The U.S. group supervisory framework was tested during the 2008 global financial crisis when American International Group (AIG) faced financial uncertainty. The AIG Financial Products unit based in London, a non-insurance component of the AIG holding company system, took on huge losses from risky investments. The contagion effects experienced by U.S. insurers in the AIG holding company system’s near collapse prompted U.S. insurance regulators to reevaluate their group supervisory framework and pay closer attention to the risks that are created by activities going on outside of those entities as well as the reputational and contagion issues that could exist.
In the wake of the financial crisis, it became clear that U.S. state insurance regulators needed to be able to assess the holding company’s financial condition, as a whole, and its impact on an insurer within the holding company system. In November 2011, as part the NAIC Solvency Modernization Initiative (SMI), the NAIC voted to adopt a significant new addition to U.S. insurance regulation: the U.S. Own Risk and Solvency Assessment (ORSA). An ORSA will require insurance companies to issue their own assessment of their current and future risk through an internal risk self-assessment process and it will allow regulators to form an enhanced view of an insurer’s ability to withstand financial stress. The ORSA concept is now embedded in the International Association of Insurance Supervisors (IAIS) standards and is in various stages of implementation in the United States, Europe and other jurisdictions. Large- and medium-size U.S. insurance groups and/or insurers will be required to regularly conduct an ORSA starting in 2015.
ORSA: WHAT IS IT?
In essence, an ORSA is an internal process undertaken by an insurer or insurance group to assess the adequacy of its risk management and current and prospective solvency positions under normal and severe stress scenarios. An ORSA will require insurers to analyze all reasonably foreseeable and relevant material risks (i.e., underwriting, credit, market, operational, liquidity risks, etc.) that could have an impact on an insurer’s ability to meet its policyholder obligations.
The “O” in ORSA represents the insurer’s “own” assessment of their current and future risks. Insurers and/or insurance groups will be required to articulate their own judgment about risk management and the adequacy of their capital position. This is meant to encourage management to anticipate potential capital needs and to take action before it’s too late. ORSA is not a one-off exercise—it is a continuous evolving process and should be a component of an insurer’s enterprise risk-management (ERM) framework. Moreover, there is no mechanical way of conducting an ORSA; how to conduct the ORSA is left to each insurer to decide, and actual results and contents of an ORSA report will vary from company to company. The output will be a set of documents that demonstrate the results of management’s self-assessment.
NAIC U.S. ORSA
In light of the financial crisis, U.S. insurance regulators began to modify their supervisory framework. In 2008, the NAIC launched the SMI—a critical self-examination to update the U.S. insurance solvency framework. SMI focused on key issues such as capital requirements, governance and risk management, group supervision, statutory accounting and financial reporting, and reinsurance. As part of the SMI, the NAIC re-evaluated risk-based capital (RBC) in the United States and determined that RBC will continue to form the backstop function for insurer solvency to: (1) guarantee regulator action; and (2) provide the legal authority to intervene without extensive litigation.
Regulators decided that additional capital assessments evaluating prospective solvency should be added to the system. Additional capital assessments will be included in ORSA to complement RBC as a financial regulatory safeguard. The NAIC ORSA Guidance Manual, which was adopted by the NAIC Executive (EX) Committee and Plenary in March 2012, provides information for insurers on performing its ORSA and documenting risk policies and procedures.
Pursuant to the NAIC ORSA Guidance Manual and the Risk Management and Own Risk and Solvency Assessment Model Act (#505), the ORSA has two primary goals: 1) to foster an effective level of ERM at all insurers, through which each insurer identifies, assesses, monitors, prioritizes and reports on its material and relevant risk identified by the insurer, using techniques that are appropriate to support risk and capital decisions; and 2) to provide a group-level perspective on risk and capital, as a supplement to the existing legal entity view.
The ORSA will apply to any individual U.S. insurer that writes more than $500 million of annual direct written and assumed premium, and/or insurance groups that collectively write more than $1 billion of annual direct written and assumed premium. An insurer that is subject to the ORSA requirements will be expected to:1) regularly, no less than annually, conduct an ORSA to assess the adequacy of its risk management framework, and current and estimated projected future solvency position; 2) internally document the process and results of the assessment; and 3) provide a confidential high-level ORSA Summary Report annually to the lead state commissioner if the insurer is a member of an insurance group and, upon request, to the domiciliary state regulator.
When the NAIC Executive (EX) Committee and Plenary adopted Model #505 on Sept. 12, 2012, it was expected that each jurisdiction would adopt risk-management and ORSA requirements into state law prior to 2015. Model #505 provides the requirements for completing an annual ORSA and provides guidance and instructions for filing an ORSA Summary Report.