Case StudyAssurance Services
CBO support Ravenscroft with Risk Management Framework
View all

Context

Ravenscroft engaged CBO’s assurance services to help them mature their Risk Management Framework (“RMF”) to ensure that it was fit for purpose to demonstrate effective risk management and risk oversight. Ravenscroft’s Chief Risk Officer (“CRO”) had a desire to mature the RMF, thereby documenting and evidencing how the elements of the RMF work together to manage risks for the Ravenscroft Group. The CRO also wished to report on emerging risk to the relevant committees and boards.

Most of the key elements (committee, risk register, policies and procedures) of the RMF were already in place, however Ravenscroft’s CRO sought the expertise and support of CBO to review, challenge and assist with bringing all these elements together in developing an effective risk management and oversight model.

Approach

CBO used our structured RMF approach to assess, challenge and update the key risks faced by the client. To do this CBO initially developed a matrix showing how each business area and product, across all jurisdictions, contributed to each key risk. With the key risks identified it was important to define each risk within the context for the client’s business. This in turn helped the client to document the risk appetite for each key risk.

With these elements in place, the client was able to perform a top-down risk assessment of each risk. This gave the CRO all the relevant information to develop the risk reporting for their committee and board meetings. This reporting also included a view of the emerging risks driven by internal and external factors.

The final step CBO helped with was to develop a bottom-up risk assessment for each key risk. This provided the client with a detailed view of their risk exposures. Each risk exposure was assessed to identify any areas where the top-down and bottom-up risk assessments were not aligned.

The CRO used the various steps above to engage with the risk owners. This allowed the CRO to validate the risks with the risk owners, significantly improving the dialogue at committee and board meetings.

Outcome

Through implementation of our RMF approach, CBO helped the client mature their RMF allowing the CRO to report on key risks with clarity. Alongside this, CBO developed a revised risk reporting to the boards and committees.

Through this approach of careful exploration and testing, CBO were able to help deliver a RMF that included a top down and bottom-up risk assessment, with thought out and refined definitions and risk appetites for each risk to aid assessments and discussions.

Client Feedback

“Having been appointed as the Group Head of Risk in 2021, one of my first roles was to undertake a full review of the existing Risk Management Framework (“RMF”) and how its principles interacted with the wider group, the businesses key strategic documents as well as the key controls of each business area and each service line. Ensuring that Ravenscroft has a robust RMF in place, which is suitable for the size and scale of our operation, was the first step in the process and essential for any financial services business. This approach allows our business to mitigate financial losses, comply with the relevant regulatory environment, preserve the businesses reputation and client trust, while making informed decisions with strengthened resilience.

As our business had grown exponentially over the past 18 years, and continues to evolve, it was easy to see how our risk analysis and oversight had struggled to keep up. This was true not only from our service line development and AUA growth, but also from the ever increasing challenges faced in the regulatory environment. Therefore, being handed a blank sheet of paper by the board of directors to enhance the RMF was liberating and daunting in equal measure.

Having previously worked with CBO on other projects, it was hugely supportive to have them assist Ravenscroft on this journey and offer considered advice and challenge in the redevelopment of our RMF. The result was the successful expansion of an RMF that the group’s Risk Committee could manage on a day-to-day basis and that each part of the business could easily understand and interact with”.

David McGall – Ravenscroft Group Head of Governance, Risk & Compliance.

Article by Ed Mason-Smith

More assurance services articles

Case Study
CBO support Ravenscroft with Risk Management Framework

Context Ravenscroft engaged CBO’s assurance services to help them mature their Risk Management Framework (“RMF”) to ensure that it was fit for purpose to demonstrate effective risk management and risk oversight. Ravenscroft’s Chief Risk Officer (“CRO”) had a desire to mature the RMF, thereby documenting and evidencing how the elements of the RMF work together […]
Blog Post
Data Protection: Five years on from GDPR

Since GDPR and the Channel Islands data protection legislation were implemented 5 years ago, personal data has become increasingly valuable and its protection more critical than ever before. Getting it wrong can be costly – for your reputation and your pockets. We sat down with Ed Mason-Smith, data protection expert and director here at CBO, […]
Case Study
Operational Resilience project supports First Central Group to achieve regulatory compliance

Context In March 2021 the Financial Conduct Authority (FCA) issued its final rules requiring firms within the UK’s financial sector to ensure operational resilience. CBO supported First Central Group, a Guernsey-based UK motor insurance provider, to achieve and evidence compliance with the FCA’s rules. Approach CBO provided project management and business analysis resource to support […]
Case Study
Client data project helps financial services business meet regulatory requirements

CBO supported a locally-based independent fiduciary and fund administration business to deliver a project driven by regulatory requirements. After a period of sustained growth, the business identified the need to enhance the efficiency of its existing processes, policies and systems relating to client data management and reporting capabilities. Identifying an opportunity, the client engaged CBO […]
Case Study
The Medical Specialist Group

The Medical Specialist Group The Medical Speciality Group (MSG) is a Guernsey-based organisation providing secondary health care and services to islanders across a broad range of specialisms. In the provision of these medical services, the MSG processes a large volume of extremely sensitive personal data where adequate controls of data and processes are needed to […]
Case Study
Data protection health check for Guernsey Mind

Guernsey Mind Guernsey Mind is an independent mental health charity, promoting positive mental health for the community by providing free mental health services as well as raising overall awareness. In the day-to-day running of the charity, Guernsey Mind processes and holds a wide range of personal data. The effective protection, security, and controls over of […]
Fancy a chat? Get in touch with CBO today to discuss how we can help
CBO Projects, The Albany, South Esplanade, St Peter Port, Guernsey GY1 1AQ
+44 (0)1481 729161 coffee@cboprojects.com
25, Pier Road, St Helier, Jersey, JE1 4HF
+44 (0)1534 486091 coffee@cboprojects.com