台湾法规/證券風險管理

Securities firms often encounter uncertainties in the course of their business operations.

In general, an uncertain event may be called a risk if it can produce an adverse impact that affects the achievement of the firm′s strategic business objectives.

Risk Management should have the priority within a securities firm when it establishes its business strategy and organizational culture.

In addition, qualitative and quantitative management shall serve as a guide in the formation of business strategies.

To manage its risks effectively, a securities firm shall establish an integrated risk management system, and everyone from top management to entry-level staff shall all participate in the promotion and enforcement of such system.

With a firm-wide perspective, a series of activities are to be undertaken, including risk identification, measurement, monitoring, reporting and responding, together with qualitative and quantitative management methods, so that all risks that can arise from business operations may be controlled to within tolerable levels.

This helps the firm achieve its strategic goals and plan properly.

To manage its risks effectively, a securities firm shall establish an integrated risk management system, and everyone from top management to entry-level staff shall all participate in the promotion and enforcement of such system.

With a firm-wide perspective, a series of activities are to be undertaken, including risk identification, measurement, monitoring, reporting and responding, together with qualitative and quantitative management methods, so that all risks that can arise from business operations may be controlled to within tolerable levels.

This helps the firm achieve its strategic goals and plan properly.

When establishing its risk management system, a securities firm shall comply with all applicable laws and regulations.

In order to significantly improve the depth, extent, and efficiency of risk management, securities firms are also urged to comply with these Principles wherever possible in designing their risk management system and its division of authority and functions, (including mechanisms for identifying, measuring, monitoring, responding to and reporting risk); and their system for risk management information and information disclosure.

A securities firm shall pay special attention to its risk management department and authorize its personnel to perform their duties independently.

This is to ensure that such risk management system may be effectively implemented on a sustainable basis, that assistance will be provided to the board of directors and management for faithful performance of their duties, and that risk management will be effectively realized.

There is no universal system for the design of a risk management organization structure ("RMOS").

The main factors to be considered when establishing an RMOS include the type of each organization, the corporate culture, and the composition of risks.

Responsibility for risk management does not lie exclusively with the risk management unit.

Effective risk management requires the cooperation of all related departments within a company, including human resources, legal affairs, information technology, internal control, auditing, and planning.

The success of risk management depends on a joint promotion and implementation effort from every part of the company.

Therefore, it is extremely important to have effective communication and coordination between the board of directors, the risk management implementation unit, and related departments.

Given different points of view, risk perception and risk tolerance will naturally differ.

Successful implementation of risk management relies upon a clear authority structure and well-planned reporting process.

Without them, risk management information cannot be effectively aggregated, analyzed and communicated.

The corporation′s business strategies and risk management policies cannot be appropriately adjusted in response to changes in its subjective and objective environments without them.

The Role of the Board of Directors

The board of directors shall be held ultimately responsible for financial loss or decrease of shareholders′ equity value, thus it shall establish an appropriate risk management system, operating procedures, and a risk management culture, as well as allocate the resources necessary to implement its risk management system.

The board of directors shall pay attention not only to the risks borne by each department, but also to the aggregate risks to the company as a whole.

Role of the Risk Management Committee

A Risk Management Committee may be organized within the board of directors to ensure effective monitoring of daily risk management when it considers the professionalism, regularity, and timeliness required in risk management and the committee should report to the Board of Directors on a regular basis.

A Risk Management Committee may be organized within the board of directors to ensure effective monitoring of daily risk management when it considers the professionalism, regularity, and timeliness required in risk management and the committee should report to the Board of Directors on a regular basis.

The Committee should propose risk management policies and establish qualitative and quantitative management standards when facilitate the monitoring of daily risk management.

It should also make timely reports on the implementation of risk management to the board, along with recommendations for improvement.

Role of the Risk Management Implementation Unit (RMIU)