• ORSA – Why should exempt companies care?

    Over the last few years the NAIC has established its expectations for insurance companies to maintain a risk management framework and conduct an Own Risk and Solvency Assessment (ORSA), including the filing of an ORSA Summary Report with state regulators. In 2012, the NAIC issued a Guidance Manual to provide insurers guidance with respect to reporting on ORSA, and later the NAIC adopted an ORSA Model Act. In 2012 and 2013 the NAIC conducted two separate feedback pilot projects and provided feedback and observations in a memo to the industry.
  • Risk governance: What to expect

    For years, risk governance meant risk management, with a relatively narrow focus on specific areas: loans, legal, and possibly IT. Then, everything went sideways in 2008-2009, and regulators saw the need for a more proactive, comprehensive risk governance strategy. Within the past five years, new rules and guidelines have begun changing the flaws regulators could see boards of directors were not engaged at the right level; board members and executives weren’t getting the right information to make informed decisions; and management didn’t have tools in place to facilitate a timely and comprehensive analysis of overall risk.
  • New recommendations for bank audits

    External bank auditors have new guidance from the Basel Committee on Banking Supervision as of March 31, and banks should understand the updated guidelines before their next audit. The new guidelines, 46 pages in all, replace The Relationship Between Banking Supervisors and Banks' External Auditors, published in 2002, and External Audit Quality and Banking Supervision, from 2008.