Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CPA Strategy & Governance > Ch1 Enterprise Risk Management (ERM) > Flashcards

Ch1 Enterprise Risk Management (ERM) Flashcards

1
Q

Risk inventories

A
  1. Strategic risks
  2. Operational risks
  3. Reporting risks
  4. Compliance risks
  5. Other categories: leadership, reputation, health and safety, firm value
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

ERM

A
  1. Identification
  2. Assessment
  3. Risk response
  4. Internal control activities
  5. Information and communication
  6. Monitoring
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Techniques to assess risks

A
  • benchmarking: external comparison to industry peers or other industries
  • probabilistic models: using past data and artificial intelligence to make predictions about future performance
  • sensitivity models: surveying the results of a number of variables to study the uncertainty of those inputs
  • scenario analysis: also referred to as “what-if” analysis, it describes the estimated outcome if a certain situation were to take place

(likelihood and impact - two key factors) - heat map

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Risk response

A

(Risk appetite and strategic goals)
* Avoidance — The company doesn’t take on the risk and forfeits the potential benefits. This is a good strategy when the benefits are small or infrequent, given the potential risks and costs.
* Reduction — The company takes the risk, but tries to reduce the total exposure to the risk. This is done by introducing controls or processes.
* Transferring — The company accepts the risk, but does not bear the entire risk on its own. The organization will transfer or share the risk with other parties. Common risk-sharing techniques include purchasing insurance products, pooling risks, engaging in hedging transactions, or outsourcing an activity.
* Acceptance — The company takes on the risk and accepts the potential consequences, as the company has evaluated that the potential benefits outweigh the costs.

Contingency plan - a formal process to understand and respond risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Contingency planning

A

Identify risks
Prioritize risks
Develop a plan
Maintain the plan

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Internal control actvities

A

Inherent risk + Control activities = Residule risk

examples of common control activities include:
* managerial review of information
* information processing controls over accuracy, completeness, and authorization of transactions
* enforcement of company policies including vacations, as having employees substitute in each other’s roles can assist in catching business irregularities
* physical controls that are designed to safeguard assets
* segregation of duties to ensure that no single individual initiates, authorizes, and processes a transaction

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CPA Strategy & Governance (8 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions