The Hartford 2015 Annual Report Download - page 11

Download and view the complete annual report

Please find page 11 of the 2015 The Hartford annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 255

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255

11
At the corporate level, the Company's Enterprise Chief Risk Officer (“Chief Risk Officer”) leads ERM. The Chief Risk Officer reports
directly to the Company's Chief Executive Officer (“CEO”). The Company has established the Enterprise Risk and Capital Committee
(“ERCC”) that includes the Company’s CEO, President, Chief Financial Officer, Chief Investment Officer, Chief Risk Officer, General
Counsel and others as deemed necessary by the committee chair. The ERCC oversees the risk profile and risk management practices of
the Company. The ERCC also oversees capital management and the allocation of capital to the lines of business. The ERCC is
responsible for significant company-wide risk exposures including, but not limited to, financial risk, liquidity and capital requirements,
insurance risk, operational risks, and any other risk deemed significant. The ERCC reports to the Board primarily through the FIRMCo
and through interactions with the Audit Committee.
The Company also has committees that manage specific risks and recommend risk mitigation strategies to the ERCC. These committees
include, but are not limited to, Asset Liability Committees, Catastrophe Risk Committee, Emerging Risk Committees, Model Oversight
Committees and the Operational Risk Committee.
Risk Management Framework
At the Company, risk is managed at multiple levels. The Hartford utilizes three lines of defense in risk management to integrate its risk
management strategy and appetite into all areas of the Company. The first line of defense in risk management is generally the
responsibility of the lines of business. Senior business leaders are responsible for managing risks specific to their business objectives
and business environment. The second line of defense in risk management is generally owned by ERM. ERM has the responsibility to
ensure that the Company has insight into its aggregate risk and that risks are managed within the Company's overall risk appetite. Legal
and Compliance also commonly act as a second line of defense in risk management. The third line of defense in risk management is
owned by Internal Audit. Internal Audit provides independent assurance that each business unit’s controls are present, compliant, and
effective, informs the risk identification process and provides audit and consultative support to the Company.
The Company's Risk Management Framework consists of five core elements:
1. Risk Culture and Governance: The Company has established policies for its major risks and a formal governance structure with
leadership oversight and an assignment of accountability and authority. The governance structure starts at the Board and
cascades to the ERCC and then to individual risk committees across the Company. In addition, the Company promotes a strong
risk management culture and high expectations around ethical behavior.
2. Risk Identification and Assessment: Through its ERM organization, the Company has developed processes for the
identification, assessment, and, when appropriate, response to internal and external risks to the Company's operations and
business objectives. Risk identification and prioritization has been established within each risk area, including processes around
emerging risks.
3. Risk Appetite, Tolerances, and Limits: The Company has a formal enterprise risk appetite framework and policy that is
approved by the ERCC and reviewed by the Board. The risk appetite framework includes an enterprise risk appetite statement,
risk preferences, risk tolerances and enterprise risk limits. Enterprise risk limits which quantify tolerances into specific limits
by risk category are defined in underlying enterprise risk policies.
4. Risk Management and Controls: While the Company utilizes the committee structure to elevate risk discussions and decision-
making, there are a variety of working groups that provide decisioning and management of risk within determined tolerances
and limits. ERM and the appropriate governing risk committees regularly monitor the Company's risk exposure as compared to
defined limits and tolerances and provide regular reporting to the ERCC and FIRMCo.
5. Risk Reporting and Communication: The Company monitors its major risks at the enterprise level through a number of
enterprise reports, including but not limited to, a monthly risk dashboard, and regular stress testing. ERM communicates the
Company's risk exposures to senior and executive management and the Board, and reviews key business performance metrics,
risk indicators, audit reports, risk/control self-assessments and risk event data.
Risk Exposures and Quantification
The Company quantifies its enterprise insurance and financial risk exposures using multiple lenses including statutory, economic and,
where appropriate, U.S. GAAP. ERM leverages various modeling techniques and metrics to provide a view of the Company's risk
exposure in both normal and stressed environments.