Presentation is loading. Please wait.

Presentation is loading. Please wait.

Meycor COSO, a Comprehensive Solution for Enterprise Risk Management (ERM)

Similar presentations


Presentation on theme: "Meycor COSO, a Comprehensive Solution for Enterprise Risk Management (ERM)"— Presentation transcript:

1 Meycor COSO, a Comprehensive Solution for Enterprise Risk Management (ERM)

2 COSO I COSO II

3 MEYCOR COSO AG - A Comprehensive Solution

4 Meycor COSO AG Assessment Module Audit Module

5 MEYCOR COSO AG Meycor COSO AG includes several activities to be assigned to the parties involved in the Risk Management process and a methodology project to provide a step-by-step guide. Meycor COSO AG includes several activities to be assigned to the parties involved in the Risk Management process and a methodology project to provide a step-by-step guide.

6 MEYCOR COSO AG Fully customizable to meet the organization's needs and corporate culture. Fully customizable to meet the organization's needs and corporate culture.

7 The Organization Easily define the organizational structure and its related processes, managing web communications. Easily define the organizational structure and its related processes, managing web communications.

8 Fully understand your organization's attitude towards risk and how the entity's personnel handles and reacts to risks. Using a fully customizable self-assessment you can get a quick diagnosis of how the current Risk Environment and Controls are perceived. You can quickly identify the items that need to be addressed in order to focus resources.

9 Enterprise Risk Management ensures that Senior Management has a process in place to establish objectives and that the objectives thus selected contribute to the entity's mission. You can define several Objectives for each process, classifying and assigning them importance ratings. Strategic objectives can be traced to the highest organizational level. You can even define a different risk threshold for each objective. You can define several Objectives for each process, classifying and assigning them importance ratings. Strategic objectives can be traced to the highest organizational level. You can even define a different risk threshold for each objective.

10 Internal and external events that affect the entity's objectives must be identified and classified as Risks or Opportunities. Events are identified with the collaboration of all the areas involved. Meycor COSO AG includes a sample event database for common processes. Events are identified with the collaboration of all the areas involved. Meycor COSO AG includes a sample event database for common processes.

11 Risks are analyzed considering their likelihood and impact in order to determine how they should be managed. You can estimate their likelihood of occurrence and consequences. You can estimate their likelihood of occurrence and consequences.

12 It is also possible to perform a quantitative loss analysis by identifying the value of the affected assets.

13 An exposure index is set and compared against the acceptable level set by the organization.

14 Senior Management selects the possible answers (avoid, accept, minimize or share), developing actions to align the risks with the maximum acceptable risk and the entity's tolerance to risks.

15 You can simulate several treatment options You can simulate several treatment options

16 It is also possible to review risks that combined could seriously compromise the achievement of the objectives. It is also possible to review risks that combined could seriously compromise the achievement of the objectives.

17 Policies and procedures are set and executed to ensure that the risk response is performed effectively. You can specify mitigation control activities for each risk and assess their effectiveness (being even possible to audit them later on). If the processes' activities are analyzed, the control activities can be linked directly to risks. You can specify mitigation control activities for each risk and assess their effectiveness (being even possible to audit them later on). If the processes' activities are analyzed, the control activities can be linked directly to risks.

18 All relevant information is identified, captured and communicated timely and accurately in order to enable the staff to take on full accountability. An effective communication needs feasible channels throughout the entity. Risk Maps and Reports are published in such way that each area must take responsibility for their risks. Risk Maps and Reports are published in such way that each area must take responsibility for their risks.

19 Current Accounts Mortgages BankingCredit Cards General Map w/Controls Each area is accountable for their own risks Each area is accountable for their own risks

20 Using the web module you can access all the documents and check whether they were read, understood and agreed on. Using the web module you can access all the documents and check whether they were read, understood and agreed on.

21 You can generate reports in RTF, HTML and XLS formats as well as several charts including specific information. You can generate reports in RTF, HTML and XLS formats as well as several charts including specific information.

22 Enterprise Risk Management is thus entirely monitored, being possible to make timely changes when appropriate. This monitoring can be easily performed either through Senior Management activities or independent assessments. The Audit team can access the risk information in a read-only format in order to define the Audit Projects. The Audit team can access the risk information in a read-only format in order to define the Audit Projects.

23 The Audit Module allows you to use Audit Guidelines to perform the review process and to report findings. The Audit Module allows you to use Audit Guidelines to perform the review process and to report findings.

24 With Meycor COSO AG you can define and manage Action Plans to improve controls. With Meycor COSO AG you can define and manage Action Plans to improve controls.

25 Registration Transfers Collection Withdrawals Customer Service Risk Unit IT Legal Generate the control documents necessary to report to Senior Management, to the Operational Risk Committee, and to any areas involved. OS for Operational Risk Management Record Loss Events Meycor KP – Event Module Measure/ Assess SR KRI Meycor Delphos

26 Different areas can report loss events to identify possible changes to the risk assessment. Different areas can report loss events to identify possible changes to the risk assessment.

27 You can define KRI (Key Risk Indicators) that can be populated automatically from the Events Module. You can define KRI (Key Risk Indicators) that can be populated automatically from the Events Module.

28 For further information: Request a free assessment of your organization's Risk Management Maturity Level to


Download ppt "Meycor COSO, a Comprehensive Solution for Enterprise Risk Management (ERM)"

Similar presentations


Ads by Google