Section 9.81 Risk Management

Question 1

Risk Management

IATMR

Answer 1

A process that involves risk…

• Identification
• Analysis
• Treatment
• Monitoring
• Reporting

To ensure organisation obejctives are achieved in a manor consistent with its risk apetite.

Question 2

Risk Management Lifecycle

Risk Identification

Answer 2

Recognising potential risks that could impact organisations objectives

Goal is to create a comprehensive risk list based on events hindering organisation objectives

Question 3

Risk Management Lifecycle

Risk Analysis

Answer 3

Analyse the likelihood and impact of the mentioned risks

● Qualitative e.g Catagories or Quantitative methods e.g numerical values

As a result of the analysis a prioritised list is formed based on the severity of the risk. This guides the risk treatment

Question 4

Develop strategies

Risk Treatment

Answer 4

Developing strategies to manage the identified risks…

○ Avoidance
○ Reduction
○ Sharing
○ Acceptance

Goal is to reduce potential impact to an acceptable level

Question 5

Risk Monitoring

Answer 5

● Ongoing process tracking the identified risks

● Monitor residual risks, identify new risks, and review risk management effectiveness

This ensures dynamic responsiveness to organizational changes

Question 6

Risk Reporting

Answer 6

● Communicating risk information and effectiveness of risk management to stakeholders

● Various forms:

○ Dashboards
○ Heat Maps
○ Detailed Reports

● Crucial for accountability and informed decision-making