Enterprise Risk Management

advertisement
EXECUTIVE POLICY GROUP
Enterprise Risk Management
Campus Safety Security & Business Continuity
Enterprise
EnterpriseRisk
RiskManagement
Management
www.utdallas.edu
Enterprise Risk Management (ERM)
•
ERM forms an important element of organizational
management and provisioning of consolidated
services.
•
The effective deployment of resources performs a
rollup of risks into a holistic view.
•
Monitoring and testing provides transparency into the
operational ‘state of readiness’ at most process
points to effectively manage organizational efficiency.
Enterprise Risk Management
www.utdallas.edu
Notification
Emergency
Response
IR Systems
Administrative
Services
Training
Test & Review
Campus
Safety & Security
Finance
Business Continuity
Risk
Assessment
Procurement
IR Data
Backup
Emergency
Operations
Executive Policy Group
Enterprise Risk
Management
Faculty/Student
Special Needs
Readiness
Populations
Modes of
Instruction
Enrollment
Learning
Mgmt System
Policies
International
Academic
Affairs
Athletics
Planning Preparation & Resilience
Enterprise Risk Management
Facilities
Management
Internal Audit
& Compliance
Communications
Library
Research
Academic Continuity
Mitigation
Human
Resources
Student
Research
Housing
Preparedness
Operational Continuity
Response
Recovery
www.utdallas.edu
Integrated Framework
ERM Policies
Present a holistic method of managing both
operational and strategic risks across the organization.
The strategic plan for Enterprise Risk Management
includes four strategic initiatives for all areas:
1.
2.
3.
4.
Mitigation
Preparedness
Emergency Response
Resumption & Business Recovery
Enterprise Risk Management
www.utdallas.edu
Management Activities
• Create high level-risk strategy (policy) aligned with
strategic business objectives
• Create a risk management organization structure and
ensure clear reporting lines
• Develop/assign responsibilities for risk management
• Communicate vision, strategy, policy, responsibilities
and reporting lines to all employees across organization
Enterprise Risk Management
www.utdallas.edu
Embed Risk Activities into
ongoing Business Processes
• Align and integrate risk management activities within
all processes
• Embed real-time controls related to risk into digital
systems as appropriate
• Develop continuous improvement processes related
to risk
Enterprise Risk Management
www.utdallas.edu
Measure & Monitor
• Identify key performance indicators and critical
success factors related to risk
• Establish success measures for risk strategy/activities
• Provide a periodic process for measuring risk/return
• Identity and implement monitoring processes and
methods of feedback
Enterprise Risk Management
www.utdallas.edu
Enterprise Risk Management is meant to have a broad meaning as
an all-encompassing term to describe an integrated and enterprisewide comprehensive processes that include: 1.) emergency response;
2.) resumption; 3.) recovery; and 4.) restoration
Accident
prevention
Business
Impact Analysis
Business
Recovery
Business
Resumption
Planning
Command
Centers
ERM
Perspective
Contingency
Planning
Crisis
Communication
Crisis
Management
Disaster
Recovery
Emergency
Management &
Response
Strategic Risk
Exercising &
Training
Information
Security
Mitigation
Planning
Risk Control
Risk Financing
& Insurance
Operational
Risk
Safety &
Security
Risk
Management
EHS
Police
BAIT
Reputation Risk
Event
Management
Computer
Security
Business
Continuity
Regulatory
Compliance
Safety &
Security Council
Regulatory or
Contractual
Risk
Fire Protection
Student
Housing
Academic
Administration
Operations
Risk Mgmt
Adhoc
Committee
Financial Risk
Enterprise Risk Management
www.utdallas.edu
Download