La gestion des risques est une activité-clé qui doit être orchestrée par la direction de l’entreprise. Mais quel doit être le rôle du conseil d’administration en matière de surveillance de l’exécution de cette tâche essentielle ? Quel est effectivement l’étendu du rôle du conseil dans les grandes sociétés publiques américaines. C’est ce que le document du Conference Board, présenté ici, décrit avec moult détails et d’une manière exceptionnellement bien illustrée. Je vous invite donc à prendre connaissance de ce texte qui traite des aspects suivants :
Responsabilité pour l’établissement des stratégies
Fréquence des révisions des stratégies
Réunion spéciale de planification stratégique
Adoption d’une approche standardisée telle qu’ERM (Enterprise Risk Management)
Responsabilité pour la surveillance des risques
Fréquence des comptes rendus de la direction au C.A. en matière de risque
Le responsable en chef de la gestion des risques (CRO)
Le comité des risques de l’entreprise
Any business is exposed to risks that can threaten its ability to execute its strategy. For this reason, strategy and risk oversight are inherently connected. Today, more than ever, the board of directors is expected to thoroughly assess key business risks and ensure that the enterprise is equipped to mitigate them. This Directors Notes discusses the current corporate practices on risk oversight by directors of U.S. public companies. Findings detail where the board assigns these responsibilities, whether it avails itself of dedicated reporting lines from senior management on risk issues, and the degree to which it adopts a standardized framework on enterprise risk management (ERM).
Given the correlation between risk and strategy, data on the frequency and forms of strategic reviews is also presented. The findings are from the most recent edition of the Board Practices Survey, which The Conference Board conducts annually in collaboration with NASDAQ OMX and NYSE Euronext (see “The Board Practices Survey” on p. 5). The Dodd-Frank Act mandates that financial institutions strengthen their risk oversight by establishing a dedicated risk committee of the board of directors.
In addition, U.S. Securities and Exchange Commission (SEC) rules require all public companies to disclose the extent of their board’s role in overseeing the organization’s risk exposure, including how the board administers its risk oversight function and how the leadership structure accommodates such a role.
Finally, in October 2009, the SEC reversed a policy under which shareholder proposals relating to the evaluation of risk could be excluded from a company’s proxy materials as related to the company’s ordinary day-to-day business activities. Collectively, these developments are a nod in the direction of addressing the risk oversight failures that played so prominently in the 2008 financial crisis. Most important, they are expected to increase scrutiny of risk management programs and their endorsement and close supervision by senior leaders of corporations.
Gouvernance | Jacques Grisé 