成功的風(fēng)險(xiǎn)管理不僅需要強(qiáng)大的風(fēng)險(xiǎn)系統(tǒng)或者準(zhǔn)確的分析手段。它需要通過(guò)在企業(yè)各個(gè)層面嵌入風(fēng)險(xiǎn)意識(shí)來(lái)實(shí)現(xiàn)文化的轉(zhuǎn)變，從而使各個(gè)層級(jí)的員工都能肩負(fù)起自身的風(fēng)險(xiǎn)責(zé)任。

　　沒(méi)有比第一道防線更重要的了，因?yàn)檫@就是風(fēng)險(xiǎn)發(fā)生的地方。因此，所有的員工都需要具有風(fēng)險(xiǎn)管理意識(shí)。

　　每當(dāng)員工參與交易或做出決定時(shí)，他或她都需要自省：這會(huì)傷害還是幫助企業(yè)?它會(huì)讓公司陷入困境還是會(huì)加強(qiáng)業(yè)務(wù)績(jī)效?員工對(duì)風(fēng)險(xiǎn)與回報(bào)平衡的理解對(duì)成功至關(guān)重要。

　　然而，讓一線員工承擔(dān)風(fēng)險(xiǎn)管理責(zé)任并不容易。在2017年普華永道調(diào)查中，63%的全球受訪者表示，將更多風(fēng)險(xiǎn)責(zé)任轉(zhuǎn)移到第一線能幫助公司更好地預(yù)測(cè)和減輕風(fēng)險(xiǎn)事件。然而，只有13%的受訪者表示一線員工實(shí)際上在引領(lǐng)風(fēng)險(xiǎn)決策和管理合作。

　　對(duì)許多員工而言，風(fēng)險(xiǎn)管理與任何二線支持部門(mén)一樣，與他們使用不同的“語(yǔ)言”。術(shù)語(yǔ)間的差異可能導(dǎo)致理解困難，風(fēng)控流程對(duì)實(shí)際業(yè)務(wù)不敏感，文檔要求也很耗時(shí)間。那么，如何能讓前線員工承擔(dān)風(fēng)險(xiǎn)管理責(zé)任，從而提高他們業(yè)務(wù)決策的能力呢?

　　1.傳播風(fēng)險(xiǎn)管理的業(yè)務(wù)價(jià)值

　　Most employees in the first line have one goal – to drive business revenue. Therefore, the first step in getting their buy-in on risk management is to communicate its business value: How can better risk practices in the first line drive better business performance? How can more proactive risk awareness increase the probability of success in employees' business transactions?

　　It helps to use positive language aligned with business growth and success. It also helps to treat the risk program like a brand. Consider giving it a name and identity that people can relate to. The goal is to get employees to connect with risk management, understand the business objective behind it and make it an integral part of their work life.

　　2. 保持簡(jiǎn)單

　　Risk terminologies and concepts aren't always easy to grasp. For instance, an issue, an incident and a risk may mean different things to a risk manager – but to the first line, they often look the same.

　　Training can help close these knowledge gaps. However, if the content is complex, it may not stick. A better, more sustainable option would be to focus less on how the front line should adapt to risk management and more on how risk management can be adapted to the front line.

　　How can risk processes be made so easy and intuitive that they become a seamless, almost inherent part of employee daily routines? It starts with speaking the language of the business. For instance, when creating risk and compliance survey forms, keep the questions simple. Instead of asking employees to classify a risk event as an issue, an incident, or a risk, use one consistent term: “Did an issue occur?” Or, “Is there potential for an issue to occur?” If the answer is yes, the response can be routed to the next line of defense for further investigation. Alternatively, another (equally simple) question can be generated to gauge the nature and impact of the issue.

　　The aim should be to ensure that risk reporting in the first line is as easy as possible. Thereafter, the real risk experts (i.e., the second line) can take over and begin translating the raw data into the required risk terminologies.

　　Another way of making risk management more intuitive is to “layer” risk tools into the systems and applications used by the first line. Here's a look at how that might play out:

　　風(fēng)險(xiǎn)管理層級(jí)化

　　Imagine that it's the closing minutes of the Irish Stock Exchange. A fund manager at an asset management firm issues a last-minute order to make a trade – one that's thrice the size of all trades taken together that day on the market index.

　　There's just 10 minutes to go, but the trader responsible for that particular transaction is worried. He or she might ask, for example, “Is this market manipulation?” “Will I get into trouble for executing this trade?” “How do I ensure that I'm following policy guidelines?”

　　At this point, the company's risk management system kicks into gear. Layered seamlessly into the employee's trading platform, the system automatically triggers a checklist or survey to the trader based on the company's market manipulation policy:

　　 Was the client aware of the size of trade? YES

　　 Was that conversation on a recorded line? YES

　　The trader's responses are automatically routed to a risk officer through an alert on her smart phone. She analyzes the data, and gives her go-ahead, enabling the trader to execute the trade confidently with three minutes to spare.

　　The result? A great commission for the trader and more revenue for the firm – all enabled through speedy risk assessments and agile communication between the trader and the risk officer.

　　3. 提供支持

　　Front-line employees need to know that the second line of defense exists not to police their every move and decision, but to provide independent oversight and to support them in becoming better risk managers. This support can be demonstrated by, for instance, providing a meaningful risk framework, establishing risk policies, defining a risk appetite that supports business growth and designing a system that can automate the risk and compliance processes.

　　Another solution is to build mini-teams of risk specialists within each business unit. These teams, often called the 1.5th line of defense, can provide risk training, control assurance and advisory services to the first line, while also dealing with ground-level risk issues. Since they probably understand their business unit better than the second line, they will know how best to guide employees in managing risks.

　　4. 進(jìn)行獎(jiǎng)勵(lì)

　　One of the best ways to drive risk management into the first line is to provide incentives. For instance, policy compliance and loss avoidance behavior can be linked to rewards and recognition programs. Sales teams with fewer customer complaints, a lower risk of customer attrition and zero losses from fraudulent or rejected claims can receive higher payouts.

　　Gamification in risk management is also useful. Run a contest on who can report the highest number of issues. Hold a quiz on the latest updates to a policy. Announce a competition to identify the employee who closes action items most efficiently. These “games” motivate employees to get more involved in risk management activities without having to be pushed and prodded by an oversight function. The more engaging the game, the faster risk management practices will become a habit.

　　5. 在后臺(tái)嵌入分析

　　Once the first line starts playing a more active role in risk management, the next step is to make sense of their risk inputs.Analytics can play an important role by swiftly sifting through the data and drawing out valuable insights to support decision-making. Users can — in real time — group together similar sets of data, so that what initially looked like a series of random events are arranged to reveal a pattern of emerging risks or incidents.

　　Simplicity is important here. Dashboards, reports and user interfaces need to be configured and personalized in such a way that each stakeholder can access the insights that are most relevant to him or her. What a business line risk manager wants to see will be different from what a CRO or board member wants to see. Building clear reporting mechanisms is essential.

　　The speed of reporting also matters. Boards and management want near real-time risk intelligence – something that legacy systems and spreadsheets may not be able to provide.

　　However, an advanced risk reporting system can provide the required level of visibility by automatically aggregating risk data, populating reporting fields and rolling the insights up to the relevant stakeholders. With the system taking over these tasks, risk professionals that were once bogged down by data collection and reporting can be freed up to focus on more valuable activities such as risk analysis.

　　6. 為風(fēng)險(xiǎn)管理打下基礎(chǔ)

　　Risk awareness in the first line is great, but cannot be achieved without a comprehensive risk management program. The maturity of a program depends on the strength of its foundation. For many companies, that foundation is a governance, risk and compliance (GRC) platform.

　　On this centralized platform, companies can build out a comprehensive risk framework with consistent risk and control taxonomies. This risk universe can then be mapped to compliance (regulations and standards), audit (audit entities and findings), the third-party ecosystem (third-party contracts and risk assessment results), organizational constructs (processes and assets) and, finally, business objectives (financial metrics and performance indicators).

　　Through this data, companies gain a clear view of risk impact and inter-relationships, which, in turn, enables them to better capitalize on opportunities.

　　7. 同理心的重要性

　　Integrating risk management into the consciousness of an organization is ultimately an exercise in empathy. It's about stepping into the shoes of the first line, understanding how they think and work, and adapting risk processes accordingly. Think of the first line as your customers, and risk management as your product: How can you design and position it to maximize adoption?

　　Technology can help by minimizing process complexities and automating cumbersome tasks. It can also bridge the gap between the first line, where risk data is generated, and the backend, where the data is analyzed to enabled decision-making. But technology is just one part of the equation. Before it is implemented, organizations need robust planning, commitment, patience, a strong tone at the top and dedicated change management resources to build a mature risk culture.

　　Once these pieces are in place, risk management can become a natural part of business processes. When that happens, the organization will be well-positioned to drive strong performance and growth – not blindly, but from a place of real awareness and integrity.

　　Brenda Boultwood是行業(yè)解決方案公司MetricStream的高級(jí)副總裁。 她負(fù)責(zé)一系列關(guān)鍵垂直行業(yè)，包括能源和公用事業(yè)、聯(lián)邦機(jī)構(gòu)，、戰(zhàn)略銀行和金融服務(wù)。 在加入MetricStream之前，她曾擔(dān)任Constellation Energy的高級(jí)副總裁兼首席風(fēng)險(xiǎn)官。 在此之前，她曾在J.P. Morgan Chase擔(dān)任戰(zhàn)略、另類投資服務(wù)部門(mén)全球主管，負(fù)責(zé)公司的對(duì)沖基金、私募股權(quán)基金、杠桿貸款和全球衍生品服務(wù)。 她還是全球風(fēng)險(xiǎn)管理專業(yè)人士協(xié)會(huì)(GARP)的董事會(huì)成員，目前擔(dān)任首席風(fēng)險(xiǎn)官(CCRO)委員會(huì)的董事。

學(xué)金融找金程，對(duì)于FRM有疑問(wèn)可撥打400-700-9596免費(fèi)咨詢老師。

FRM智能課程詳情在線咨詢

相關(guān)推薦：FRM報(bào)名 FRM是什么考試 FRM成績(jī) FRM考點(diǎn)

2019年FRM備考群 835405115 FRM資訊&資料隨時(shí)分享，與眾多FRM持證人交流考試經(jīng)驗(yàn)。

返回首頁(yè)