Summary
This chapter takes you step by step through the ERM process and presents practical challenges using concrete examples. Robustly developed risk scenarios can challenge management intuition with more rational information on risky decisions. In addition to risk identification and risk assessment, the integration of risk-relevant information into decision-making processes is a key element of value-creating risk management. Level-appropriate, integrated risk reporting suggestions and concepts for continuous improvement of ERM quality complete this chapter.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Abraham, S., & Shrives, P. J. (2014). Improving the relevance of risk factor disclosure in corporate annual reports. The British Accounting Review, 46 (1), 91–107.
Andersen, T. J., & Winther Schrøder, P. (2010). Strategic risk management practice. How to deal effectively with major corporate exposures. Cambridge: Cambridge University Press.
Andrews, K. R. (1971). The Concept of Corporate Strategy. Irwin: Homewood.
Barnett, M., Jermier, J., & Lafferty, B. (2006). Corporate reputation: The definitional landscape. Corporate Reputation Review, 9 (1), 26–38.
Barney, J. B. (2002). Gaining and sustaining competitive advantage (2nd Ed.). Upper Saddle River, NJ: Prentice-Hall.
Barney, J. B., & Hesterly, W. S. (2006). Strategic management and competitive advantage. Upper Saddle River, NJ: Pearson Education.
Barry Callebaut (2018). Annual Report 2017/18. https://www.barry-callebaut.com/sites/default/files/publications/barry_callebaut_annual_report_2017-18.pdf. Accessed 24 January 2019.
Beasley, M. S., & Frigo, M. L. (2007). Strategic Risk Management: Creating and Protecting Value. Strategic Finance, May, 24–31.
Budescu, D. V., Broomell, S., & Por, H.-H. (2009). Improving Communication of Uncertainty in the Reports of the Intergovernmental Panel on Climate Change. Psychological Science, 20 (3), 299–308.
Bunnenberg, S. (2016). Reputationsrisikomanagement: „Es fängt mit der Kultur an“. https://www.3grc.de/risikomanagement/reputationsrisikomanagement-es-faengt-mit-der-kultur-an/. Accessed 24 January 2019.
Buss, E. (2007). Image und Reputation—Werttreiber für das Management. In M. Piwinger & A. Zerfaß (Eds.), Handbuch Unternehmenskommunikation (pp. 227–243). Wiesbaden: Gabler.
Calabretta, G., Gemser, G., & Wijnberg, N. M. (2016). The Interplay between Intuition and Rationality in Strategic Decision Making: A Paradox Perspective. Organization Studies, 38 (3–4), 1–37.
Casas i Klett, T. (2008). Der Mensch in der Uncertainty Governance: Wertschöpfung jenseits von Risiko-Management. In R. Wunderer (Ed.), Corporate Governance—zur personalen und sozialen Dimension (pp. 26–30). Köln: Luchterhand.
Chapelle, A. (2015). Is reputation risk overstated? Operational incidents do not always give firms a bad name. https://www.risk.net/risk-management/operational-risk/2394437/reputation-risk-overstated. Accessed 24 January 2019.
Choo, C. W. (1999). The Art of Scanning the Environment. Bulletin of the American Society for Information Science and Technology, 25 (3), 21–24.
Clayton Christensen (n.d.). Disruptive Innovation. http://www.claytonchristensen.com/key-concepts/. Accessed 20 November 2018.
Collier, P. M., & Agyei-Ampomah, S. (2006). CIMA Learning System 2007 Management Accounting—Risk and Control Strategy. Elsevier Science & Technology.
Collis, D. J., & Montgomery, C. A. (2004). Corporate strategy: Resources and the scope of the firm (2nd Ed.). Chicago: McGraw-Hill Irwin.
Collis, D. J., & Rukstad, M. G. (2008). Can You Say What Your Strategy Is? Harvard Business Review, 86, 82–90.
Committee of Sponsoring Organizations of the Treadway Commission (COSO) (2017). Enterprise Risk Management—Integrating with Strategy and Performance. Jersey City, NJ: AICPA.
Cox, L. A. (2008). What’s Wrong with Risk Matrices? Risk Analysis, 28 (2), 497–512.
Dane, E., & Pratt, M. G. (2007). Exploring intuition and its role in managerial decision making. Academy of Management Review, 32 (1), 33–54.
Day, R., & Woodward, T. (2004). Disclosure of information about employees in the Directors’ report of UK published financial statements: substantive or symbolic? Accounting Forum, 8, 43–59.
De Bruin, T., Freeze, R., Kulkarni, U., & Rosemann, M. (2005). Understanding the Main Phases of Developing a Maturity Assessment Model. ACIS 2005 Proceedings. 109.
Dean, J. W., & Sharfman, M. P. (1996). Does decision making process matter? A study of strategic decision making effectiveness. Academy of Management Journal, 39 (2), 368–396.
Deloitte (2012). Cultivating a Risk Intelligent Culture. Understand, measure, strengthen, and report. Luxembourg. https://www2.deloitte.com/content/dam/Deloitte/lu/Documents/risk/lu_en_wp_riskintelligentculture_01082012.pdf. Accessed 18 December 2018.
Deloitte (Ed.) (2017). Strategic Risk. A cornerstone of risk transformation. https://www2.deloitte.com/content/dam/Deloitte/global/Documents/Risk/gx-ers-risk-transformation.pdf. Accessed 24 January 2019.
Deloitte (Ed.) (2016). How to meet top management reporting expectations? https://www2.deloitte.com/content/dam/Deloitte/be/Documents/finance/POV_top%20management%20reporting%20survey_v8.pdf. Accessed 28 January 2019.
Deloitte (Ed.) (2015). Global Survey on Reputation Risk. https://www2.deloitte.com/content/dam/Deloitte/za/Documents/risk/NEWReputationRiskSurveyReport_25FEB.pdf. Accessed 24 January 2019.
Diederichs, M. (2013). Risikomanagement und Risikocontrolling (3rd Ed.). München: Vahlen.
Duijm, N. J. (2015). Recommendations on the Use and Design of Risk Matrices. Safety Science 76 (1), 21–31.
Eccles, R. G., Newquist, S. C., & Schatz, R. (2007). Reputation and its risks. Harvard Business Review, 85 (2), 104–114.
Elzahar, H., & Hussainey, K. (2012) Determinants of narrative risk disclosures in UK interim reports. The Journal of Risk Finance, 13 (2), 133–147. https://doi.org/10.1108/15265941211203189
Erben, R. F. (2015). Normen und Standards im Risikomanagement—Anwendbarkeit und Nutzen von ISO 31000, ONR 49000 ff. und COSO ERM. In W. Gleißner & F. Romeike (Eds.), Praxishandbuch Risikomanagement: Konzepte, Methoden, Umsetzung (pp. 143–174). Berlin: Erich Schmidt Verlag.
Ernst & Young (2015). Rethinking risk management. https://www.ey.com/Publication/vwLUAssets/EY-rethinking-risk-management-banks-focus-on-non-financial-risks-and-accountability/$FILE/EY-rethinking-risk-management-banks-focus-on-non-financial-risks-and-accountability.pdf. Accessed 28 Januar 2019.
Filatotchev, I., Toms, S., Wright, M. (2006). The firm’s strategic dynamics and corporate governance life‐cycle. International Journal of Managerial Finance, 2 (4), 256–279. https://doi.org/10.1108/17439130610705481
Fleischer, A. (2015). Reputation und Wahrnehmung. Wie Unternehmensreputation entsteht und wie sie sich beeinflussen lässt. Wiesbaden: VS Verlag für Sozialwissenschaften.
Frick, N., Küttner, T. F., & Schuber, P. (2013). Assessment Methodology for a Maturity Model for Interorganizational Systems—The Search for an Assessment Procedure. 46th Hawaii International Conference on System Sciences.
Frigo, M. L., & Anderson, R. J. (2011). Strategic Risk Management: A Foundation for Improving Enterprise Risk Management and Governance. Journal of Corporate Accounting & Finance, 22, 81–88.
Frigo, M. L., & Anderson, R. J. (2009). A Strategic Framework for Governance, Risk, and Compliance. Strategic Finance, 90, 20–61.
Gleißner, W. (2018). Prüfung des Risikomanagements—ein Reifegradmodell. Der Aufsichtsrat, 2/2018, 18–21.
Gleißner, W. (2014). 10 Gebote für gute unternehmerische Entscheidungen. Controller Magazin, 4/2014, 34–41.
Gleißner, W. (2004). Die Aggregation von Risiken im Kontext der Unternehmensplanung. ZfCM—Zeitschrift für Controlling & Management, 5/2004, 350–359.
Grundy, T. (2006). Rethinking and reinventing Michael Porter’s five forces model. Briefings in Entrepreneurial Finance, 15 (5), 213–229.
Hillmann M. (2011). Storytelling: Mit Geschichten Unternehmen gestalten. In M. Hillmann (Ed.), Unternehmenskommunikation kompakt (pp. 63–73). Wiesbaden: Gabler.
Howard, R. A. (1988). Decision analysis: practice and promise. Management Science, 34 (6), 679–695.
Hubbard, D. W. (2009). The failure of risk management. Why it’s broken and how to fix it. Hoboken, NJ: John Wiley & Sons Inc.
Hubbard, D. W., & Evans, D. (2010). Problems with scoring methods and ordinal scales in risk assessment. Journal of Research and Development, 54 (3), 2:1–2:10.
Hunziker, S. (2018). Erfolgskriterien von Enterprise Risk Management in der praktischen Umsetzung. In S. Hunziker & J. O. Meissner (Eds.), Ganzheitliches Chancen- und Risikomanagement. Interdisziplinäre und praxisnahe Konzepte (pp. 1–28). Wiesbaden: Springer Gabler.
Hunziker, S., & Meissner, J. O. (2017). Risikomanagement in 10 Schritten. Wiesbaden: Springer Gabler.
Hunziker, S., & Rautenstrauch, T. (2015). Risk Map: Instrument im Risikocontrolling—Breit akzeptiert, kaum hinterfragt. https://www.weka.ch/themen/finanzen-controlling/iks-und-risikomanagement/risikocontrolling/article/risk-map-instrument-im-risikocontrolling-breit-akzeptiert-kaum-hinterfragt/. Accessed 24 January 2019.
Hunziker, S., Balmer, P., & Schellenberg C. (2016). Enterprise Risk Management Studie zum Risikomanagement in Schweizer Unternehmen. Zug: SwissERM und IFZ—Hochschule Luzern.
Hunziker, S., Fallegger, M., & Jovic, K. (2018). Risiko-Management im Führungssystem einbinden. Controlling & Management Review, 62 (9), 54–59.
Jonkman, S. N., van Gelder, P. H., & Vrijling, J. K. (2003). An overview of quantitative risk measures for loss of life and economic damage. Journal of Hazardous Materials, 99 (1), 1–30.
Kirstein, S. (2009). Unternehmensreputation. Corporate Social Responsibility als strategische Option für deutsche Automobilhersteller. Wiesbaden: Gabler Verlag.
KPMG (2008). Understanding and articulating risk appetite. http://www.kpmg.com.au/Portals/0/ias_erm-riskappetite200806.pdf. Accessed 24 January 2019.
Kunz, M. (2015). Non-financial risk disclosures in annual reports and the relationship to company risk factors: Evidence from Swiss listed companies. Master Thesis, Lucerne University of Applied Sciences and Arts.
Levine, D. (2015). ERM at the Speed of Thought: Mitigation of Cognitive Bias in Risk Assessment. 2015 Enterprise Risk Management Symposium. National Harbor, Maryland.
Linsley, P. M., & Shrives, P. J. (2006). Risk reporting: A study of risk disclosures in the annual reports of UK companies. The British Accounting Review, 38 (4), 387–404.
Liu, W., & Pergler, M. (2013). Concrete steps for CFOs to improve strategic risk management. McKinsey Working Papers on Risk. https://www.mckinsey.com/~/media/mckinsey/dotcom/client_service/risk/working%20papers/44_role_of_cfo.ashx. Accessed 23 January 2019.
Moutchnik, A. (2015). The maturity model for corporate environmental management. uwf UmweltWirtschaftsForum, 23 (4), 161–170.
Müller, M. (2018). Risk Culture at Roche. Development of a Risk Culture Measurement Framework. Master Thesis, Lucerne University of Applied Sciences and Arts.
OECD (2014). Risk Management and Corporate Governance. Corporate Governance, OECD Publishing. http://dx.doi.org/10.1787/9789264208636-en
Porter, K. (2018). A Beginner’s Guide to Fragility, Vulnerability, and Risk. University of Colorado Boulder. http://spot.colorado.edu/~porterka/Porter-beginners-guide.pdf. Accessed 21 November 2018.
Porter, M. E. (1985). The Competitive Advantage: Creating and Sustaining Superior Performance. New York: Free Press.
Porter, M. E. (1980). Competitive Strategy: Techniques for Analyzing Industries and Competitors. New York: Free Press.
Protecht (2013). A Bow Tie Event. https://www.youtube.com/watch?v=dpGKHncw-d8. Accessed 24 April 2019.
Proviti (2013). Board Perspectives: Risk Oversight. https://www.protiviti.com/sites/default/files/united_states/insights/board-perspectives-risk-oversight-issue48-risk-appetite-dialogue-protiviti.pdf. Accessed 23 January 2019.
Rautenstrauch, T., & Hunziker, S. (2011). Internes Kontrollsystem—Perspektiven der Internen Kontrolle. Zürich: WEKA Business Media AG.
Rees, M. (2015). Business Risk and Simulation Modelling in Practice: Using Excel, VBA and @RISK. Chichester: John Wiley & Sons.
RIMS (Ed.). (2012). Exploring Risk Appetite and Risk Tolerance. https://www.rims.org/resources/ERM/Documents/RIMS_Exploring_Risk_Appetite_Risk_Tolerance_0412.pdf. Accessed 24 January 2019.
Romeike, F. (2018). Risikomanagement. Wiesbaden: Springer Gabler.
Romeike, F., & Weissensteiner, C. (2015). Reputation: A Risk Factor. Risk Management Review, 6–10.
Roth, M. (2015). Compliance—in a nutshell (3rd Ed.). Zürich, St. Gallen: Dike Verlag.
Samad-Khan, A. (2005). Why COSO is flawed. Operational Risk, January, 1–6.
Schilling, B. (2018). Risikoadjustierte Unternehmensplanung—Integration von Unternehmensplanung und Risikomanagement. Controller Magazin, 6/2018, 30–36.
Segal, S. (2011). Corporate Value of Enterprise Risk Management: The Next Step in Business Management. New Jersey: John Wiley & Sons, Inc.
Sidorenko, A., & Demidenko, E. (2017). Guide to effective risk management 3.0. https://papers.ssrn.com/sol3/papers.cfm?abstract_id=3014251. Accessed 18 December 2018.
Sieler, C. (2007). Präventives Reputationsrisikomanagement: Reputationsrisiken als Handlungsfeld im Enterprise Risk Management. Risiko Manager, 11, 6–11.
Sika (2017). ANNUAL REPORT 2017. Risk Management. https://www.sika.com/content/corp/main/en/group/investors_2016/risk-management.html. Accessed 28 January 2019.
Simon, H. A. (1987). Making management decisions: The role of intuition and emotion. The Academy of Management Executive, 1 (1), 57–64.
Slywotzky, A., & Drzik, J. (2005). Countering the Biggest Risk of All. Harvard Business Review, 83 (4), 78–88.
Spetzler, C., Winter, H., & Meyer, J. (2016). Decision Quality: Value Creation from Better Business Decisions. New York: Wiley.
Soliman, A., & Adam, M. (2017). Enterprise Risk Management and firm performance: an integrated model for the banking sector. Banks and Bank Systems, 12 (2), 116–123.
Swisscom (2017). Annual Report 2017. Risk situation. http://reports.swisscom.ch/en/2017/report/annual-report/management-commentary/risks/risk-situation. Accessed 24 January 2019.
Taleb, N. N. (2007). The black swan: The impact of the highly improbable. New York: Penguin Books.
Tian, Y., & Chen, J. (2009). Concept of Voluntary Information Disclosure and A Review of Relevant Studies. International Journal of Economics and Finance, 1 (2), 55–59.
Weissensteiner, C. (2014). Reputation als Risikofaktor in technologieorientierten Unternehmen. Wiesbaden: Gabler Verlag.
Wendler, R. (2012). The maturity of maturity model research: A systematic mapping study. Journal Information and Software Technology, 54 (12), 1317–1339.
Willis (2015). Risk Appetite Statements – Make or Break. https://www.willis.com/subsites/australia/Documents/Publications/services/BusinessRisk/W0477AU_Thought_Leadership_Article_Risk_Appetite_Statement_web.pdf. Accessed 26 April 2019.
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
Copyright information
© 2019 Springer Fachmedien Wiesbaden GmbH, part of Springer Nature
About this chapter
Cite this chapter
Hunziker, S. (2019). Creating Value Through ERM Process. In: Enterprise Risk Management. Springer Gabler, Wiesbaden. https://doi.org/10.1007/978-3-658-25357-8_3
Download citation
DOI: https://doi.org/10.1007/978-3-658-25357-8_3
Published:
Publisher Name: Springer Gabler, Wiesbaden
Print ISBN: 978-3-658-25356-1
Online ISBN: 978-3-658-25357-8
eBook Packages: Business and Economics (German Language)