COSO

Question 1

What does COSO stand for?

Answer 1

Committee of Sponsoring Organisations

Question 2

What does COSO do?

Answer 2

Provides frameworks against which risk management and internal control systems can be assessed and improved

Question 3

What are the 8 components of the COSO framework?

Answer 3

Control Environment
Objective Setting
Event Identification
Risk Assessment
Risk Response
Control Activities
Info & Communication
Monitoring

Question 4

What does Control Environment do?

Answer 4

Establishes the tone of the org.

Question 5

What does Objective setting do?

Answer 5

Management needs to support the organizations mission and is consistent with it’s risk tolerance.

Question 6

Describe Event Identification

Answer 6

Organization must identify internal and external events that affect the the achievement of objectives

Question 7

What is Risk Assessment ?

Answer 7

The likelihood and impact of risk are assessed as well as how to manage them.

Question 8

What is Risk Response?

Answer 8

Mgmt should respond to risk realistically, taking into account cost of the impact.

Question 9

Describe the Control Activities?

Answer 9

The internal controls themselves, and polices & procedures.

Question 10

Describe the Information and communication component?

Answer 10

Data and info needs to be delivered timely to managemwent to ensure they can carry out duties.

Question 11

Describe monitoring?

Answer 11

Weaknesses should be reporting, assessed and their root causes corrected.

Question 12

Possible responses to risk?

Answer 12

Avoid or Reduce, Share or Accept