Management of "risk appetite" a necessity, paper says

BY KEN TYSIAC

In order to balance risks and opportunities, organizations must develop, communicate, monitor and update their “risk appetites,” according to a white paper released Friday by the Committee of Sponsoring Organizations of the Treadway Commission (COSO).

Authored by University of Wisconsin-Madison accounting professor Larry Rittenberg and Frank Martens, a director in the advisory practice of PwC, the paper defines risk appetite as the amount of risk on a broad level that an organization is willing to accept in pursuit of value.

The paper, titled Enterprise Risk Management–Understanding and Communicating Risk Appetite, says risk appetite should be communicated by management, embraced by the board and integrated throughout the entity. The paper provides real-world examples and says that the current financial crisis was caused, in part, because of a failure to articulate risk appetite and identify who was responsible when risks were incurred.

A board must consider whether its strategies are consistent with the organization’s risk appetite, according to the paper. Organizations are more likely to achieve their goals, the paper says, when properly communicated risk appetite guides management in setting goals and making decisions.

COSO is a joint initiative of five private-sector organizations, including the AICPA, providing guidance on enterprise risk management (ERM), internal control and fraud deterrence.

“Organizations encounter risk every day as they pursue their objectives, and risk appetite is an integral part of an effective ERM system,” Rittenberg said in a statement. “It may seem to be an elusive topic, but the reality is that a well-communicated risk appetite serves as a boundary around the amount of risk an organization might take on, and should be considered when setting strategy or business goals.”

Ken Tysiac ( ktysiac@aicpa.org ) is a JofA senior editor.

More from the JofA:

 Find us on Facebook  |   Follow us on Twitter  |   View JofA videos

SPONSORED REPORT

Questions to ask before committing to the cloud

Cloud computing has its pros and cons. In this report, we answer common questions CPAs may have as they consider transitioning partially or fully to the cloud.

QUIZ

News quiz: IRS reopens an online service, but criticism endures

The IRS brings back the Get Transcript Online service, but the agency faces criticism for its handling of the aftermath of the event that led to the shutdown of the service. See how much you know about other recent news with this quiz.

CHECKLIST

Auditing risks in culture

Cultural flaws can seriously damage an organization. Here’s how internal auditors can reduce risks by embedding culture audits into existing audit programs.