Loading ...
Sorry, an error occurred while loading the content.

23228RE: [GOV DG] New COSO ERM - Governance and Culture

Expand Messages
  • Deon Binneman
    4 Oct, 2017

      Hi Norman,


      What a nice way of simplifying WHY risk management is important.


      Simon Sinek says it so nicely - https://www.youtube.com/watch?v=IPYeCltXpxw


      Every tool or technique we have must have an outcome. I got into trouble a few years ago at a conference when I said the only purpose of good corporate governance is to be known as an admired company. ( As the late Stephen Covey said – Start with the end purpose in mind).


      Just look at the impact on McKinsey, KPMG and others right now.


      I would venture to say that achieving objectives and being admired are the two most important goals.


      Kind Regards,


      Deon Binneman

      The Reputation Go-to Guy

      Speaker | Facilitator

      Reputation Management Consultant

      M: 083 4254318 | O: +27-11- 4753515


      Johannesburg, South Africa


      Because your Reputation matters!......

      + About Me & Reputation - My mission is to help businesses and individuals around

      the globe build, sustain and protect their reputations. Reputations are not only a vital asset,

      but it can be easily destroyed. I provide speaking, training, thought leadership, business

      intelligence, and consulting services and through my writings and services seek to educate,

      coach and challenge management teams to build and protect this asset.


      + To Keep Getting Mails - To ensure that you continue receiving my emails, please add

      deonbin@... to your address book.


      + To Unsubscribe - If you do not want to receive communications about reputation please

      send a blank e-mail with "UNSUBSCRIBE" in the subject line to reputationeducation@...

      so that I can remove your details. I apologise if this message has been sent to you inadvertently.





      From: GOV_DG2@... [mailto:GOV_DG2@...] On Behalf Of Norman Marks nmarks2@... [GOV_DG2]
      Sent: Thursday, 05 October 2017 18:46
      To: GOV DG2; Dave Tate; Dave Tate tateatty@... [GOV_DG2]
      Subject: Re: [GOV DG] New COSO ERM - Governance and Culture





      IMHO, risk management helps a board and top management navigate their way to achieving objectives.


      - Understand what might happen on that path

      - Consider whether that is desirable, acceptable, or not

      - Decide what you are going to do about it

      - Act


      It's what good managers and decision-makers have been doing their entire careers. Risk management provides more discipline to the process and considers what needs to go well if you are to be effective in performing those 4 steps with every decision - from strategy-setting to execution.


      In other words, its not really about risks - its about achieving objectives.


      I hope this helps. Its covered in more detail in World-Class Risk Management.





      Norman D. Marks, CPA, CRMA

      Author, Evangelist and Mentor for Better Run Business

      OCEG Fellow, Honorary Fellow of the Institute of Risk Management


      Join me online: IIA Governance blog | GRC and Audit blog | Twitter | LinkedIn



      On Thursday, October 5, 2017, 9:15:18 AM PDT, Dave Tate tateatty@... [GOV_DG2] <GOV_DG2-noreply@...> wrote:




      Greetings all. I have started going through the new COSO ERM framework. One comment, and one question.


      1. It is a lot of material. In addition to understanding and learning the materials, I have one overriding issue, which is, if I am given 20 minutes to initially explain and interest a board, or an audit committee, or in-house attorneys in the framework and why they should use it, from a legal perspective, that seems like a pretty difficult task, so in addition to developing my own materials I will be looking for discussions or materials that I can also use from other people which will help with that task. I'm not being critical, but I am concerned that the framework is sufficiently complicated such that I will lose the audience.


      2. Focusing on governance and culture, in both the first component, and then also in the fifth component for reporting purposes, are governance and culture primarily or only from the ERM or risk management view (that is, do the entity and its leaders encourage ERM and risk management), or are we also getting into, as possible examples, ethics, integrity, tone at the top, possible rewards that are offered to employees for performance, treatment of employees and customers, whether the entity and its leaders encourage employees to speak up, compliance with work place legal requirements, and whether the entity and its leaders actu ally walk the talk, etc.?


      Thanks for your comments.

      David Tate, Esq. (Royse Law Firm, California (Menlo Park Office)    

    • Show all 6 messages in this topic