CH 2

Question 1

Why should risk management include measurements of benefits

Answer 1

This should be done so as to justify the use of resources and budgets

Question 2

An large organizations common objectives are shared to various stakeholders and other people with interest in the organization’s performance including

Answer 2

-Shareholders
-Employs
-Customers
-Suppliers
-Banks
-Trade Unions
-Relevant government departments

Question 3

What is a stakeholder

Answer 3

This is any individual/group/organization that can affect or be affected or perceive itself to be affected by a risk

Question 4

What happens after objectives are set out

Answer 4

The organization will develop strategies and plans to demonstrate those objectives can be met

Question 5

Strategic plans should not be adopted without considering risks involved, published plans only indicate some of the risks assessed because

Answer 5

The organization will not want to highlight its perceived weaknesses thus attempt to limit public discussions to well known documented concerns and usually only broad categories of risk will be mentioned

Question 6

in pursuing their objectives, orgs will have a wide range of dependancies including

Answer 6

It could be other organizations, resources or markets they rely on

Question 7

Why will the continuation of the dependencies be crucial

Answer 7

It will be crucial to avoid losses, weaknesses emerging and some cases survival of the organization

Question 8

What does risk have the potential of threatening

Answer 8

Risks are anything with the potential to threaten the operations, assets and other responsibilities of an organization

Question 9

What are some of the risks that the directors of an organization will consider

Answer 9

-market factors and trends
- potential competition moves
-possible technological change
-developing the need of the customer they serve

Question 10

How can government affect achievement of a business plan

Answer 10

-They can take over business
Introduce regulatory legislation
impose financial controls
change taxation requirement

Question 11

In what things do employees have legal rights on

Answer 11

-Maternity leave
-Sick pay PEnsions
Dismissal procedures
Minimum Pay
Holiday entitlement

Question 12

How do organizations reduce the risk of costs arising from employee disputes

Answer 12

Careful attention to employment contract, rules of conduct, written clarification of responsibilities and suitable management training

Question 13

What legal obligations do organizations have in respect to hiring

Answer 13

They must obtain and examine appropriate documents from prospective employees because the Immigration Act 2016 made it unlawful to employ anyone not legally entitled to wok in the UK

Question 14

Anything that dissatisfies the employees is viewed as

Answer 14

It is viewed as a risk that threatens efficient operation and achievement of objectives

Question 15

What does systematic racism affect

Answer 15

the individual performance and threaten achievement of organization objectives

Question 16

what is a sound basis for effective assessment of racial discrimination risk

Question 16

what is a sound basis for effective assessment of racial discrimination risk

Answer 16

The Race at Work Charter

Question 17

What other risk regarding employees must the organisation consider

Answer 17

Behavior of employees, thus risk of fraud and general negligence should be considered and precautions taken against willful damage being caused by is gruntled staff

Question 18

Why are organizations and their suppliers interdependent

Answer 18

This is because each must have confidence that the other party will perform

Question 19

What does the organization require from the supplier

Answer 19

Good quality, on-time deliveries from the supplier

Question 20

What does the supplier require from the organization

Answer 20

They require dependable payment from the organization

Question 21

With supplier and Organization where does the risk lie in respect of perceived defaults

Answer 21

It will depend on the wording of the legal agreement between the two, thus organization must not assume that risk is automatically subcontracted with a task

Question 22

Where does risks arise in the supply chain

Answer 22

Where goods and services need to be competetively priced

Question 23

What does the Modern Slavery Act 2015 do

Answer 23

They make large organizations legally responsible for ensuring that slavery or human trafficking are not taking place in their organization or any of their supply chains

Question 24

What are distributors known as

Answer 24

They are in effect wholesale customers

Question 25

What could damage the distributor

Answer 25

Failure of one or more source of supply could damage the distributor in various ways, and can lead to the distributor failing altogether if an adequate replacement supplier is not found

Question 26

What happens to an org if they fail to satisfy the statutory and other requirements set by regulators

Answer 26

This could lead to imposing of substantial fines, restricting business or closing down a business altogether

Question 27

What would an adverse regulator comment do to an organization

Answer 27

It will invariably damage reputation

Question 28

What can the media be viewed as

Answer 28

It can be viewed as wholesale distributor of the reputation of an organization and its officials

Question 29

Why are Private investors more exposed to devastating loss than stock market investors

Answer 29

This is because stock market investors have more opportunity to spread their investment, thus their risks across different companies and markets

Question 30

How can investors who have non monetary stake in an organization be at risk

Answer 30

This is because they stake their professional and personals reputations alongside that of an organization, they can too suffer loss together with any damage to the organization itself. It's difficult and long process to rebuild this type of asset

Question 31

To whom to banks and investor finance companies have interest with

Answer 31

They have interest in those organizations they have provided money too, and if the money is perceived to be a greater risk due to unexpected downturn in the org's strength then the cost of borrowing can increase drastically

Question 32

What happens if financier believe their is sufficient cause for concern with an organization

Answer 32

They can demand that assets that are security for loans be sold immediately and loans repaid

Question 33

Under relationship between financier/bank and an organization(borrower) the decision to sell mortgaged asset lies on

Answer 33

The decision will be based on the interest of the financier and not the long term interest of the organization and its other stakeholders

Question 34

Who are quoted shareholders

Answer 34

They come to an organization through stock markets in various forms

Question 35

What does failing stock values lead to

Answer 35

It will increase the cost of borrowing capital

Question 36

How does the failing stock values lead to increased cost of borrowing capital

Answer 36

If lenders perceive that relationship between total borrowings and net value of the company is narrowing they will demand higher interest rates and security

Question 37

What else can affect shares

Answer 37

Single points of influence like credit rating agencies

Question 38

Public and statutory interest regarding the quality of the environment will cover a very wide range including

Answer 38

It will cover pollution of physical environment, renewable sources of materials, water disposal, energy ,and water conservation, waveband utilization and fair trade issues

Question 39

What are some examples of individual organization having their own stakeholder pressures

Answer 39

- Political organisation have their own dependencies to protect -Industry pressure groups/ industry associations

Question 40

Who else are a form of stakeholders

Answer 40

Competitors, if an org is weakened by an unexpected event then their might be competitors who will see this as an opportunity for themselves

Question 41

AN organisation needs to consider the below that it needs to keep safe from damage and loss

Answer 41

-Safety of People -Safety of assets -Revenue and cash flows -Legal obligations -Delivery of promised goods and services

Question 42

What does safety of people entail

Answer 42

Organisation needs to ensure that they provide employees with a safe working environment and provide them with the necessary resources they need to carry out their duties effectively

Question 43

Main operational objective of an organisation is

Answer 43

To deliver the services and goods it has promised

Question 44

One of the challenges of Risk Exposure are

Answer 44

The identification of new types of risk

Question 45

How might impact of a present risk change

Answer 45

They might change as circumstances change, and new risks and types of risks continually emerge

Question 46

What are some of the risks present today that would not have been recognized 100years ago

Answer 46

-New Health Risk i.e Covid -Technology Risks-Cyber crime -Developments in Genetic engeering and stem cell research -Effects of high density electromagnetic fields and solar flares -Increase risk and changing methods of terrorism

Question 47

What is the emerging risks with the highest profile

Answer 47

Climate change

Question 48

What must risk managers incorporate in their reports to directors

Answer 48

specific climate change analysis due to the adverse effect climate change has to the world

Question 49

What implications have most far-reaching implications

Answer 49

Decisions taken to address climate change

Question 50

The institute of Risk Management established a special interest working group in 2019 published a guidance report on

Answer 50

The guidance report is focused solely on climate change to help risk managers see that climate change risk mitigation measures are built into their organization's business plans

Question 51

Due to uncertainties in climate changed, organizations are recommended to look at climate change implications in how many horizons

Answer 51

In 3 horizons, which are short term 1-3 years, medium term 3- 10 years and longer term over 10 years

Question 52

What can happen due to lack of management control and ineffective administration

Answer 52

This can bankrupt large companies if policies and procedures designed in head office are not implemented abroad

Question 53

What are global risks

Answer 53

These are events and trends that have potential global impact

Question 54

What do global risks affect

Answer 54

They affect organizations with international operations and home organizations with international suppliers or market

Question 55

Global risks are divided into 6 general categories, which are

Answer 55

-Global economic risks -Global environmental risks -Global social risks -Global technology risk -Geopolitical Risks -Political Risks

Question 56

What are global economic risks

Answer 56

These are financial issues that affect a particular market sector or global trading environments

Question 57

What are some examples of global economic risks

Answer 57

- Oil price fluctuations -reduction in Chinese economic growth -the world banking crisis

Question 58

What does an attempt to manage global economic risk lead to

Answer 58

This causes government to alter their fiscal policies, organizations to reassess markets and price structures and consumers to alter their spending pattern

Question 59

What are global environmental risks

Answer 59

These can be natural phenomena, weather related or consequences of man made activity

Question 60

What are some examples of global environmental risks

Answer 60

Earthquakes, Air pollution Biodiversity loss Hurricanes, Tsunamis Floods d Draught They have the impact of destroying assets and economic implications that can last for years

Question 61

What are global social risks

Answer 61

They arise from the ease with which people and ideas move around the world

Question 62

How are organizations affected by the global social risks

Answer 62

They may be affected by local government regulations attempting to mitigate various social risks by imposing penalties or censorships

Question 63

What are global technology risks

Answer 63

This describes events like internet or satellite failure leading to the breakdown of commercial distribution and customer service facilities

Question 64

What are examples of global technology risks

Answer 64

-Data fraud on a global scale -Data loss on a global scale -technological risks from new developments or -technological risks from better understanding of current developments

Question 65

Geopolitical Risks

Answer 65

This arises when several nations disagree and in return causes tension and the risk of armed conflict, where a particular nation's philosophy and behavior is seen as a general threat to others

Question 66

How are geopolitical risks managed

Answer 66

They are are usually addressed by diplomacy, reinforced by threats of economic or physical intervention, using either sanctions will affect any organisation with operations in the concerned area

Question 67

What are political risks

Answer 67

These are risks that stem from political activity by governments, but are not likely to provoke widespread immediate and united opposition

Question 68

Political issues mainly arise from

Answer 68

They arise from economic or social decisions, at times the effect are local and at times repercussions are felt in particular activities/b'ness sectors around the world

Question 69

How is a single point of failure created

Answer 69

Its created by concentrating information in a central computer system with a common communication system servicing both internal and customer -facing staff

Question 70

What does concentration of data also cause

Answer 70

This causes communication problems e.g loss of communication with call center could deprive an organisation of its customer information

Question 71

What are first line defense for cyber crime

Answer 71

Using the latest operating system, installing security software from a reputable source, making sure available security related software updates are installed, and encrypting data streams

Question 72

Why is staff training essential in cyber crime

Answer 72

This is essential as malicious software is often sent as attachments to seemingly harmless messages or emails

Question 73

New technology offers unlimited opportunities like

Answer 73

-flexible operation and application -speed of data sorting and distribution -worldwide connectivity through internet and mobile phone networks

Question 74

What is the downside of new technology

Answer 74

- the need for increased physical security -Protection from human interference

Question 75

Terrorrst risk identification, assessment and prevention is the responsibility of

Answer 75

This is the responsibility of the police and intelligence services, sifting information from a variety of UK and overseas sources

Question 76

What do risk professionals need to identify emerging risks

Answer 76

-Knowledge -Imagination

Question 77

Risks professional need to keep up to date with

Answer 77

-current development -proposals for change in their local environment -information about their stakeholders -their expectation -new legislation and regulations -current affairs -professional best practice guidelines

Question 78

The risk management process involves

Answer 78

-Establish the context -Identify risks -Analyze Risks -Evaluate Risks -Treat Risks

Question 79

Good Risk Management will avoid

Answer 79

It will avoid unpleasant surprises by recognizing and managing risks before unexpected damage occurs. And also examine business opportunities that lie in careful understood risk taking

Question 80

In the risk management process, what does the "establish the context entail"

Answer 80

This will assist with a creating a clear understanding of the objective, structure and culture of an organisation before identifying risks

Question 81

The process of establishing the context results in

Answer 81

The development of a risk management philosophy on which all future risk management decisions will depend

Question 82

In the risk management process, what does the "Identify Risks "entail

Answer 82

Here the organisation understands what threats there are, what might make it more difficult to achieve stated objectives or prevent achieving them altogether

Question 83

In the risk management process, what does the "Analyze Risks "entail

Answer 83

This entails understanding the potential within those threats for damage to the organisation and its stakeholders

Question 84

What are the three questions asked during analyze risks in the risk management process

Answer 84

-Could it happen? -How bad would the loss/damage be? -How often could it happen?

Question 85

In the risk management process, what does the "Evaluate Risks "entail

Answer 85

This decides what risk levels (single and cumulative) are acceptable and thus identify those risks that are at a level or frequency that are unacceptable to the organisation

Question 86

In the risk management process, what does the "Treat Risks "entail

Answer 86

This entails steps that must be taken to control or limit the impact of those risks deemed unacceptable

Question 87

Under Treat risks in the risk management process what are some appropriate actions that may be appropriate

Answer 87

-reduce likelihood/frequency -reduce impact ,whether it's human/operational/financial -transfer the risks to another organisation -prepare for the incident by continuity planning

Question 88

What are some of the on going activities at all stages of risk management process

Answer 88

-Monitor and Review -Communicate

Question 89

What does monitoring and reviewing entail in the risk management process

Answer 89

This involves updating and maintaining the agreed risks levels, risk analysis and evaluation a the organisation changes and evolves

Question 90

Risk management procedures are essential ingredient of

Answer 90

Essential ingredient of effective quality control

Question 91

Risk management procedures are assessed for

Answer 91

They are assessed for quality and quality control procedures assessed for risk

Question 92

Information on risk and risk changes is essential for

Answer 92

It's essential for a wide range of planning, investment and management activities

Question 93

Communication of risk must be

Answer 93

-properly organized -effectively controlled

Question 94

What is the highest level of any organisation

Answer 94

The board of directors, who has legal responsibilities for the welfare of their organisation and its stakeholders

Question 95

What does the directors' statement of risk philosophy define

Answer 95

IT defines the different levels of perceived threat, likelihood and impact of each requiring different responses, this statement can embrace how risk is monitored and reported

Question 96

The directors' statement of risk needs to be communicated through

Answer 96

It needs to be issued formally and communicated across the organisation as a base point for individual risk work

Question 97

The organisation structure is also described as

Answer 97

The risk architecture of an organisation

Question 98

The risk architecture of an organisation defines

Answer 98

This specifies the roles and responsibilities of key people involved together with communication and risk reporting structure

Question 99

Why are anecdotes in informal discussions dangerous

Answer 99

They are dangerous as they can miss key exposures

Question 100

Who are best able to understand the threats anecdotes carry

Answer 100

Individual function Managers

Question 101

How does process of identifying risks starts

Answer 101

The debate starts with clear objectives, with a definition of the tasks and contributions from all those that can add to the debate

Question 102

When do we decide on risk levels

Answer 102

Once risks are thoroughly understood then we decide on which risk levels whether single or cumulative are acceptable

Question 103

Decision on acceptability must be in line with

Answer 103

The must be in line with risk appetite and risk tolerance levels set by senor management of the organisation