SlideShare ist ein Scribd-Unternehmen logo

Erm tm 10

Mulyadi Yusuf
Mulyadi Yusuf
Bildung
1 von 15
Downloaden Sie, um offline zu lesen
ENTERPRISE RISK MANAGEMENT ISO 31000 - 2009 MOHAMAD HASSAN AK., MAFIS, QIA, CRMP, CRMA
ERM - ISO 31000
GETTING STARTED Obtain Mandate & Commitment Building Start ERM Implementation a Framework IA Role in getting started Design Framework Implement, Monitor, & Improve System
Building a Framework a set of components that provide the foundations and organizational arrangements for designing, implementing, monitoring, reviewing, and continually improving risk management throughout the organization
Building a Framework Obtain ERM Mandate and Commitment Design Framework Continuously Improve ERM System Implement ERM System Monitor & Review ERM System
Obtain ERM Mandate & Commitment Define & endorse the risk management policy Ensure organization’s culture and RM policy aligned Align RM object. with organization object. & strategies Determine RM performance align with performance indicators organization Assign accountabilities & responsibilities at appropriate levels within organization Ensure necessary resources are allocated to risk management Ensure legal and regulatory compliance Communicate benefits of risk management to shareholders Ensure framework for managing risk continues to remain appropriate
Some Considerations Why are we choosing implement ERM at this time? Where do we start? What outcome do we expect? What does success look like? What is our scope for implementation? How will we roll ERM out enterprisewide?
Design ERM Framework Understand the organization, its business, & context for ERM Frameworks Designing Determine organizational positioning of ERM Develop risk management policy Assign accountability and authority Allocate resources Establish internal & external reporting mechanisms Link ERM to performance appraisal process
Understanding organization, business, & context ERM • External Factors: – Social and cultural, political, legal, regulatory, financial, technological, economic, natural, & competitive environment (international, national, regional, or local). – Key driver and trends affecting the objectives of the organization. – Relationship with, and perception and values of, external stakeholders.
Understanding organization, business, & context ERM • Internal Factors: – Governance, organizational structure, roles, & responsibilities. – Policies, objectives, and strategies in place to achieve them. – Capabilities & knowledge (capital, time, people, processes, systems, and technologies). – Information systems, information flows, & decision making process. – Relationship with, and perceptions and values of, internal stakeholders. – Organizational cultures. – Standards, guidelines, and models adopted.
Determine organizational positioning of ERM • No single best practices • Challenges in perception: – ERM reports too low; therefore no have senior management full commitment. – ERM focuses primarily on financial reporting risks and excludes other important areas of risk. • Establish a risk committee • Key considerations: – Reporting line should be high enough – Sufficient span of responsibility to oversee ERM activities – Report directly to the board
Develop Risk Management Policy • Important elements include in policy: – Overall rationale and objectives for, and commitment to, implementing an effective ERM System. – Governance responsibilities, include tone and attitude board. – Application/scope across the organization – Framework used that provide support ERM approach – Authority and responsibilities for overseeing and executing ERM System – Commitment of Resources – Key terms and definitions – Limit and risk tolerance levels – Risk management performance measures and metrics – Expectations & practices to periodically review and update.
Implement, Monitor, & Improve ERM System Implement Monitor Improve
INTERNAL AUDIT’S ROLE IN GETTING STARTED Lead ERM Implementation Play Prominent Role • More experience, skill, & organizational perspective. • Understand value ERM & push to get implementation. • Steps to avoid impairment objectivity: (1) well-understood situation & agreed, (2) involve appropriate member of management as much as possible, (3) formal plan should be developed, & (4) hired outside resource for assurance • Implementing ERM; knowledge of a good ERM system looks like. • Conducting risk assessment; identifying, analyzing, & evaluating risks. • Considering risk treatment options. • Designing risk management activities. • Determining next steps to make ERM sustainable.
INTERNAL AUDIT’S ROLE IN GETTING STARTED Provide Consulting Support Provide Assurance Implementation • Advisory services of ERM • Facilitation of ERM Workshops • Instructional Services • Coaching management risk management process • Championing establishment of ERM • Giving assurance of risk management process • Giving assurance that risks correctly evaluated • Review management of Keys Risks • Evaluating reporting of key risks • Evaluating risk management process

Empfohlen

Coso erm
Coso ermCoso erm
Coso erm
luisrobles_cl
 
Risk Management – The Building Blocks
Risk Management – The Building BlocksRisk Management – The Building Blocks
Risk Management – The Building Blocks
Continuity and Resilience
 
COSO ERM 2017
COSO ERM 2017COSO ERM 2017
COSO ERM 2017
Jorge A. Gomez P.
 
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and PerformanceEnterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Resolver Inc.
 
Erm tm 11
Erm tm 11Erm tm 11
Erm tm 11
Mulyadi Yusuf
 
Risk Management - A Journey
Risk Management - A JourneyRisk Management - A Journey
Risk Management - A Journey
Debashis Gupta
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
ComplianceOnline
 
Coso erm frmwrk
Coso erm frmwrkCoso erm frmwrk
Coso erm frmwrk
Ravinder Kumar Bhan
 

Empfohlen

Coso erm
Coso ermCoso erm
Coso erm
luisrobles_cl
 
Risk Management – The Building Blocks
Risk Management – The Building BlocksRisk Management – The Building Blocks
Risk Management – The Building Blocks
Continuity and Resilience
 
COSO ERM 2017
COSO ERM 2017COSO ERM 2017
COSO ERM 2017
Jorge A. Gomez P.
 
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and PerformanceEnterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Resolver Inc.
 
Erm tm 11
Erm tm 11Erm tm 11
Erm tm 11
Mulyadi Yusuf
 
Risk Management - A Journey
Risk Management - A JourneyRisk Management - A Journey
Risk Management - A Journey
Debashis Gupta
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
ComplianceOnline
 
Coso erm frmwrk
Coso erm frmwrkCoso erm frmwrk
Coso erm frmwrk
Ravinder Kumar Bhan
 
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB
 
Coso erm
Coso ermCoso erm
Coso erm
Humberto Omar Valverde Taborga
 
Busines Continuity And Compliance
Busines Continuity And ComplianceBusines Continuity And Compliance
Busines Continuity And Compliance
salamali
 
Risk management and the role of the audit committee
Risk management and the role of the audit committeeRisk management and the role of the audit committee
Risk management and the role of the audit committee
Higher Education Funding Council for England
 
COSO Vs ERM - NMIMS INDORE
COSO Vs ERM - NMIMS INDORECOSO Vs ERM - NMIMS INDORE
COSO Vs ERM - NMIMS INDORE
Naresh Parandhaman
 
mr neeraj - day 1 - compliance
mr neeraj - day 1 - compliancemr neeraj - day 1 - compliance
mr neeraj - day 1 - compliance
Neeraj Verma
 
Enterprise Risk Management
Enterprise Risk ManagementEnterprise Risk Management
Enterprise Risk Management
Continuity and Resilience
 
Coso Erm(2)
Coso Erm(2)Coso Erm(2)
Coso Erm(2)
deeptica
 
Enterprise Risk Management & Fraud Sample Presentation
Enterprise Risk Management & Fraud Sample PresentationEnterprise Risk Management & Fraud Sample Presentation
Enterprise Risk Management & Fraud Sample Presentation
Alexander Larsen
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guide
AstalapulosListestos
 
Governance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge ElementsGovernance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge Elements
Iyad Mourtada, CMA, CIA, CFE, CCSA, CRMA, CPLP
 
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging RisksC-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
Aronson LLC
 
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
PMI Indonesia Chapter
 
How Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder ValueHow Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder Value
Ron Harasym
 
Upgrading Risk Management and Internal Control in Your Organization
Upgrading Risk Management and Internal Control in Your OrganizationUpgrading Risk Management and Internal Control in Your Organization
Upgrading Risk Management and Internal Control in Your Organization
International Federation of Accountants
 
FORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activityFORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activity
FERMA
 
HIRimsISO311KandERMFINAL
HIRimsISO311KandERMFINALHIRimsISO311KandERMFINAL
HIRimsISO311KandERMFINAL
Chris Mandel, RF, ARM-E
 
Enterprise risk management february 9th solution training
Enterprise risk management february 9th solution trainingEnterprise risk management february 9th solution training
Enterprise risk management february 9th solution training
veritama
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
SiteshUpadhyay
 
Beyond Compliance
Beyond ComplianceBeyond Compliance
Beyond Compliance
mikaelastafrace
 
Erm talking points
Erm talking pointsErm talking points
Erm talking points
EnterpriseGRC Solutions, Inc.
 
Manajemen Risiko Menurut COSO
Manajemen Risiko Menurut COSOManajemen Risiko Menurut COSO
Manajemen Risiko Menurut COSO
Dina Pramudianti
 

Weitere ähnliche Inhalte

Was ist angesagt?

Busines Continuity And Compliance
Busines Continuity And ComplianceBusines Continuity And Compliance
Busines Continuity And Compliance
salamali
 
mr neeraj - day 1 - compliance
mr neeraj - day 1 - compliancemr neeraj - day 1 - compliance
mr neeraj - day 1 - compliance
Neeraj Verma
 
Coso Erm(2)
Coso Erm(2)Coso Erm(2)
Coso Erm(2)
deeptica
 
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
PMI Indonesia Chapter
 
How Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder ValueHow Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder Value
Ron Harasym
 
FORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activityFORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activity
FERMA
 
Enterprise risk management february 9th solution training
Enterprise risk management february 9th solution trainingEnterprise risk management february 9th solution training
Enterprise risk management february 9th solution training
veritama
 

Was ist angesagt? (20)

PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
PECB Webinar: Enterprise Risk Management - Unsuccessful efforts due to lack o...
 
Coso erm
Coso ermCoso erm
Coso erm
 
Busines Continuity And Compliance
Busines Continuity And ComplianceBusines Continuity And Compliance
Busines Continuity And Compliance
 
Risk management and the role of the audit committee
Risk management and the role of the audit committeeRisk management and the role of the audit committee
Risk management and the role of the audit committee
 
COSO Vs ERM - NMIMS INDORE
COSO Vs ERM - NMIMS INDORECOSO Vs ERM - NMIMS INDORE
COSO Vs ERM - NMIMS INDORE
 
mr neeraj - day 1 - compliance
mr neeraj - day 1 - compliancemr neeraj - day 1 - compliance
mr neeraj - day 1 - compliance
 
Enterprise Risk Management
Enterprise Risk ManagementEnterprise Risk Management
Enterprise Risk Management
 
Coso Erm(2)
Coso Erm(2)Coso Erm(2)
Coso Erm(2)
 
Enterprise Risk Management & Fraud Sample Presentation
Enterprise Risk Management & Fraud Sample PresentationEnterprise Risk Management & Fraud Sample Presentation
Enterprise Risk Management & Fraud Sample Presentation
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guide
 
Governance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge ElementsGovernance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge Elements
 
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging RisksC-Suite’s Guide to Enterprise Risk Management and Emerging Risks
C-Suite’s Guide to Enterprise Risk Management and Emerging Risks
 
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
SymEx 2015 - Turning Risks Into Results, A Wider Perspective to Understand P...
 
How Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder ValueHow Risk Management Can Improve Governance And Increase Shareholder Value
How Risk Management Can Improve Governance And Increase Shareholder Value
 
Upgrading Risk Management and Internal Control in Your Organization
Upgrading Risk Management and Internal Control in Your OrganizationUpgrading Risk Management and Internal Control in Your Organization
Upgrading Risk Management and Internal Control in Your Organization
 
FORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activityFORUM 2013 How to embed risk management as a strategic activity
FORUM 2013 How to embed risk management as a strategic activity
 
HIRimsISO311KandERMFINAL
HIRimsISO311KandERMFINALHIRimsISO311KandERMFINAL
HIRimsISO311KandERMFINAL
 
Enterprise risk management february 9th solution training
Enterprise risk management february 9th solution trainingEnterprise risk management february 9th solution training
Enterprise risk management february 9th solution training
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
 
Beyond Compliance
Beyond ComplianceBeyond Compliance
Beyond Compliance
 

Ähnlich wie Erm tm 10

Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdfSun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
abdo badr
 
DiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conferenceDiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conference
Lou DiSerafino
 
Enterprise risk-management1973
Enterprise risk-management1973Enterprise risk-management1973
Enterprise risk-management1973
NATHAN Consulting
 

Ähnlich wie Erm tm 10 (20)

Erm talking points
Erm talking pointsErm talking points
Erm talking points
 
Manajemen Risiko Menurut COSO
Manajemen Risiko Menurut COSOManajemen Risiko Menurut COSO
Manajemen Risiko Menurut COSO
 
Creating Value Through Enterprise Risk Management
Creating Value Through Enterprise Risk Management Creating Value Through Enterprise Risk Management
Creating Value Through Enterprise Risk Management
 
COSO_ERM.ppt
COSO_ERM.pptCOSO_ERM.ppt
COSO_ERM.ppt
 
Hoover.2016 Texas Bankers CFO Conference
Hoover.2016 Texas Bankers CFO ConferenceHoover.2016 Texas Bankers CFO Conference
Hoover.2016 Texas Bankers CFO Conference
 
Presentation_20110802213554
Presentation_20110802213554Presentation_20110802213554
Presentation_20110802213554
 
Enterprise risk management summary approach guide
Enterprise risk management summary approach guideEnterprise risk management summary approach guide
Enterprise risk management summary approach guide
 
CELOE MRKI Lecture Notes 02 v0.1_old.pptx
CELOE MRKI Lecture Notes 02 v0.1_old.pptxCELOE MRKI Lecture Notes 02 v0.1_old.pptx
CELOE MRKI Lecture Notes 02 v0.1_old.pptx
 
ThinkGRC justifying the transition to an Enterprise Risk Management (ERM) model
ThinkGRC justifying the transition to an Enterprise Risk Management (ERM) modelThinkGRC justifying the transition to an Enterprise Risk Management (ERM) model
ThinkGRC justifying the transition to an Enterprise Risk Management (ERM) model
 
ERM-STANDARD PPT.pptx
ERM-STANDARD PPT.pptxERM-STANDARD PPT.pptx
ERM-STANDARD PPT.pptx
 
IT Governance.pptx
IT Governance.pptxIT Governance.pptx
IT Governance.pptx
 
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdfSun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
Sun-Pharma-Risk-Management-Policy-Synopsis-May-2022.pdf
 
DiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conferenceDiSerafino - ORSA_insurance_conference
DiSerafino - ORSA_insurance_conference
 
GRI ERM Roadmap - Program Overview
GRI ERM Roadmap - Program OverviewGRI ERM Roadmap - Program Overview
GRI ERM Roadmap - Program Overview
 
FX Risk Management – Best Practice Standards for Good Corporate Governance
FX Risk Management – Best Practice Standards for Good Corporate GovernanceFX Risk Management – Best Practice Standards for Good Corporate Governance
FX Risk Management – Best Practice Standards for Good Corporate Governance
 
Erm whitepaper (2)
Erm whitepaper (2)Erm whitepaper (2)
Erm whitepaper (2)
 
Bcu msc cg week 4 risk management
Bcu msc cg week 4 risk managementBcu msc cg week 4 risk management
Bcu msc cg week 4 risk management
 
Internal audits role in compliance
Internal audits role in complianceInternal audits role in compliance
Internal audits role in compliance
 
Enterprise risk-management1973
Enterprise risk-management1973Enterprise risk-management1973
Enterprise risk-management1973
 
Operational Risk Management & Strategic Planning
Operational Risk Management & Strategic PlanningOperational Risk Management & Strategic Planning
Operational Risk Management & Strategic Planning
 

Mehr von Mulyadi Yusuf

Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udaraPaper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Mulyadi Yusuf
 
10. kertas kerja it audit
10. kertas kerja it audit10. kertas kerja it audit
10. kertas kerja it audit
Mulyadi Yusuf
 
09.2 audit siklus pembelian dan pembayaran
09.2 audit siklus pembelian dan pembayaran09.2 audit siklus pembelian dan pembayaran
09.2 audit siklus pembelian dan pembayaran
Mulyadi Yusuf
 
09.1 audit siklus penjualan dan penerimaan
09.1 audit siklus penjualan dan penerimaan09.1 audit siklus penjualan dan penerimaan
09.1 audit siklus penjualan dan penerimaan
Mulyadi Yusuf
 
05.2 auditing procedure application controls
05.2 auditing procedure application controls05.2 auditing procedure application controls
05.2 auditing procedure application controls
Mulyadi Yusuf
 
05.1 auditing procedure general controls
05.1 auditing procedure general controls05.1 auditing procedure general controls
05.1 auditing procedure general controls
Mulyadi Yusuf
 
03.2 application control
03.2 application control03.2 application control
03.2 application control
Mulyadi Yusuf
 
03.1 general control
03.1 general control03.1 general control
03.1 general control
Mulyadi Yusuf
 
02. cobit5 introduction
02. cobit5 introduction02. cobit5 introduction
02. cobit5 introduction
Mulyadi Yusuf
 
02. cobit 41 dan iso 17799
02. cobit 41 dan iso 1779902. cobit 41 dan iso 17799
02. cobit 41 dan iso 17799
Mulyadi Yusuf
 

Mehr von Mulyadi Yusuf (20)

Paper seminar akuntansi pemerintah kel 1--sap berbasis akrual
Paper seminar akuntansi pemerintah kel 1--sap berbasis akrualPaper seminar akuntansi pemerintah kel 1--sap berbasis akrual
Paper seminar akuntansi pemerintah kel 1--sap berbasis akrual
 
Mckinsey kominfo
Mckinsey kominfoMckinsey kominfo
Mckinsey kominfo
 
Paper mssp analisis renstra dan capaian kinerja kemenhub (1)
Paper mssp analisis renstra dan capaian kinerja kemenhub (1)Paper mssp analisis renstra dan capaian kinerja kemenhub (1)
Paper mssp analisis renstra dan capaian kinerja kemenhub (1)
 
Paper mssp analisis renstra dan capaian kinerja kemenpan rb
Paper mssp analisis renstra dan capaian kinerja kemenpan rb Paper mssp analisis renstra dan capaian kinerja kemenpan rb
Paper mssp analisis renstra dan capaian kinerja kemenpan rb
 
Paper menstra kemenkes final-sapce
Paper menstra kemenkes final-sapcePaper menstra kemenkes final-sapce
Paper menstra kemenkes final-sapce
 
Peta strategi kementan
Peta strategi kementanPeta strategi kementan
Peta strategi kementan
 
Mssp analisis renstra ditjen ppi
Mssp analisis renstra ditjen ppiMssp analisis renstra ditjen ppi
Mssp analisis renstra ditjen ppi
 
Manstrapem bina upaya kesehatan final
Manstrapem bina upaya kesehatan finalManstrapem bina upaya kesehatan final
Manstrapem bina upaya kesehatan final
 
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udaraPaper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
Paper mssp analisis renstra dan capaian kinerja ditjen perhubungan udara
 
Balanced scorecard amin subiyakto
Balanced scorecard amin subiyaktoBalanced scorecard amin subiyakto
Balanced scorecard amin subiyakto
 
10. kertas kerja it audit
10. kertas kerja it audit10. kertas kerja it audit
10. kertas kerja it audit
 
09.2 audit siklus pembelian dan pembayaran
09.2 audit siklus pembelian dan pembayaran09.2 audit siklus pembelian dan pembayaran
09.2 audit siklus pembelian dan pembayaran
 
09.1 audit siklus penjualan dan penerimaan
09.1 audit siklus penjualan dan penerimaan09.1 audit siklus penjualan dan penerimaan
09.1 audit siklus penjualan dan penerimaan
 
05.2 auditing procedure application controls
05.2 auditing procedure application controls05.2 auditing procedure application controls
05.2 auditing procedure application controls
 
05.1 auditing procedure general controls
05.1 auditing procedure general controls05.1 auditing procedure general controls
05.1 auditing procedure general controls
 
03.2 application control
03.2 application control03.2 application control
03.2 application control
 
03.1 general control
03.1 general control03.1 general control
03.1 general control
 
02. cobit5 introduction
02. cobit5 introduction02. cobit5 introduction
02. cobit5 introduction
 
02. cobit 41 dan iso 17799
02. cobit 41 dan iso 1779902. cobit 41 dan iso 17799
02. cobit 41 dan iso 17799
 
Erm tm 12
Erm tm 12Erm tm 12
Erm tm 12
 

Kürzlich hochgeladen

The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
heathfieldcps1
 

Kürzlich hochgeladen (20)

2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
 
Google Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptxGoogle Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptx
 
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
 
The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
 
Sociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning ExhibitSociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning Exhibit
 
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
 
Food safety_Challenges food safety laboratories_.pdf
Food safety_Challenges food safety laboratories_.pdfFood safety_Challenges food safety laboratories_.pdf
Food safety_Challenges food safety laboratories_.pdf
 
Python Notes for mca i year students osmania university.docx
Python Notes for mca i year students osmania university.docxPython Notes for mca i year students osmania university.docx
Python Notes for mca i year students osmania university.docx
 
Mehran University Newsletter Vol-X, Issue-I, 2024
Mehran University Newsletter Vol-X, Issue-I, 2024Mehran University Newsletter Vol-X, Issue-I, 2024
Mehran University Newsletter Vol-X, Issue-I, 2024
 
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdf
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdfUnit 3 Emotional Intelligence and Spiritual Intelligence.pdf
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdf
 
Graduate Outcomes Presentation Slides - English
Graduate Outcomes Presentation Slides - EnglishGraduate Outcomes Presentation Slides - English
Graduate Outcomes Presentation Slides - English
 
On National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan FellowsOn National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan Fellows
 
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptxSKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdf
 
FSB Advising Checklist - Orientation 2024
FSB Advising Checklist - Orientation 2024FSB Advising Checklist - Orientation 2024
FSB Advising Checklist - Orientation 2024
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdf
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.
 
Understanding Accommodations and Modifications
Understanding Accommodations and ModificationsUnderstanding Accommodations and Modifications
Understanding Accommodations and Modifications
 
Application orientated numerical on hev.ppt
Application orientated numerical on hev.pptApplication orientated numerical on hev.ppt
Application orientated numerical on hev.ppt
 
Sensory_Experience_and_Emotional_Resonance_in_Gabriel_Okaras_The_Piano_and_Th...
Sensory_Experience_and_Emotional_Resonance_in_Gabriel_Okaras_The_Piano_and_Th...Sensory_Experience_and_Emotional_Resonance_in_Gabriel_Okaras_The_Piano_and_Th...
Sensory_Experience_and_Emotional_Resonance_in_Gabriel_Okaras_The_Piano_and_Th...
 

Erm tm 10

  • 1. ENTERPRISE RISK MANAGEMENT ISO 31000 - 2009 MOHAMAD HASSAN AK., MAFIS, QIA, CRMP, CRMA
  • 2. ERM - ISO 31000
  • 3. GETTING STARTED Obtain Mandate & Commitment Building Start ERM Implementation a Framework IA Role in getting started Design Framework Implement, Monitor, & Improve System
  • 4. Building a Framework a set of components that provide the foundations and organizational arrangements for designing, implementing, monitoring, reviewing, and continually improving risk management throughout the organization
  • 5. Building a Framework Obtain ERM Mandate and Commitment Design Framework Continuously Improve ERM System Implement ERM System Monitor & Review ERM System
  • 6. Obtain ERM Mandate & Commitment Define & endorse the risk management policy Ensure organization’s culture and RM policy aligned Align RM object. with organization object. & strategies Determine RM performance align with performance indicators organization Assign accountabilities & responsibilities at appropriate levels within organization Ensure necessary resources are allocated to risk management Ensure legal and regulatory compliance Communicate benefits of risk management to shareholders Ensure framework for managing risk continues to remain appropriate
  • 7. Some Considerations Why are we choosing implement ERM at this time? Where do we start? What outcome do we expect? What does success look like? What is our scope for implementation? How will we roll ERM out enterprisewide?
  • 8. Design ERM Framework Understand the organization, its business, & context for ERM Frameworks Designing Determine organizational positioning of ERM Develop risk management policy Assign accountability and authority Allocate resources Establish internal & external reporting mechanisms Link ERM to performance appraisal process
  • 9. Understanding organization, business, & context ERM • External Factors: – Social and cultural, political, legal, regulatory, financial, technological, economic, natural, & competitive environment (international, national, regional, or local). – Key driver and trends affecting the objectives of the organization. – Relationship with, and perception and values of, external stakeholders.
  • 10. Understanding organization, business, & context ERM • Internal Factors: – Governance, organizational structure, roles, & responsibilities. – Policies, objectives, and strategies in place to achieve them. – Capabilities & knowledge (capital, time, people, processes, systems, and technologies). – Information systems, information flows, & decision making process. – Relationship with, and perceptions and values of, internal stakeholders. – Organizational cultures. – Standards, guidelines, and models adopted.
  • 11. Determine organizational positioning of ERM • No single best practices • Challenges in perception: – ERM reports too low; therefore no have senior management full commitment. – ERM focuses primarily on financial reporting risks and excludes other important areas of risk. • Establish a risk committee • Key considerations: – Reporting line should be high enough – Sufficient span of responsibility to oversee ERM activities – Report directly to the board
  • 12. Develop Risk Management Policy • Important elements include in policy: – Overall rationale and objectives for, and commitment to, implementing an effective ERM System. – Governance responsibilities, include tone and attitude board. – Application/scope across the organization – Framework used that provide support ERM approach – Authority and responsibilities for overseeing and executing ERM System – Commitment of Resources – Key terms and definitions – Limit and risk tolerance levels – Risk management performance measures and metrics – Expectations & practices to periodically review and update.
  • 13. Implement, Monitor, & Improve ERM System Implement Monitor Improve
  • 14. INTERNAL AUDIT’S ROLE IN GETTING STARTED Lead ERM Implementation Play Prominent Role • More experience, skill, & organizational perspective. • Understand value ERM & push to get implementation. • Steps to avoid impairment objectivity: (1) well-understood situation & agreed, (2) involve appropriate member of management as much as possible, (3) formal plan should be developed, & (4) hired outside resource for assurance • Implementing ERM; knowledge of a good ERM system looks like. • Conducting risk assessment; identifying, analyzing, & evaluating risks. • Considering risk treatment options. • Designing risk management activities. • Determining next steps to make ERM sustainable.
  • 15. INTERNAL AUDIT’S ROLE IN GETTING STARTED Provide Consulting Support Provide Assurance Implementation • Advisory services of ERM • Facilitation of ERM Workshops • Instructional Services • Coaching management risk management process • Championing establishment of ERM • Giving assurance of risk management process • Giving assurance that risks correctly evaluated • Review management of Keys Risks • Evaluating reporting of key risks • Evaluating risk management process