版权说明:本文档由用户提供并上传,收益归属内容提供方,若内容存在侵权,请进行举报或认领
文档简介
EnterpriseRiskManagement
Framework:IntegratingwithStrategyandPerformance1Mission2COSO’sMissionis“Toprovidethoughtleadershipthroughthedevelopmentofcomprehensiveframeworksandguidanceonenterpriseriskmanagement,internalcontrolandfraud
deterrencedesignedtoimproveorganizationalperformanceandgovernanceandtoreducetheextentoffraudin
organizations.”COSO’sFundamental
PrincipleGoodriskmanagementandinternalcontrolarenecessaryfor
longtermsuccessofall
organizationsCOSOProjecttoUpdatetheEnterpriseRiskManagement
Framework3TheCOSOBoardreleasedinSeptember2017anupdateto
the2004EnterpriseRiskManagement–Integrated
FrameworkThatframeworkisusedwidelyusedbymanagementtoenhance
anorganization’sabilitytomanageuncertaintyandtoconsiderhowmuchrisktoacceptasitstrivestoincrease
valueThisinitiativeenhancedtheframework’scontentandrelevanceinanincreasinglycomplexbusinessenvironmentsothatorganizationscanattainbettervaluefromenterpriserisk
managementAbout
COSO…>
600,000professionalsOriginally
formed
in1985,COSOis
a
joint
initiativeof
five
private
sector
organizationsandis
dedicated
toproviding
thought
leadershipthrough
thedevelopment
of
frameworks
andguidance
onenterprise
riskmanagement
(ERM)internal
control
and
fraud
deterrence4ThoughtLeadershiptoImproveYourOrganization5Specifictopicsfor
discussion6Settingthe
StagePathto
Publication10KeyThingstoKnowaboutthe
FrameworkPublicExposure
ProcessKey
TakeawaysSettingthe
Stage7Project
StructurePwCProject
Team:ServedastheauthorandprojectleaderConductedresearch,interviews,surveys,AdvisoryCouncilmeetings,andone-on-oneandgroupforumstocapturefeedbackonthe
updateCapturedfeedbackfromacrossNorthAmerica,CentralAmerica,Europe,Asia,and
AustraliaAdvisoryCounciland
Observers:Consistedofover25
professionalsProvidedinput,feedback,insight,andideasthroughoutthe
update8COSO
BoardPwC
ProjectTeamAdvisoryCouncilObservers8AKey
Introduction…9Ourunderstandingofthenatureofrisk,theartandscienceof
choiceliesatthecoreofourmodernmarket
economyEverychoicewemakeinthepursuitofobjectiveshasitsrisks.
Fromday-to-dayoperationaldecisionstothefundamentaltrade-offsintheboardroom,dealingwithuncertainlyinthesechoicesisapartofourorganizational
lives.ANew
TitleRetitledasEnterpriseRiskManagement—IntegratingwithStrategyandPerformanceRecognizestheimportanceofstrategyandentityperformanceFurtherdelineatesenterpriseriskmanagementfrominternalcontrol10Pathto
Publication11KeyEffortsinUpdatingthe
Framework12Extensiveresearch,including
surveyInteractionwithanAdvisoryCouncilandPwCExtended
TeamMeetingsheldaroundtheworldtohelpenvisionthe
updatePubliccomment
processMeetingsheldaroundtheworldtocapturefeedbackon
updateSummaryofPublicCommentFeedback:SurveyOver200responses–doublethat
oftheinternalcontrol
updateOver70%ofresponsesfrom
individualsOver50%ofparticipationoutside
ofNorth
AmericaAlmost50%hadaffiliations
beyondCOSO
membershipsAlmost50%ofrespondentshad10
ormoreyearsofriskmanagementexperiencePositiveratingsoutnumbered
negativeratingsby
4.5:113SummaryofPublicCommentFeedback:Letters48lettersreceived–manyof
whichdemonstratedconsiderableinvestmentCommentsonconcepts(flawedmissing,unnecessary)collectivelyrepresentedlessthan15%ofthetotalnumberofcomments
receivedGreatestnumberofcommentsrequestedclarityofdrafted
contentversusadding/deleting
content1410KeyThingstoKnowabout
theFramework151)ProvidesaNewDocument
StructureFrameworkfocusedonfewercomponents
(five)Usesfocusedcall-outexamplestoemphasizekeypoints(>
30)Followsthebusinessmodelversusanisolatedrisk
managementprocess162)Introduces
Principles20keyprincipleswithineachofthefive
components173)IncorporatesNew
GraphicsGraphichasstrongertiestothebusiness
model184)Focuseson
integration19IntegratingERMwithbusinesspracticesresults
inbetterinformationthatsupports
improveddecision-makingandleadstoenhanced
performanceIthelpsorganizations
to:Anticipaterisksearlierormoreexplicitly,openingupmoreoptionsformanagingthe
risksIdentifyandpursueexistingandnew
opportunitiesRespondtodeviationsinperformancemorequicklyand
consistentlyDevelopandreportamorecomprehensiveandconsistentportfolioviewofriskImprovecollaboration,trust,andinformation
sharing5)Emphasizes
Value20Enhancesthefocusonvalue–how
entitiescreate,preserve,andrealize
valueEmbedsvaluethroughouttheframework,asevidencedby
its:–Prominenceinthecoredefinitionofenterpriserisk
management–Extensivediscussionin
principles–Linkagetorisk
appetite–Focusontheabilitytomanagerisktoacceptable
levels6)Linksto
StrategyExploresstrategyfromthreedifferent
perspectives:–Thepossibilityofstrategyandbusinessobjectivesnotaligning
withmission,visionand
values–Theimplicationsfromthestrategy
chosen–Risktoexecutingthe
strategy217)Linksto
Performance22Enablestheachievementofstrategybyactivelymanagingrisk
andperformanceFocusesonhowriskisintegraltoperformance
by:–Exploringhowenterpriseriskmanagementpracticessupport
theidentificationandassessmentofrisksthatimpact
performance–Discussingtoleranceforvariationsin
performanceManagesriskinthecontextofachievingstrategyand
businessobjectives–notasindividual
risks7)Linksto
PerformanceIntroducesanew
depictionreferredtoasarisk
profileIncorporates:RiskPerformanceRisk
appetiteRisk
capacityOffersacomprehensiveview
ofriskandenablesmorerisk-awaredecision
makingTheframeworkprovidesacompletedepictionofhowtobuilda
riskprofileinan
appendix238)RecognizesImportanceof
CultureAddressesthegrowingfocus,attentionandImportanceof
culturewithinenterpriserisk
managementInfluencesallaspectsofenterpriserisk
managementExploresculturewithinthebroadercontextofoverall
coreDepictsculturebehaviorwithinarisk
spectrumExploresthepossibleeffectsofcultureondecision
makingExploresthealignmentofculturebetweenindividualand
entitybehavior249)Focuseson
Decision-makingExploreshowenterpriseriskmanagement
drives risk
awaredecision
makingHighlightshowriskawarenessoptimizesandaligns
decisionsimpacting
performanceExploreshowrisk
awaredecisionsaffecttherisk
profileRiskAwareDecision
MakingAssumptionsRiskAppetiteCultureStrategyBusinessContextRisk
Profile2510)Buildslinkstointernal
controlThedocumentdoesnotreplacetheInternalControl–
IntegratedFrameworkThetwoframeworksare
distinctand
complementaryBothuseacomponents
andprinciples
structureAspectsofinternalcontrol
commontoenterpriseriskmanagementarenot
repeatedSomeaspectsofinternal
controlaredevelopedfurtherinthisframework
温馨提示
- 1. 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。图纸软件为CAD,CAXA,PROE,UG,SolidWorks等.压缩文件请下载最新的WinRAR软件解压。
- 2. 本站的文档不包含任何第三方提供的附件图纸等,如果需要附件,请联系上传者。文件的所有权益归上传用户所有。
- 3. 本站RAR压缩包中若带图纸,网页内容里面会有图纸预览,若没有图纸预览就没有图纸。
- 4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
- 5. 人人文库网仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对用户上传分享的文档内容本身不做任何修改或编辑,并不能对任何下载内容负责。
- 6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
- 7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。
最新文档
- GB 18100-2025摩托车和轻便摩托车道路照明及光信号装置的安装规定
- JJG 1205-2025直流电阻测试仪检定规程
- ××中学档案管理规范制度
- 股东权益出资证明书正规版(7篇)
- 实习表现及工作成果认证证明书(5篇)
- 2025年安徽省事业单位招聘考试教师信息技术学科专业知识试卷
- 2025年场(厂)内专用机动车辆维修人员考试试卷(汽车维修行业市场潜力分析与挖掘策略)
- 知识产权转让协议要点报告书
- 2025年电子商务师(中级)职业技能鉴定模拟试题库及答案
- 2025年美容师职业技能鉴定试卷-高级案例分析
- 雨季行车安全培训
- 广西南宁市英语小升初试卷及解答参考(2024-2025学年)
- 2016年北京市中考真题数学试题(解析版)
- 智能客服培训手册
- 个人雇护工签订协议书范本范本
- 山东省潍坊市2024-2025学年高二生物下学期期末考试试题
- 2024年苏教版四年级数学上册全册教案
- 初++中数学设计学校田径运动会比赛场地+课件++人教版七年级数学上册
- 《卫星导航系统》全套教学课件
- 2023-2024学年山东省菏泽市东明县八年级(下)期末数学试卷(含答案)
- 江西省新余市2023-2024学年七年级下学期期末数学试题
评论
0/150
提交评论