Risk Management at NNPC Limited
40 Questions
10 Views

Risk Management at NNPC Limited

Created by
@WillingElf

Podcast Beta

Play an AI-generated podcast conversation about this lesson

Questions and Answers

What is the primary responsibility of the ERM Function in NNPC Limited and its subsidiaries?

  • Developing and implementing risk management tools
  • Maintaining and monitoring the risk inventory (correct)
  • Conducting periodic scans of the operating environment
  • Fostering a corporate risk culture
  • What is the purpose of the ERM Function in engaging process owners?

  • To facilitate risk assessment and prioritization
  • To develop risk management tools
  • To identify and assess risks (correct)
  • To monitor the operational risk profile
  • What is the role of the ERM Function in risk assessment and prioritization?

  • Facilitating risk assessment and prioritization (correct)
  • Conducting risk assessments and prioritization
  • Developing risk management tools and templates
  • Monitoring the operational risk profile
  • What is the purpose of the ERM Function in consulting with process owners?

    <p>To identify and propose key risk indicators</p> Signup and view all the answers

    What is the outcome of the ERM Function's periodic facilitation and validation of risk and control self-assessments?

    <p>Strengthening the control environment</p> Signup and view all the answers

    What is the purpose of the ERM Function's periodic monitoring and reporting on risk management?

    <p>To provide risk management information to the BAC and Management Risk Committees</p> Signup and view all the answers

    What is the role of the ERM Function in the risk management process?

    <p>Coordinating and reviewing risk inputs</p> Signup and view all the answers

    What is the outcome of the ERM Function's efforts to foster a corporate risk culture?

    <p>Improved risk awareness and management across the organization</p> Signup and view all the answers

    What is one of the responsibilities of the GRC Function in terms of staff development?

    <p>Administering performance evaluation and job rotation processes</p> Signup and view all the answers

    What is the purpose of the GRC Function's periodic reviews of documents?

    <p>To propose recommendations for process improvement</p> Signup and view all the answers

    Who does the GRC Function recommend training for?

    <p>GRC staff to address identified skill gaps</p> Signup and view all the answers

    What is one of the responsibilities of the GRC Function in terms of reporting?

    <p>Consolidating and preparing periodic reports for senior management</p> Signup and view all the answers

    What is the purpose of the GRC Function's research into emerging best practices?

    <p>To keep current on changes and emerging best practices of the profession</p> Signup and view all the answers

    What is one of the responsibilities of the GRC Function in terms of staff resourcing?

    <p>Overseeing the resourcing of staff within the Function</p> Signup and view all the answers

    What is the purpose of the GRC Function's development of SMART performance metrics?

    <p>To drive and improve the effectiveness and efficiency of the Function</p> Signup and view all the answers

    What is one of the responsibilities of the GRC Function in terms of coordination?

    <p>Coordinating the development of standardized policies and procedures</p> Signup and view all the answers

    What is the mission of the QA Unit in NNPC Limited?

    <p>To provide the Board and Management of NNPC Limited and its subsidiaries with assurance on GRC activities</p> Signup and view all the answers

    What is the scope of the QA Unit?

    <p>To support the management of the GRC Function for NNPC Limited and its subsidiaries</p> Signup and view all the answers

    Who does the Quality Assurance Manager report to?

    <p>The Head of Global Compliance</p> Signup and view all the answers

    What is one of the responsibilities of the Quality Assurance Manager?

    <p>To implement and monitor compliance with the internal quality management system</p> Signup and view all the answers

    What is the objective of the Quality Assurance Processes and Procedures?

    <p>To ensure effective execution of QA reviews in line with standards and stakeholder expectation</p> Signup and view all the answers

    What is the responsibility of the Quality Assurance Manager regarding the database system?

    <p>To ensure maintenance of an up-to-date database system for the GRC Function</p> Signup and view all the answers

    What is the role of the Quality Assurance Manager in the GRC Function?

    <p>To implement and monitor compliance with the internal quality management system</p> Signup and view all the answers

    What is the organizational hierarchy of the Quality Assurance Function?

    <p>The Quality Assurance Manager reports to the Head of Global Compliance</p> Signup and view all the answers

    How often will the external assessor collaborate with the GRC Function within NNPC?

    <p>Once every three (3) years</p> Signup and view all the answers

    Who is responsible for monitoring the GRC Function's Key Performance Indicators (KPI)?

    <p>The QA Unit</p> Signup and view all the answers

    What is included in the 'People' category of KPIs?

    <p>Satisfaction, retention, and quality of development of GRC staff</p> Signup and view all the answers

    How often will the KPIs be reported to GRC leadership?

    <p>Annually</p> Signup and view all the answers

    What is the purpose of the KPIs in the 'Processes' category?

    <p>To assess the effectiveness of GRC processes</p> Signup and view all the answers

    What is the minimum number of GRC staff rotated into the business in one year, as per the KPIs?

    <p>Not specified</p> Signup and view all the answers

    What is the purpose of the external assessor in the GRC Function?

    <p>To assess the GRC Function within NNPC</p> Signup and view all the answers

    What is included in the 'Processes' category of KPIs?

    <p>Effectiveness of GRC processes</p> Signup and view all the answers

    What is considered in the annual self-assessment by the QA Unit?

    <p>Both the outcome of the internal assessments and the customer satisfaction survey</p> Signup and view all the answers

    Who is involved in the customer satisfaction survey?

    <p>Only management personnel (Managers and above) of NNPC Limited and its subsidiaries</p> Signup and view all the answers

    What is the purpose of the QA plan?

    <p>To define the approximate resources and strategy necessary to accomplish the scope</p> Signup and view all the answers

    How often does the QA team present the consolidated report(s) from ongoing internal assessments?

    <p>Quarterly</p> Signup and view all the answers

    What is the minimum number of GRC engagement reviews selected for quality assurance in each calendar year?

    <p>One from each subsidiary and one from each division</p> Signup and view all the answers

    What is the purpose of consolidating the report(s) from ongoing internal assessments?

    <p>To present the results at the quarterly GRC performance review meetings</p> Signup and view all the answers

    What is the alternative to conducting a customer satisfaction survey?

    <p>Conducting a business unit satisfaction survey</p> Signup and view all the answers

    What is the role of the QA Unit in developing the QA plan?

    <p>To develop the QA plan and define the approximate resources and strategy necessary to accomplish the scope</p> Signup and view all the answers

    Study Notes

    Second Line of Defence – Risk Oversight

    • The ERM Function at NNPC Limited and its subsidiaries performs various risk management activities, including:
      • Periodic scans of the operating environment for emerging risks
      • Developing and implementing tools and templates to embed ERM
      • Maintaining and monitoring the risk inventory by engaging process owners
      • Fostering a corporate risk culture through training and serving as an internal ambassador
      • Facilitating risk assessment and prioritization by management

    ERM Processes and Procedures

    • The ERM Function is responsible for:
      • Coordinating and reviewing risk input from risk owners
      • Identifying and proposing key risk indicators, threshold limits, and mitigating strategies
      • Periodically facilitating and validating risk and control self-assessments
      • Monitoring and reporting on risk management to the BAC and Management Risk Committees

    GRC Function

    • The GRC Function is responsible for:
      • Coordinating budgeting and financial administrative activities
      • Overseeing the resourcing of staff, including job rotation and management development programs
      • Developing SMART performance metrics to drive and improve the effectiveness and efficiency of the Function
      • Coordinating the development of standardized policies, procedures, and manuals

    Quality Assurance Processes and Procedures

    • The Mission of the QA Unit is to provide assurance that all GRC activities have been conducted in accordance with standard practices across NNPC Limited and its subsidiaries.
    • The QA Unit shall support the management of the GRC Function to coordinate quality assurance activities.
    • The QA Unit shall cover NNPC Limited and its subsidiaries.

    Structure of the QA Unit

    • The QA Unit reports to the Head of Global Compliance and ultimately to the Chief Compliance Officer.
    • The Quality Assurance Manager is responsible for implementing and monitoring compliance with the internal quality management system.

    Objective and Policy

    • The objective is to consolidate and standardize the tasks and responsibilities to ensure effective execution of QA reviews in line with standards and stakeholder expectations.
    • The QA Unit shall collaborate with an external assessor every three years to assess the GRC Function within NNPC Limited.

    Key Performance Indicators (KPIs)

    • The QA Unit shall be responsible for monitoring the KPIs for the GRC Function, which include:
      • Staff satisfaction, retention, and quality of development
      • Percentage of certified staff
      • Training cost as a percentage of GRC budget
      • Minimum training hours per GRC staff
      • Minimum number of GRC staff rotated into the business in one year
      • Minimum number of process owners rotated into GRC in one year
    • The QA Unit shall report the KPIs to GRC leadership annually.

    QA Planning and Resourcing Strategy

    • The QA Unit shall develop an annual plan for ongoing internal assessments and define the approximate resources and strategy necessary to accomplish the scope.
    • The QA plan shall ensure that at least one GRC engagement review from each subsidiary and one GRC engagement within each division at NNPC Limited is selected for quality assurance in each calendar year.

    Studying That Suits You

    Use AI to generate personalized quizzes and flashcards to suit your learning preferences.

    Quiz Team

    Description

    This quiz is about the risk oversight function of NNPC Limited and its subsidiaries, including risk management activities such as identifying emerging risks, implementing ERM tools, and maintaining a risk inventory. It covers the Enterprise Risk Management (ERM) function at NNPC Limited.

    More Like This

    Use Quizgecko on...
    Browser
    Browser