Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
The Foundation of
Enterprise Risk Management
Originally published by Towers Perrin
Executive Summary
The financial crisis and the move to market- Defined well, risk appetite forms the boundaries
based accounting highlight the need for of a dynamic process that encompasses
greater transparency about an organization’s strategy, target setting and risk management.
risks. External stakeholders are increasingly As a result, risk appetite is central to adopting
demanding evidence of clear boundaries and and embedding enterprise risk management
guideposts that inform the nature and amount (ERM) in business decisions, reporting and
of risk an organization undertakes. day-to-day business activity. In this article, we
explore the challenges that have prevented a
A clear risk appetite statement meets these
wider embracing of this aspect of ERM. We will
demands by expressing the total risk that an
also consider solutions to these challenges that
organization is willing to take to achieve its
will ensure that the company’s ERM program is
strategic objectives and meet its obligations to
supported by a strong foundation.
stakeholders. Such a statement can provide
assurance to stakeholders that the company
has established clear boundaries for overall risk
taking.
The pursuit of returns without having a defined Risk appetite continues to be an underdeveloped
appetite for risk in place can lead to ruin. Many aspect of insurance companies’ ERM programs.
apparent risk management failures have been According to Towers Watson’s 2008 ERM Survey,
caused by a race for profits when the risks being more than half of the respondents admitted to not
“ Defined well, risk
assumed were poorly understood, leading to having a documented risk appetite statement in
critical errors of judgment. However, risk appetite place. Defining risk appetite and tolerances was appetite forms the
definition is often overlooked as the critical and cited as the leading short-term ERM priority for boundaries of a dynamic
foundational first step to deepening and broadening almost two-thirds of the companies surveyed process that encompasses
that philosophy and shaping a company’s risk (Exhibit 1).
strategy, target setting and
management strategy.
risk management.”
Prudent risk taking in exchange for attractive
returns is appropriate in business, but in order
to achieve this, the risks need to be understood.
To successfully embed ERM throughout the
organization, a company’s risk-taking philosophy
must be embraced by the board and senior
management.
One multinational insurer, specializing in both Towers Watson’s project team recognized
life and property & casualty insurance, wanted that the company had made progress in
to expand its operations. Although the company implementing an ERM framework across the
understood a growth strategy would impact its organization to take account of risk and capital
risk profile, it lacked the necessary capability to in a more holistic manner. However, insufficient
accurately articulate the nature and size of such attention had been given to risk appetite.
an impact. The company had also never clearly Consequently, the company asked Towers
articulated a risk-taking philosophy and was not Watson to help prepare a risk appetite statement
certain of the most effective approach to take in for developing a long-term ERM strategy. The first
addressing this need. stage of the project was to educate the client on
what risk appetite is and how it relates to the
In order to overcome these challenges and in
pursuit of the business strategy.
response to the external demands of rating
agencies for better ERM capabilities, the
company approached Towers Watson for support.
*This case study, provided for the purpose of demonstrating the application and value of risk appetite within a company’s day-to-
day operations, has been sourced from a combination of Towers Watson projects, rather than one specific project, ensuring client
anonymity is safeguarded.
4 towerswatson.com
Exhibit 02. An Implied Risk Contract Between the Board of Directors and Management
The common thread across these definitions is the There are considerable benefits in taking the time to
need for a company to decide on the appropriate articulate risk appetite and tolerance properly. Once
exposure to risk it will accept in order to enhance an organization has developed a clear definition of
the organization’s value over a given time frame. its risk appetite, tolerance and risk limits, it will have
In practice, an organization’s risk appetite should achieved a strong foundation for decision making
address several dimensions: and consistent communication to key stakeholders.
The company had assumed that there was a The Towers Watson project revealed the board’s
general agreement and understanding on what failure to recognize that articulation of a risk
its appetite for risk was, and what types and appetite and agreement on a risk tolerance is
amount of risk it wanted to take on across its a board-level responsibility. As a consequence,
“ The board and manage- various disciplinary silos and departments. In board members were not demanding
fact, Towers Watson identified considerable engagement by company management on the
ment often may not have
evidence to the contrary. subject. Without the presence of board-level
a shared perspective of responsibility and direction, the position of
As part of the first step to help the company
risk and reward prefer- the company was unnecessarily exposed by
more accurately articulate its risk appetite,
ences and trade-offs.” management’s inability to operate within an
the Towers Watson team interviewed board
agreed level of acceptable risk taking.
members and managers individually. In doing
so, the interview process revealed: The board’s lack of engagement and limited
understanding of the risks to which it
• a lack of a common definition of risk
had committed itself led the company to
• very different tolerances of downside risk
inadvertently or unknowingly gamble for more
• different preferences for how risk is
than it was prepared to lose: a risky strategy
measured.
in the current financial crisis. A core part
This situation was made more challenging of the project was to help build a common
because, as with a number of clients for understanding of risk between the board and
whom Towers Watson had previously provided management, which would then allow the
ERM-based support, the company lacked a development of a risk appetite statement
consistent risk vocabulary to consider risk in capable of guiding the company’s risk-based
a generic way. Since the concept is new, the decision making.
organization had not fully developed formal
governance around the establishment of risk
appetite.
6 towerswatson.com
Risk Quantification Exhibit 03. Bottom-Up Risk Limits Are Not Necessarily
Reconciled With Appetite/Tolerance Statements
Made to Measure
Current Financial/Capital Modeling
40% Respondents
Lacks Focus have modeled/
The modeling efforts of many companies are not 40%
reconciled
necessarily tied to the expression of risk appetite risk limits
and risk tolerance. In fact, in our 2008 ERM survey, 60% 60% Respondents
nearly two-thirds of respondents indicated that they have not modeled/
had not modeled or reconciled the consistency of reconciled
their bottom-up risk limits and their top-down risk risk limits
tolerance (Exhibit 3).
Source: 2008 Towers Watson ERM Survey
Exhibit 04. Modeling Is Key to Creating Linkage Between Individual Risk Limits
and Overall Corporate Risk Appetite
Articulate
risk Understand
appetite current Validate
risk profile through Embed in
modeling decision
making
Once in place, the insurer’s revised risk appetite statement now in place, supported by an
and risk tolerance statements needed to be improved quantification process, the company
tested using an appropriate modeling program. is in a stronger position to meet rating agency,
This was critical to gain confidence that the regulator and shareholder demands for greater
risk appetite would have a practical application, transparency, control and governance.
rather than being a purely philosophical
As a result of this engagement, for the first
statement.
time, the board recognized risk appetite as an
Towers Watson selected an economic capital integral part of the business agenda. Previously,
(EC) modeling approach. The EC model was risk had been treated primarily as a compliance
able to capture, as scientifically as possible, issue to be monitored by internal audit. The
the combined impact of the myriad risks (e.g., company is now able to express risk appetite
credit, investment, premium and reserving and tolerance statements with greater clarity, as
risks), dependencies and complexities to which well as demonstrate a strong link between its
the organization is exposed. appetite for risk and its business strategy.
Many companies continue to find modeling a The organization’s risk tolerance is now
time-consuming process, which then produces sufficiently specific to form the basis of
results that are difficult to understand. However, a control framework that will enable the
the EC model created by Towers Watson company’s board and senior management
calculates risk information that is both easily to ensure risks taken stay within the stated
understood and produced in real time. Real- appetite. Ultimately, the company now has a
time modeling means the company now stronger foundation from which to quantify
benefits from real-time decision making, which risk and to better understand the relationship
supports the process of reporting to external between risk and return.
stakeholders. With a clear risk appetite
8 towerswatson.com
For more information, contact:
Linda Chase-Jenkins
212.309.3897
linda.chase-jenkins@towerswatson.com
Ian Farr
44.20.7170.2395
ian.farr@towerswatson.com
Joe Lebens
860.843.7056
joe.lebens@towerswatson.com
towerswatson.com