Controlled risk-taking requires a strong and independent risk management organisation, as well as comprehensive risk management processes to identify, assess and control the Group’s and the Business Units’ risk exposures. We base our risk management on four guiding principles that we strive to apply consistently across all risk categories throughout Swiss Re:

• Controlled risk-taking: Financial strength and sustainable value creation are central to Swiss Re’s value proposition. We therefore operate within a clearly defined risk policy and risk control framework.
• Clear accountability: Our operations are based on the principle of delegated and clearly defined authority. Individuals are accountable for the risks they take on, and their incentives are aligned with Swiss Re’s overall business objectives.
• Independent risk controlling: Dedicated specialised units within Risk Management monitor our risk-taking activities.
• Open risk culture: Risk transparency, knowledge sharing and responsiveness to change are integral to our risk control process.

Risk management organisation

The Board of Directors is ultimately responsible for the Group’s governance principles and policies; these include the Group Risk Policy, which establishes both the guiding principles of risk management as well as the overall risk tolerance of the Group.

The Board of Directors generally deals with risk management through two committees:

• The Finance and Risk Committee is responsible for reviewing the Group Risk Policy and capacity limits, as well as for monitoring risk tolerance and reviewing top risk issues and exposures.
• The Audit Committee is responsible for overseeing internal controls and compliance procedures.

The Group Executive Committee (Group EC) implements the risk management framework through four sub-committees:

• The Group Risk and Capital Committee has responsibility for establishing the Group’s Risk Governance Framework, including setting and monitoring risk capacity limits and determining changes to the internal risk and capital measurement methodology. It also oversees Swiss Re’s economic value measurement framework, including the principles for the allocation of capital and funding resources.
• The Group Asset-Liability Committee oversees the management of Swiss Re’s balance sheet, in particular its liquidity, capital, and funding positions and related policies.
• The Group Products and Limits Committee determines Swiss Re’s product policy and underwriting standards, sets transaction limits, and decides on large or non-standard transactions.
• The Group Regulatory Committee is the central information and coordination platform for regulatory matters and compliance. It ensures a consistent approach to external communication on regulatory issues.

The Group Chief Risk Officer (CRO), who is a member of the Group EC, reports directly to the Group CEO as well as to the Board’s Finance and Risk Committee. The Group CRO is a member of the four Group EC committees, serving as the chairman of both the Group Risk and Capital Committee and the Group Regulatory Committee. In addition, the Group CRO leads the Group’s Risk Management function, which is responsible for risk oversight and control across the Group.

The Group Risk Management function is comprised of central departments providing shared services (such as Risk Reporting), along with dedicated departments for the Reinsurance, Corporate Solutions, and Admin Re^® Business Units.

Each of these Business Unit departments has a dedicated Chief Risk Officer who reports directly to the Group CRO, with a secondary reporting line to the respective Business Unit CEO. The Business Unit CROs are responsible for risk oversight in their respective Business Units, establishing the proper risk governance to ensure efficient risk identification, assessment, and control. There are also Regional CROs (Americas, Asia, and EMEA) with reporting duties to the Reinsurance regional management teams. They also provide functional support to the Regional Presidents.

For Swiss Re’s major legal entities, the Business Unit CROs are supported by designated legal entity CROs who are responsible for overseeing specific risk management issues that arise at the legal entity level.

The central departments support both the Group CRO and the Business Unit CROs in discharging their oversight responsibilities. They do so by providing specialised risk category expertise and accumulation control, risk modelling and reporting services, regulatory relations management, and central risk governance framework development. The central departments also oversee Group liquidity and capital adequacy and maintain the Group frameworks for controlling these risks throughout Swiss Re.

While in Reinsurance the setting of the reserves is performed by valuation actuaries working with the Business Management Unit, in Corporate Solutions and Admin Re^® actuarial management is an integral part of Risk Management. The monitoring of reserves for the three Business Units is provided by a dedicated Actuarial Control Unit within Risk Management.

Senior managers of Business and corporate Units are responsible for managing operational risks in their areas of activity, based on a centrally coordinated methodology. Their self-assessments are reviewed and challenged by dedicated operational risk managers. Risk management experts also review Swiss Re’s underwriting decision processes.

Risk management activities are also supported by Group Internal Audit and Compliance. The Group Internal Audit department carries out independent, objective assessments of the adequacy and effectiveness of internal control systems. It evaluates the execution of processes within Swiss Re, including those within Risk Management.

The Compliance function is principally responsible for overseeing Swiss Re’s compliance with applicable laws, regulations, rules, and the Code of Conduct, as well as managing compliance risk. It assists the Board of Directors, the Group EC and management in discharging their respective duties to identify, mitigate, and manage compliance risks.

Risk tolerance and limit framework

Swiss Re’s risk tolerance is an expression of the extent to which the Board of Directors has authorised the Group and Business Units’ executive management to assume risk. It represents the maximum amount of risk that Swiss Re is willing to accept within the constraints imposed by its capital and liquidity resources, its strategy, its risk appetite, and the regulatory and rating agency environment within which it operates. Risk tolerance criteria are specified for the Group and Business Units, as well as for the major legal entities.

A key responsibility of Risk Management is to ensure that Swiss Re’s risk tolerance is applied throughout the business. As part of this responsibility, Risk Management ensures that our risk tolerance targets are a key basis for our business planning processes. Furthermore, both our risk tolerance and risk appetite – the types and level of risk we seek to take within our risk tolerance – are clearly reflected in a limit framework across all risk categories. The limit framework is approved at the Group EC level through the Group Risk and Capital Committee. The individual limits are established through an iterative process to ensure that the overall framework complies with our Group-wide policies on capital adequacy and risk accumulation.