO StructureMECO Risk Management BackgroundRisk Management Practices within MECOCorporate Risk ExerciseConclusionNotesQuestionsNotesAbout the Contributor
Chapter 21: The Role of Root Cause Analysis in Public Safety ERM Programs
Policing and RiskFive Whys AnalysisCause and Effect AnalysisFailure Mode, Effects, and Criticality AnalysisForce Field AnalysisInfluence DiagramsConcept FansCase Study Example: Tackling Violent CrimeThe FMECA ProcessConclusionQuestionsNotesReferencesAbout the Contributor
Chapter 22: JAA Inc.—A Case Study in Creating Value from Uncertainty: Best Practices in Managing Risk
Setting the ContextIntroduction of ISO 31000 and HB 436 to the CompanyAppendix A: JAA Inc. Financial StatementsAppendix B: Risk Management PolicyPart A – QuestionsPart B – QuestionsNotesReferencesAbout the Contributors
Chapter 23: Control Complacency: Rogue Trading at Société Générale
Part One: Kerviel's Trial—A Media CircusPart Two: Outcome and Lessons LearnedQuestionsReferencesAbout the Contributor
Chapter 24: The Role of VaR in Enterprise Risk Management: Calculating Value at Risk for Portfolios Held by the Vane Mallory Investment Bank
Risk and Value at Risk OverviewYour Task: Calculating Portfolio VAR for Vane MalloryConclusionQuestionsNotesReferencesAbout the Contributors
Chapter 25: Uses of Efficient Frontier Analysis in Strategic Risk Management: A Technical Examination
Strategic Risk Management Framework ExaminedModern Portfolio Theory as a Foundation for Efficient Frontier AnalysisPractical Applications of Risk Measurement for InsuranceSample Case StudyIntended Uses for Our ApproachModern Portfolio Concerns Contained in the FrameworkConsideration of Behavioral Concerns in StructureQuestionsAcknowledgmentsNotesReferencesAbout the Contributors
Part V: Mini-Cases on ERM and Risk
Chapter 26: Bim Consultants Inc.
QuestionsAbout the Contributor
Chapter 27: Nerds Galore
QuestionsAbout the Contributor
Chapter 28: The Reluctant General Counsel
QuestionsAbout the Contributor
Chapter 29: Transforming Risk Management at Akawini Copper
The Acquisition and Due DiligenceThe Transformation ProcessGaining Senior Management Ownership for TransformationThe Transformation PlanQuestionsNotesReferenceAbout the Contributor
Chapter 30: Alleged Corruption at Chessfield: Corporate Governance and the Risk Oversight Role of the Board of Directors
Chessfield Inc. and Its Board of DirectorsWhistle-Blower ComplaintMessage from the CEO Requesting to Meet the AuthorGovernance Documents, Interviews, and On-Site Observation Requested by the AuthorCEO Compensation IssueRisk ManagementSelf-Dealing IssueChessfield Board Meeting to Discuss the Author's RecommendationsTwo Contentious RecommendationsConclusionQuestionsNotesReferencesAbout the Contributor
Chapter 31: Operational Risk Management Case Study: Bon Boulangerie
QUESTIONSAbout the Contributor
Part VI: Other Case Studies
Chapter 32: Constructive Dialogue and ERM: Lessons from the Financial Crisis
Constructive Dialogue: The Essential Difference between Firms That Navigated the Crisis and Those That FailedSuccessful Firms: JPMorgan Chase, Goldman Sachs, Wells Fargo, and TD BankFirms That Failed to Navigate the CrisisJPMorgan Chase after the Crisis: The Perils of HubrisConclusionQuestionsNotesAbout the Contributor
Chapter 33: Challenges and Obstacles of ERM Implementation in Poland
Methodology to Diagnose the Status of ERM ImplementationMain Issues in Poland's ERM ImplementationBoard Perception of ERM: “We Have to Change the Way We Run the Business, Because Lack of ERM Creates Inefficient Management”Who Is Getting Management Buy-In for ERM?Specific Challenges and Obstacles Observed in Risk ManagementWe Have to Build the Chief Risk Officer/Risk Manager Profession from ScratchWhat Numbers Say about ERM MaturityRisk Management Framework—AccountabilityImpact of the Risk Assessment Tools on the Performance of the CompaniesCapital Allocation: A Frequently Missed Part of the ERM Framework and Risk TreatmentConclusionQuestionsNotesReferencesAbout the Contributors
Chapter 34: Turning Crisis into Opportunity: Building an ERM Program at General Motors
Background and ImplementationGeneral Motors' Approach to Enterprise Risk ManagementGame TheoryLooking ForwardConclusionQuestionsNotesAbout the Contributors
Chapter 35: ERM at Malaysia's Media Company Astro: Quickly Implementing ERM and Using It to Assess the Risk-Adjusted Performance of a Portfolio of Acquired Foreign Companies
MalaysiaCorporate Governance in MalaysiaEnterprise Risk Management at AstroAstro Overseas LimitedEvolution of ERM at AOLRole of ERM in the Acquisition ProcessRisk Profile: Risk Map and Action PlansThe Investment Performance DashboardHelping the Board Make Investment DecisionsConclusionQuestionsNotesReferencesAbout the Contributors
About the Editors
Index
End User License Agreement

Content preview from Implementing Enterprise Risk Management: Case Studies and Best Practices

CHAPTER 28 The Reluctant General Counsel

NORMAN D. MARKS, CPA, CRMA

Fellow of the Open Compliance and Ethics Group, and Honorary Fellow of the Institute of Risk Management

Business Software Corporation (BSC) is a global software company headquartered in the Silicon Valley of California, with annual revenues of over $1 billion. It is listed on major North American stock exchanges. The head of the Internal Audit function, Jason Garnelas, has been asked by the board to lead the establishment of an enterprise risk management (ERM) function. Top management, led by the chief executive officer (CEO), John Black, and the chief financial officer (CFO), Jim Toll, have indicated their support for this important initiative. The plan is for Jason to run the program for the first year, at which point management and the board will consider whether it is necessary and appropriate to hire a full-time risk officer.

Jason is grateful for the support of both the board and top management, because it is unusual for an entrepreneurial technology company to recognize the value of risk management and dedicate both time and resources to its implementation. In fact, at a meeting of the executive leadership, John Black explains that he holds his direct reports individually and collectively responsible for the management of risks to the business. He sees the role of the risk officer, currently Jason Garnelas on a part-time basis, as a facilitator to the leadership team. Jason will lead the development ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781118746189Purchase book Downloads

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Implementing Enterprise Risk Management: Case Studies and Best Practices

by John Fraser, Betty Simkins, Kristina Narvaez

CHAPTER 28 The Reluctant General Counsel

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.