Academic literature on the topic 'Enterprise Risk Management'

The new Basel regulatory initiatives and a burgeoning risk management literature signify the rise of enterprise risk management (ERM) in the financial services sector. However, very little is known of the roles that risk management plays in organizations and how it obtains organizational significance. This study, utilising case study material from seventy-five in-depth interviews with senior managers at two large banking groups, is a first step in exploring ERM in action. Apart from the field material, the study draws on the normative- practitioner literature of risk management, as well as on a long strand of organisationally grounded studies of management control. ERM appears to be an assembly of four risk management ideal types (Risk Silo Management, Integrated Risk Management, Risk and Value Management, Strategic Risk Management), all of which aspire to be 'enterprise-wide', and together constituting the 'risk management mix' in a given organisation. Three distinct types of risk managers emerged in both organisations, displaying characteristic aspirations and alliances (risk silo specialists, risk capital specialists, senior risk officers). The case study analysis compared and contrasted the observed two ERM assemblies, and emphasised the alternative patterns of organizational significance displayed by the risk management functions. Under the first model (value-based ERM) risk management was integral to the formal planning and performance measurement process, while remained neutral in the discussions of discretionary strategic decisions. Under the second model (strategic ERM) risk management was incidental to formal planning and control, however, senior risk officers exercised agenda-setting power to influence the discussion of key strategic uncertainties. The study explains the observations in terms of firm-specific factors and institutional pressures. The politics of risk control and the presence of different calculative cultures in the organisations were tampered by contemporary corporate governance imperatives, such as the shareholder-value drive and the risk-based internal control imperative.

Postol, V. O. Enterprise risk management system formation=Формування системи управління ризиками підприємства : дипломна робота : 073 Менеджмент / В. О. Постол ; керівник роботи Дука А. П. ; Національний університет «Чернігівська політехніка», кафедра публічного управління та менеджменту організацій. – Чернігів, 2020. – 83 с.<br>The work is devoted to the theoretical and practical aspects of revealing the essence of the formation of the enterprise risk management system in market conditions. The work consists of three sections, introduction and conclusions. The introduction substantiates the relevance of the topic, purpose and objectives of the thesis. The first section reveals the theoretical foundations of the concept of risk, highlights the issues of risk management of the enterprise. The system of measures of formation of the risk management system of the enterprise is considered. The second section considers the methodological aspects of forming a risk management system. This section contains a description of the tools for forming a risk management system in the enterprise, highlights the organizational structure of the risk management system in the enterprise, describes a system of indicators for assessing the risks of the enterprise. The third section contains proposals for building a risk management algorithm on the example of innovation, recommendations for the implementation of risk management system of innovation in the enterprise. The conclusions contain generalizations of the problems of the enterprise, measures to solve the problems of the enterprise.<br>Робота присвячена теоретичним та практичним аспектам розкриття сутності формування системи управління ризиками підприємства в умовах ринку. Робота складається з трьох розділів, вступу та висновків. У вступі обґрунтовується актуальність теми, мета і завдання дипломної роботи. У першому розділі розкриті теоретичні основи поняття ризиків, висвітлені питання управління ризиками діяльності підприємства. Розглянуто систему заходів формування системи управління ризиками підприємства. У другому розділі розглянуто методичні аспекти формування системи управління ризиками. У цьому розділі міститься характеристика інструментів формування системи ризик-менеджменту в діяльності підприємства, висвітлені питання організаційної структури системи ризик-менеджменту в діяльності підприємства, описана система показників оцінки ризиків діяльності підприємства. Третій розділ містить пропозиції щодо побудови алгоритму ризик-менеджменту на прикладі здійснення інноваційної діяльності, наведені рекомендації з впровадження системи ризик-менеджменту інноваційної діяльності на підприємстві. У висновках містяться узагальнення проблем підприємства, заходів щодо вирішення проблем діяльності підприємства.

Sema, І. М. Enterprise risk management system formation=Формування конкурентної стратегії розвитку підприємства : дипломна робота : 073 Менеджмент / І. М. Сема ; керівник роботи Дука А. П. ; Національний університет «Чернігівська політехніка», кафедра публічного управління та менеджменту організацій. – Чернігів, 2020. – 76 с.<br>The work is devoted to theoretical and practical aspects of revealing the essence of formation of competitive strategy of enterprise development. The work consists of three sections, introduction and conclusions. The introduction substantiates the relevance of the topic, purpose and objectives of the thesis. The first section reveals the theoretical foundations of the concept of competition, competitiveness. The system of measures of formation is considered. The questions of formation of competitive strategy of the enterprise are covered. In the second section the methodical aspects of formation of competitive strategy for the enterprise are considered. Features of application of competitive advantages according to M. Porter are revealed. Based on the generalization of the agricultural sector in Ukraine, the position of the enterprise is analyzed, the PEST-analysis of the formation of market advantages is carried out. general characteristics of risk management. This section contains a description of the activities of the enterprise, covers issues of economic activity of LLC agro-industrial enterprise "RESSKI". The third section contains proposals for the formation of a competitive strategy for the development of LLC, recommendations for the implementation of a competitive strategy for the company. The conclusions contain generalizations of the problems of the enterprise, measures to solve the problems of the enterprise.<br>Робота присвячена теоретичним та практичним аспектам розкриття сутності формування конкурентної стратегії розвитку підприємства. Робота складається з трьох розділів, вступу та висновків. У вступі обґрунтовується актуальність теми, мета і завдання дипломної роботи. У першому розділі розкриті теоретичні основи поняття конкуренції, конкурентоспроможності. Розглянуто систему заходів формування висвітлені питання формування конкурентної стратегії підприємства. У другому розділі розглянуто методичні аспекти формування конкурентної стратегії для підприємства Розкриті особливості застосування конкурентних переваг за М. Портером. На основі узагальнення аграрної сфери в Україні, проаналізовано позизії підприємства, здійснено PEST-аналіз формування переваг на ринку. загальної характеристики управління ризиками. У цьому розділі міститься характеристика діяльності підприємства, висвітлені питання особливостей господарської діяльності ТОВ агропромислового підприємства «РЕССКІ». Третій розділ містить пропозиції щодо формування конкурентної стратегії розвитку ТОВ, наведені рекомендації з впровадження конкурентної стратегії для підприємства. У висновках містяться узагальнення проблем підприємства, заходів щодо вирішення проблем діяльності підприємства.

Risk and knowledge are two concepts and components of business management which have so far been studied almost independently. This is especially true where risk management (RM) is conceived mainly in financial terms, as for example, in the financial institutions sector. Financial institutions are affected by internal and external changes with the consequent accommodation to new business models, new regulations and new global competition that includes new big players. These changes induce financial institutions to develop different methodologies for managing risk, such as the enterprise risk management (ERM) approach, in order to adopt a holistic view of risk management and, consequently, to deal with different types of risk, levels of risk appetite, and policies in risk management. However, the methodologies for analysing risk do not explicitly include knowledge management (KM). This research examines the potential relationships between KM and two RM concepts: perceived quality of risk control and perceived value of ERM. To fulfill the objective of identifying how KM concepts can have a positive influence on some RM concepts, a literature review of KM and its processes and RM and its processes was performed. From this literature review eight hypotheses were analysed using a classification into people, process and technology variables. The data for this research was gathered from a survey applied to risk management employees in financial institutions and 121 answers were analysed. The analysis of the data was based on multivariate techniques, more specifically stepwise regression analysis. The results showed that the perceived quality of risk control is significantly associated with the variables: perceived quality of risk knowledge sharing, perceived quality of communication among people, web channel functionality, and risk management information system functionality. However, the relationships of the KM variables to the perceived value of ERM are not identified because of the low performance of the models describing these relationships. The analysis reveals important insights into the potential KM support to RM such as: the better adoption of KM people and technology actions, the better the perceived quality of risk control. Equally, the results suggest that the quality of risk control and the benefits of ERM follow different patterns given that there is no correlation between both concepts and the distinct influence of the KM variables in each concept. The ERM scenario is different from that of risk control because ERM, as an answer to RM failures and adaptation to new regulation in financial institutions, has led organizations to adopt new processes, technologies, and governance models. Thus, the search for factors influencing the perceived value of ERM implementation needs additional analysis because what is improved in RM processes individually is not having the same effect on the perceived value of ERM. Based on these model results and the literature review the basis of the ERKMAS (Enterprise Risk Knowledge Management System) is presented.

The existence of complexity, uncertainty and ambiguity in current business environment promotes corporates need to establish good risk governance. Enterprise Risk Management (ERM) has been considered as a way to achieve good risk governance to deal with both upside (e.g. exploit opportunities) and downside (e.g. reduce insolvency) of risk and uncertainty. ERM holistically treats all risk to achieve organisation objective in normal, volatile and crisis situations. The thesis tackles issues in the implementation of ERM and how it has been adopted and implemented in Indian and UK insurance market. Mixed research methods have been employed from a qualitative stand point to explore the research issues, consisting of two surveys in UK and India, over 50 interviews and two case studies in the Indian and UK insurance markets. The research revealed that there is an ambiguity in the understanding of the definitions of ERM and risk appetite across both countries. Major issues in ERM implementation in Indian insurance market are fraud, under-risk reporting and insufficient resources to develop an appropriate risk culture. In the UK insurance market issues are related to customer complaints, fines/penalties, over-risk reporting and lack of capital efficiency. Regulatory risk seen as a major risk in both market, though, in the Indian market lack of regulation is the issue whereas in the UK insurance market lack of clarity in insurance regulation has been emphasised. From intuitional theory and strategic change perspective, the research presents cross-country comparative case studies highlighting four emerging ERM strategies based on the different state of development and maturity of companies: ‘Rudimentary’, ‘Anticipatory’, ‘Resilient’ and ‘Transformatory’ strategies. The case studies highlight the issues within the two insurance companies both internally and externally in a nascent and a mature market. Before companies can adopt a transformatory strategy, both companies require a fundamental understanding of strategic change that eventually can pave the way to good risk governance. Adopting the cognitive lens of strategic change will not only enhance company specific risk-based capabilities but it will improve industry risk-based capabilities through development of professional competence.

This thesis expands on the literature in the under-researched field of airline risk management by exploring organisational structures and practices of airline risk management systems and their technical and institutional drivers. In particular, it focuses on the phenomenon of Enterprise Risk Management (ERM) and its alignment to the requirements of airline business contexts. The theoretical framework informing this study combines structural contingency theory with two strands of institutional theory, namely old institutional economics and new institutional sociology. In this thesis, the phenomenon of risk management is investigated in situ as an organisational practice through a two-stage empirical study. Firstly, an exploratory field study was undertaken in a panel of ten international airlines. Secondly, the field study was complemented with findings from two explanatory case studies. This study explains how in developing risk management systems airlines balance the sometimes conflicting technical and institutional demands of their respective task and institutional environments. The adoption and implementation of ERM in airlines are found to be driven primarily by coercive and normative pressures, and expectations of improved organisational effectiveness and efficiency. This study additionally improves general understanding of the nature of ERM and its coupling and fluidity in the organisational settings of airlines. It lends evidence for systematic variations in roles, uses, and organisational design choices of ERM systems. It shows the interdependent nature of airlines’ ERM systems and other management systems. The study also demonstrates that the adoption of ERM in airlines drives development of new institutions, rules, and routines for comprehensive management of risks. Consistent with the tenets of contingency theory, this study conveys lack of a universally appropriate design of an airline ERM system. The main contribution of this thesis is to assess airline risk management systems, identify core drivers of effective risk management practice, and provide a framework with the aim of guiding airlines in the development of enterprise-wide risk management approaches aligned with the requirements of their institutional and technical contexts. Furthermore, this research overcomes the limitations of previous, mostly quantitative studies of ERM coupling and dynamics in organisations, as it explores and explains the structures, practices, and rationales of airline risk management systems within wider organisational contexts through the use of qualitative methodologies.

Thesis (MEng)--Stellenbosch University, 2015.<br>ENGLISH ABSTRACT: In the current economic climate where credit crises, fluctuating commodity prices, poor governance, rising unemployment and declining consumer spending exist, risk management is of utmost importance. Proclaiming the existence of a risk management strategy is not enough to ensure that an enterprise achieves its objectives. The implementation of a holistic enterprise-wide risk management framework is required in order to execute strategies and achieve objectives effectively and efficiently Two types of risk management have emerged in industry, namely quantitative and qualitative risk management. On the one hand, qualitative analysis of risk can be done quickly and with minimal effort. However, these methods rely on the opinion of an individual or group of individuals to analyse the risks. The process may be highly subjective and does not fully consider the characteristics of the enterprise. This renders qualitative risk analysis as an ineffective singular strategy although it has been shown to be effective when the risks are well understood. Quantitative analysis, on the other hand, is particularly effective when the risks are not well understood. These methods have been shown to provide substantially more information regarding risks compared to qualitative analysis. However, many quantitative risk management methods presented in literature are studied in isolation and not within the context of a holistic risk management process. Furthermore, quantitative methods tend to be complex in nature and require a reasonable understanding of mathematical and statistical concepts in order to be used effectively. In view of this, there is a need for an enterprise risk management framework that emphasises the use of qualitative methods when the risks are well understood and quantitative methods when in-depth analyses of the risks are required. In this study, a systematic enterprise-wide risk management framework that incorporates both quantitative and qualitative methods was developed. The framework integrates these methods in a logical and holistic manner. The quantitative methods were found be to be largely practical while the qualitative methods presented are simple and easy to understand.<br>AFRIKAANSE OPSOMMING: In die huidige ekonomiese klimaat waar krediet krisisse, wisselende kommoditeitspryse, swak bestuur, stygende werkloosheid en dalende verbruikersbesteding bestaan, is risikobestuur van die uiterste belang. Die verkondiging van die bestaan van 'n risiko bestuurstrategie is nie genoeg om te verseker dat 'n onderneming sy doelwitte bereik nie. Die implementering van 'n holistiese ondernemings- breë risikobestuursraamwerk is nodig om strategieë en doelwitte doeltreffend en effektief te bereik. Twee tipe risikobestuur het na vore gekom in die bedryf, naamlik kwantitatiewe en kwalitatiewe risikobestuur. Aan die een kant , kan kwalitatiewe ontleding van risiko vinnig en met minimale inspanning gedoen word. Hierdie metode is gewoontlik die mening van 'n individu of 'n groep individue wat die risiko ontleed. Die proses kan hoogs subjektief wees en nie ten volle die eienskappe van die onderneming in ag neem nie. Kwalitatiewe risiko-analise kan dan gesien word as 'n ondoeltreffende enkelvoud strategie maar dit is wel doeltreffend wanneer daar verstaan word wat die onderneming se risiko is. Kwantitatiewe analise, aan die ander kant, is veral effektief wanneer die risiko's nie goed verstaanbaar is nie. Hierdie metode het getoon dat daar aansienlik meer inligting oor die risiko's, in vergelyking met kwalitatiewe ontleding, verskaf word. Daar is egter baie kwantitatiewe risikobestuur metodes wat in literatuur verskaf word, wat in isolasie bestudeer word en nie binne die konteks van 'n holistiese risikobestuur proses nie. Verder is, kwantitatiewe metodes geneig om kompleks van aard te wees en vereis 'n redelike begrip van wiskundige en statistiese konsepte sodat kwantitatiewe analise effektief kan wees. In lig hiervan, is daar 'n sterk behoefte vir 'n onderneming om 'n risikobestuursraamwerk in plek te het. Die risikobestuursraamwerk sal beide die gebruik van kwalitatiewe metodes, wanneer die risiko goed verstaan word, en kwantitatiewe metodes, wanneer daar in diepte-ontledings van die risiko is, beklemtoon. In hierdie studie was 'n sistematiese onderneming-breë risikobestuursraamwerk ontwikkel wat beide kwantitatiewe en kwalitatiewe metodes insluit. Die raamwerk integreer hierdie metodes in 'n logiese en holistiese wyse. Die kwantitatiewe metodes is gevind om grootliks prakties te wees, terwyl die kwalitatiewe metodes wat aangebied word, eenvoudig en maklik is om te verstaan.

<p> Despite regulatory guidelines, unreliable financial reporting exists in organizations, creating undue financial risk-harm for their stakeholders. Normal accident theory (NAT) identifies factors in highly complex integrated systems that can have unexpected, undetected, and uncorrected system failures. High-reliability organization (HRO) theory constructs promote reliability in complex, integrated systems prone to NAT factors. Enterprise risk management (ERM) integrates NAT factors and HRO constructs under a holistic framework to achieve organizational goals and mitigate the potential for stakeholder risk-harm. Literature on how HRO constructs promote ERM in responsible integrated financial systems has been limited. The purpose of this qualitative, grounded theory study was to use HRO constructs to identify and define the psychological factors involved in the effective ERM of responsible organizational financial reporting. Standardized, open-ended interviews were used to collect inductive data from a purposeful sample of 13 reporting agents stratifying different positions in organizations that have maintained consistent operational success while attenuating stakeholder risk-harm. The data were interpreted via transcription, and subsequent iterative open, axial, and narrative coding. Results showed that elements of culture and leadership found in the HRO construct of disaster foresightedness and mitigation fostered an internal environment of successful enterprise reporting risk management to ethically achieve organizational goals and abate third-party stakeholder risk-harm. The findings will contribute to positive social change by suggesting an approach for organizations to optimize strategic objectives while minimizing stakeholders&rsquo; financial risk-harm. </p><p>

Today, information is considered a commodity and no enterprise can operate without it. Indeed, the information and the supporting technology are pivotal in all enterprises. However, a major problem being experienced in the business environment is that enterprise risk cannot be managed effectively because business and information-related risk are not congruently aligned with risk management terminology and practices. The business environment and information technology are bound together by information. For this reason, it is imperative that risk management is synergised in the business, ICT (Information and Communication Technology) and information environments. A thorough, all inclusive, risk analysis exercise needs to be conducted in business and supporting environments in order to develop an effective internal control system. Such an internal control system should reduce the exposure of risk and aid the safeguarding of assets. Indeed, in today’s so-called information age, where business processes integrate the business and ICT environments, it is imperative that a unary internal control system be established, based on a holistic risk management exercise. To ensure that the enterprise, information and ICT environments operate free of the risks that threaten them, the risks should be properly governed. A model, EPiRISMM (Enterprise Information Risk Management Model) is proposed that offers to combine risk management practices from an ICT, information, governance, and enterprise perspective because there are so many overlapping aspects inherent in them. EPiRISMM combines various well-known standards and frameworks into one coherent model. By employing EPiRISMM, an enterprise will be able to eliminate the traditional segmented approach of the ICT department and thus eliminate any previous discontinuity in risk management practices.

"Submitted in partial fulfillment of the requirements for the degree of Master of Business Administration from the Naval Postgraduate School, June 2008."<br>Advisor(s): San Miguel, Joseph ; Summers, Don. "June 2008." "MBA professional report"--Cover. Description based on title screen as viewed on August 8, 2008. Includes bibliographical references (p. 41). Also available in print.