6 steps to manage risks and drive performance |
Дневник |
By Sabine Vollmer
October 21, 2015
Companies have made progress in keeping enterprise risk management top of mind, but most have yet to take all the steps necessary to identify and pursue risks that drive performance, according to EY’s 2015 global governance, risk, and compliance survey.
Of the nearly 2,000 board audit committee members, senior executives, and assurance and compliance executives who participated in the survey, 97% said their companies have made progress in linking risk management and business objectives, but only 16% considered them closely linked.
Respondents recognise the need to better identify and evaluate emerging risks and to adapt their company’s business strategy accordingly. Eighty-five per cent said opportunities exist to further improve the linkage between risk and business performance. But 77% limited their ability to adjust their business strategy to the changing risk landscape, because they evaluated their company’s risk profile annually instead of continuously.
“Companies get all tied up in identifying the risks, assigning ownership, and getting mitigation and action plans, and they forget about the education and keeping it top of mind with the people doing the work today,” said Lynn Fountain, CPA (inactive), CGMA, a consultant and former chief audit executive who is working as a contractor at Kansas City, Missouri-based accounting firm Mayer Hoffman McCann.
Companies must find ways to embed strategic thinking so that all process owners in the company understand how and when they can take advantage of risk, Fountain said. “It has to be spread throughout the organisation.”
Also, companies should be aware of other limitations, she said. For example, territorial struggles may erupt as to who should manage a risk, which would make execution of the best plans difficult.
To better take advantage of risks worth taking, to prevent counterproductive risks, and to be prepared for external risks that are outside of the company’s control, EY recommends these six steps:
Related CGMA Magazine content:
“4 Ways to Better Handle Enterprise Risk Oversight”: Surveys that focus on executives at small and mid-size enterprises suggest that many organisations have begun to strengthen their processes to handle emerging enterprise risks, but only one-third of the enterprise risk oversight programmes in the rest of the world are mature.
“Why Risk-Management Leaders Generate Higher Profits”: Executives and corporate directors believe business uncertainties and threats are increasing, a PwC survey suggests. The survey results explain how improved risk-management programmes can improve financial performance.
“Five Barriers Restricting Risk-Management Progress”: Only about 15% of companies see a strong link between their enterprise risk management (ERM) processes and their business strategy, according to a survey conducted by the ERM Initiative at North Carolina State University.
—Sabine Vollmer (svollmer@aicpa.org) is a CGMA Magazine senior editor.
https://www.cgma.org/magazine/2015/oct/manage-risks-drive-performance-201513224.html
Метки: steps to manage risks drive performance |
5 tips to better manage rapidly changing enterprise risks |
Дневник |
Executives are aware that the risks businesses face have increased and become more complex in the past five years, but most companies aren’t fully equipped to manage the rapid changes, according to research released by the Enterprise Risk Management Initiative at North Carolina State University’s Poole College of Management and the Association of International Certified Professional Accountants.
About 60% of the 586 CFOs, finance professionals, and other executives who participated in the global surveysaid that enterprise risks have become more numerous and more interconnected. Many respondents reported actual events, or operational surprises, in the past five years – 71% in Africa and the Middle East; 53% in Europe and the UK; 46% in Asia, Australia, and New Zealand; and 32% in the US. But less than one in three said their companies have robust enterprise risk oversight.
Companies in Asia, Australia, and New Zealand appeared the most prepared, the survey suggests. Thirty per cent of respondents in the region said they have complete ERM processes in place, and 23% described risk management oversight as mature.
“This region has historically been a leader in risk management best practices, suggesting a business culture there that is in tune with the benefits of improved risk management thinking,” said Mark S. Beasley, CPA, a professor of enterprise risk management, the ERM Initiative’s director, and a co-author of the study.
Enterprise risk oversight was least robust in Europe and the UK, where 21% of respondents said they had complete ERM processes in place or described risk management oversight as mature. In the US and in Africa and the Middle East, about one-quarter of the respondents reported they are fully prepared.
Businesses’ risk management efforts have improved in the past decade. Seven years ago, 16% of US respondents and 39% of respondents from outside the US called their ERM oversight robust. Still, considering the rising potential for harm as well as business opportunities, most companies could benefit from strengthening their ERM approach, Beasley and co-author Bruce C. Branson said.
“Implementation of an ERM process can provide a framework for an enhanced understanding of the risk environment the entity is facing and hopefully an opportunity to identify emerging risks before they have the potential to significantly impact the entity,” said Branson, a professor of accounting and the associate director of the ERM Initiative.
The survey identified three main barriers to improving companies’ ERM approach:
“Many see risk management as a compliance or bureaucratic initiative that isn’t focused on adding value,” Beasley said. “They forget the fundamental relationship of risk and return, which is demonstrated in their failure to integrate their risk management efforts with their strategic management efforts.”
About half of respondents said they consider risk exposures when they evaluate possible new strategic initiatives. One likely reason is a lack of useful data, the survey found. About one-quarter of the companies participating in the survey do not maintain inventories of their key risk exposures.
The survey results suggest that lack of leadership may be another hurdle, especially in Europe and the UK where only 42% of participating companies had a management risk committee (64% in Asia, Australia, and New Zealand; 56% in the US; 53% in Africa and the Middle East).
Also, fewer than half of the companies participating in the survey have a formal policy statement regarding their enterprise-wide approach to risk management, except in Asia, Australia, and New Zealand (57%). And in most regions, risk management activities are used only rarely to determine compensation for management performance (20% in Asia, Australia, and New Zealand; 15% in Europe and the UK; and 13% in the US).
In Africa and the Middle East, a region that respondents perceived as most risky, 29% of participating companies tied performance-based compensation to risk management.
Educating business leaders more about ERM and helping them to communicate what they learn might be beneficial, Beasley and Branson suggested.
Most companies (80% or more) have not focused on providing executives formal training or guidance on risk management in the past two years, the survey found.
To better manage the rapidly changing enterprise risks, Beasley and Branson offered executives five tips:
—Sabine Vollmer (Sabine.Vollmer@aicpa-cima.com) is a CGMA Magazine senior editor.
Метки: better manage changing enterprise risks |
| Страницы: | [1] |
