Beruflich Dokumente
Kultur Dokumente
1. Executive Dashboard
2. Business Environment Scorecard
3. Change Initiatives
4. Compliance and Obligations
5. Incidents Management
6. Information Library
7. Insurance
8. Issues and Actions
9. Key Indicators
10. Planning and Scoping
11. Process
12. Risks and Controls
13. Scenarios
14. Business Continuity Plan Assessment
15. Audit
1. Executive Dashboard
An executive dashboard is a set of reports for various entities that allows the senior/top
management to have a glimpse of the different statuses and spread of risk and the Risk Profile
across the organization.
It can be filtered based on the following options:
Business Line
Location
Product
Process
Risk Event Type
Risk Category
This dashboard displays the following reports:
1. Global Risk Analysis
2. Global Control Analysis
3. Incidents by Time Series
4. Incidents by Business Line
5. Risks by Risk Category
6. Top Risks
7. Global Key Indicators versus Enterprise Key Indicators
2. Business Environment Scorecard
Business Environment refers to a set of conditions that affect the functioning of an organization. It may
include economical, social, legal, or institutional factors. In order to ensure smooth runni ng of a
business, these factors should be assessed on a periodic basis. The observations can help an
organization to control the factors in an adequate manner achieving better productivity.
The Oracle Financial Services Operational Risk Business Environment Scorecard (BES) assists
organizations in determining the impact of various environmental factors on the business. Using this
module, you can capture important environmental factors affecting the business for a business line and
location and rate the influence of these parameters on business. The organization can take necessary
steps to control the factors based on the ratings which results in better performance.
3. Change Initiatives
The Change Management module in OFSOR/GCM enables user to create a change initiative, monitor the
risks and controls associated with the change initiative, update the progress of the initiative, perform
regular assessments and track the initiative to completion, and ensure a review process for the Change
based on the Risks envisioned post Implementation.
An obligation is a course of action that an entity is required to take, whether legal or moral. It is the
responsibility of the Financial Institution to comply with the regulations or Policies (set for itself). To
comply with Regulations or Policies, Financial Institution set few obligations or activities which fulfill the
objectives of Regulations or Policies requirements. Compliance module allows you to view and assess
obligation that are localized to the specific business units. The compliance and obligations dashboard
displays the following tabs:
This dashboard displays the reports based on the information library data available in the application.
The Information library Dashboard displays the following reports:
1. Information Libraries by Type
2. Associated Risks
3. Associated Controls
4. Associated Scenarios
The following report is an additional report:
1. Information Libraries Detail
7. Insurance
An Insurance Policy and basic risk mitigation forms an integral part of any financial organization.
Organizations have numerous insurance policies to cover risks and future losses which may arise from
such risks. The Oracle Financial Services Operational Risk Insurance module helps to capture t he
different types of policies such as Fidelity Guarantee Insurance, Third Party Liability, and so on and
stores them in a central repository called the Insurance Policy Library. Insurance Policy module details
name, validity, premium amount, cover amount, reminder date, and so on. Insurance Policy can be
linked to incidents which arise during the operations of an organization or risks already identified in the
organization. The Insurance module helps to monitor policies and generate further insights based on
historical data stored in the central repository. It helps to close and renew the policies on time.
The Insurance Dashboard displays the following reports.
1. Insurance Policies by Business Line
2. Insurance Policies By Location
3. Insurance Policies By Risk Event Type
4. Insurance Policies Due for Renewal
5. Insurance Policies vs. Claims
Following reports are additional reports
1. Insurance Policy Coverage by Risks
2. Insurance Policy Coverage by Scenarios
3. List of Insurance Policies
8. Issues and Actions
The Issues and Actions module is an integral part of the OFSOR/GCM solution. An issue is a problem
statement and actions are plans or activities taken up to resolve those issues. Organizations may need to
identify and track issues whenever there is an alarming situation, such as when an incident is reported,
Key Indicators (KIs) are breached, risk is assessed as high, control is assessed as ineffective, regulation is
breached and so on. Issues can be created either from the Issues and Actions module or from other
modules in OFSOR such as RCSA, Incident Management, Key Indicators a nd so on, whenever the
parameters are alarming and require issue creation. Action plans aim at estimating the cost involved in
addressing issues. If the cost of taking up the action is more than the risk involved in the issue, an
organization can choose to close the issues without any actions. Actions can also be directly created
from different modules of OFSOR. Subsequently, the application automatically creates a system
generated issue for that particular source and internally maps the created actions to the auto-created
issue.
The Issues and Actions Dashboard displays the following Tabs:
A. Issues:
The Issues Tab displays the following reports:
1. Issues across Business Line
2. Issues across Location
3. Overdue Issues by Business Line
4. Issues by Criticality
5. Issues by Priority
6. Issues across Issue Source
7. Issues across Risk Event Type
8. Issues across Issue Category
9. Issues across Risk Categories
10. Issues across Products
11. Aging of Issues
The following report is an additional report
1. Issue Details
B. Actions:
This tab displays the following reports:
1. Actions across Business Lines
2. Actions across Location
3. Overdue Actions By Business Line
4. Actions by Priority
5. Actions by Source
6. Actions by Risk Event Type
7. Ageing of Actions
Following report is an additional report:
1. Action Plan Details
9. Key Indicators
The Key Indicator Component gives the flexibility to capture Key Indicators which can either be Risk
Indicators, Control Indicators, Performance Indicators or BEICF Indicators. Key Indicators are metrics,
often financial, which provide insight into a bank's or organization's risk position. These indicators are
reviewed on a periodic basis to alert banks to changes that may be indicative of risk concerns. Such
indicators may include the number of unsuccessful and failed trades, staff turnover rates and the
frequency or severity of errors and omissions.
OFSOR Key Indicators module provides an early-warning system to identify potential costly operational
hazards including fraud, legal, and technology risks. The use of Key Indicators is one of the BIS (Bank of
International Settlements) recommendations for sound Operational Risk Management, and thus an
essential component of Basel II and Sarbanes-Oxley laws.
This dashboard displays the reports based on the Key Indicators data available in the application.
The KI Dashboard displays the following Tabs:
A. Key Indicator Details
This tab displays the following reports:
1. Key Indicators by Business Line
2. Key Indicators by Location
3. Key Indicators By Risk Inventory
4. Key Indicators by Risk Event Type
5. Key Indicators by Source
6. Key Indicators by Nature
Following reports are additional reports:
1. Key Indicators by Frequency Key Indicators By Type
2. Key Indicators in Development
3. Overdue Actions for Key Indicators by Business Line
4. Actions Exceeding Estimated Cost for Key Indicator by Business Line
5. Overdue Issues for Key Indicator by Business Line
6. Issues Exceeding Estimated Cost for Key Indicator
7. KI Details
B. Associated Entities
This tab displays the following reports:
1. Key Indicator High Risks and Total Losses
2. Key Indicators Associated with Incidents
3. Key Indicators and Risks
4. Key Indicators and Controls
5. Key Indicators Associated with Scenarios
Following report is an additional report:
1. KI Metrics
10. Planning and Scoping
Organizations must periodically assess their risks and controls to measure the impact on the
organization. In addition, some regulators require the officers of the firm to attest the organizations
processes and controls. The assessment plans risk and control, and attestation plans for process and
controls should be created to facilitate assessments and attestations by group managers.
The Planning and Scoping function allows organizations to have a standard methodology, which reduces
the burden of creating similar Assessment Plans for multiple entities and also creates a forward
schedule of assessing risks and controls. It allows the user to set up plans for risk and control assessment
scope for a particular entity. This also simplifies tracking assessments, attestation, and certifications. The
user sets the periodicity of the assessment, (for example, weekly, monthly, quarterly, semi-annually, and
yearly). The periodicity of assessment may be set on a random basis.
This dashboard displays the reports based on the Planning and Scoping data available in the application.
The Planning and Scoping dashboard displays the following reports:
1. Entities by Plan Purpose
2. Type of Plans based on Frequency
3. Plans Summary Status
4. Assessment Plan Summary
5. Entities with No Assessment Plans
6. Entities with No Attestation Plans
7. Plan Details
11. Process
Processes are the procedures, programs, and practices that impose order on the bank's pursuit of its
objectives. Processes are one of the main causes of operational risk that are closely monitored by the
management. These Processes may differ from one financial institution to other but they are closely
monitored to identify risks and suitable controls to mitigate the evolved risks.
OFSOR application provides a complete solution for Processes related activities. It allows to set up a
library of Processes associates with different business lines and locations. This attests and assesses
Processes and also generates Processes reports. In financial institutions, broader business objectives are
achieved through a set of Processes or a series of actions. These Process(s) expose banks to different
types of risks. Risk identification and categorization of the risk is a pre-requisite for close monitoring of
the risk and for arriving at an appropriate control measure.
13. Scenarios
A scenario is defined as an outline, description, or model of a sequence of unexpected or adverse
events. Scenarios vary according to the level of the organization at which they are researched and
focused, but are generally made up of similar components. The scenarios are described using event
types and may also include causal analysis, along with expected direct and indirect impacts. Internal
data can be used to develop the body of the loss distribution and data generated from scenario analysis
can be used to fill any gaps in this data. The input from scenario analysis aids the institution in
dentifying the level and trend of operational risk, determining the effectiveness of risk management and
control efforts, highlighting opportunities to mitigate operational risk, and assessing operational risk on
a forward-looking basis. Many financial organizations use scenario analysis in place of traditional
forecasting and planning to evaluate the impact and likelihood of extreme but plausible risk events.
Defining which scenario applies to an organization involves identifying and recording the scenario,
providing a description of the background, circumstances, and the methodology or approach followed.
15. Audit
The Oracle Financial Services Operational Risk Audit module allows banks and financial institutions to
plan, schedule, conduct audits and conduct audit assessments. You can us e the Audit module to create
centralized audit plans, create audit tasks, schedule audit tasks to different KBDs, schedule auditors
based on availability, conduct audit assessments and capture the audit findings and rating, and perform
advanced reporting through OBIEE.
The audit dashboard displays the following reports:
1. Audit Tasks by Rating
2. Audit Plan Details
3. Audit Task Details
4. Audit by Business Line & Location
5. Audit by Components
6. On Going Tasks
7. Overdue Tasks
8. Audit Plans by Audit Types
9. Audit Plans by Priority
10. Audit Issues by Line of Business
11. Audit Issues by Location
Embedded Reports
1. Audit Plans and Tasks
2. Overdue Audits