RAM Configuration Flashcards

1
Q

The RAM initiation guided set ups are available on the Risk Workspace via which 2 playbooks?

A

one for the risk manager to create a number of assessment instances, one for the risk specialist to create specific assessments

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Both RAM initiation guided set up playbooks follow the same lifecycle except…?

A

scope definition lifecycle stage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

If assessing a risk scoped with an entity, the primary RAM is set on the ______ record

A

entity class

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What field appears when the Assess field on an Assessment is set to Object?

A

Table

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the risk level without controls or mitigation actions that often assesses the impact if the risk occurs and the likelihood of it occurring?

A

Inherent risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the assessment of effectiveness of mitigating controls to prevent, detect, or correct the risk?

A

Control effectiveness

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is leftover risk after implementation of controls?

A

Residual risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which 2 tabs can be enabled on risk assessment instances for risk-based assessments?

A

Risk Response and Target Risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the three available assessment types that can be included on a RAM template?

A

inherent risk, control effectiveness, residual risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

The rollup configuration, Business rules and validation, risk response configurations, and reference information sections only appear if the Assess field has the value _____?

A

Risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What three Business rules are available in the RAM configuration?

A

mandate final comment, residual score lower than inherent, automatically create issue

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are the two options for automatically creating an issue on a RAM configuration?

A

on breach of appetite and on breach of tolerance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What 4 options are available under reference information on a risk assessment?

A

show related risk events, show related risk indicators, show open issues, show previous assessment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

The Other Configurations tab on a risk assessment contains what 6 fields?

A

Advance reminder, Overdue reminder, Risk identification, Copy previous responses, Allow override of results, and Configure section terminology

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What 2 options are under Risk Response configurations on a risk assessment?

A

Allow single risk response and Risk response is required

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What field appears under Other Configurations of an assessment when Object is selected from the Assess field?

A

Update assessment results to source record

17
Q

Which RAM is included in the baseline?

18
Q

The primary RAM controls the lifecycle of the _____ linked to the entity

19
Q

What is the Advanced Risk Assessment lifecycle?

A

Ready to assess, Assessment types, Respond (optional), Awaiting approval (optional), Monitor

20
Q

Which role is required to initiate an assessment and assign the assessor?

A

sn_risk_advanced.ara_creator

21
Q

Which role is required to assess?

A

sn_risk_advanced.ara_assessor

22
Q

Which role is requiured to create controls and add controls ad-hoc from library during control assessment state?

A

sn_compliance.user

23
Q

Which role is required to approve an assessment?

A

sn_risk_advanced.ara_approver

24
Q

The risk assessment is automatically moved into the _____state after it is approved

25
Q

As of the March 2022 store release, sn_grc.business_user role must be granted what 4 roles for advanced risk related actions?

A

sn_risk_advanced.ara_creator/reader/approver/assessor

26
Q

What is risk record workflow and what causes it to update?

A

Draft, Assess, Respond, Monitor, Retired; modifications to the entity or primary RAM

27
Q

The states on the risk record and the _________ record are kept in sync

28
Q

Once the risk response task is closed, the risk is automatically moved into the ______ state