Many international organizations struggle with the challenge of aggregating and managing increasing amounts of risk related data and accurately reporting these to Management. To be aware of the actual risk exposure is crucial not only because of the Basel Committee’s principles for improving the aggregation and reporting of risk data, but rather being in the own best interest of the Senior Management and the Board.
Gersis Inc. has been asked by a global enterprise to architect and develop a web-based Risk Reporting System, in order to replace the current manual, repeated and often hurried search for risk information.
The Risk Reporting System was designed to establish and enforce a standard process for providing risk relevant data when and where these become known, by the responsible stakeholders, including all data considered relevant for the enterprise and its management.
With all relevant data already in the system, a Risk Report can be generated in real time, without the need to again and again chase information updates.
Reports can be generated easily by authorized users, without any help from an IT professional.
The Risk Reporting Dashboard automates all risk data collection, analysis and reporting, across the enterprise, all countries, business units and employees.
It has 3 Core Functions
and 6 Sections
The system should be installed in a secure environment with strict physical and internet access control.
All user communications are encrypted.
Report Input (Capture)
The Risk Reporting Dashboard offers dedicated templates for different users, such as
- country or business unit compliance officers
- project managers
These templates enforce a structured and consistent entry of risk details in line with management directives.
Note! All images are mock-ups due to NDA restrictions.
One of the top view management reports is the Risk Severity Matrix, which delivers a first-glance overview for the whole enterprise, or a selected unit, country or project.
Risk Categories (Manage)
For a bank, a simplified Risk Categories chart may look like this:
with a Global risk view by Category …
… and a global Risk view by country
Gersis Inc. initially undertook a detailed requirements analysis, a technology feasibility study, which was presented to the client’s legal and compliance community.
This was followed by a proof-of-concept demonstration, after which a technical and commercial proposal was submitted.
After sign-off of the implementation plan, Gersis Inc. started with the system development, which took about 6 months.
After heavy internal testing and QA, the Risk Reporting System was installed onsite on dedicated internal servers, for security reasons.
A test instance is used with dummy data, only the production system has access to the real data, and is accessible only for authorized client users.
The initial training for legal and compliance power users was held within 1 week, followed by a 1-day online training for the global user community.
The Risk Reporting Dashboard unifies all risk data in one system providing
- timely reporting in helicopter view, or at any detail level
- proper understanding of enterprise risks
- support for informed decision making
It also supports monitoring and control of the adherence to management set compliance policies down to every organizational level.
And it prevents the hectic when risk reporting for the quarterly or annual report is requested from headquarters, which usually results in manual data collection in different databases for up-to-date information, often taking several weeks.