The Hartford 2014 Annual Report Download - page 11

Download and view the complete annual report

Please find page 11 of the 2014 The Hartford annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 296

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255
  • 256
  • 257
  • 258
  • 259
  • 260
  • 261
  • 262
  • 263
  • 264
  • 265
  • 266
  • 267
  • 268
  • 269
  • 270
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
  • 279
  • 280
  • 281
  • 282
  • 283
  • 284
  • 285
  • 286
  • 287
  • 288
  • 289
  • 290
  • 291
  • 292
  • 293
  • 294
  • 295
  • 296

At the corporate level, the Company's Enterprise Chief Risk Officer (“Chief Risk Officer”) leads ERM. The Chief Risk Officer reports directly to the
Company's Chief Executive Officer (“CEO”). The Company has established the Enterprise Risk and Capital Committee (ERCC”) that includes the
Companys CEO, President, Chief Financial Officer, Chief Investment Officer, Chief Risk Officer, General Counsel and others as deemed necessary by the
committee chair. The ERCC oversees the risk profile and risk management practices of the Company. The ERCC also oversees capital management and the
allocation of capital to the lines of business. The ERCC is responsible for significant company-wide risk exposures including, but not limited to, financial
risk, liquidity and capital requirements, insurance risk, operational risks, and any other risk deemed significant. The ERCC reports to the Board primarily
through the FIRMCo and through interactions with the Audit Committee.
The Company also has committees that manage specific risks and recommend risk mitigation strategies to the ERCC. These committees include, but are not
limited to, Asset Liability Committees, Catastrophe Risk Committee, Emerging Risk Committees, Model Oversight Committees and Operational Risk
Committee.
Risk Management Framework
At the Company, risk is managed at multiple levels. The Hartford utilizes three lines of defense in risk management to integrate its risk management strategy
and appetite into all areas of the Company. The first line of defense in risk management is generally the responsibility of the lines of business. Senior
business leaders are responsible for managing risks specific to their business objectives and business environment. The second line of defense in risk
management is generally owned by ERM. ERM has the responsibility to ensure that the Company has insight into its aggregate risk and that risks are
managed within the Company's overall risk appetite. Legal and Compliance also commonly act as a second line of defense in risk management. The third line
of defense in risk management is owned by Internal Audit. Internal Audit provides independent assurance that each business unit’s controls are present,
compliant, and effective, informs the risk identification process and provides audit and consultative support to the Company.
The Company's Risk Management Framework consists of five core elements:
1. Risk Culture and Governance: The Company has established policies for its major risks and a formal governance structure with leadership oversight
and an assignment of accountability and authority. The governance structure starts at the Board and cascades to the ERCC and then to individual
risk committees across the Company. In addition, the Company promotes a strong risk management culture and high expectations around ethical
behavior.
2. Risk Identification and Assessment: Through its ERM organization, the Company has developed processes for the identification, assessment, and,
when appropriate, response to internal and external risks to the Company's operations and business objectives. Risk identification and prioritization
has been established within each area, including processes around emerging risks.
3. Risk Appetite, Tolerances, and Limits: The Company has a formal enterprise risk appetite framework that is approved by the ERCC and reviewed by
the Board. The risk appetite framework includes an enterprise risk appetite statement, risk preferences, risk tolerances and enterprise risk limits.
Enterprise risk limits which quantify tolerances into specific limits by risk category are defined in underlying enterprise risk policies.
4. Risk Management and Controls: While the Company utilizes the committee structure to elevate risk discussions and decision-making, there are a
variety of working groups that provide decisioning and management of risk within determined tolerances and limits. ERM and the appropriate
governing risk committees regularly monitor the Company's risk exposure as compared to defined limits and tolerances and provides regular
reporting to the ERCC.
5. Risk Reporting and Communication: The Company monitors its major risks at the enterprise level through a number of enterprise reports, including
but not limited to, a monthly risk dashboard, and regular stress testing. ERM communicates the Company's risk exposures to senior and executive
management and the Board, and reviews key business performance metrics, risk indicators, audit reports, risk/control self-assessments and risk event
data.
Risk Exposures and Quantification
The Company quantifies its enterprise insurance and financial risk exposures using multiple lenses including statutory, economic and, where appropriate,
U.S. GAAP. ERM leverages various modeling techniques and metrics to provide a view of the Company's risk exposure in both normal and stressed
environments.
11