Deloitte’s Nine Principles of Risk Intelligence

Is your business risk intelligent?  A review of  the following principles offers company executives a concise outline of objectives central to a risk intelligent enterprise.   Deloitte recently published White Paper, Effective Integration, Enhanced Decision Making, The Risk Intelligent Tax Executive outlined the following nine fundamental principles.

Nine fundamental principles of a Risk Intelligence Program

1. In a Risk Intelligent Enterprise, a common definition of risk, which addresses both value preservation and value creation, is used consistently throughout the organization.

2. In a Risk Intelligent Enterprise, a common risk framework supported by appropriate standards is used throughout the organization to manage risks.

3. In a Risk Intelligent Enterprise, key roles, responsibilities, and authority relating to risk management are clearly defined and delineated within the organization.

4. In a Risk Intelligent Enterprise, a common risk management infrastructure is used to support the business units and functions in the performance of their risk responsibilities.

5. In a Risk Intelligent Enterprise, governing bodies (e.g., boards, audit committees, etc.) have appropriate transparency and visibility into the organization’s risk management practices to discharge their responsibilities.

6. In a Risk Intelligent Enterprise, executive management is charged with primary responsibility for designing, implementing, and maintaining an effective risk program.

7. In a Risk Intelligent Enterprise, business units (departments, agencies, etc.) are responsible for the performance of their business and the management of risks they take within the risk framework established by executive management.

8. In a Risk Intelligent Enterprise, certain functions (e.g., Finance, Legal, Tax, IT, HR, etc.) have a pervasive impact on the business and provide support to the business units as it relates to the organization’s risk program.

9. In a Risk Intelligent Enterprise, certain functions (e.g., internal audit, risk management, compliance, etc.) provide objective assurance as well as monitor and report on the effectiveness of an organization’s risk program to governing bodies and executive management.

Sum2’s business mission is to help small and mid-sized enterprises (SME) become risk intelligent enterprises.  Sum2’s product suites enables managers to implement sound risk management practices guided by these principles of risk intelligence.  We firmly believe that consistent practice of sound risk management  holds the key to profitability and long term sustainable growth.

Sum2’s Profit|Optimizer product series provides mangers a consistent framework and scoring methodology to assess, aggregate and price risk, identify actions, assign responsibility and align business functions to mitigate risks and achieve business goals.

Sum2’s IARP, helps managers to assess and manage the rising threat of tax risk exposures that present significant compliance risk to the enterprise.

We welcome an opportunity to help you erect a risk intelligence enterprise.

Risk: risk management, business intelligence, compliance, sustainability, profitability

November 11, 2009 - Posted by riskrapper | branding, business continuity, compliance, IARP, operations, regulatory, reputational risk, risk management, SME, sound practices, Sum2 | audit risk, bankruptcy, corporate governance, Deloitte, financial crime, IARP, Industry Focus Issues, IRS Audit Risk Program, Profit|Optimizer, regulatory compliance, risk management, SME, sound practices, Sum2, sustainability, tax audit