CADE publishes its Risk Management Policy
CADE’s Risk Management Policy was published in the Federal Official Gazette on 9 May 2017. This policy aims at identifying, evaluating, handling, controlling and communicating the risks of CADE’s activities, providing certainty that the authority will fulfill its institutional mission.
The Governance, Risk and Control Committee (CORISC in its acronym in Portuguese) and the Committee on Risk Management (CERISC in its acronym in Portuguese) will be established in order to assure the effectiveness of the policy. In addition, subcommittees to deal with specific themes may be created.
The document defines the risk managers group – comprised of civil servants, which occupies leading positions, and are defined by CADE’s Internal Regulation as in charge of one or more work processes. They will be responsible for assuring the management of risks, monitoring them over time and guarantying that the necessary information will be produced and available at all CADE’s levels of hierarchical organization.
CADE’s Risk Management Policy follows the standards of the Committee of Sponsoring Organizations of the Treadway Commission – COSO and the ISO 31000. They include a planning for dealing with risks; a continuous staff training program; the provision of norms, manuals and procedures; and technological solution.
The document also follows recommendations of Ministerial Order nº 01/2016 from the Office of the General Comptroller (CGU) and the Ministry of Planning, Development and Management (MPOG). This document specifies that all Federal Executive Bodies shall publish their risk management policies.