Chapter 3

Question 1

The Health and Safety Executive (HSE) identified five activities that promote a risk-aware culture

Answer 1

Leadership
Involvement
Learning
Accountability 
Communication

Question 2

The Companies Act 2006 requires directors to have ‘regard among other matters to the’

Answer 2

• likely long term consequences of their decisions
• interests of the company’s employees
• need to foster the company’s business relationships with suppliers, customer and others
• impact of the company’s operation sin the community and the environment
• desirability of maintaining a reputation for high standards of business conduct
• need to act fairly between members (shareholders) of the company

Question 3

The UK Corporate Governance Code charges directors with

Answer 3

• setting the company’s strategic aims and providing leadership to put them into effect
• supervising management of the business
• reporting to shareholders on their stewardship

Question 4

The UK Corporate Governance Code is based on principles of

Answer 4

accountability
transparency
probity
focus on the sustainable success of an entity over the longer term

Question 5

What two responsibilities does the Board have under the Accountability principle of the UK Corporate Governance Code

Answer 5

• Determine the nature and extent of significant risks it is willing to take to achieve its corporate objectives
• Maintain sound risk management and internal control systems

Question 6

What five responsibilities do most Boards have

Answer 6

• Regulation of the executive to ensure they uphold shareholder interests and laws governing the conduct of the business
• Approving the report and accounts, annual budgets, strategy and other important plans
• Selecting, appraising and rewarding the CEO and ensuring successful planning is actively address
• Supervising the risk assessment process and ensure adoption of key actions to mitigate against risks
• Ensuring that company integrity and principles are upheld on critical matters such as financial reporting accuracy, legal and regulatory compliance

Question 7

What are four recommendations of the Turnbull guidance

Answer 7

• Separation of the roles of Chairperson and CEO
• CEO employment contracts to have a time limit
• Establishes minimum numbers of non-exec directors on the board
• Board subcommittees to be established

Question 8

what are the recommended practices in competence risk management and internal control.
Boards of listed companies should..

Answer 8

possess relevant skills,
conduct regular review of risk,
specify the company risk appetite,
agree and implement board policies on risk and control,
establish a prudent and effective internal control,
report on the effectiveness of the internal control at least annually.

Question 9

name the 11 titles of SOX 2002

Answer 9

Title 1. public company accounting oversight board.
Title two. Auditor independence.
Title three. Corporate responsibility.
title four. Enhanced financial disclosures.
Title V. Analyst conflict of interest.
title VI. Commission resources and authority.
title VII. Studies and reports.
Title 8. Corporate and criminal fraud accountability.
Title IX. White Collar crime penalty enhancements.
Title 10. Corporate tax returns.
Title 11. Corporate fraud and accountability.

Question 10

How often is the UK Corporate Governance Code reviewed?

Answer 10

Every 2 years

Question 11

What does section 404 of SOX act require

Answer 11

section 404 requires that publicly traded corporations use a formal risk control framework and it management and the external auditor report on the adequacy of internal control on Financial Reporting.

Question 12

JOBS Act 2012

Answer 12

jump-start our business startups act, or jobs act, of 2012 relaxed SOAS compliance requirements period this requirements included exemption for new public companies from section 404 reporting for a period of 5 years instead of 2.

Question 13

the committee of sponsoring organisations of the treadway commission (coso) define internal controls as a process in five categories:

Answer 13

Effectiveness and Efficiency of operations.
Reliability of Financial Reporting.
Compliance with applicable laws and regulations.
Safeguarding of assets.

Question 14

5 essential components of COSO

Answer 14

Control environment.
Risk assessment. 
Control activities. 
Information and communication. 
Monitoring activities.

Question 15

What is enterprise risk management (ERM)?

Answer 15

Enterprise risk management is the structure and organisation sets up to control risk management across the whole of its organisation.

Question 16

What are the benefits of successful risk management

Answer 16

inform strategic decisions;
successful management of change and higher operational efficiency;
organisations can expect more accurate Financial Reporting
reduce borrowing costs
improved competitive advantage.

Question 17

A successful ERM system has two key elements:

Answer 17

a workable framework Clarifying functional responsibilities and interactions, and the systems for internal communication, reporting and control.
a set of terms of reference for key staff. This clarifies individual functional responsibilities and individual requirements for communication, reporting and control.

Question 18

In a typical ERM system, there are two subcommittees which are independent information channels to the Board.

Answer 18

a risk sub committee and an audit subcommittee.

Question 19

Responsibility for risk control throughout an organisation lies with

Answer 19

the board of directors.

Question 20

what is risk management architecture

Answer 20

the structure by which the risk subcommittee intends to manage risk

Question 21

what does the risk architecture define:

Answer 21

specify the board member or subcommittee responsible for risk management
stating general terms of how it is perceived
specify the roles and responsibilities of any senior risk professionals or departments

Question 22

how often should the risk management architecture document be reviewed?

Answer 22

The risk management architecture document should be reviewed at least every 1 to 2 years, to reflect major changes in an organisation or its environment.

Question 23

The chief risk officer is responsible for

Answer 23

establishing and maintaining an effective ERM work in line with risk sub committee recommendations
that in detail targets and objectives within the board remit
there must training within those objectives having made
one crucial objective will be to improve with awareness in the organisation

Question 24

what is the aim of an internal audit according to the Institute of internal auditors

Answer 24

the aim of internal audit is to evaluate and contribute to the improvement of governance, risk management and control process using a systematic and disciplined approach.
there’s definition and Alliance the link between internal audit, governance and management of risk.

Question 25

Audit functions will include

Answer 25

Assurance that. Are adequately reported and managed
insurance that rests are correctly evaluate it
insurance risk management processes are effective

Question 26

audit functions will not include

Answer 26

accountability for risk management
changing risk management processes
setting risk management appetite

Question 27

the head of group compliance is responsible for

Answer 27

identifying and evaluating all rests that threatened to result in non-compliance period compliance activities or a subset of both audit and risk management activities cutting it fine