Professional Documents
Culture Documents
5 Pengurusan Risiko
5 Pengurusan Risiko
5 Pengurusan Risiko
my
Struktur pengurusan risiko KWSP menyediakan tanggungjawab dan The EPFs risk management structure provides clear lines of
kebertanggungjawaban yang jelas berkenaan proses pengurusan responsibility and accountability for the risk management process
risiko serta menggariskan tanggungjawab utama dalam pengurusan as well as outlines the principal risk management and control
dan kawalan risiko: responsibilities:
2. Lembaga dan Panel Pelaburan KWSP: 2. The Board and the Investment Panel of EPF:
Lembaga KWSP (Lembaga) bertanggungjawab terhadap The Board of EPF (Board) is responsible for overall risk
keseluruhan pengurusan risiko yang mengkehendaki management, which requires the Board to identify
mereka mengenal pasti risiko-risiko utama dan principal risks and ensure the implementation of
memastikan pelaksanaan sistem yang sesuai untuk appropriate systems to manage these risks; whereas
mengurus risiko tersebut; manakala The Investment Panel of EPF is responsible for the risks
Panel Pelaburan KWSP bertanggungjawab terhadap related to making investment decisions.
risiko dalam membuat keputusan pelaburan.
3. The Board Risk Management Committee and Investment
3. Jawatankuasa Pengurusan Risiko Lembaga dan Jawatankuasa Panel Risk Committee:
Risiko Panel Pelaburan: The Board Risk Management Committee is responsible
J a w a t a n k u a s a P e n g u r u s a n R i s i k o L e m b a g a for assisting the Board to oversee all risk management
bertanggungjawab membantu Lembaga mengawasi activities except for activities in making investment
semua aktiviti pengurusan risiko kecuali aktiviti-aktiviti decisions; reviewing the key risks inherent in the
dalam membuat keputusan pelaburan; mengkaji semula organisation and the system of internal control necessary
risiko utama yang wujud dalam organisasi dan sistem to manage them; and reporting its findings to the
kawalan dalaman yang perlu ada untuk menguruskannya; Board.
dan melaporkan kepada Lembaga. The Investment Panel Risk Committee is responsible for
investment risk oversight, which includes recommending
Jawatankuasa Risiko Panel Pelaburan bertanggungjawab the aggregate risk appetite for Investment Panel sign-
mengawasi risiko pelaburan, termasuk memperakukan off, approving risk management policies and limits,
tahap risiko agregat untuk kelulusan Panel Pelaburan, reviewing risk exposure and providing direction in
meluluskan polisi dan had risiko, mengkaji pendedahan relation to risk management practices within the
risiko dan memberikan panduan ke arah penerapan investment function.
budaya amalan pengurusan risiko dalam fungsi
pelaburan. 4. Dedicated Committees
The Management Operations Risk Committee (MORC) is
4. Jawatankuasa Khusus an operational committee set up by Management to
Jawatankuasa Pengurusan Risiko Operasi adalah oversee the Operational Risk Management (ORM) process
jawatankuasa operasi yang dibentuk oleh pihak of the EPF. Its members consist of the Chief Executive
Pengurusan untuk mengawasi proses Pengurusan Risiko Officer (CEO), Deputy CEOs, Head of Risk Management,
Operasi KWSP. Ahli-ahlinya terdiri daripada Ketua and relevant Heads of Department.
Pegawai Eksekutif (KPE), Timbalan KPE, Ketua Jabatan The Management Risk Committee (MRC) is a
Pengurusan Risiko, dan Ketua-ketua Jabatan yang management-level committee responsible for developing
berkaitan. the risk policy and limit appropriate in managing the
Jawatankuasa Risiko Pengurusan adalah jawatankuasa investment risk of the EPF. Its members consist of the
peringkat pengurusan yang bertanggungjawab merangka CEO, Deputy CEOs, Head of Risk Management, Head of
polisi dan had risiko yang sesuai untuk menguruskan Compliance and Settlement, Head of Quantitative and
risiko pelaburan KWSP. Ahli-ahlinya terdiri daripada Performance Analysis and relevant Heads of
KPE, Timbalan KPE, Ketua Jabatan Pengurusan Risiko, Department.
Ketua Jabatan Penjelasan & Pematuhan Pelaburan,
Ketua Jabatan Kuantitatif dan Analisa Prestasi dan
Ketua-ketua Jabatan yang berkaitan.
104 Lembaga Kumpulan Wang Simpanan Pekerja Laporan Tahunan 2009 Annual Report www.kwsp.gov.my
Jawatankuasa Pengurusan Pelaburan adalah jawatankuasa The Management Investment Committee (MIC) is a
peringkat pengurusan yang bertanggungjawab menilai management-level committee responsible for evaluating
prestasi pelaburan mengikut kelas aset serta the performance of investments according to asset
mencadangkan strategi dan peluang pelaburan kepada classes and recommending investment strategies and
Panel Pelaburan. proposals to the Investment Panel.
5. Fungsi pengurusan risiko dan pematuhan yang khusus dan 5. The dedicated independent risk management and compliance
berkecuali dilaksanakan oleh Jabatan Pengurusan Risiko dan functions, namely, the Risk Management Department (RMD)
Jabatan Penjelasan & Pematuhan Pelaburan yang and the Compliance and Settlement Department, are
bertanggungjawab memastikan polisi risiko dilaksanakan dan responsible for ensuring the smooth implementation of and
dipatuhi. compliance with risk policies.
6. Unit-unit Risiko Perniagaan, sebagai barisan pertahanan 6. The Business Risk Units, being the first line of defence
hadapan, bertanggungjawab mengenal pasti dan menguruskan against risks, are responsible for identifying, mitigating and
risiko berkaitan tugas mereka. Mereka bertanggungjawab managing risks within their lines of business. They are to
memastikan supaya tugas-tugas harian yang dilaksanakan ensure that their day-to-day business activities are carried out
mematuhi polisi, prosedur dan had yang ditetapkan. Semua within the established risk policies, procedures and limits. All
anggota bertanggungjawab menguruskan risiko secara berkesan staffs are responsible for the effective management of risks
dalam bidang masing-masing termasuk mengenal pasti in their respective areas including the identification of
kewujudan risiko baru. Ini bertujuan untuk menerap budaya potential risks. The aim is to inculcate risk management in
pengurusan risiko di setiap sistem dan proses perniagaan all critical business systems and processes before risk events
yang kritikal sebelum berlakunya perkara-perkara yang occur that may impact upon the EPFs objectives.
mungkin menjejaskan pencapaian objektif KWSP.
www.kwsp.gov.my Laporan Tahunan 2009 Annual Report KWSP
105
105
7. Jawatankuasa Audit Lembaga, dibantu oleh Jabatan Audit 7. The Board Audit Committee, supported by the Internal Audit
Dalam, bertanggungjawab melaksanakan penilaian bebas Department, is responsible for providing an independent
terhadap kecukupan dan keberkesanan sistem kawalan assessment of the adequacy and reliability of the system of
dalaman, serta pematuhan kepada polisi dan prosedur. internal controls, as well as compliance with policies and
procedures.
KAEDAH DAN PROSES PENGURUSAN RISIKO PELABURAN METHODOLOGY AND PROCESS OF THE INVESTMENT RISK
MANAGEMENT
PENGURUSAN RISIKO PASARAN
MARKET RISK MANAGEMENT
Risiko pasaran adalah risiko kerugian daripada perubahan dalam
nilai portfolio dan instrumen kewangan disebabkan oleh pergerakan Market risk is the risk of loss from changes in the value of
harga pasaran sama ada berkaitan kadar faedah, tukaran wang portfolios and financial instruments caused by movements in
asing dan harga ekuiti. market variables, such as interest rates, foreign exchange rates
and equity prices.
Objektif utama pengurusan risiko pasaran adalah untuk
memastikan agar kerugian daripada risiko pasaran dapat dikawal The primary objective of market risk management is to ensure that
dengan segera, dan pendedahan berisiko mempunyai kecairan losses from market risk can be promptly mitigated, and risk
yang mencukupi bagi membolehkan KWSP mengurangkan positions are sufficiently liquid, to enable the EPF to reduce its
pendedahan tersebut tanpa menanggung kerugian yang melebihi position without incurring potential loss that is beyond the EPFs
tahap risiko KWSP. risk appetite.
KWSP mengguna pakai pendekatan berikut untuk menguruskan EPF adopts the following tools to manage market risks;
risiko pasaran:
Value at Risk (VaR) an estimation of the amount of market
Nilai berisiko (VaR) anggaran jumlah nilai pasaran yang value that a portfolio can lose over a certain time horizon
boleh ditanggung kerugiannya oleh sesuatu portfolio dalam with a given probability. The Monte Carlo Simulation is used
tempoh masa tertentu pada tahap kebarangkalian yang telah to compute VaR to measure the riskiness of the portfolios.
ditetapkan. Simulasi Monte Carlo digunakan untuk mengira Duration a linear measure of risk for a bond to define the
VaR bagi mengukur tahap risiko portfolio. percentage increase (decrease) in the bonds value for a 1%
Tempoh masa ukuran linear risiko bagi sesuatu bon untuk fall (rise) in the bonds yield.
mentakrif peratusan kenaikan (atau penurunan) terhadap nilai Tracking error refers to the standard deviation of the
bon tersebut bagi kejatuhan (atau kenaikan) 1% bagi hasil portfolios excess returns relative to a benchmark.
yang diperoleh daripada bon tersebut. Simulation analysis, including stress testing, is another
Tracking Error merujuk kepada sisihan piawai bagi lebihan method of examining portfolio risk in extreme situations.
pulangan portfolio berbanding penanda aras. Stress testing involves setting parameters such as correlation,
Analisis simulasi, termasuk ujian tekanan adalah satu lagi volatility and returns at different values as well as assessing
kaedah menguji risiko portfolio dalam keadaan yang sukar. how a portfolios risk may change.
Ujian tekanan melibatkan penetapan parameter seperti Beta measurement used for the purpose of gauging the
korelasi, volatiliti dan pulangan pada nilai-nilai yang berlainan equitys price sensitivities against benchmark.
dan menilai bagaimana risiko sesuatu portfolio akan
berubah.
Pengukuran beta digunakan untuk mengukur sensitiviti CREDIT RISK MANAGEMENT
harga sesuatu ekuiti berbanding penanda aras. Credit risk is the risk of loss due to the inability or unwillingness
of a borrower/counterparty to meet its payment obligations.
Exposure to credit risk arises through lending, hedging, trading
PENGURUSAN RISIKO KREDIT and investing activities.
Risiko kredit adalah risiko kerugian disebabkan oleh ketidakmampuan
atau keengganan peminjam/pihak ketiga dalam memenuhi
tanggungjawab kewangannya. Pendedahan kepada risiko kredit
wujud daripada aktiviti pinjaman, lindung nilai, dagangan dan
pelaburan.
www.kwsp.gov.my Laporan Tahunan 2009 Annual Report KWSP
107
107
Objektif utama pengurusan risiko kredit adalah untuk memastikan The primary objective of credit risk management is to ensure that
pendedahan KWSP terhadap risiko kredit sentiasa berada dalam the EPFs exposure to credit risk is always within its capability and
lingkungan kemampuan dan kapasiti kewangannya untuk financial capacity to withstand potential future losses. The EPF
menghadapi kemungkinan kerugian di masa depan. KWSP menilai assesses its credit exposures through various methods such as;
pendedahan kreditnya melalui pelbagai pendekatan seperti: Credit Portfolio Modelling used to compute Credit VaR for
Model Portfolio Kredit digunakan untuk mengira VaR Kredit the purpose of gauging the credit risk exposure.
bagi menilai pendedahan risiko kredit. The Corporate Rating Template provides a statistically
Penarafan Korporat menyediakan kadaran risiko dalaman based internal risk rating for corporate borrowers and is
berasaskan statistik untuk peminjam korporat dan konsisten consistent with best practice rating models of financial
dengan amalan terbaik yang digunapakai oleh institusi institutions.
kewangan.
Rangka kerja Pengurusan Risiko Operasi digunakan untuk The Operational Risk Management framework is adopted to align
menjajarkan strategi, polisi organisasi, teknologi dan pengetahuan strategy, organisational policy, technology and knowledge in
dalam menilai dan mengurus ketidakpastian dan kesan negatif evaluating and managing the uncertainties and adverse effects of
risiko operasi. operational risk.
Rangka kerja ini menerangkan metodologi yang digunakan The framework explains the methodology adopted by the EPF and
oleh KWSP dan mentakrifkan proses-proses dalam menentukan defines the processes in establishing the context, assessing,
konteks, menaksir, mengendali, memantau dan melaporkan risiko treating, monitoring and reporting significant operational risks.
operasi utama.
KAEDAH DAN PROSES PENGURUSAN RISIKO OPERASI/METHODOLOGY AND PROCESS OF THE OPERATIONAL RISK
MANAGEMENT
Mengenal Pasti Risiko/Identify Risks Pantau dan Kaji Semula/Monitor and Review
Penilaian Risiko/Risks Assessment
Sumber: AS/NZS 4360: 2004 Risk Management/Source: ASN/NZS 4360:2004 Risk Management
www.kwsp.gov.my Laporan Tahunan 2009 Annual Report KWSP
109
109
KWSP sentiasa berusaha untuk menerap budaya pengurusan risiko The EPF is continuously endeavouring to inculcate a risk practicing
di kalangan anggotanya melalui pendidikan pengurusan risiko serta culture among its staff through risk education as well as the
pelaksanaan kawalan dan prosedur yang berkesan. Sehubungan implementation of effective controls and procedures. In relation to
dengan itu, sejumlah 140 sesi komunikasi dan perundingan risiko this, a total of 140 risk communication and consultation sessions
telah diadakan pada tahun 2009. were held in 2009.
Risiko kasar diberi skor, menggunakan kaedah Kemungkinan dan Gross risks are assigned numerical values, using predetermined
Impak yang ditentukan terlebih dahulu. Kawalan sedia ada dan Possibility and Impact Rating parameters. Existing controls and
strategi pengurangan kemungkinan risiko berlaku dikenal pasti dan mitigating strategies are identified and their effectiveness is
keberkesanannya dinilai untuk mendapatkan Kadaran Risiko evaluated to derive the Nett Risk Rating. The Nett Risk rating is
Bersih. Kadaran Risiko Bersih ini dianalisis dan dibandingkan analysed against the Target Risk rating to determine whether
dengan Kadaran Sasaran Risiko untuk menentukan sama action plans are needed to mitigate the risks.
ada pelan tindakan perlu diwujudkan untuk menguruskan risiko
tersebut.
110 Lembaga Kumpulan Wang Simpanan Pekerja Laporan Tahunan 2009 Annual Report www.kwsp.gov.my
Semua profil risiko yang disimpan di dalam kad skor risiko adalah All risk profiles kept in the risk scorecards are easily accessible
mudah dicapai melalui sistem pengurusan risiko operasi. Terdapat through the ORM system. There are 98 risk scorecards developed
98 kad skor risiko dibangunkan untuk jabatan, seksyen dan for departments, sections and branches. Access to the ORM
cawangan. Semua pemilik kad skor risiko, kawalan risiko dan system is provided on an enterprise-wide basis to all risk scorecards,
pelan tindakan di seluruh organisasi boleh mencapai sistem risk control and action plans owners to assist them in undertaking
tersebut untuk membuat Penilaian Risiko dan Kawalan masing- (RCSA) activities. Owners can access, view and update their risks,
masing. Pemilik boleh mencapai dan mengemaskinikan risiko, controls and action plans through their personal dashboards.
kawalan dan pelan tindakan mereka menerusi papan pemuka
peribadi mereka.
BUSINESS CONTINUITY MANAGEMENT
The EPFs Business Continuity Management (BCM) programme is
PENGURUSAN KESINAMBUNGAN PERNIAGAAN
benchmarked against sound BCM standards and guidelines as a
Program Pengurusan Kesinambungan Perniagaan KWSP ditanda basis for understanding, developing and implementing business
aras berdasarkan piawaian dan garis panduan Pengurusan continuity. This benchmarking also enables us to measure the
Kesinambungan Perniagaan yang kukuh sebagai asas untuk EPFs BCM programme capability in a consistent and recognised
memahami, membangun dan melaksanakan kesinambungan manner.
perniagaan. Ia turut membolehkan keberkesanan program
Pengurusan Kesinambungan Perniagaan dinilai secara konsisten The illustration below shows the components of EPFs BCM
dan diperakui. Programme Framework.
Pemacu Keputusan/
Decision Drivers Inisiatif & Proses Perniagaan/
Business Initiatives & Processes Ancaman/Threats
Reka Bentuk/Design
Pelaksanaan/
Implementation Pengurusan Krisis & Rancangan Kesinambungan Perniagaan/
Crisis Management & Business Continuity Plans
Program Pengurusan Kesinambungan Perniagaan akan memastikan The BCM programme will ensure the EPF resumes essential
KWSP kembali menjalankan operasi penting dalam tempoh masa operations within the required timeframes and minimises the cost
yang ditetapkan dan meminimumkan kos kerosakan dan gangguan of damages and interruptions due to disasters. In 2009, we
akibat bencana. Pada tahun 2009, KWSP menjalankan kajian carried out an annual review of the enterprise-wide BCM programme
semula tahunan terhadap program Pengurusan kesinambungan and successfully conducted a crisis simulation exercise at our
Perniagaan di seluruh organisasi dan melaksanakan latihan simulasi Data Centre.
krisis bagi Pusat Data KWSP.
M O N I T O R I N G A N D R E V I E W O F O P E R AT I O N A L R I S K
PEMANTAUAN DAN KAJIAN SEMULA PENGURUSAN RISIKO MANAGEMENT
OPERASI
The Board monitors and reviews the implementation of the risk
Lembaga KWSP memantau dan mengkaji semula pelaksanaan management framework through the Board Risk Management
program pengurusan risiko melalui Jawatankuasa Pengurusan Committee (BRMC).
Risiko Lembaga.
The ORM is considered part of the strategic management process
Pengurusan Risiko Operasi adalah sebahagian daripada proses and key operational risks are managed as part of day-to-day
pengurusan strategik dan risiko utama operasi diurus sebagai operations. All risks are reviewed in a formal process and
sebahagian daripada operasi harian. Semua risiko dikaji semula coordinated by the Risk Management Department.
menerusi proses yang teratur dan diselaraskan oleh Jabatan
Pengurusan Risiko. Line managers own their risks to ensure their commitment in
providing upwards assurance as part of the accountability and
Pengurus unit-unit perniagaan memiliki risiko mereka bagi transparency measures in place throughout the EPF. Six digital
memastikan komitmen mereka dalam memberi jaminan kepada assurance exercises are conducted annually to ensure the effective
Lembaga sebagai sebahagian daripada langkah-langkah implementation of the ORM methodology.
kebertanggungjawaban dan ketelusan yang tersedia di KWSP.
Enam jaminan digital dilaksanakan setiap tahun bagi memastikan A consolidated and scoring analysis is conducted to provide a
keberkesanan pelaksanaan kaedah Pengurusan Risiko Operasi. consolidated view of key risks faced by the EPF. In enhancing our
risk measurement and monitoring process, relevant Key Risk
Metodologi penyatuan dan penskoran dilaksanakan untuk memberi Indicators have been identified in stages, as an early warning
gambaran menyeluruh terhadap risiko utama yang dihadapi oleh signal to detect and highlight risk events and new risk concerns
KWSP. Dalam usaha untuk mempertingkatkan proses pengukuran as well as any potential areas of weakness in operational controls.
dan pemantauan risiko, Petunjuk Risiko Utama telah dikenal pasti Assessment of risk is also conducted on key projects, whereby
secara berperingkat, sebagai isyarat awal untuk mengesan dan critical risks and issues are identified and assessed by the relevant
memberi amaran berkenaan kejadian risiko dan kewujudan risiko subject matter experts, independent from the project owner.
baru serta sebarang kelemahan dalam kawalan operasi. Penilaian
risiko juga dijalankan terhadap projek yang berpotensi, di mana
risiko dan isu-isu kritikal dikenal pasti dan dinilai oleh pakar yang
berkecuali yang bukan pemilik projek.