Risk Management Process
Lending/financing activities are subject to constant risk. The Bank realizes that the key success lies in how the risk is managed, by putting in place clear risk management process that describe the steps taken to mitigate risk as it occurs, to meet the Bank’s objective.
The management of risk at the Bank is undertaken by the respective operational functions within the Bank and monitored by the Group Risk Management. This risk management process are as follows:-
1. | Risk Context |
Each Head must first establish a clear and well defined risk context by taking into consideration of the following factors: | |
| |
2. | Risk Identification |
Each Head must put in place demonstrable processes and procedures to ensure that risks are timeously identified, and to also incorporate Key Risk Indicators (KRIs) to trigger possible future risks (i.e. emerging risk) and/or to anticipate unpredictable risks. To ensure no significant risks are being overlooked.
| |
3. | Risk Analysis or Assessment |
Each Head is to provide data to assist in the evaluation and treatment of their risks. It involves the consideration of the sources of risk, the consequences (or impact) and the likelihood that these consequences occur. Each Head is to also document the qualitative and/or quantitative measures of their likelihood and/or expected impact. Risk is analyzed by combining estimates of consequences (impact) and likelihood of occurrence in the context of existing control measures in place.
| |
4. | Risk Evaluation or Measurement |
| |
5. | Risk Treatment or Mitigation |
Each Head is to identify the appropriate options for treating or mitigating their risks and document these options within their own risk procedure. Each option is to be assessed and properly documented. Each Head must ensure any residual risks are within their acceptable threshold.
| |
6. | Risk Communication and Consultation |
Each Head are to clearly and continuously communicate their risk management process to all who have roles and responsibilities within it to ensure staff understand why certain actions are required. This communication process must be clearly documented.
| |
7. | Risk Monitoring and Review |
Each Head is to document the required proactive monitoring process of their risk treatment or action plans to ensure they remain relevant. Any resultant losses (actual or expected/near-miss or potential) is to be computed and documented accordingly. Each Head is to also to ensure that their risk management process is to be reviewed on a regular basis (at least annually) to determine its effectiveness, including identification of new risks and/or opportunities risks as they emerge.
|