CASE STUDIES
When the technology entity of a major insurance company wanted to improve its information risk reporting, we helped them assess the current process and implement the adequate enhancements

The context

The technology entity of a major insurance company wanted to review and improve its information risk reporting process at the demand of its regional risk officers. This reporting was elaborated by the Group and implemented for all its 20 entities.

Our intervention

We worked with the operational risk management office of the technology entity to review and improve the reporting process. During this assignement, we were engaged to deliver the following :

  • An assessment of the reporting process including feedbacks of the stakeholders and recommendations
  • A formalization of process and a RACI matrix to delimit the roles and the responsibilities of the stakeholders
  • An implementation of a new governance and organization of the reporting process
  • A coordination of the upcoming collection campaign and the elaboration of the mitigation plans

Our delivered value

We successfully delivered to the operational risk management office a report detailing the feedbacks and presenting recommendations for the process improvement. We then formalized the process and centralized it using Sharepoint before coordinating the campaign collection of the indicators and helped elaborating the mitigation plans.

Share by: