Marco Perron

Partner | CPA, CRMA | Assurance

Updated on February 14, 2024

Risk management is key to an organization’s success. Because they are exposed to all types of threats, organizations must implement a rigorous process to counter these threats and strategies for dealing with and reducing them.

An effective risk management strategy not only avoids pitfalls and provides a means to react before it is too late, but it also builds trust and confidence that reassures your customers, business partners and investors.

In the case of a publicly listed, high-growth international company with offices on several continents, such as one of our clients, you can see why such a strategy is essential.

The client, with current sales of more than US$1B, wanted a solid base on which to build its expansion by reinforcing its risk management and internal audit procedures.

The client called on our experts for support in developing and implementing an enterprise risk management framework (ERM framework) and improving the related audit controls and reports.

A rigorous process

During this extensive three-year assignment, we worked closely with the directors, officers and various department managers in several countries.

The assignment consisted in defining the company’s main business risks and risk tolerance, then setting procedures to monitor and identify them. All major risks, whether technological, financial, political or other, were taken into consideration.

At the start, our experts undertook numerous consultations within the organization to gain a clear understanding of its operations, industry and issues. These discussions provided an inventory of the company’s risk exposure and helped determine the top twenty.

This was followed by a workshop during which directors and officers discussed the risks and existing controls and ranked the top twenty by importance (i.e. their impact on the organization and the probability of their occurrence).

Using our proposed methodology, these discussions provided the means to set the tolerance level for the main risks and a framework to monitor the situation and notify the directors and officers of any problem.

Determining the tolerance level for the various risks is a complex exercise that requires careful consideration. For example, it was decided that the ten main risks would be discussed by the Board of Directors (BD) every three months and that for the others, the BD would only be notified when the risk exceeded a certain threshold.

For an e-commerce company, for example, the threshold could be the number of minutes the site experienced downtime in a month.

Efficient monitoring

Working with the client, we then developed control methods and tools to monitor the main risks in terms of the established tolerance levels.

Over a given period, our experts gathered data on the progress of mitigation strategies and situations where the risk tolerance was exceeded. Our team prepared quarterly updates, which it submitted to the BD’s Audit Committee.

We also transferred our knowledge and supported the individuals responsible for risk management in the various departments to help develop their self-sufficiency in monitoring and preparing the required audit reports for the company’s officers and directors.

Numerous benefits

Our risk management advisory services provided numerous benefits for our client, including:

The client now has a process and proactive, consistent control measurements to detect, assess and mitigate risks;
The framework helps reduce growth-related risks;
BD reporting was improved and officers are better informed about risks and mitigation strategies;
Everyone in the company is more aware of risk management and the related benefits.

As was the case with our client, implementing a global risk management strategy can prove beneficial for any medium or large-size business. It’s an excellent way of ensuring that information is circulating effectively in the organization. It improves the BD’s business decisions and reaction time when issues arise. It also serves to enhance credibility, in particular with financing companies.

20 Jun 2019 | Written by :

Marco Perron is a Partner at Raymond Chabot Grant Thornton. He is your expert in assurance for the...

See the profile

You could also like to read

Management Consulting

How to Prepare a Change Management Plan

The first step in every company’s successful project is a change...

Management Consulting

Strategies for Optimizing Your Company's Performance

In 2024, improving a company's financial and operational performance should...

IFRS Newsletter is your quarterly update on all things relating to International Financial Reporting Standards (IFRS). We will bring you up to speed on topical issues, provide comment and points of view, and give you a summary of any significant developments.

We begin this second edition of 2019 by considering the International Accounting Standards Board (IASB) Exposure Draft Interest Rate Benchmark Reform.

We then look at the implications of the IASB’s statement that an entity should be entitled to “sufficient time” in determining whether it needs to change an accounting policy as a result of an IFRIC agenda decision and in implementing any such change.

Continuing on an IFRIC theme, we then look at the agenda decisions that were issued in March and the tentative issues that are currently out for comment.

Further on in the newsletter, you will find IFRS-related news at Grant Thornton and a general round-up of financial reporting developments.

We finish with a summary of the implementation dates of recently issued standards and a list of IASB publications that are out for comment.

Download the document below.

Cryptocurrency is digital or “virtual” money, which uses cryptography to secure its transactions, control the creation of additional currency units, and verify the transfer of assets.

In contrast to traditional forms of money which are controlled using centralized banking systems, cryptocurrencies use decentralized control. The decentralized control of a cryptocurrency works through a “blockchain”, which is a public transaction database, functioning as a distributed ledger. This has advantages in that two parties can transact with each other directly without the need for an intermediary, thereby saving time and cost.

More and more entities, including private enterprises, are entering into transactions in which they obtain cryptocurrencies. The following are examples of situations in which an entity may obtain cryptocurrencies:

An entity may accept cryptocurrency in exchange for goods or services sold in the ordinary course of
its business;
An entity may purchase cryptocurrency with the intention to hold it for investment purposes (i.e., to
benefit from increases in value);
An entity may act as a broker-trader of cryptocurrencies and purchase cryptocurrencies with the
purpose of selling it in the near future in order to generate a profit from fluctuations in price or brokertraders’
margin; or
An entity may be involved in cryptocurrency mining activities.

Cryptocurrency mining describes the process in which transactions for various forms of cryptocurrency are verified and added to the blockchain digital ledger. Those that perform cryptocurrency mining are generally referred to as “miners”.

Cryptocurrency miners use large amounts of computing power to solve blockchain algorithms. Once a block has been solved by the miner, he may, depending on the mining algorithm, be entitled to transaction fees as consideration for verifying cryptocurrency transactions and entering them in the blockchain ledger. Such transaction fees are specified by the original transacting parties.

Depending on the mining algorithm, the miner may also receive a reward of newly minted cryptocurrency for solving the block, with the amount of the reward being determined by the underlying blockchain software.

ASPE do not contain explicit guidance on how to account for holdings of cryptocurrencies or cryptocurrency mining activity. Furthermore, neither International Financial Reporting Standards (IFRS) nor generally accepted accounting principles in the United States (US GAAP) provide guidance which is appropriate for entities applying ASPE to analogize to in accordance with Section 1100, Generally Accepted Accounting Principles. Download this summary of some of the main accounting issues and, in the absence of specific guidance, our views on the issues.

The Canadian Perspective

The Canadian government has introduced a federal carbon pollution pricing system. Among others, this new tax applies to fossil fuels.

The new system applies in provinces and territories that do not have a carbon pricing mechanism in place. The Canada Revenue Agency has responsibility for administering and implementing the fuel charge for the listed provinces. The new tax is applicable as of April 1, 2019 in Manitoba, New Brunswick, Ontario and Saskatchewan and as of July 1, 2019 for Nunavut and Yukon. In addition, the federal fuel levy will apply in Alberta as of January 1, 2020.

The Greenhouse Gas Pollution Pricing Act (the Act) provides for twelve types of registrations, including road carriers, importers and users. Depending on its commercial activities, a person may be required to register.

Download the newsletter below to learn more.

Tax

By email

Optimizing Risk Management to Support Business’ Growth