The chief risk officer (CRO) or chief risk management officer (CRMO) of a corporation is the executive accountable for enabling the efficient and effective governance of significant risks, and related opportunities, to a business and its various segments. Risks are commonly categorized as strategic, reputational, operational, financial, or compliance-related. CRO's are accountable to the Executive Committee and The Board for enabling the business to balance risk and reward. In more complex organizations, they are generally responsible for coordinating the organization's Enterprise Risk Management (ERM) approach.
The position became more common after the Basel Accord, the Sarbanes-Oxley Act, the Turnbull Report
A main priority for the CRO is to ensure that the organisation is in full compliance with applicable regulations (chief compliance officer). They may also deal with topics regarding insurance, internal auditing, corporate investigations, fraud, and information security. CRO's typically have post-graduate education and 20+ years of business experience, with actuarial, accounting, economics, and legal backgrounds common.
Famous quotes containing the words chief, risk and/or officer:
“When we consider what, to use the words of the catechism, is the chief end of man, and what are the true necessaries and means of life, it appears as if men had deliberately chosen the common mode of living because they preferred it to any other. Yet they honestly think there is no choice left. But alert and healthy natures remember that the sun rose clear. It is never too late to give up our prejudices.”
—Henry David Thoreau (1817–1862)
“It’s a funny thing, the less people have to live for, the less nerve they have to risk losing—nothing.”
—Zora Neale Hurston (1891–1960)
“That’s all right, sir. A commanding officer doesn’t need brains, just a good, loud voice.”
—Cyril Hume, and Fred McLeod Wilcox. Dr. Morbius (Walter Pidgeon)