ING Direct 2009 Annual Report Download - page 236
Download and view the complete annual report
Please find page 236 of the 2009 ING Direct annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.-
1 -
2
-
3
-
4
-
5
-
6
-
7
-
8
-
9
-
10
-
11
-
12
-
13
-
14
-
15
-
16
-
17
-
18
-
19
-
20
-
21
-
22
-
23
-
24
-
25
-
26
-
27
-
28
-
29
-
30
-
31
-
32
-
33
-
34
-
35
-
36
-
37
-
38
-
39
-
40
-
41
-
42
-
43
-
44
-
45
-
46
-
47
-
48
-
49
-
50
-
51
-
52
-
53
-
54
-
55
-
56
-
57
-
58
-
59
-
60
-
61
-
62
-
63
-
64
-
65
-
66
-
67
-
68
-
69
-
70
-
71
-
72
-
73
-
74
-
75
-
76
-
77
-
78
-
79
-
80
-
81
-
82
-
83
-
84
-
85
-
86
-
87
-
88
-
89
-
90
-
91
-
92
-
93
-
94
-
95
-
96
-
97
-
98
-
99
-
100
-
101
-
102
-
103
-
104
-
105
-
106
-
107
-
108
-
109
-
110
-
111
-
112
-
113
-
114
-
115
-
116
-
117
-
118
-
119
-
120
-
121
-
122
-
123
-
124
-
125
-
126
-
127
-
128
-
129
-
130
-
131
-
132
-
133
-
134
-
135
-
136
-
137
-
138
-
139
-
140
-
141
-
142
-
143
-
144
-
145
-
146
-
147
-
148
-
149
-
150
-
151
-
152
-
153
-
154
-
155
-
156
-
157
-
158
-
159
-
160
-
161
-
162
-
163
-
164
-
165
-
166
-
167
-
168
-
169
-
170
-
171
-
172
-
173
-
174
-
175
-
176
-
177
-
178
-
179
-
180
-
181
-
182
-
183
-
184
-
185
-
186
-
187
-
188
-
189
-
190
-
191
-
192
-
193
-
194
-
195
-
196
-
197
-
198
-
199
-
200
-
201
-
202
-
203
-
204
-
205
-
206
-
207
-
208
-
209
-
210
-
211
-
212
-
213
-
214
-
215
-
216
-
217
-
218
-
219
-
220
-
221
-
222
-
223
-
224
-
225
-
226 -
227 -
228 -
229 -
230 -
231 -
232 -
233 -
234 -
235 -
236 -
237 -
238 -
239 -
240 -
241 -
242 -
243 -
244 -
245 -
246 -
247
-
248
-
249
-
250
-
251
-
252
-
253
-
254
-
255
-
256
-
257
-
258
-
259
-
260
-
261
-
262
-
263
-
264
-
265
-
266
-
267
-
268
-
269
-
270
-
271
-
272
-
273
-
274
-
275
-
276
-
277
-
278
-
279
-
280
-
281
-
282
-
283
-
284
-
285
-
286
-
287
-
288
-
289
-
290
-
291
-
292
-
293
-
294
-
295
-
296
-
297
-
298
-
299
-
300
-
301
-
302
-
303
-
304
-
305
-
306
-
307
-
308
-
309
-
310
-
311
-
312
 |
 |
ING Group – Non-financial risks
Clear and accessible policies and minimum standards are embedded in ING business processes in all business lines. An infrastructure is
in place to enable management to track incidents and operational risk issues. A comprehensive system of internal controls creates an
environment of continuous improvement in managing operational risk. ING uses this knowledge (including lessons learned from incidents)
to improve the control of key processes.
Organisation of Operational Risk Management
The General Manager Corporate Operational Risk Management (CORM) reports directly to the CRO and is responsible for managing
operational risks and developing and establishing the Operational Risk Framework within ING Group, ING Bank and ING Insurance. The
General Manager Corporate ORM also establishes and approves the policies and minimum standards, and assists and supports the
Executive Board in managing ING’s operational risks. The ORM function is organised along functional reporting lines. The Business Line
operational risk managers report functionally to the General Manager CORM.
The CORM function consists of functional departments for Operational risks (including policies, systems, SOX testing, capital allocation
and reporting), for Information (Technology) risks and for Security & Investigations. The CORM function is responsible for developing
and communicating ING’s operational risk framework, policies, minimum standards and guidelines. The corporate function advises the
Executive Board and senior management, supports the business line ORM staff, monitors the quality of operational risk management
and leads the group-wide reporting of operational risks to the Executive Board.
ORM uses a layered functional approach within business lines to ensure systematic and consistent implementation of the group-wide
ORM framework, policies and minimum standards. The local and regional/division ORM Officer has the responsibility to assist local and
regional/division management in managing operational risk. The business line ORM officer has a monitoring role in the operational risk
management process and manages and supervises all functional activities of the ORM officers in the business line and region/division.
To avoid potential conflicts of interests, it is imperative that the ORM officer is impartial and objective when advising business management
on operational risk matters in their business unit or business line. To facilitate this, a strong functional reporting line to the next higher level
ORM officer is in place. The functional reporting line has clear accountabilities with regard to objective setting, remuneration, performance
management and appointment of new ORM staff.
Operational risk framework
ING has developed a comprehensive framework supporting and governing the process of identifying, mitigating, measuring and
monitoring operational risks thus reflecting the stages described in the Enterprise Risk Management model of COSO (Committee of
Sponsoring Organisations of the Treadway Commission).
1. Governance1. Governance
6. Control activities
7. Information & Communication
6. Risk monitoring
2. Objective setting
3. Event identification
4. Risk assessment
5. Risk response
At all levels in the organisation Operational Risk Committees (ORC’s) are established that identify, measure and monitor the operational
risks of the region or business unit with appropriate quality of coverage (granularity) and to ensure that appropriate management action is
taken by the responsible line managers at the appropriate level of granularity. ORC’s, chaired by the business management, steer the risk
management activities of the first and second line of defence in their entities. On a group level the Operational & Residual Risk Committee
approves the operational risk capital model.
Risk management (continued)
2.1 Consolidated annual accounts
ING Group Annual Report 2009
234