Business Risk Services
An effective risk management strategy never slows down an organisation - it makes it go faster. Regulatory requirements continue to grow. It is not just government regulation, but stakeholder and public and investor expectation as to governance and compliance. We can help you navigate through the challenges surrounding governance, risk and compliance.
New organisational risks are continuously emerging across strategic, regulatory, financial and operational business processes. There are any number of risks in today's complex business environment, but the principal challenge lies in identifying the major risks by focusing systems on organisation objectives and determining the risk of potential deviation from these objectives. Once key risks are identified, an effective risk management strategy will provide oversight that provides management with effective controls and processes to eliminate or mitigate these.
The cornerstone of risk identification, assessment and management is a sound control system, which should promote organisational objectives of reliable reporting, safeguarding of assets, compliance with laws and regulations, and efficiency of operations.
The starting block lies in helping organisations answer some key questions, such as:
- What are your key objectives and what are the risks to achieving these?
- What are your key risks and how they are being managed?
- Do you have overlapping risk functions or gaps in coverage?
- What processes do you have in place to isolate key risks as they arise?
- What is the overall level of sophistication of your financial systems?
A rapid assessment of these questions allows us to integrate and improve risk controls.
Here are some elementary symptoms of governance fatigue: Immature risk management processes results in boards not focusing on key issues or spending too much time on non-core issues; Ineffective corporate governance results in the incorrect balance between executive and non-executive directors, with key business challenges therefore never seeing the light of day; Inadequate controls and systems may result in wasted investment in new systems which fail to deliver the expected results.
In assessing the controls within an organisation, we look at:
- The overall control environment, including key business intelligence systems;
- Any significant deficiencies in accounting systems or personnel and how best to implement improvements;
- Processes to test the integrity of new or revised systems;
- Material deficiencies detected by external auditors, and the design of a corrective timetable.