Skip to main content
Home
The Online Resource for Modern FP&A Professionals
Please register to receive the latest FP&A news, updates and tips Login

Main menu

  • Home
  • FP&A Insights
    • FP&A Trends Digest
    • FP&A Trends Research
    • FP&A Trends Insight Paper
    • FP&A Trends Survey
    • Short Videos
    • Our Contributors
  • FP&A Events
    • International FP&A Board
    • FP&A Trends Webinars
    • Digital FP&A Circles
  • AI/ML Committee
    • Introduction
    • Members
    • Resources
    • Meetings
  • FP&A Tools
    • FP&A Trends Maturity Model
  • About Us
    • Company Policy
    • Privacy Policy
    • Editorial Guidelines
    • Our Ambassadors
    • Our Sponsors & Partners
    • Contact Us
image
Risks: How to Make Risk Appetite Visible?
October 15, 2019

By Richard Reinderhoff, CFO/FP&A Expert and Independent Adviser

FP&A Tags
Risk-Adjusted Planning

At a corporate level, risks can be very well mapped and controlled using e.g. the COSO framework. Defining the risks is often source driven. This means: the source of the risk is identified leading to the impact being measured by the possibility of occurrence (chance) and the size of its impact on the P&L (money). How much appetite for risk does the company have to achieve its goals? 

This complex area of Enterprise Risk Management (ERM) is today’s responsibility of the CFO and, if available, the Chief Risk Officer (CRO). They are the ones who influence the risk culture. Three key questions will be considered: How is risk mapped? Where is this risk appetite? And, how to manage it? 

How is risk mapped?

The COSO risk framework focuses on 4 objectives: strategic, operational, financial reporting, and compliance. The financial reporting and compliance risks can be collected using some form of internal control framework: 

  • For each business and financial process, management and/or external experts can identify the risks and (needed) control mechanisms. 
  • A walkthrough audit can identify, which control activities, registrations and checks are not in place, and how to solve these issues (e.g. automate, training, new tasks, process adjustment, reporting, etc.). 
  • Since some of the risks will not be full-proof yet, a short list of key-risks (or rolled-up risks) can be established for the executive team to evaluate. 

These two areas, financial reporting and compliance, are also a source for identifying the first operational risks (e.g. missing review of KPI’s) and some strategic risks (e.g. culture related or integrity issues). Management can elaborate on the other operational and strategic risks, making the key-risk overview complete. These are the risks that appear on risk dashboards for the executive team and boards to discuss.

Where is this risk appetite?

Risk appetite reflects how much risk the company is willing to take. It is at the core of managing risks. Through voting, expert opinion, or discussion, the list of key-risks is reviewed establishing the chance they might occur/lead to a problem, and the financial impact they probably have on the P&L.

While auditing and reviewing the (key-)risks, solutions (and opportunities!) will be suggested. Investing in these solutions shows up in the risk map, moving more risks into the green area, or making the green area larger until the remediations are in place. The area between uncontrollable risks and events and risks with remediation can be defined as the risk appetite. 

How to manage risk appetite?

Defining the risk appetite of the company should not only be defined by the financial impact, available money to remediate, or chance ‘guesstimates’. Nor, should it be shaped by ‘culture’. E.g. how often can a risk occur/be allowed? Where is zero-tolerance required? When should we remediate? These questions call for the need to classify risks differently.

The list of (key-)risks could be classified as follows:

  1. Normal business hazard
  2. Competitive or operational/systems impact
  3. Reputational or 3rd party impact
  4. Loss of ‘license to operate’ or default

These 4 indications show who will be responsible for managing that specific risk, and who is responsible for establishing limits or approve actions. Classification makes the levels of risk and risk appetite transparent. It makes the risk ‘culture’ visible. 

From the risk areas, strategy, operations, financial reporting and compliance, the financial impact is just one classification. The consequence for each business might be different and it is up to Risk Managers and FP&A professionals to deal with these risks. Both are business partners bringing risk awareness to staff and management. By classifying the impact of risks differently, a shortcut is obtained to effectively communicate and manage the risk appetite and influence the risk culture.

The article was first published in Unit 4 Prevero Blog

The full text is available for registered users. Please register to view the rest of the article.
  • Log In
  • or
  • Register

Related articles

FP&A and Risk Management
September 11, 2019

Running a company, among other things, requires dealing with ambiguity. How this is done depends on...

Read more
FP&A: Learning to Love Risk
September 19, 2017

If measurement – or the lack of it – is the biggest weakness in most forecasting...

Read more
How to Manage Forecasting Risk?
March 4, 2018

In an uncertain and fast-changing world, line managers need to be made aware of the uncertainties...

Read more
SR 11-7 and Corporate Finance Modelling: Managing Risk and Promoting Success
May 11, 2017

Through the financial crisis, the advent of drill down database capabilities and with direction from the...

Read more
+

Subscribe to
FP&A Trends Digest

We will regularly update you on the latest trends and developments in FP&A. Take the opportunity to have articles written by finance thought leaders delivered directly to your inbox; watch compelling webinars; connect with like-minded professionals; and become a part of our global community.

Create new account

image

Event Calendar

Pagination

  • Previous
  • May 2025
  • Next
Su Mo Tu We Th Fr Sa
27
28
29
30
1
2
3
 
 
 
 
4
5
6
7
8
9
10
11
12
13
14
15
16
17
Transforming FP&A Together: Human & AI Synergy
 
18
19
20
21
22
23
24
Moving from FP&A to Extended Planning and Analysis (xP&A)
 
Five Critical Roles for Building a World-Class FP&A Team
 
25
26
27
28
29
30
31
FP&A Business Partnering and AI: A New Era
 
All events for the year

Future Meetings

BPAI
The FP&A Trends Webinar FP&A Business Partnering and AI: A New Era

May 28, 2025

The Face-to-Face London FP&A Board: Data Management & Analytics: Unlocking FP&A Value
The Face-to-Face London FP&A Board Mastering Data in FP&A: Smarter Analytics, Better Decisions

June 5, 2025

FP&A Trends Webinar The Evolving Role of FP&A: From Number Cruncher to Strategic Advisor
The FP&A Trends Webinar Making FP&A Teams Fit for the Future

June 11, 2025

The Face-to-Face New York FP&A Board
The Face-to-Face New York FP&A Board From Insight to Impact: FP&A Business Partnering in Action

June 17, 2025

FP&A Trends Webinar Practical Steps for FP&A Analytical Transformation.
The FP&A Trends Webinar Unlocking FP&A Analytical Transformation

June 18, 2025

The FP&A Trends Webinar How AI is shaping the future of Financial Planning & Analysis (FP&A)
The FP&A Trends Webinar Transforming FP&A with AI: Maturity, Impact, and Future Roles

June 25, 2025

The Face-to-Face Sydney FP&A Board
The Face-to-Face Sydney FP&A Board Modern Financial Planning and Analysis (FP&A): Latest Trends and Developments

June 26, 2025

The Face-to-Face Singapore FP&A Board: Modern Financial Planning and Analysis (FP&A): Latest Trends and Developments
The Face-to-Face Singapore FP&A Board Modern Financial Planning and Analysis (FP&A): Latest Trends and Developments

July 8, 2025

AI/ML FP&A
AI/ML FP&A
Data and Analytics
Data & Analytics
FP&A Case Studies
FP&A Case Studies
FP&A Research
FP&A Research
General
General
Integrated FP&A
Integrated FP&A
People and Culture
People and Culture
Process
Process
Technology
Technology

Please register to receive the latest FP&A news, updates and tips.

info@fpa-trends.com​

              

Foot menu

  • FP&A Insights
  • FP&A Board
  • FP&A Videos

Footer countries

  • Amsterdam
  • Austin
  • Boston
  • Brisbane
  • Brussels
  • Chicago
  • Copenhagen
  • Dubai
  • Frankfurt
  • Geneva
  • Helsinki
  • Hong Kong
  • Houston
  • Kuala Lumpur
  • London Board
  • London (Circle)
  • Melbourne
  • Miami
  • Milan
  • Munich
  • New York
  • Paris
  • Perth
  • Riyadh
  • San Francisco
  • Seattle
  • Shanghai
  • Singapore
  • Stockholm
  • Sydney
  • Tokyo
  • Toronto
  • Washington D.C.
  • Zurich

Copyright © 2025 fpa-trends.com. All rights reserved.

0