P3 - 1/2. Risk Management Flashcards

1
Q

What are the 2 main types of risk?

A
  1. Strategic (overall positioning)
  2. Operational (day to day)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the 5 main risks in IS/IT systems?

A
  1. Physical threats
  2. Virus infection
  3. Infrastructure failure
  4. Human error
  5. Business interruption
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the 5 additional risks brought on by operating overseas?

A
  1. Currency risk
  2. Cultural risk
  3. Transit risk
  4. Credit risk
  5. Political risk
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the 7 stages in CIMA’s risk management cycle?

A
  1. Establish RM group and goals
  2. Identify risk areas
  3. Assess scale of risk
  4. Develop risk response strategy
  5. Implement and allocate responsibilities
  6. Implement and monitor controls
  7. Review, refine and repeat
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the 3 main roles of a risk management group?

A
  1. Coordinate overall RM process
  2. Set out approach to RM
  3. Communicate risk appetite
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What 3 things should be assessed when identifying risk areas?

A
  1. Environment (PESTLE)
  2. Economic conditions
  3. Key stakeholders
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What 3 things can be evaluated when assessing the scale of a risk?

A
  1. Consequence
  2. Likelihood
  3. Controllability
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the 4 main categories of risk response?

A
  1. Avoid (high likelihood, high impact)
  2. Reduce (high likelihood, low impact)
  3. Transfer (low likelihood, high impact)
  4. Accept (low likelihood, low impact)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What does Portfolio theory suggest?

A

The best way to reduce risk is to diversify sources of income (market expansion or diversification)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Who should be involved in monitoring controls around risk management?

A

Internal audit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

According to COSO, what are the 5 key considerations of an effective RM framework?

A
  1. Governance and culture
  2. Strategy and objective setting
  3. RM Performance
  4. Review and revision
  5. Information, communication and reporting
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are the 3 elements of the ISO risk management framework?

A
  1. Leadership and Commitment
  2. Value Creation and Protection
  3. Risk Reporting Process
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are ISOs 3 underlying principles of effective RM?

A
  1. As an iterative process
  2. Part of governance and leadership
  3. Considers internal and external factors
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is an assurance map?

A

Identifies the main sources and types of assurance in the organisation, analyses the quality and determines action based on gaps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly