Monday, November 06, 2006

Predictions from 1996

In my book titled "Fourth Generation Risk Management", published in 1996, a set of predictions concerning risk management practices and the insurance industry were made based on observations at that time. Below are the predictions. Lets see how far the industry has come to fulfilling predictions of ten years ago.

1) Risk Managements will measure service responsiveness of their suppliers and publish the results nationally

2) Risk Managers will more finitely define the role of the broker/agent, and the latter's fee's will be tied to their ability to provide services that create value for the entire organization.

3) Risk Managers will no longer be willing to pay commissions for traditional transactional services.

4) Risk Managers will increasingly separate the negotiations of insurance coverage from the selection of the broker/agent. Risk Managers will decide what broker/agent has the capability to provide quality services, and then approach the insurance companies in partnership.

5) Knowledge of an organizations operational issues will become a "must be" for brokers/agents.

6) There will be less shopping of insurance and more long term negotiations

7) Insurance company executives will become more and more involved in personal relationships with their largest customers and trade groups representing the smaller or medium sized customers

8) Operational problem solving expertise will be necessary for insurance carriers and brokers/agents

9) Measurement and evaluation of claims and cost of risk will be dominated by statistical tools and metrics to enable risk managers to provide better analysis and recommendations to their company.

10) Insurance purchasing constortiums will be formed to provide access to the insurance markets for mid- sized risk on a fee basis

11) The information super highway will accelerate transformation of business processes and interactions between the risk manager and their insurance suppliers. This transformation will create further change for the insurance industry and drive down transactional cost.

Certainly the above list represents changes that should have occurred given the explosion of technology over the last ten years. The question is whether risk managers and the entire insurance industry have used technology to the customers benefit and has the customer lead the transformation.

Thursday, November 02, 2006

Inefficient Risk Management Practices Cost Billions

AberdeenGroup: Billions lost to inefficient risk management practice
Regulatory mandates and corporate policies are shifting technology buying decisions from IT to business executives. As a result, forward-thinking IT managers that anticipate the needs of business leadership and seek technology solutions and processes can contribute to business improvement and competitive advantage and avoid financial loss and legal liability, according to new research from the AberdeenGroup.

The research, presented in 'The Compliance Gap Benchmark Report: Aligning the Risk Management Priorities of IT and Business Executives,' demonstrates that most organizations are not gaining financial benefits from their risk management programs because they fail to focus on merging compliance with risk management.

"The adoption and measurement of a risk management strategy is not easy because the concept of risk has changed with a shift in priorities," says Mounil Patel, AberdeenGroup research director for Security Solutions and Services. "More often, organizations do not recognize the importance of closing the cultural gap between business executives and information technology executives."

Patel notes that best-in-class companies rank the alignment and standardization of procedures company-wide as their top risk management challenge. The CFO is often seen as having the greatest visibility of the company's internal processes and as such is the ideal candidate to take responsibility for risk management. Best-in-class companies use frameworks and other tools to emphasize risk in operations and tend to stress center-led organizations and centralized risk management with decentralized execution, and utilize these key performance indicators to measure risk management performance. The gravity of risk management is clearly visible in terms of the spending relative to revenue.

Companies miss valuable ways to improve business operations and competitive advantages.

According to the report, successful companies:

Believe the top risk management challenge is aligning and standardizing procedures and systems company-wide
Place the responsibility for risk management with the CFO
Use frameworks and other tools to emphasize risk in operations and tend to stress center-led organizations and centralized risk management with decentralized execution
Utilize key performance indicators to measure risk management performance

The report discusses tools to benchmark enterprises' risk management programs. The report also recommends how to measure risk management performance and the processes and technology to help enterprises achieve compliance with corporate policies and regulatory mandates.

For a copy of the full report go to: http://www.aberdeen.com/summary/report/benchmark/RA_RMG_SQ_3157.asp

Wednesday, November 01, 2006

Conflicts in Risk Management Practices & Thinking

Of all the companies who have designated positions with the title of "risk management" roughly 80% of those positions are nothing more than a function to purchase insurance and oversee loss control initiatives. The other 20% is a mix of Chief Risk Officers whose elevated role expands the risk management function to finance and legal across all operating fucntions of a large corporation. Then there are management consulting firms offering "Enterprise Risk Management" services and other segment labeled risk management services such as "Financial Risk Management, Supply Chain Risk Management, Capital Risk Management etc etc.".

When you examine the market of "risk management practices" it becomes obvious that the very nature of related practices and parties has and continues to cause channel conflicts which rob effective application of the theories and practices of risk management. In an effort define both the definition of risk management practices and the channel conflicts we conducted a survey of 100 companies representing medium and large corporations throughout North America. We also examined industry trade presses and segment specific groups or associations promoting "risk management". The survey results of the 100 companies ( surveys of the executives) showed the following:

60% indicated that risk management is about managing insurance cost and internal loss control initiatives
20% indicated that risk management is about providing internal and external resources with proper assessment/analysis of related risk and ways to reduce, transfer, control or assume said risk
15% indicated that risk management is about managing capital, financial, compliance and governance matters effectively
5% indicated that risk management starts with the CEO and is about everyone improving "quality" forever and ever

The very differences in the responses clearly show that the definition of risk management and its practices does not indicate that one answer or approach satisfies all segments of interest.

Furthermore an analysis of the issues and writings of industry trade presses and segment specific groups or associations promoting "risk management" showed a variety of different issues and approaches. It is both the differences in definition and the variety of different issues and approaches that create channel conflicts for both the practices of risk management and all the different suppliers trying to serve all the channels.

What Channel Conflicts Exist?

There appears to be a set of seven common channel conflicts when it comes to risk management practices. These include:

Departmental Conflicts (Internal)
Supplier Conflicts (External)
Customer Conflicts (Internal & External)
Leadership Conflicts (Internal)
Strategic Conflicts (Internal)
Self preservation Conflicts (Internal)
Industry Conflicts (External)

Each of these conflicts will be examined thoroughly and released in future writings. For now it is safe to say that these conflicts and the different definitions are the very constraints which prevent a united approach to improving the entire supply chain of risk management and its stature as a critical and measurable value function within most corporation's.

further validation of channel conflicts and a undefined systemic approach to risk management was the results of both the Quality Insurance Congress Survey (1994 - 1996) and the subsequent demise of the non-profit organization. The QIC was formed to help improve the quality of insurance transactions and related services for the benefit of the customer. Remember that 60% of the market indicated that risk management is about managing insurance cost and internal loss control initiatives

It is odd that a non profit organization was formed to improve the Quality of the Insurance Industry because the industry itself recognized that improvements were needed but the customers did not. The assumptions that improvement were needed were further validated by the results of the first "Quality Scorecard" produced by the Quality Insurance Congress. Thus the insurance industry funded its own analysis of customer satisfaction and the results were embarrassing to say the least.

The Chairman of the QIC, who was also the President of CNA Insurance at the time, told the RIMS Executive Committee that if Risk Managers did nothing with the QIC survey results, the QIC effort would be in vain. RIMS and the Risk Managers did nothing and the QIC failed. To this day, as pointed out in the recent "Quality" survey recently completed by RIMS, only 9% of companies have changed brokers following the Spitzer' findings and their own continued complaints of quality from their suppliers. Just 9%!

So why was the QIC dismantled? One perspective is that the actual customer really didn't want improvements enough to speak up and lead with input. Even today according to a July, 2006 article ( http://www.riskandinsurance.com/060701_column_3.asp) while the customer "talks about Quality" they failed to abide by the basic principles that enable quality to be achieved. On March 22, 2006, the Risk and Insurance Management Society, Inc. (RIMS) states that it furthered its commitment to RIMS Quality Improvement Process (QIP) and its guiding principles of integrity, transparency and client-centricity, by hosting the first RIMS Quality Forum. Again, only 9% of companies have changed brokers following the Spitzer' findings and their own continued complaints of quality from their suppliers. Maybe they should have understood what their guiding principles were before having closed door meetings on matters that relate to quality.

When the original QIC Scorecard results were released, several brokers and insurers complained about the scorecard, as their own surveys of risk managers produced far better results. Both scorecards produced basically the same poor results. (As by the way did this latest RIMS survey as well.) For "some reason", risk managers apparently responded differently to the QIC survey than they did to the insurers' and brokers' own surveys. Researchers of the Katie Insurance School at Illinois State University that conducted two QIC quality surveys, said it was very surprising to them the number of calls or notes they received from risk managers wanting to be assured of anonymity for their answers before they completed the QIC survey. The researchers received more of these comments and questions from risk managers than they did for any other survey they ran. In talking to those researchers just this past week, that comment still holds true. More risk managers contacted them to be assured of anonymity in the QIC than other respondents in any other survey they have run. Could it be that in the "private" voting booth, risk managers said what they really thought about brokers and insurers, yet to their face they told the brokers and insurers things were fine. Wonder why the brokers and insurers were questioning the QIC data?

And what is RIMS doing about Quality -- the President states he's vowed to change that one step at a time, and is meeting with individual insurers and brokers to ask them to commit to quality. The March report of 06 on RIMS Quality efforts proclaims Quality but the very survey results were developed using a non-scientific approach to defining and measuring quality issues. Additionally the RIMS QIP initiative is ill conceived approach to solving systemic issues that cut across the entire insurance delivery system.

It as been thirteen years since the original QIC was formed. It appears as though nothing has changed in terms of the customers input into the improvement process or their ability to lead the insurance industry towards constant improvement. If the customer cannot define quality how can its supplier expect to improve?

Maybe the greatest channel conflict that prevents significant risk management progress is the so called risk managers themselves.