{{item.videoDuration}}
{{item.title}}
{{item.text}}
{{item.videoDuration}}
{{item.title}}
{{item.text}}
Risk management functions – in the business or in the control functions – are at the heart of current crisis management efforts. The board of directors, management, regulators, clients, and other stakeholders expect an up-to-date view of the risks the company is exposed to and the effectiveness of the measures taken. Timely risk information and reporting is critical to enable timely decision-making and has been an issue in crises in the past.
At the same time, risk management organisations are also affected by the crisis.
You may be experiencing restrictions with regard to working remotely, reduced workforces, technical disruptions or increased volumes.
To help you, we have created an overview of scenarios, suggested activities and guiding questions for responding to the crisis and recovering the business. As the progress of COVID-19 is hard to predict you might find your business switching between these two phases.
Risk management functions – in the business or in the control functions – are at the heart of current crisis management efforts. The board of directors, management, regulators, clients, and other stakeholders expect an up-to-date view of the risks the company is exposed to and the effectiveness of the measures taken. Timely risk information and reporting is critical to enable timely decision-making and has been an issue in crises in the past.
At the same time, risk management organisations are also affected by the crisis. You may be experiencing restrictions with regard to working remotely, reduced workforces, technical disruptions or increased volumes. We recommend identifying and ringfencing the services that are critical to protecting your organisation and meeting regulatory expectations.
Key questions to consider
There are a number of areas that may be affected. Here are some questions for you to consider:
- Do you have the mechanisms in place to increase the frequency of reporting – to regulators, the board and management? Are you able to produce ad-hoc reports at short notice? What manual work-arounds do you have in case of system disruptions?
- Do you have KPIs to monitor the increased volume from the front and the controls / control back log in the second line of defence?
- What is the workforce situation for your critical services? What cross-staffing options do you have? How about leadership?
- Are there projects, initiatives and other activities that can be de-prioritised?
- Are you in contact with your key regulators? Have you established working protocols and escalation points?
Critical Services
Observations suggest that the following services might be interrupted due to COVID-19.
| Liquidity and capital risk management | Credit risk management | Market risk management | Regulatory affairs | Risk reporting | |
| Description | Crisis situations increase the risk of non-compliance with minimum requirements (e.g. capital, liquidity and leverage ratios). | Execution of federal liquidity funding with emergency credits lead to increased volumes and credit administration resources. | Increased trading volumes in combination with high market volatility leaves no room for error (e.g. collateral management, asset allocations) | In times of crisis, regulators may increase supervision. In addition, the organisation may lose focus on regulatory commitments.. | Stakeholders such as regulators, the board and management expect up-to-date risk information to be able to make informed decisions. |
| Consequences if interrupted |
|
|
|
|
|
Coronavirus scenarios and mitigation for Risk Management
COVID-19 will affect organisations to different degrees, requiring several actions.
| Details | Some increased volumes in trading and credit. Majority of the workforce working from home with minor disruptions. Some of the workforce out on sick leave. | Some of the workforce out on sick leave for extended periods, including suppliers. Increased requests from regulators, including reporting. Increased trading and credit volumes. | A large part of the workforce out on sick leave, including suppliers. Disruptions to technology. Increased regulatory supervision and crisis management. |
| Functional impact | Limited initial impact, however impact of preparing for potential worsening of the situation. | Inability to maintain full risk mandate. Delays in control activities related to trading and credit. Potential delays in reporting. | Inability to maintain risk mandate. Inability to meet some regulatory commitments, including regulatory reporting. Inability to provide up-to-date reporting to board and management. |
| Proposed actions | Prepare for medium and major scenarios. Identify and ringfence critical services. Identify backup options for critical providers. Contact key regulators to establish working protocols. | Ringfence the critical services within the risk mandate. Reassign resources to these critical mandates, postpone other activities. Prepare sourcing options for a potential worsening of the crisis. | Continue to ringfence the critical services within the risk mandate. Source external workforce for critical services. Follow escalation protocol established with key regulators. |
Risk Management functions – in the business or in the control functions – have been at the heart of the crisis management efforts. The board of directors, management, regulators, clients, and other stakeholders expect an up-to-date view of the risks the company is exposed to and the effectiveness of the measures taken.
Upon entering the post-crisis phase, regular and timely reporting on KRIs will continue to be crucial. Furthermore, a damage assessment to identify the areas most affected can play an important role in helping to define a targeted and robust strategy for the restart.
Looking forward, besides keeping a close eye on the development of the pandemic, businesses should start focusing on non-Covid-19-related risks to make sure the transition to a ‘new normal’ is built on realistic expectations.
Key questions to consider when recovering your business:
- Are you aware of the impact the crisis has had, and is still having, on your business in detail? Are you prepared for the risks that have not yet materialised?
- Do you have the right KPIs/KRIs in place to identify upcoming risks and to mitigate them in timely fashion?
- Can you unblock important projects, initiatives or activities that can help you accelerate the restart?
- What can be prepared now for potential further COVID-19 waves, while moving between the crisis response and crisis recovery phases, for different locations at different times?
Suggested next steps to tackle the recovery phase
If you find your business moving from the response to the recovery phase of the crisis the following key considerations and recommendations might be useful to you.
Damage assessment |
Targeted restart | Reassess risk strategy | Raise risk awareness | Ongoing monitoring |
| Assess damage caused by Covid-19 crisis in the most important, and preferably in all lines of business in order to obtain a 360 degree view | Initiate restart and ramp-up of crucial business areas while closely monitoring KRIs and strengthening second line of defence | Reassess your existing risk strategy incorporating lessons learned from the current crisis. Adjust risk framework accordingly | Raise awareness throughout the organisation of the risks emerging in the new normal, for example increased exposure to fraud and cyber threats | Establish ongoing monitoring of key KRIs, with a particular focus on early warnings for fraud and conduct related topics, in addition to core financial risk KRIs |
Guidance for the next phases
The next steps to deal with the “new normal” vary based on job roles and companies. We have created an overview with possible actions and suggestions on planning and getting ahead for upcoming phases of the crisis.
| Short-term | Medium-term | Long-term | |
| Member of the Board of Directors |
|
|
|
| Chief Risk Officer (CRO) |
|
|
|
| Business Heads / Front Office |
|
|
|
Contact us for Finanacial Service related questions
Alexandra Burns
Director, Risk, Compliance, Internal Audit
alexandra.burns@ch.pwc.com
Tel: +41 79 878 31 69
Tobias Scheiwiller
Senior Manager, Financial Risk Management
tobias.scheiwiller@ch.pwc.com
Tel: +41 79 740 2504
Risk Management functions have been at the heart of the crisis management efforts. The board of directors, management, regulators, clients, and other stakeholders expect an up-to-date view of the risks the company is exposed to and the effectiveness of the measures taken.
Upon entering the post-crisis phase, regular and timely reporting on risks and different scenarios will continue to be crucial. Furthermore, a damage assessment to identify the areas most affected can play an important role in helping to define a targeted and robust strategy for the restart.
Looking forward, besides keeping a close eye on the development of the pandemic, businesses should start focusing on non-Covid-19-related risks to make sure the transition to a ‘new normal’ is built on realistic expectations.
Key questions to consider when recovering your business:
- Are you aware of the impact the crisis had and still has on your business in detail? Are you prepared for the risks that have not yet materialised?
- Do you have the right data and tools available to provide an up to date view of the different scenarios needed to ensure informed and timely decision making?
- Do you have the right early warning indicators in place to identify upcoming risks and mitigate timely?
- Can you unblock important projects, initiatives or activities that can help you accelerate the restart?
- What can be prepared now for potential additional COVID-19 waves and to help you emerge stronger out of the crises?
Suggested next steps to tackle the recovery phase
If you find your business moving from the response to the recovery phase of the crisis the following key considerations and recommendations might be useful to you.
| Identify and reassess risks | Damage Assessment | Targeted Restart | Raise risk awareness | Ongoing monitoring |
| Enterprise wide reassessment of the top risks (identification of new and/or changed top risks) and the initiation of respective actions, where needed. | Assess damage caused by COVID-19 crisis in the most important and preferably in all lines of business and all regions and establish a regularly updated multi scenario planning. | Initiate restart and ramp up of crucial business areas and locations while closely monitoring relevant early warning indicators and risk strategy. | Raise awareness throughout the organisation of the risks emerging in the “new normal”, for example increased exposure to fraud, cyber threats and supply chain risks. | Establish ongoing monitoring of key early warning indicators with a particular focus on all areas that ensure your business continuity and strategic growth. |
Guidance for the next phases
The next steps to deal with the “new normal” vary based on job roles and companies. We have created an overview with possible actions and suggestions on planning and getting ahead for upcoming phases of the crisis.
| Short-term | Medium-term | Long-term | |
| Member of the Board of Directors |
|
|
|
| Risk Management |
|
|
|
| Business |
|
|
|
Contact us for Trade Industries related questions
Birgit Gallus
Senior Manager, Governance, Risk & Compliance
birgit.gallus@ch.pwc.com
Tel: +41 79 150 7559
Alexandra Burns
Director, Risk, Compliance, Internal Audit
alexandra.burns@ch.pwc.com
Tel: +41 79 878 31 69
{{filterContent.facetedTitle}}
{{contentList.dataService.numberHits}} {{contentList.dataService.numberHits == 1 ? 'result' : 'results'}}
{{contentList.loadingText}}
{{contentList.loadingText}}
Contact us
Partner, FS Risk Consulting & Internal Audit, PwC Switzerland
Tel: +41 58 792 46 28
