Where Do We Go From Here: Risk Management after the Financial Meltdown Kevin McCabe Wells Fargo Audit Services EVP & Chief Auditor FIRMA 24 th National.

Slides:



Advertisements
Similar presentations
Organizational Governance
Advertisements

1 Embedding International Financial Reporting Standards to Promote Private Sector Growth Baku – May 17, 2005 Jody Campbell, Managing Partner, Ernst & Young.
The Benefits and Challenges of Implementation of Basel II in Europe José María Roldán | 27 Sept 2005.
Debt Management Strategy: Governance and Transparency
IMFO Audit & Risk Indaba June 2012
Chapter 10 Accounting Information Systems and Internal Controls
Risk Management and Internal Controls ASSAL 20 November 2014 Annick Teubner Chair, IAIS Governance Working Group.
1 The critical challenge facing banks and regulators under Basel II: improving risk management through implementation of Pillar 2 Simon Topping Hong Kong.
Presented by Muhamad Abrar Bahaman W. Fatimatul Akmar Md. Hassan
Introduction to Enterprise Risk Management (ERM)
Executive Insight through Enhanced Enterprise Risk Management Leverage Value From Your Risk Management Investment.
Audit Committee in Albania Legal framework Law 9226 /2006 “On banks in Republic of Albania” Law 9901/2008 “On entrepreneurs and commercial companies” Corporate.
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
2011 Governance, Risk, and Compliance Conference August 29 – 31, 2011 / Orlando, FL, USA The Top Four Essential Objectives to Auditing ERM Stephen E. McBride,
Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.
Risk Management at ANZ Banking Group Jun 18, 2008 Patrick Zhu Head of Retail Risk China Partnerships.
1 Audit, Control and Risk Management Budget Management and Financial Accountability Steven E. Jameson Lead Auditing Specialist, IAD March 2, 2004.
Eurasian Corporate Governance Roundtable
The Role of Risk Management and Assurance in Effective Organizational Governance Urton Anderson The University of Texas at Austin.
“The Impact of Sarbanes Oxley, An Evolving Best Practice” Ellen C. Wolf Senior Vice President & Chief Financial Officer American Water National Association.
PAINTING THE FULL PICTURE
1 Business Continuity and Compliance Working Together Kristy Justice, AVP WaMu Card Services 08/19/2008.
Codes and Standards for Banks and Financial Institutions: The EBRD-OECD Policy Brief on Corporate Governance of Banks in Eurasia Gian Piero Cigna Senior.
Corporate Governance: Beyond Compliance at a time of Recession Prof. Ashley G. Frank BA(Econ)[Magna Cum Laude], MDPA (Cum Laude], MBA, MCom [Cum Laude],
Information Technology Audit
 Corporate governance is based on three interrelated components: corporate governance principles, functions and mechanisms.
Internal Auditing and Outsourcing
Corporate Governance in Financial Institutions OCDE/IAIS/ASSAL Conference on Insurance Regulation & Supervision in Latin America Punta Cana, Dominican.
Session No. 3 ICAO Safety Management Standards ICAO SMS Framework
WHERE WE ARE 22 member associations in 20 countries Over 4300 individual members who are responsible for risk management and/or insurance in their organisations.
8 – 12 December 2008 Bruce Le Bransky MAFC / APEC / AFDC Shanghai Conference: Session 7.2: Challenges to Governance Structures.
Southern Africa Division Centenary Conference September 2009 Better Boardroom Behaviour Seamus Gillen BA(Hons) MBA FCIS Senior Policy Adviser ICSA UK.
Audits & Assessments: What are the Differences and How Do We Learn from the Results? Brown Bag March 12, 2009 Sal Rubano – Director, Office of the Vice.
The Institute of Internal Auditors
OECD Guidelines on Insurer Governance
Transitioning to the COSO 2013 Update.  Released on May 14, 2013  Designed to build upon the foundation of the 1992 Framework  Will supersede the 1992.
IT Risk Management, Planning and Mitigation TCOM 5253 / MSIS 4253
“ Heightened Expectations” for Corporate Governance AIBA 2 nd Annual Compliance Seminar June 14, 2012 Lester Miller, Senior International Advisor International.
Enterprise Risk Management (ERM) ABN AMRO Business Unit North America (BU NA) Overview for ERM Committee April 11, 2007.
Establishing A Compliance Program: It Makes Sense
COSO: Current ERM Challenges and Our Responses RIMS 2012 Annual Conference April 17, 2012 by David Landsittel COSO Chairman.
CDS Operational Risk Management - October 28, 2005 Existing Methodologies for Operational Risk Mitigation - CDS’s ERM Program ACSDA Seminar - October 26.
City of Tshwane GDS August Reputation promise/mission The Auditor-General of South Africa has a constitutional mandate and, as the Supreme.
Role of the Board of Directors
Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.
1 June 2000 Hong Kong Role of Disclosure in Strengthening Corporate Governance and Accountability Regulation of the Audit Profession Tsuguoki Fujinuma.
The views expressed in this presentation do not necessarily reflect those of the Federal Reserve Bank of New York or the Federal Reserve System Association.
Northern Trust Company Global Risk Management
April 2008 Global Developments in Corporate Reporting Charles Tilley Chartered Institute of Management Accountants Chief Executive Global Developments.
Bank Audit. Internal Audit Internal audit is an independent, objective assurance activity and can give valuable insight in providing assurance that major.
Balance Between Audit/Compliance and Risk Management- Best Practices FIRMA 21 st National Training Conference Julia Fredricks, U.S. Chief Compliance Officer.
1 The Auditor’s Role in Governance: Emulate, Evaluate, Educate Lori Cox, CIA, CGAP IIA Tucson Chapter President Director – Internal Audit, Pima Community.
Balance Between Audit/Compliance and Risk Management – Best Practices FIRMA - 21 st National Training Conference David Bilko Chief Audit Executive SunTrust.
Chapter 3 Governance.
WHAT THE REGULATORS EXPECT FROM PENSION FUNDS Anne Maher Chief Executive The Pensions Board Ireland 23 November 2005.
Slide 1 Federation des Experts Comptables Méditerranéens 4 th FCM Conference Capri, 3-4 May 2004 The Globalisation of Small and Medium-sized Enterprises.
12-CRS-0106 REVISED 8 FEB 2013 APO (Align, Plan and Organise)
Vector INTERNAL CONTROL Mike Trigg. vector WHAT IS INTERNAL CONTROL? A key part of effective corporate governance Policies and processes to: - make operations.
IFC Crisis Response in Corporate Governance May 13, 2009 Santiago de Chile.
Audit Oversight in an Emerging Economy Bernard Peter Agulhas Chief Executive Officer Independent Regulatory Board for Auditors.
1 Vereniging van Compliance Officers The Compliance Function in Banks Amsterdam, 10 June 2004 Marc Pickeur CBFA CBFA.
Internal Audit Quality Assessment Guide
ERM and Information Risks July 2013 Advisory. 1 © KPMG, a partnership established under Ghanaian law and a member firm of the KPMG network of independent.
Compliance Risk Management
IIASA Governance Review
Audit & Risk Management
COSO Internal Control s Framework
2017 Administration and Finance Conference
Adding Value Across the Board
Association of International Bank Audit
Presentation transcript:

Where Do We Go From Here: Risk Management after the Financial Meltdown Kevin McCabe Wells Fargo Audit Services EVP & Chief Auditor FIRMA 24 th National Risk Management Training Conference March 29, 2010 © 2010 Wells Fargo & Co All rights reserved.

How Did We Get Here?? Everyone contributed:  Government – Legislation, Regulators, Activists …  Financial Institutions – Mortgage Brokers, Bank Lenders, Securitizations, Portfolio Managers, Pension Plans, Shadow Banks (GMAC, AIG, ) …  Oversight Groups – Boards, Audit Committees, Risk Managers, Internal Auditors, External Auditors …  Home Owners – trading up, leveraging, lying … So what is going to be done about it? 1

22 Legislation, Regulation, etc.  Very likely governments will propose new regulations, more firewalls, restrictions, taxes and penalties on Financial Institutions  Impact on us: New requirements will come in the form of ‘new’ interpretations rather than many new regulations.

New Regulator Standards for Banks  FRB SR 09-1 Market Risk Rule in BHC’s  FRB SR 08-8 Compliance Risk Management Programs and Oversight at Large Banking Organizations with Complex Compliance Profiles  SEC New Risk Management Disclosure Rules  Basel II (and coming soon III)  Senior Supervisor Group Surveys & Action Plans  What do these have in common? 3

Enterprise Risk Management  All recent regulations have pushed for enhanced enterprise risk management that has:  Corporate Head of Risk  Corporate body that sets Policy, Risk Appetite, Provides Oversight, Escalation, and Reporting to the Board  Business Line Procedures, Execution, Monitoring, Training, and Reporting  Independent Testing and Reporting  In short, you need an effective ERM Framework 4

 Many theoretical models to choose from -- COSO ERM being the most accepted in the USA  Choose an implementation that can accommodate your need to roll-up based upon Business line, Country, Legal entity and Unique risks (Basel uses only Credit, Market, and Operational)  Wells Fargo’s ERM framework has four essential roles and responsibilities 5 Enterprise Risk Management

6 ERM Framework Cultural Goal: Promote effective risk management - characterized by Accountability, Transparency, Efficiency, and Proactive Issue Identification, Disclosure, and Remediation - through clear delineation and execution of KEY ROLES & RESPONSIBILITIES.

7 ERM Framework Corporate ERM Lead the effort and set the Policy for every Line of Business (LOB) Once set up CERM should lead on emerging risks and provide Oversight. CERM should have good working relationships with the Regulators

8 ERM Framework Line of Business (LOB) to develop Procedures to meet Policy (should influence future policy changes and audit scopes) and then proactively monitor and report status to CERM.

9 ERM Framework Corporate Audit (WFAS) performs independent testing but should leverage work done by LOB control groups. Audit should also ‘advise’ on control design. Strong Audit groups should test risk management processes, not just test controls Audit should influence CERM policy & design

10 ERM Framework CERM and Audit should both report quarterly to Senior Management and the Board on the state of controls, issues, trends, etc. Longer term a joint report would be best!

11 ERM Framework Every process should meet some predetermined minimum standards. WFC has chosen Systematic, Transparent, Credible, Verifiable and Timely as our standards.

12 ERM Framework WF Legal Group Advise & influence policy Advise & advocate re: risk mgmt. execution Corporate Legal has an advisory and advocacy role as well.

13 ERM Framework WF Legal Group Advise & influence policy Advise & advocate re: risk mgmt. execution Overall this looks complex but it can work to meet every type of risk to which WFC has applied the model.

14 Evolution of the ERM framework at WFC  ERM framework built to address new regulatory expectations and requirements  “Need for speed” resulted in overlapping roles and duplicated efforts (“Risk management at the Federal, state, county, and local levels”)  Once built (and regulatory requirements met), focused on the opportunity and need to be both more effective (role clarity and no gaps) and more efficient (do things once and well)

Coordination with Internal Audit 15  Risk Management and Internal Audit need to work together for either to be considered Strong  Each can work independently, perhaps even competitively, to achieve their mission  But if they are not coordinated and working together the costs will be high and the effectiveness will be low

WFAS Success Model 16 Expand WFAS’s Capabilities Strengthen WFAS’s Fundamentals Partner with Governance and Risk Management Structure Strong Good Satisfactory

Conclusion 17  There are many causes to the last ‘Great Recession’ and there will be many short term ‘fixes’  But longer term the right solution will be fulfilling the long-held goal of effective ERM  Find a model that works and is effective for your company and culture  Ensure coordination across all control groups

Questions? 18

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.