WIXLIB

QuestionYesNoMaybeProfessional Insights from seasoned professionalsItems for risk leader to consider(Examples)In working with various departments, I’ve experiencedthat some understand risk and the language better thanothers. For those with lesser understanding, I spend moretime focusing on bringing them to awareness instead ofaddressing their risks. AICPA & CIMA have some recentresources that I noticed a few months ago. We need to goback and check these out as some awesome tools couldaddress this.My team knows the lingo, but we doexperience barriers in understanding invarious departments as terminology canbe confusing. How can I elevate them?Consider developing a ‘risk dictionary’and then involve the whole team inenterprise training efforts. Use lingo whenappropriate so that everyone becomescomfortable with it.My teamX11. Does my team andorganisation have acommon ‘risk’ languagethat all understand?Updated risk heat mapCommunicating risks using a heat mapA leadership guide for the risk leader12. Do I have a mechanism tomeasure performance andensure accountability?XDuring the last few reporting cycles, we’ve noted thatmanagement/executives have emphasised the efficiencyof financial reporting. What further work needs to bedone both within my team and in other areas to align ouroutputs relating to reporting. The increased global focus onefficiency means that we need to make them as robust aspossible. A viable goal is to focus on management reportingneeds for the next two quarters and improvements instreamlining content and resulting efficiency in delivery.Leverage technology to create a risk scorecard.Develop performance and outcomemeasures. Review them on a routine basisand discuss them with key stakeholdersboth inside and outside the organisation.What is already in place so that I canreadily see improvements?A user-friendly version for use in your entity can be found by following this link.ERM insights for the finance risk leader – An expanded tool for the risk leader 8

QuestionYesNoMaybeProfessional Insights from seasoned professionalsItems for risk leader to consider(Examples)It is often noted that those in the finance profession remainin silos within their organisations. Change must begin withyour team. Focus on how the team can become a goodbusiness partner. What can be done to improve relationshipsand enhance quality overall? This is best determined by abrainstorming session or two with the team. Their ideas areoften those in which they are willing to invest. An easy startinto this area is to schedule some time at the next teammeeting to begin to address it. Continue to encourage openlines of communication between departments.The training area of my organisationseems to be a mitigation of risks, BUT Ineed to investigate to see what risks existthere. What is in place and what needs tobe developed?Sometimes the obvious is all it takes. This could be assimple as providing a “resource” library within your entity.Is there an actual library or an online portal that includes avariety of materials devoted to risk? These may include:Look into how we teach or coach riskwithin the organisation. Understandhow staff use risk to conclude.My team13. A re there pockets(i.e., departmentsor teams) within myorganisation that appearto ignore risk or berisk-averse? How canthis be addressed?XX14. H ave we builtenterprise-wide riskmanagement skills?Do we collaborate withHR on necessary skills?1. COSO docs2. AICPA Risk ToolkitFind ways to make risk management amore personal interest for everyone(e.g., provide examples that are relevant toco-workers/peers and explanations of whyit is important to them).What seems to be the preferred methodof engagement of learning?3. CGMA Risk Management Toolkit4. P odcasts (I know my team prefers this method ofknowledge — you could encourage them to sharethese with the team as a whole)15. P rofessional networking:Is my team activelydeveloping a network ofrisk professionals bothinternally and externally?XBased on the qualifications and needs of our team, I’velearned to identify the available networking opportunities,and perhaps attend with team members. You canencourage attendance at these events with comp time,schedule revisions and a small budget to cover costs.Identify and align with risk leads inother departments.Encourage team and allow time toattend events.A user-friendly version for use in your entity can be found by following this link.ERM insights for the finance risk leader – An expanded tool for the risk leader 9

QuestionYesNoMaybeProfessional Insights from seasoned professionalsItems for risk leader to consider(Examples)One of the recurring themes I’ve experienced in allorganisations that I’ve been a part of, at varying levels, is theneed to align understanding. If you are engaging with thosewho are working in the dispatch office of publicly providedtransportation, or the grants area of an agency, the mostprominent disconnect occurs in the language used.Staff seems to struggle a lot withconveying their understanding outsideof our team. How can the languagegap be bridged? What is the team notunderstanding?My team16. Can my team bridgecommunication ofthe risk program andunderstand it themselves?XFor example, a prominent struggle often lies witharticulating the IT risks as they relate to the organisationBEYOND the finance area. Yet, these risks are relevant tofinancial success. As this gap continues to show up, thereare definitive steps you can take to reduce the gap.17. What is our team’s focus?18. W hat is our maincontribution to theorganisation’s success?If you are a manager or director of several ‘sub-teams’ orfunctions, consider meeting with each area separately.During these sub-team meetings, discuss what isconsuming our time and then determine if it is indeedwhere our focus should be. Make 3–5 bullet points ofyour focus.How does our mission flow down to ourstrategic plan?Make sure that you add value through the robustimplementation and monitoring of the responsibilitiesspecifically assigned within the understanding ofinterdepartmental dependency on goals and outcomes.What is the perception of our department?Do people see a specific value add?Does the rest of the organisation evenknow we exist?How does the strategic plan flow down toperformance plans?How do the team members’ performanceplans flow down to their responsibilities?The need to step outside your offices and host lunchand learns, interdepartmental meetings to enhance riskunderstanding is critical. The demonstration of yourpresence and participation in meetings and decision-makingnot only at the manager level but also at the executive level,provides exposure not only to the team members but totheir activities.A user-friendly version for use in your entity can be found by following this link.ERM insights for the finance risk leader – An expanded tool for the risk leader 10

QuestionYesNoMaybeProfessional Insights from seasoned professionalsItems for risk leader to consider(Examples)This has gained considerable importance with thenecessity of remote work in this decade. Consider theissues that your organisation has had and resolvedthroughout the pandemic.How were we judged on our pastperformance? Did we identify the rootcauses correctly? Do we know howto mitigate the risk to hold ourselvesaccountable?My team19. Do I have a mechanismto measure performanceand ensure accountability?XLook at what has not changed or been resolved andconsider whether these are similar or have a commonality(i.e., having to do with security, access, IT response, inabilityto sync, etc.). Once the root cause has been identified, thiswill aid in determining where to begin the resolution or at thevery least, a viable workaround.X20. Do my team membershave mentors?This is a relevant question that often we want to answerwith a quick ‘yes’ or ‘no’. Thinking back on my career, theacceleration is often seen during those times I had a mentorwho was engaged, directional in guidance and supportive.Without that, even the right tools and/or the right experiencein the position may have been irrelevant.Look at who is feeding into your employees’ professionallife and work with them to drive these relationships towhere the employee, the team and the organisation needthem to grow.21. Do we have a training plan?XEmployee engagement 101 speaks to the importanceof developing a work plan for employees. This not onlyincludes a focus on their CPE for their respective licensesand designations, but education to assist in meeting theirgoals while enhancing their strengths and minimising theirweaknesses.Do we have a formal mentoring program?Who would I suggest as mentors formy team?Could mentors be found throughnetworking activities?What target CPE should our team memberscomplete? What requirements are in placefor those without certifications?The Journal of Accountancy had an article related to thislast year.A user-friendly version for use in your entity can be found by following this link.ERM insights for the finance risk leader – An expanded tool for the risk leader 11

QuestionYesNoMaybeProfessional Insights from seasoned professionalsItems for risk leader to consider(Examples)As a risk professional, you should ensure that yourorganisation’s financial performance is known amongst yourteam. This will enable employees to know when spendingmay need to be reduced vs. when funds are available tomitigate risks. Considering what you are doing well vs. whatneeds to be done is a quick check to identify lean areas vs.those in excessive spend mode.Is my team integrating the informationreceived with the proper context andsufficient understanding? If not, what canbe done to elevate that?Talent has never been a larger issue than it is today. Studiesand surveys in all industries identify talent as one of thetop three concerns, if not THE TOP challenge. Not only isobtaining and retaining a concern, but adding new skills toexisting staff to get them up to speed as soon as possibleis mission-critical. The need to immediately analyse currentresponsibilities with talent and experience should be atop activity. This includes the consideration of shifts inresponsibilities, changes in processes and future needs.How long have they been in their existingroles? What has evolved, both internallyand externally to the organisation thatrequires new or additional skills?The words ‘change management’ have been thrown arounda lot recently. We want to be change managers; we seek tocreate effective change but ultimately how did we do in thelast 24 months with change? The pandemic threw everyonefor a loop and continues to do so. This could be a greatindicator of what your team and your organisation did right and what it didn’t.Analyse and document how theorganisation identifies and responds tochange. Consider breaking it down intothree areas:My team22. I s my team able toeffectively communicatethe financial performanceof the organisation?23. A re people in the rightposition for success?XXCan a bit of job shifting/sharing get uscloser to where we need to be?My organisation24. I s my organisationequipped to handlechange?X Myself My team My organisationA user-friendly version for use in your entity can be found by following this link.ERM insights for the finance risk leader – An expanded tool for the risk leader 12

QuestionYesNoMaybeProfessional Insights from seasoned professionalsItems for risk leader to consider(Examples)Clearly, this ties in with the prior question. As you look atyour organisation on a micro and macro level, it is importantto note:Continue to develop and improve the rightcommunication, change managementapproach, and training.My organisation25. I s my organisation willingto make changes?X W ho was ready to make changes immediately? Identifythe effects on the individual, their team and the entity. W hat areas hung on to ‘business as normal’? Considerthe results of those areas.What do I see others in my industry doingthat my entity is clearly not? t this point, you may want to compare the results fromAthe different responses. Consider the response from seniorleadership (or lack thereof). L astly, what about the industry as a whole? The positioningof your entity within industry trends will provide you with agood indication of its responsiveness and ability to thriveand survive.26. Are risks linked to thestrategic goals of theorganisation?XStrategy is not housed at the executive and organisationallevels only. It does begin there. To ensure that theorganisational strategies trickle down, begin with identifyingyour department’s specific risks and link them to thestrategies of the organisation. Make sure all strategic riskstie into one of our risks as applicable.Check whether risks are written as an‘abstract’ and that they can be tied to thestrategic goals of the organisation. Whatare the specific identifiable steps andmetrics available?Examples are often the best teachers.Consider an entity goal of ‘Delivering standard-settingservice to its stakeholders and customers’.The risk/finance area refines the goal further as:‘proactively engage with our internal departmentsto identify emerging risks to both the departmentand to the entity’.As you can see, this is just one piece of the whole strategicgoal. However, if accomplished, we see the success flow tothe entire organisation.A user-friendly version for use in your entity can be found by following this link.ERM insights for the finance risk leader – An expanded tool for the risk leader 13

QuestionYesNoMaybeProfessional Insights from seasoned professionalsItems for risk leader to consider(Examples)While tending to imagine budgeting and forecasting as beinghoused in a separate functional area, again, you must thinkbeyond those confines. Understanding the developmentand analysis of the FP&A process within past trends, currentconditions and the expected/unexpected possibilitiesenables a more efficient measure of risk trends. Askingsuch questions as:I am responsible to fund the performancegoals that link to the organisation’s mission.My organisation27. Does my organisation’sbudget tie to a strategicplan that mitigates riskto a tolerable level?XWhat does my organisation consider atolerable risk level?Where could an error in budgeting andforecasting cause an intolerable risk event? How can we improve these links? Can we get rid of ones that don’t work anymore? A re the right scenarios being used and is the focus whatis relevant?28. When risks arise, doesmy organisation havethe infrastructure tocommunicate aboutthose risks both internallyand externally?X‘Embedded within any enterprise risk management(ERM) program is the ability to communicate effectivelythroughout all the processes to the decision-makers andimplementers’. (Reference) Risk finance professionals at alllevels must effectively communicate the concepts of risk forthe Enterprise Risk Management program to be effective.Develop internal and externalcommunication plans and responsibilities.You will often need to initiate and facilitate concepts,identification, revisions, reporting and monitoring of risks.Regarding your communication, you may want to ask: W hen was the last entity-wide communication?Is there another one scheduled? I s training available for key employees or all employees?Are we participating? Can we? I s my organisation set up to recognise what external‘events’ may result in risk (e.g., legislation, naturalcatastrophes, and military/political activities)? D o they know to whom they should bringthese concerns?A user-friendly version for use in your entity can be found by following this link.ERM insights for the finance risk leader – An expanded tool for the risk leader 14

QuestionYesNoMaybeProfessional Insights from seasoned professionalsItems for risk leader to consider(Examples)Some questions are never going to go away about risk.Explaining the differences between ERM vs. RM, internalcontrols and the need for internal and external audits isa way of life for finance professionals. Whether simple orcomplex, items to consider are:Develop, train, and implement training.My organisationX29. C an my organisationarticulate the differencebetween enterprise riskmanagement, internalcontrols, and internalaudits?Consider various levels of training(i.e., board would receive differenttraining than staff accountants). What have we done that needs revisited? How have we done this? A quick memo or lunch webcast? W hat is the ONE action we make NOW to foster anawareness and understanding of risk from all in yourorganisation?30. D oes my organisationhave a formal enterpriserisk management processwith direct alignment withstrategic goals?XStrategy and ERM are intricately linked and should at somestage be considered together. Although processes andoutputs differ, there does come a place where they merge.Regarding the process ensure that strategy is adequatelydetailed within. Does it need to be refreshed?Yes, we have an ERM process. But we alsoneed to consider how often the ExecutiveManagement reviews risks? When areprocesses reviewed and changes made?What does monitoring look like? Is themonitoring effective? I s my organisation willing to take an objective review ofour ERM model to determine its true maturity level?A user-friendly version for use in your entity can be found by following this link.ERM insights for the finance risk leader – An expanded tool for the risk leader 15

QuestionYesNoMaybeProfessional Insights from seasoned professionalsItems for risk leader to consider(Examples)This is a tough process to navigate, especially if you are notinvolved directly in the process. However, encouraging myteam to adhere to the processes begins with your knowingwhat the executives are concerned about and what is their‘top of mind’. Ideally, risk leaders should be in the ‘know’ ofwhat upper management and executives are trained on anddecisions made. But there are usually some gaps that youwill need to fill.Need to check executive meeting minutespromptly after each meeting (do notwait until just before an external audit toreview). Provide evidence of response toany updates, revisions, additions.My organisation31. I s the

Chartered Global Management Accountant (CGMA ) The CGMA designation is the most widely held management accounting designation in the world. It was established in 2012 by the American Institute of CPAs (AICPA ) and The Chartered Institute of Management Accountants (CIMA ) to elevate the profession of management accounting globally.