Click here to download a pdf - Director Magazine
Click here to download a pdf - Director Magazine
Click here to download a pdf - Director Magazine
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
DEFINING THE RISK APPETITE/RISK TOLERANCE OF THE ORGANISATIONWhilst the financial services sec<strong>to</strong>r has led thinking on how <strong>to</strong> develop and setrisk appetite (and the financial terms often used in this area tend <strong>to</strong> reflect this),the tired belief still found in other industries that this subject “concerns onlyfinancial services and doesn’t apply <strong>to</strong> us” needs <strong>to</strong> be firmly rejected.It is important <strong>to</strong> remember, however, that t<strong>here</strong> is no single ‘one size fits all’approach <strong>to</strong> the development and setting of risk appetite. The content will verymuch depend on culture, industry sec<strong>to</strong>r, availability and quality of data andlevels of existing enterprise risk management (ERM) maturity.SUPPORTING THE BOARD’S NEEDSFrom a board’s perspective t<strong>here</strong> are a number of advantages <strong>to</strong> adopting theapproach described in this chapter:■ A holistic approach <strong>to</strong> risk management is generated, allowing the board <strong>to</strong>achieve a better understanding of the key threats <strong>to</strong> the business that canresult in serious financial or reputational damage;■ An environment is created that will allow the board <strong>to</strong> become moreengaged in risk issues and help promote buy-in at senior managementlevels <strong>to</strong> ensure that a risk-based approach is adopted in strategic decisionmakingacross the business;■ The board will be in a better position <strong>to</strong> deal with conflicts that may arisebetween different stakeholders, ensuring all views are aligned with theorganisation’s strategy.KEY ACTIONS FOR BOARD MEMBERS■ Set and agree the overall risk appetite and corporate risk <strong>to</strong>lerance;■ Ensure that the risk appetite statement is signed off and communicatedwell, so that expectations are set in relation <strong>to</strong> management’s risk taking;■ Regularly review the organisation’s risk appetite-related <strong>to</strong>lerances <strong>to</strong>ensure that they are still relevant <strong>to</strong> the business objectives and the everchangingnature of risk;■ Ensure that the risk appetite review is part of the organisation’s strategyand planning processes.46