RISK MANAGEMENT (prelims)

0.0(0)
studied byStudied by 3 people
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/19

encourage image

There's no tags or description

Looks like no tags are added yet.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

20 Terms

1
New cards

CONTROL

it is defined as the IT management policies, procedures, practices, and structures, which provide an acceptable assurance level that business goals will be met

2
New cards

CONTROL OBJECTIVES FOR INFORMATION AND RELATED TECHNOLOGY (COBIT)

it is a framework for the management and governance of enterprise IT. It was developed by the Information Systems Audit and Control Association (ISACA) to set reliable auditing standards as computes networks became more important in financial systems.

3
New cards

EVALUATION

it assesses the design to determine what is working and what might need to be redefined

4
New cards

EVENT IDENTIFICATION

the organization must identify internal and external events that affect the achievement of its objectives

5
New cards

EXTERNAL RISKS

these exposures that result form environmental conditions that the firm commonly cannot influence, such as the regulatory environment and market conditions

6
New cards

GOALS CASCADE

it shows how stakeholder drivers create stakeholder needs and those need define the enterprise’s goals

7
New cards

IMPROVEMENT

organizations should continuously look for ways to improve their ISO 31000 implementation

8
New cards

INCLUSIVE

for efforts to be successful, key stakeholders must be involved and their knowledge and view considered

9
New cards

INTEGRATED

the concepts of risk mitigation and identification should be integrated into all business processes

10
New cards

INTERNAL ENVIRONMENT

it establishes the tone of the organization, influencing risk appetite, attitudes towards risk management and ethical values

11
New cards

ISO 31000

it provides a set of principles and guidelines for the design and implementation of a risk management framework

12
New cards

MONITORING AND REVIEW

this step should take place during all stages of the implementation process. The goal is to assess the effectiveness of the process implementation and find any room for improvement.

13
New cards

RISK DRIVERS

are the fundamental, global, and domestic macroeconomic and industry factors that create risk

14
New cards

RISK GOVERNANCE

it is the process that ensures all company employees perform their duties in accordance with the risk management framework

15
New cards

RISK MANAGEMENT FRAMEWORK

it provides a process that integrates security, privacy, and cyber supply chain risk management activities into the system development life cycle

16
New cards

RISK TREATMENT

the purpose of this step is to choose and apply risk management options

17
New cards

MISMANAGED BUSINESS TRANSITIONS

change and the failure to manage it well is one of the major risks a company faces

18
New cards

INTERNAL FRAUD

employee theft, intentional misreporting of positions, and insider trading on an employee's own account

19
New cards

EXTERNAL FRAUD

robbery, forgery, and check kiting

20
New cards

CLIENTS, PRODUCTS, AND BUSINESS PRACTICES

fiduciary breaches, misuse of confidential customer information, money laundering, and sale of unauthorized products

Explore top notes

Explore top flashcards