Stanley Chege,Gregory Wanyembi,Constantine Nyamboga

DOI: https://doi.org/10.18775/jibrm.1849-8558.2015.81.3002

2023-04-01

Journal of International Business Research and Marketing

Abstract:Enterprise Risk Management (ERM) is a structured and coordinated approach for identifying, assessing, and managing risks faced by an organization. Implementing ERM standards and frameworks has several benefits, including improving focus and perspective on risk. ERM aids in developing leading indicators to detect potential risk events and provide early warning signals. ERM also incorporates key metrics and measurements of risk to improve reporting value and analysis and monitor possible changes in risk vulnerabilities or likelihood. An ERM facilitates an efficient risk management (RM) process, allowing businesses to manage risks efficiently across various departments through a robust risk management framework. This framework includes the related department’s team, working rules, and operational tools, covering all types of risks, including financial, strategic, operational, and accidental losses. The primary advantage of ERM is its ability to create a systematic and intentional process for identifying and addressing risks, treating risk management as a structured exercise where liabilities are addressed as part of a comprehensive framework rather than ad-hoc problem-solving. ISO 31000, NIST risk management framework, and COSO ERM framework are widely used frameworks for managing enterprise risks. Implementing a robust enterprise risk management standard has a positive relationship with business performance.

Sylvester Senyo Horvey,Jones Odei-Mensah

DOI: https://doi.org/10.1080/13669877.2023.2208138

2023-05-13

Journal of Risk Research

Abstract:Global economic crises and complexities in the business environment have flawed the traditional risk management system. These have provided lessons to business leaders and enhanced the popularity of Enterprise Risk Management (ERM). ERM is the holistic approach to managing the overall risks of an organisation to achieve its strategic goals. Despite its relevance, the question about the appropriate measurement for ERM and the performance of ERM remains. This study provides a comprehensive and systematic literature review on the measurement and performance of ERM. Google Scholar was the primary search tool for ERM literature from 2001 to 2020, and papers listed in SCImago journal ranking were discussed. According to the review, there is no specific approach to measuring ERM; hence, scholars rely on different proxies. Most studies rely on secondary sources, particularly the Chief Risk Officer's appointment as a simple ERM proxy. This approach is widely adopted in the literature due to the difficulty in assessing ERM information. This paper recommends that further studies on the empirical measurement of ERM should rely on both primary and secondary data as they complement each other. This will provide more insight and allow more factors to be considered for a robust ERM measurement. In terms of performance, the ERM literature reveals mixed findings; however, there is enough evidence to support the assertion that ERM enhances firm profitability and value. Also, an advanced level of ERM implementation significantly improves firm performance. We suggest that scholars consider examining the ERM-performance relationship in emerging economies, as most of these studies centred on the US and European economies. In addition, future studies should consider investigating the non-linear relationship and how moderating factors affect the ERM-performance relationship. Firms must also strengthen their ERM system, as a higher level of ERM implementation improves performance.

social sciences, interdisciplinary

Babajide Oyewo

DOI: https://doi.org/10.1108/jaee-10-2020-0278

2021-09-07

Journal of Accounting in Emerging Economies

Abstract:Purpose This study investigates firm attributes (namely level of capitalisation, scope of operation, organisational structure, organisational lifecycle, systemic importance and size) affecting the robustness of enterprise risk management (ERM) practice, the extent to which ERM affects the performance of banks and the impact of ERM on the long-term sustainability of banks in Nigeria. This was against the backdrop that the 2012 banking reform was a major regulatory intervention that mainstreamed ERM in the Nigerian banking sector. Design/methodology/approach The study employed a mixed methodology of content, trend and quantitative analyses. Ex post facto research design was deployed to analyse performance differential of banks, with respect to the implementation of ERM, over a 10-year period (2008–2017). A disclosure checklist developed from the COSO ERM integrated framework was used to assess the robustness of ERM by content-analysing divulgence on risk management in published annual reports. The banking reform periods were dichotomised into pre- (2008–2012) and post- (2013–2017) reform periods. Jonckheere–Terpstra test, independent sample t -test and Mann–Whitney test were applied to analyse a total of 1,036 firm-year observations over the period 2008–2017. Findings Result shows that bank attributes significantly affecting the robustness of risk management practice are level of capitalisation, scope of operation, systemic importance and size. Performance of banks improved slightly during the post-2012 banking reform period. This suggests that as banks consolidate on the gains of ERM, benefits of the regulatory policy on risk management may be realised in the long run. Result also shows that ERM enhances long-term performance, connoting that effective risk management could serve as a competitive strategy for surviving turbulence that typically characterises the banking sector. Practical implications The emergence of level of capitalisation, scope of operation, systemic importance and size as determinants of ERM provides empirical evidence to support the practice of reviewing the capital requirements for banking business from time to time by regulatory authorities (i.e. recapitalisation policy) as a strategy for managing systemic risk. Top management of banks may consider instituting mechanisms that will ensure risk management is given prominence. A proactive approach must be taken to convert risks to opportunities by banks and other financial institutions, going forward, to cope with the vicissitudes of financial intermediation. Originality/value The originality of the study stems from the consideration that it provides some new insights into the impact of ERM on banks long-term sustainability in a developing country. The study also contributes to knowledge by exposing the factors determining the robustness of risk management practice. The study developed a checklist for assessing ERM practice from annual reports and other risk management disclosure documents. The paper also adds to the scarce literature on risk governance and risk management.

Jenner Lavalle Sandoval,Domingo Hernández Celis,Michael Cabanillas-Carbonell,Laberiano Andrade-Arenas

DOI: https://doi.org/10.11591/ijeecs.v31.i3.pp1589-1604

2023-09-01

Indonesian Journal of Electrical Engineering and Computer Science

Abstract:Currently, computer security or cybersecurity is a relevant aspect in the area of networks and communications of a company, therefore, it is important to know the risks and computer security policies that allow a unified management of cyber threats that only seek to affect the reputation or profit from the confidential information of organizations in the business sector. The objective of the research is to conduct a systematic review of the literature through articles published in databases such as Scopus and Dimension. Thus, in order to perform a complete documentary analysis, inclusion and exclusion criteria were applied to evaluate the quality of each article. Then, using a quantitative scale, articles were filtered according to author, period and country of publication, leaving a total of 86 articles from both databases. The methodology used was the one proposed by Kitchenham, and the conclusion reached was that the vast majority of companies do not make a major investment in the purchase of equipment and improvement of information technology (IT) infrastructure, exposing themselves to cyber-attacks that continue to grow every day. This research provides an opportunity for researchers, companies and entrepreneurs to consult so that they can protect their organization's most important assets.

Adedayo Erin Olayinka,Uwalomwa Uwuigbe,Eriabie Sylvester,Olubukola Ranti Uwuigbe,Omoike Osereme Amiolemen

DOI: https://doi.org/10.21511/imfi.16(4).2019.02

2019-10-18

Investment Management and Financial Innovations

Abstract:This research empirically looked at Enterprise Risk Management impact on accounting quality of selected listed firms in the Nigerian financial sector. The study engaged the use of content analysis of the selected listed firms’ annual financial reports and corporate websites in determining the ERM disclosure index and its impact on accounting quality for a period of five years (pre-ERM period) (2007–2011) and another five years period (post-ERM period) (2013–2017). In attaining the proposed objectives, the study employed the panel Generalized Method of Moments estimator to test the hypotheses and find out the relationship between the variables. The study observed from the findings that there is no significant association between enterprise risk management and accounting quality during the pre-ERM period. This study adds to the body of knowledge in the area of corporate reporting, risk disclosure, risk management and accounting quality in emerging economies especially the Sub-Saharan African countries.

English Else

Chukwujekwu Odubuasi Augustine,Theresa Ofor Nkechi,Ubaka Ilechukwu Felix,Augustine Chukwujekwu Odubuasi,Nkechi Theresa Ofor,Felix Ubaka Ilechukwu

DOI: https://doi.org/10.4236/me.2022.131004

2022-01-01

Modern Economy

Abstract:This study did a comparative analysis on the effect of enterprise risk management (ERM), risk committee, on earning capacity of African banks. The study covered a study period of ten (10) years spanning from 2009 to 2018. The study covered Nigeria, Ghana, and South Africa. Data for the study were gotten from the fiscal reports of the banks under investigation. The study was analyzed using the panel data methodology. The study found that both ERM and risk committee efficiency have the greatest effect on the earning capacity of Nigerian firms (R2 = 60%) than the rest two countries. More so, our model has shown that South Africa has performed on a closer chase to Nigeria, in generating returns to the shareholders using the regressors mentioned above (R2 = 56%). Finally, Ghana has performed the least so to say as the same variables generated or made the least input to ROE (R2 = 24%). Hence, we conclude ERM and risk committee are instrumental to improved earnings capacity of selected African banks. As such, the study recommends that regulators in African countries should enforce strict compliance and ensure that the ERM policies are implemented across banks in Africa. Lastly, corporate board should engage men that are knowledgeable in risk management.

Evelyn C. Braumann

DOI: https://doi.org/10.2308/jmar-52084

2018-03-01

Journal of Management Accounting Research

Abstract:ABSTRACT This study examines the relationship between five enterprise risk management (ERM) components and their influence on the effectiveness of ERM. The study particularly focuses on the role of risk awareness as an ERM component within the interplay of other formal ERM components. The five ERM components result from a factor analysis applied on a list of risk management (RM) practices in nonfinancial firms. Based on survey data from 118 companies, I find evidence supporting an indirect effect of risk awareness on RM effectiveness. My analyses support that the use of RM tools strengthens the relationship between risk awareness and RM effectiveness, but I only find inconclusive evidence supporting a direct association between risk awareness and RM effectiveness. As antecedents of risk awareness, I find support for both organizational environment and reporting processes. Moreover, risk awareness carries the effects of organizational environment and reporting processes to RM effectiveness. This study shows empirically that risk awareness is a vital cultural component in a firm's ERM system. It thus contributes to existing research in management accounting and control by providing insights into the role of risk awareness as a concept related to other ERM components.

Mohamed Santigie Kanu

DOI: https://doi.org/10.5296/bms.v13i1.19808

2022-04-29

Business Management and Strategy

Abstract:Enterprise risk management (ERM) research has mostly been limited to factors determining its implementation and its effects on firm performance. Despite a clear need for its establishment in sound risk culture and its integration with strategic planning, organisational leaders continue to implement these management concepts in isolation. Academic research into these conjoint relationships has also received less attention in the literature. This study investigates whether ERM's effect on firm financial performance, measured by return on assets, is mediated by risk culture and strategic planning. The study provides empirical evidence that adopting ERM solely does not enhance a firm's financial performance. The ERM, risk culture, and strategic planning constructs are empirically determined to be correlated. Strategic planning has a direct and positive relationship with firm performance. The study further provides empirical evidence that the positive effects of ERM implementation on firm financial performance are mediated by risk culture and strategic planning. The size of a firm and its financial leverage are remarkable determinants of firm performance, while firm age and growth rate are not. The pieces of evidence have been presented from an under-investigated context in Africa with other contributions to the literature, such as, providing comprehensive measures of ERM and risk culture and responding to calls to synthesise risk and strategic management. This study also advances multiple mediation analysis and the use of PLS-SEM in the ERM literature.

Abroon Qazi,Mecit Can Emre Simsekler

DOI: https://doi.org/10.1080/13669877.2021.1913633

2021-04-19

Journal of Risk Research

Abstract:Enterprise risk management (ERM) is an important process for organizations to manage risks and identify opportunities in a holistic manner. Earlier studies have explored antecedents and consequences of ERM programs considering organizational, procedural, technical, and other related factors. However, limited evidence is available regarding the effectiveness of ERM programs. Using semi-structured interviews with ERM experts, this paper explores how experts assess the efficacy and quality of ERM programs and whether they adopt project management (PM) and total quality management (TQM) tools for implementing and improving the ERM program. Further, the Interpretive Structural Modeling (ISM) technique is used to explore causality among factors influencing the efficacy of an ERM program. The findings of this study provide useful insights to both practitioners and researchers to better understand the importance of assessing and enhancing the quality of ERM programs, and establish cause-effect relationships across factors influencing the efficacy of such programs.

social sciences, interdisciplinary

Sorin Gabriel Anton,Anca Elena Afloarei Nucu

DOI: https://doi.org/10.3390/jrfm13110281

2020-11-14

Journal of Risk and Financial Management

Abstract:The Enterprise Risk Management (ERM) process has heterogeneously developed across the world, although it represents a leading paradigm, supporting organizations to identify, evaluate, and manage risks at the enterprise level. Academics have studied the process, but there is no complete picture of the determinants and implications of such an integrated risk management process. Therefore, we present a systematic empirical literature review on ERM, based on a research protocol. The review highlights that the ERM literature can be divided into four general lines of research: the ERM adoption, the determinants of the ERM implementation, the effects of ERM adoption, and other aspects. In contrast to the richness of studies devoted to ERM engagement in small and medium-sized enterprises (SMEs), studies exploring ERM adoption in banks or insurance are relatively few. The literature review has revealed that the most frequently investigated effect of ERM is on firm performance. Little effort has been dedicated to the analysis of the effectiveness of ERM by its components and to institutional, individual, and organizational factors that affect ERM adoption. The study can serve as a starting point for scholars to explore research gaps related to ERM, while the practitioners can rely on the presented findings to identify the effects of the ERM implementation.

Sasha Romanosky,Elizabeth Petrun-Sayers

DOI: https://doi.org/10.1108/mrr-10-2021-0774

2023-05-25

Management Research Review

Abstract:Purpose The purpose of this study is to examine how companies integrate cyber risk into their enterprise risk management practices. Data breaches have become commonplace, with thousands occurring each year, and some costing hundreds of millions of dollars. Consequently, cyber risk has become one of the gravest risks facing organizations, and has attracted boardroom-level attention. On the other hand, companies already manage many kinds of difficult and growing risks, and that firms lose less than 1% of annual revenues as a result of cyber incidents. Therefore, how should firms appropriately address cyber risk? Is it indeed a materially different kind of risk area, or is it simply just one more risk that can seamlessly be integrated into existing enterprise risk management (ERM) practices? Design/methodology/approach The authors performed thematic analysis based on semi-structured interviews, with non-probabilistic, purposive sampling, to answer two main questions. First, how do firms manage enterprise risks, generally? And second, how are they integrating cyber risk into these existing processes? Findings The authors find that there is considerable variation in the approach and sophistication in ERM practices, such as whether they are driven more like an auditing function, or as a risk champion. The authors also find that despite the novelty of cyber risk, it can be integrated like other enterprise risks, and that cyber risk is most often seen as an operational risk (similar to workplace accidents or fraud), rather than a strategic risk, emerging from, for example, technology innovation and R&D. Research limitations/implications The generalization of the results is limited by the sample size and variation of firms interviewed. While the authors attempted to interview enterprise risk managers across a wide variation of firms, there were clear limitations in the scope. That being said, the authors were fortunate to be able to examine ERM and cyber risk practices across small and large, private and publicly traded companies, from a variety of business sectors. Practical implications The authors believe these finding are important because they present evidence that while cyber risk may be new, it does not require specialized handling or processes to track it at the enterprise level. While some firms may choose to provide special accommodations or attention because of their data collection or business practices, this approach is neither necessary nor required of all firms in all situations. Originality/value This research is one of the only papers that, to the best of the authors' knowledge, examines how cyber risk is integrated at an enterprise level.

Shahzeb Ali Malik,Barry Holt

DOI: https://doi.org/10.1057/ori.2013.7

2013-09-04

OR Insight

Abstract:Risk Management (RM) is rapidly evolving; its practitioners are increasingly shifting focus from pure operational or financial risks to a broader Enterprise Risk Management (ERM). ERM involves a set of processes and methods used to manage risks that are not just associated with accidental losses but also associated with financial, strategic, technological and other business areas. This article highlights different factors that affect the adoption of ERM which include people’s perception of RM and the necessity for a risk-aware culture at all levels within organisations before adopting the ERM-based approach. The article also addresses a few popular ERM frameworks that help organisations to understand a complete picture of ERM activities and its functional areas. The work presented in this article is taken from an on-going project that is being undertaken to develop a practical tool for providing better analysis of risk data and improved knowledge management.

Siti Zaleha Abdul Rasid,Che Ruhana Isa,Wan Khairuzzaman Wan Ismail

DOI: https://doi.org/10.1108/ara-03-2013-0022

2014-07-01

Asian Review of Accounting

Abstract:Purpose – The purpose of this paper is to examine the linkages between management accounting systems (MAS), enterprise risk management (ERM) and organizational performance by examining MAS information characteristics that match ERM implementation and joint effects of MAS and ERM on organizational performance. Design/methodology/approach – The research method involved administering a questionnaire to 106 financial institutions (FIs) in Malaysia. The respondents were chief financial officers or staff members holding the most senior positions in the finance department of the institutions. Findings – The significant findings on the association between ERM and MAS show that implementation of ERM requires the use of sophisticated MAS information. ERM and MAS complement each other as both are integral to decision making, planning and control in an organization. The finding also substantiates the important role of ERM in enhancing non-financial performance. Research limitations/implications – This study covered only MAS as part of sub-control systems in an organization. Future studies could investigate the link between a more comprehensive management accounting and control system and ERM. Furthermore, this study used perceptual measures of MAS, ERM and organizational performance. Practical implications – The regulating body should promote best management practices of sophisticated MAS and ERM among FIs as these practices will create competitive advantage as well as help those institutions comply with regulations. Originality/value – This study has contributed to the body of knowledge on the linkages between MAS, risk management system and organizational performance.

English Else

Thanh Trần Thị Phương,Thoa Đậu Thị Kim,Hoa Trần Anh,Lam Phạm Trà

DOI: https://doi.org/10.24311/jabes/2022.33.08.01

2022-08-01

Journal of Asian Business and Economic Studies

Abstract:In the fluctuation and uncertainty of the business environment, especially with the global crisis caused by the COVID-19 pandemic, Enterprise risk management (ERM) has become increasingly significant for survival and growth of enterprises. However, empirical research on ERM and firm performance in information technology (IT) context has not been thoroughly studied. This study focuses on investigating a path model of ERM, IT structure, competitive advantage, and firm performance in Vietnam. Data is collected from 186 enterprises. Through PLS analysis, the findings show that both ERM and IT structure have significant positive impacts on firm’s competitive advantage. In turn, competitive advantage is an important factor for the performance of enterprises. The findings have suggested corporate governance implications regarding to focus on ERM and IT structures to enhance competitive advantage and firm performance.

English Else

Sylvester Senyo Horvey,Jones Odei-Mensah

DOI: https://doi.org/10.1057/s41283-024-00149-1

2024-08-07

Risk Management

Abstract:This study contributes to the literature by examining the effect of enterprise risk management (ERM) on insurers' performance (underwriting performance and Return on Assets) and investigating how corporate governance characteristics such as board size, board independence and gender diversity moderate the ERM-performance relationship. The study employs the generalised method of moments on a sample of 63 insurers in South Africa, covering 2015–2019. The study's findings agree with the literature that a positive relationship exists between ERM and insurers' performance. This was consistent with both performance indicators. Again, we find that board size, board independence, and gender diversity interact with ERM in affecting insurers' performance, and the relationship was significantly positive. This implies that corporate governance plays a significant role in promoting ERM effectiveness in affecting performance. Therefore, insurers interested in ensuring a robust ERM system should leverage these governance factors to appreciate the overall impact of ERM on performance.

social sciences, interdisciplinary

Aida Nurina Ahmad Azman,Siti Khadijah Salleh,Jaizah Othman,Maryam Yousefi Nejad,Aza Alina Md Kassim,Zunirah Mohd Talib

DOI: https://doi.org/10.57002/jms.v20i1.215

2022-06-15

Abstract:The purpose of this study is to investigate the relationship of factors or determinants that could affect Enterprise Risk Management (ERM), focusing on the financial services sector listed in Bursa Malaysia. The study used 31 financial services companies’ annual reports from 2011 until 2020. A logit regression approach is used, and the dummy variable used as the dependent variable is equal to one if firms implement ERM and zero if not. Four independent variables are firm size, leverage, profitability, and cash reserves. The findings of this study are that profitability, leverage, and cash reserves are significant factors in ERM implementation. However, firm sizes show negative related to ERM implementation. This research is limited to the industry that only focuses on the financial services sector and some companies do not have annual report information. Nevertheless, the research demonstrates how the company that implements ERM or has Chief Risk Officer will be able to manage their risk systematically and do decision-making better. This study focuses on the implementation of ERM in the financial services industry, where most researchers focus on all sectors and relate ERM implementation with firm value

Jiyeon Yun

DOI: https://doi.org/10.1016/j.frl.2023.103950

IF: 9.848

2023-04-01

Finance Research Letters

Abstract:We investigate the effect of enterprise risk management (ERM) on corporate risk management. We focus our analysis on U.S. publicly traded insurance companies between 2000 and 2016 to reduce unobservable differences across industries and to construct a more complete measure of corporate risk management. We simultaneously model the determinants of ERM adoption and the effect of ERM on corporate risk management. We find that ERM adoption increases firm's overall corporate risk management. When we analyze insurance and derivatives separately, ERM firms are utilizing more derivatives but less insurance.

business, finance

Omar Albasteki,Amama Shaukat,Thaira Alshirawi

DOI: https://doi.org/10.18502/kss.v3i25.5195

2019-09-19

KnE Social Sciences

Abstract:This article does not have an abstract.

Evan M. Eastman,Anne C. Ehinger,Jianren Xu

DOI: https://doi.org/10.1111/jori.12469

IF: 1.452

2024-04-26

Journal of Risk & Insurance

Abstract:This study examines the impact of enterprise risk management (ERM) programs on corporate tax planning. ERM is a holistic approach to managing an enterprise's entire portfolio of risks. We hand‐collect data on ERM adoption for a sample of Standard & Poor's 500 firms from 1993 to 2016. We empirically document that firms with ERM programs have lower cash effective tax rates than firms without ERM. Additionally, we find that the relation between ERM and tax avoidance is stronger among firms with more business segments. Finally, our results suggest ERM adoption offsets an increase in opacity and tax uncertainty typically associated with tax avoidance strategies. Overall, we provide evidence that ERM allows firms to exploit tax avoidance opportunities through enhanced coordination and communication.

economics,business, finance

Abol Jalilvand,Sidharth Moorthy

DOI: https://doi.org/10.3390/jrfm16110473

2023-11-03

Journal of Risk and Financial Management

Abstract:Establishing an enterprise risk management (ERM) system is widely viewed as providing firms with the tools and processes needed to build resilience and expertise, enabling them to manage the consequences of crises that have led to the collapse of major firms across different industries globally. Intended for use in advanced accounting, auditing, and finance courses, this case study (of a true event) describes the development and implementation of an ERM system for a U.S. multinational nonprofit firm during the 2015–2021 period. The case study’s main learning objectives are several-fold. First, couched within the recent economic environment, it informs students on some of the more important academic and applied research on corporate risk management. Second, students will learn to analyze the content of a questionnaire designed to capture the integrated effects of the firm’s risk culture, risk structure, risk governance, and control for establishing its risk profile. Third, they will learn to create and apply multi-dimensional risk indices to measure and prioritize the firm’s risk exposures. Finally, the last learning outcome focuses on strategies to triangulate the firm’s overall risk profile and risk prioritization results to construct mitigation strategies that build resilience and create value through risk diversification, information signaling, the exploitation of natural hedges, and enhancing the board’s governing efficiency. The nonprofit nature of the firm in this case study introduces no methodological or conceptual constraints or limitations in applying the proposed risk management methodologies to for-profit or publicly traded firms.