<<
>>

System engineering of a supply with information, regulations and procedures of management by financial risks in the company


The basis of system of risk-management - the information base, allowing to supplement and correct the list of the revealed risks.
The purposes of process of regular information interchange about risks in the company consist in, that:
To fix personal responsibility for management of those or other significant risks of the company to corresponding company executives (holders of risks);
It is duly to bring to the notice of Board of directors of the company the information on all risks, management with which it is necessary to carry out at corresponding level of the company;
It is duly to bring to the notice of executors of actions for management of risks the information on their personal responsibility for fulfilment of corresponding actions (including expected result, terms, resources and so forth);
To supply effective information interchange during management cross-country-functional by risks of the company.
That the information base allowed to supplement and correct the list of the revealed risks, the form in MS Access which gives the chance to fill up base on the basis of the analytical and estimated signs concerning such conditional concept as registration brave unit is developed.

Participants
SUR

Periodicity

The list of the represented information

Level of granting of the reporting

The granting purpose

The name of the accounting document

Whom affirms

ESSENTIAL RISKS


Holders
Actions

Quarterly

Results of fulfilment of concrete action for an accounting period (quarter)

Holders
Risks

For formation of the report on a plan of action on the given risk

The report on risk

Board of directors

Holders
Risks

Quarterly, in process of revealing

The report on performance of a plan of action (the arch of results of performance of all plans of measures on the given risk) for an accounting period (quarter)
Current significances KRI the Current estimation of residual risk the Current status of risk
The specified plan of action (regarding expansion of actions)
prognoznoe significance KRI on the end of the following accounting
The information on the revealed potential risk

Committee on risks

For formation of the summary register of the Company for Committee of Board of directors on audit

The report on risk (for an accounting period), the Report on risk the next quarter

Board of directors

Department
The internal
Audit

Quarterly

The information about flowing and prognoznyh significances KRI, the size of residual risk on all risks
Estimation of efficiency of the executed actions

Committee on risks

For granting of the report on efficiency SUR

The summary Register of risks, the inquiry on efficiency of functioning SUR as a whole

Format
Affirms
The general
The director

Committee on risks

Quarterly

Current estimation of residual risk

Committee of Board of directors on audit

For realisation of the General supervision and monitoring of efficiency SUR

Reports on risk, the Register of risks of the company

Board of directors



In the course of research this database was aprobovana in the project «Management of the unified risks and control procedures» which is a part «Master Plan of corporate re-structuring».

For perfection of management by risks before Open Society "ЮТК" divisions, questions of introduction and modernisation of following information systems (IS) are delivered:
CRM (Customer Relationship Management) - system of support of mutual relations with the clients, including support of planning and an estimation of yield of services, management activity on advancement of services;
ASR - the automated settlement systems which are responsible vzaimoraschety with external and internal consumers of services;
TSOV - the centre of processing of calls (contact-centre), programmnoapparatnyj a complex supplying reception and processing of calls and other circulations of consumers of services (including potential consumers);
NMS (Network Management System) - a control system of a network, set IS, responsible for planning and communication network operation, quality assurance of services and management of services;
ERP (Enterprise Resource Planning) - the control system of the enterprise supporting daily economic activities of the company (including support of financial transactions), planning and the control of use of resources;
SEDAD - the system of electronic document circulation and clerical work automation, includes support of a digital signature, means of management archives of documents, means of the organisation and the control of processes of document circulation and a translation system of documents in the electronic form;
SSKI - system of the tax of the consolidated information on investment planning, an accounts, by results of checks of department of internal audit, on entered objects of permanent assets and the FEAST;

SPR - the decision-making System, is responsible for the tax and processing of the financial and statistical information, modelling of scenarios of development of the companies of group;
VP - the Intracorporate portal, will organise the publication of the information accessible to all company, supplies means of the organisation of teamwork of geographically distributed groups of users;
KBZ - the Corporate knowledge base, executes a role of the supporting software for the Competence Centers, supplies the tax, storage of means of search and access devices to the diverse information;
SDO - the System of remote training, is used for the organisation of training of employees of group of the companies (both employees of divisions IT, and internal consumers of services);
SOUP - the Control system of projects, supplies planning and monitoring of process of fulfilment of any projects;
SEK - the System of electronic commerce, supports the financial transactions which are carried out by external consumers within the limits of use by services, represented Open Societies "ЮТК";
OP - Office applications - set of the program decisions supplying daily activity of the company. Include: the editor of the text, a spreadsheet, means of creation of presentations, planning means, corporate mail, means of anti-virus protection, etc.
Thus program decisions of system level (operating systems, means of monitoring, means of reserve copying and arhivirovanija, adjustment and management means, etc.), a hardware platform (both a server part, and jobs of users) are carried to a technical infrastructure.
Actions for development of systems CRM, ASR, TSOV, NMS and ERP are presented in the Master Plan of the program of corporate re-structuring. Information systems, such as SEDAD, SPR, the Portal, SDO, SOUP, SEK, supply realisation of blocks of actions of the Master Plan of the program corporate re
Structurizations: «Development of communication possibilities», «Management of communication networks», «Effective financial service».
List IS reflects requirements of business of Open Society "ЮТК" and can dynamically be changed, reacting to change business of the purposes and requirements.
The drawing resulted more low uses the scheme offered TeleManagement Forum and accepted as the standard "de facto" by the majority of large world communication statements. Expediently similar scheme to use and in Open Society "ЮТК".
The offered interrelation is reflected in drawing 3.8 between IS and business processes supported by them.

Drawing 3.8. Interrelation between information systems and supported by them business by processes


All business processes of Open Society "ЮТК" connected with its profile activity, are supported by several IS, closely interacting with one another. In such situation, for maintenance of integrity of the information on business
Level and supports business of transactions, definition primary IS is necessary. The analysis has shown, that in a role primary IS for the company can act ASR.
For the warranty of a choice optimum IS, before the beginning of process of a choice and introduction for all IS should be defined:
Requests on automation of business processes of group of the companies, expressed in business terms (request business);
Requests to possibilities IS for maintenance business of the requests, using IT terminology (functional requests);
Requests to reliability, productivity, ergonomics, conformity to standards, etc.;
Matrix of conformity of functional requests to possibilities concrete IS, plans on removal of possible discrepancies.
In the course of introduction of all IS the following should be provided
Stages:
Carrying over of data from used systems and integration with others IS;
Preparation and training of staff;
Working out of the plan of acceptance testing, criteria of quality and set of test tests;
Realisation of preliminary tests;
Pre-production operation realisation;
Realisation of acceptance tests and input in commercial operation.
For all IS admissible idle times (planned, for realisation of preventive works, and not planned) and terms of restoration of working capacity/correction of the revealed defects are defined.
Contracts on support should define responsibility of supplier IS for maintenance of working capacity of system and to correction of the defects found out while in service in in advance certain terms.

Procedure of realisation of the updatings is developed for all IS, guaranteeing single and safe transition to the new version of the software.
Besides, the program of development defining criteria and terms of expansion (replacement) of a hardware platform is developed for all IS.
Feature that within the limits of the centralised programs of expansion individual scenarios of expansion for each introduced IS should be defined should be, corresponding to the general requests to IS, defined within the limits of holding.
It is necessary to mean, that quality of integration IS is the critical factor for maintenance of an effective and transparent exchange with a trustworthy information.
Into integration frameworks enters as integration at system level (the access organisation to data defined IS, working out of adapters to program interfaces of appendices (API), the coordination of formats of the given different hardware-software platforms, maintenance of integrity and the guaranteed data transfer), and at business level (routeing of data, maintenance business of transactions and recoil of operations, transformation of structure of data, information quality check, aggregation, etc.)
Research has shown, that the most effective principle of integration by the current moment is the principle of the information tyre consisting of adapters responsible interaction with concrete IS, the components realising business to the logician of integration and the environment of data transfer. In turn, as the unified format of data exchange it is recommended to use existing open standards of an exchange business by the information on the basis of language XML. Formats of data exchange within the limits of one IS are defined by manufacturer IS.
In ISUR it is necessary to give huge significance to automation of control systems by risks in the telecommunication companies.

Risks in the Russian market the various telecommunication and cellular companies attend to problems of automation of control systems. Among operators of a mobile communication of an order of 70 % of market participants introduce risk-management elements (among them all companies of the Big three), and about 50 % of the companies carry out transition from management of operational risks to construction of the complex integrated control system by risks (KSUR), among them — MTS and "Megaphone". The others of 30 % of the companies namereny to introduce elements of risk-management within the next three years. Not namereny to lag behind and operators of a fixed-line telephony. Within the limits of Open Society "Svyazinvest" holding it is realised two pilot projects in Open Society "ЮТК" and Open Society «Si - a bir-TV set» on creation of "the Control system of risks» and then a holding management the decision on introduction of the integrated control system by risks in all MRK was accepted.
Solid monetary, time and personnel resources are necessary for a complete cycle of introduction of the automated complex control system of risks (KSUR), to grant which all companies are ready far not. However the importance of the brave factor for preservation of competitiveness in the conditions of modern economy constantly grows, and together with it demand for corresponding appendices increases also. It occurs because modern business almost faces every day such phenomena, as volatilnost the financial markets, economic, political and social crises, sharp change of market conditions etc. In Russia to this list still it is necessary to add rigid regulation from the state structures, in the absence of explanations new standard and subordinate legislations. Becomes obvious what simply to shut eyes to all these potential sources of risks already it is impossible. The majority of the modern automated control systems most of different function, from ERP to Business Intelligence, is completed with risks-modules, and occurrence in the near future a separate segment of ERM-systems (Enterprise Wide Risk Management) is quite probable.

At present full-function IT Decisions for risk - of management it is developed slightly, partially owing to the relation to them, in many respects erroneous, as to subjects of "the second necessity”, partially owing to high requests with which should satisfy such systems. Automation of managerial processes by risks considerably raises an overall performance of the risk-manager. Risk-management means should supply the automated access to data, their consolidation, more exact analysis, quality standard and forecasting of risks, modelling of their effects on business, and also granting of the received results. Similar ERM-systems should include directories which will allow system is brave to function, find true interrelations and decisions adequately; the expanded catalogue of risks; mechanisms of monitoring of risks; construction tools of reports; mechanisms of storage, information use; safety mechanisms; The clear both user-friendly interface and tools of adjustment of the program.
Also ERM-systems will appear useful in such areas, as realisation of a marketing policy, investment activity, the control over incomes in telecommunications, observance of the established order of planning and budgeting, creation of the administrative reporting, protection from legal and IT Risks, the control over observance of limits, company work in an extreme situation, and also maintenance of industrial safety.
Now many companies of not bank sector or use programs on management of business processes, or independently develop software products on monitoring of risks for the most important directions of the activity. Complex (for all risks) to Russia the enterprises yet do not introduce the automated control systems of risks. It is connected by that until recently there were no the specialised software products created with allowance for of the world standards of risk-management, the economy focused on various branches and containing all spectrum of tools and stages on management of risks.

To pick up the complex automated control system of risks which could supply automation of all managerial process by risks, since creation of the plan of management by risks and finishing the control of performance of the plan of reaction to risks difficult enough. The majority brendovyh the modern automated control systems most of different function, from ERP to Business Intelligence, is completed with risks-modules, and occurrence in the near future a separate segment ERM - systems (Enterprise Wide Risk Management) telecommunication business fast adapting for specificity is quite probable. While such workings out in the market are presented poorly enough.
To the largest suppliers of the software, creating separate specialised decisions on risk-management, following companies concern:
Oracle (represents software product «Oracle Risk Manager» which is a part of a complex of appendices and storehouses of the data intended for banks and assurance companies);
SAS (has in a portfolio ON the decision «Risk Dimensions», for an estimation and the analysis of market, credit and other types of financial risks which is applied successfully basically by banks);
Microsoft (it is presented in the market by decisions «Microsoft Operations Framework», focused on detection, an estimation and prevention of risks in IT Operations, and «MOSASO» allowing to define control procedures on the revealed risks to nominate on them executors and monitorit process of their performance);
QRM (Quantitative Risk Management) — the leading American developer bank ON;
RiskMetrics Group, specialising first of all on management of market and credit risks.
The resulted software products are focused, first of all on a financial sector - basically on banks and assurance companies. They show
sja a part of complex ERP-systems. For their introduction significant monetary and time resources are required. Similar decisions for the companies of other branches are presented basically by separate modular programs (for example, as the block of the statistiko-mathematical analysis of events or the block on monitoring of control procedures of risk).
More specialised and not so expensive programs on risk - are presented management by the Russian developers, such as:
"Forecast" (the ERM-system realising the basic mathematical methods of valuation and the analysis of risks in bank sector);
"SoftVel", system Resourse NAVIGATOR (it is presented by decisions for complex bank automation, that has found reflexion and in a set of functions of management risks);
ISG (has the program for complex management of risks for telecommunication, industrial and commercial firms; it can be applicable for the purpose of observance of requests of Law Sarbejns-Oksli).
Company ISG ERM-system - the Russian working out considering specificity of activity of the enterprises nefinansovogo with allowance for of requests of international standards COSO. The given program allows to evaluate risks by several techniques: expert, by means of the questionnaire, a statistical method with allowance for qualitative and cost parametres. The database and system tools allow to store data on certain tools and management methods risks; to conduct statistics of infringements, brave events and factors; to minimise financial implications of risks; it is duly to carry out monitoring and the analysis of deviations with application of indicators-KPI, schedules, reports; the web-version is convenient for management of the information from remote branches in a real-time.
However it is necessary to understand, that any program assumes information filling if system to fill not produmanno, it to work it will not be effective. For formation of databases resources, careful selection and the analysis are required. Therefore in Open Society "ЮТК" during realisation of projects with
Direct sharing of the author of the given research creates and unifies bases of risks, control procedures, systems of criteria and estimations, techniques and regulations.
The significant attention for increase of efficiency ISUR also has development of system of the internal control (audit) as its development in the future will allow to lower expenses for outside audit considerably. Besides, the significant part of defects of system of the internal control can be liquidated procedures internal risk-focused of audit.
<< | >>
A source: Podgornaja Lubov JUrevna. FORMATION of the CONTROL SYSTEM by FINANCIAL RISKS In the TELECOMMUNICATION COMPANY. The dissertation on competition of a scientific degree of a Cand.Econ.Sci. Krasnodar. 2009

More on topic System engineering of a supply with information, regulations and procedures of management by financial risks in the company:

  1. the Technique of system engineering of management of financial risks in the telecommunication company
  2. 1.3. The basic indicators of management of financial and operational risks in the company
  3. 3. FORMATION of the INTEGRATED CONTROL SYSTEM by FINANCIAL RISKS In Open Society «SOUTHERN TELECOMMUNICATION COMPANY»
  4. Classification of financial risks, revealing, diagnostics and procedures of their estimation and forecasting
  5. CHAPTER 2. METHODICAL BASES OF CONSTRUCTION OF SYSTEM OF THE SUPPLY WITH INFORMATION OF MANAGEMENT
  6. Management of financial risks and methods of effect on risk
  7. podgornaja Love JUrevna. FORMATION of the CONTROL SYSTEM by FINANCIAL RISKS In the TELECOMMUNICATION COMPANY. The dissertation on competition of a scientific degree of a Cand.Econ.Sci. Krasnodar, 2009 2009
  8. CHAPTER 2 The basic directions of perfection administrativnopravovogo supply with information regulations pasportnovizovoj activity of the Ministry of Internal Affairs of Russia in migration sphere
  9. PERFECTION OF PUBLIC MANAGEMENT ON THE BASIS OF INFORMATION OF PROCEDURES OF MANAGEMENT BY RESULTS
  10. Economic efficiency of introduction of the integrated control system of financial risks
  11. recommendations about perfection of public management at regional level on the basis of information of procedures of management by results (on an example of Kursk area)
  12. 3.2.7. Management of an information component also is operational-technology factor hypothecary risks of bank
  13. 2. METHODICAL BASES of MANAGEMENT of FINANCIAL RISKS In the TELECOMMUNICATION COMPANIES
  14. Features of telecommunication branch and their influence on a control system of financial risks
  15. 1. MANAGEMENT of FINANCIAL RISKS In TELECOMMUNICATION BRANCH With allowance for the RUSSIAN SPECIFICITY