Immediate Vault Immediate Access

ERM on the Rise

An uprising in Egypt or a catastrophic natural disaster in Japan can make a company stop and think about how that event impacts their business. And events like these are helping to spur companies to fully embrace enterprise risk management (ERM).

This is a good thing. And, according to some, it’s only going to get better.

James Lam, president of risk-management consulting firm James Lam & Associates, has high expectations for the future of ERM, telling CFO magazine that “We’re going to make more progress in ERM implementations and its standardization in the next couple of years than we did in the last dozen.” According to his research, almost 90% of global organizations with more than $1 billion in revenue are either putting an ERM program in place or, in 25% of those cases, already have a program up and running.

Russ Banham, a contributing editor of CFO magazine, also has some great insight into the present state and future situation of the risk management movement. He penned quite an interesting ERM article that was published today. In it, Banham states that it’s not just black swan events that are to credit for the spike in ERM popularity, three trends have also caused an increase in interest.

  1. Corporate boards are under regulatory pressure to address risk management explicitly.
  2. Proponents of ERM are making progress in having it acknowledged as a best practice for overall risk management.
  3. New technologies are enhancing companies’ ability to evaluate, measure, and prioritize risks, and to test and report on their potential impact.

Banham points to the Dodd-Frank Act, the fact ratings agencies factor in ERM criteria into their ratings process, COSO II (the Committee of Sponsoring Organizations) and the SEC’s sharpened stance on risk management as why some companies, especially larger ones, have no option other than the fully implement an ERM program.

Governance issues aside, ERM would get a major boost if it were widely regarded as an industry standard for best practices. “We are not talking about a one-size-fits-all standard, since risk management is part art and part science, and organizations differ by geographies, markets, business lines, and organizational structure,” Lam says. “It can, however, be an industry-by-industry standard, customized by companies within a given industry.”

Optimism aside, most companies still have a long way to go in terms of developing a comprehensive, efficient and successful ERM strategy. As we see by the second graphic below, more than half of companies still have little or no common risk management processes implemented.

Let’s hope Lam’s predictions come to fruition.

Whistleblowing Pays

Sure, sure, whistleblowing pays off by relieving one’s conscious. But did you know it now also pays a much higher monetary reward?

With the Dodd-Frank Wall Street Reform bill now in place, whistleblowers will not only have even more protection from their employer seeking revenge, they will also be rewarded financially at a much greater rate than in the past. According to the recent reform, successful informants will be entitled to collect “10% to 30% of the wrongdoers’ payout” to the securities and exchange commission.

Historically, the SEC could only reward whistleblowers who were involved with insider trading cases. And apparently, they weren’t very generous.

During its 20-year existence, the SEC’s whistle-blower program has paid out only $159,537 to five claimants. No wonder observers of securities fraud have had little incentive to spill the beans. “Basically, [whistleblowing] ruins your life,” says Luigi Zingales, a professor at the University of Chicago Booth School of Business who has studied the issue of whistle-blowers. “What is worth your life getting ruined? It’s pretty expensive.”

Expensive no more?

That’s what many interpret from the new financial reform bill. Besides generous monetary rewards, the new law also greatly expands whistle-blowers’ rights. Now, if you tell on your employer, you are allotted a whopping six years to bring your case to court, as opposed to a mere 90-day statute (the rule under Sarbanes-Oxley).

The National Whistleblowers Center was nice enough to compile everything pertaining to whistleblower protections from the Dodd-Frank Act. Also, our own Jared “Dubs” Wade blogged about the topic — and included a sweet example of his photoshop skills.

whistleblower