Question

In the ERM function of a company, risk assessment reviews (RARs) will: Report on risk-related examinations...

  1. In the ERM function of a company, risk assessment reviews (RARs) will:
  1. Report on risk-related examinations in key enterprise areas
  2. Make recommendations for improving internal controls
  3. Make recommendations for reducing risk likelihood
  4. All of the above
  1. An effective risk management function in a large company would be headed by a ____, an executive whose responsibility is to ascertain that enterprise risks are properly understood and translated into meaningful business requirements, objectives, and metrics.
  1. Chief audit executive (CAE)
  2. Chief information officer (CIO)
  3. Chief risk officer (CRO)
  4. Chief financial officer (CFO)
  1. An annual risk assessment action plan would:
  1. Assign responsibilities for the coverage of various risk events
  2. Estimate the enterprise risk group’s time to correct and review the risk event
  3. Include time and budget estimates for the correction
  4. All of the above
  1. The purpose of distributing risk assessment guideline signoff form is to:
  1. Catch an employee who signed the form for some financial transaction that resulted in a risk-related failure
  2. To encourage all stakeholders to acknowledge that they have considered potential risks when authorizing and approving any financial transaction above some designated value
  3. Comply with the requirements of the Sarbanes-Oxley Act (Sox) of 2002
  4. None of the above
  1. The risk management function in a company must cover:
  1. Only a single unit
  2. Top management only
  3. All units and levels
  4. Only external events
0 0
Add a comment Improve this question Transcribed image text
Answer #1

1. d

2. b

3. d

4. d

5. c

Risk management is a systematic process of identifying and assessing company risks and taking actions to protect a company against them. Some risk managers define risk as the possibility that a future occurrence may cause harm or losses, while noting that risk also may provide possible opportunities. By taking risks, companies sometimes can achieve considerable gains. However, companies need risk management to analyze possible risks in order to balance potential gains against potential losses and avoid expensive mistakes. Risk management is best used as a preventive measure rather than as a reactive measure. Companies benefit most from considering their risks when they are performing well and when markets are growing in order to sustain growth and profitability.


Add a comment
Know the answer?
Add Answer to:
In the ERM function of a company, risk assessment reviews (RARs) will: Report on risk-related examinations...
Your Answer:

Post as a guest

Your Name:

What's your source?

Earn Coins

Coins can be redeemed for fabulous gifts.

Not the answer you're looking for? Ask your own homework help question. Our experts will answer your question WITHIN MINUTES for Free.
Similar Homework Help Questions
  • The Committee of Sponsoring Organizations’ enterprise risk management (COSO ERM) framework calls for a formal and...

    The Committee of Sponsoring Organizations’ enterprise risk management (COSO ERM) framework calls for a formal and comprehensive approach to risk-based thinking and encourages internal auditors to give much more attention to risk management when planning for and performing many of their reviews. T/F The chief audit executive should establish risk-based plans to determine the priorities of the internal audit activity, consistent with the organization’s goals. T/F Internal audit departments always have sufficient time and resources to cover all their auditable...

  • Auditing Related Party Transactions ABSTRACT As part of the risk assessment of a client firm, auditors...

    Auditing Related Party Transactions ABSTRACT As part of the risk assessment of a client firm, auditors are required to evaluate the risks of material misstatement associated with related party transactions. Related party transactions may be evaluated at a higher risk of material misstatement as they may not occur under normal market settings or they may be motivated by an intent to perpetrate fraud. This case presents information about the related party transactions and other facts surrounding the audit of a...

  • Auditing Related Party Transactions ABSTRACT As part of the risk assessment of a client firm, auditors...

    Auditing Related Party Transactions ABSTRACT As part of the risk assessment of a client firm, auditors are required to evaluate the risks of material misstatement associated with related party transactions. Related party transactions may be evaluated at a higher risk of material misstatement as they may not occur under normal market settings or they may be motivated by an intent to perpetrate fraud. This case presents information about the related party transactions and other facts surrounding the audit of a...

  • Which role has the PRIMARY responsibility for the documentation of control implementation? Systems security engineer Control...

    Which role has the PRIMARY responsibility for the documentation of control implementation? Systems security engineer Control assessor Information System Owner (ISO) Information Owner/Steward When making determinations regarding the adequacy of common controls for their respective systems, Information System Owner (ISO) refer to the Common Control Providers’ (CCP) Privacy Impact Assessment (PIA) Business Impact Analysis (BIA) Authorization Packages Vulnerability Scans An organization-wide approach to identifying common controls early in the Risk Management Framework (RMF) process does which of the following? Considers...

  • Review the Audit report (found in the 10-K) for the following two companies. Highlight or summarize...

    Review the Audit report (found in the 10-K) for the following two companies. Highlight or summarize differences between the reports (other than the name of Company, Audit Firm, Financial statement period covered). Note: 1. Each Company may have two audit reports (one opinion on financial statements and one for audit of internal controls) or the two opinions may be combined into one report. 2. You are not required to review the entire 10-K. Find the audit report in the 10-K...

  • Internal controls can be categorized using the following framework: 1. Control environment 2. Risk assessment 3....

    Internal controls can be categorized using the following framework: 1. Control environment 2. Risk assessment 3. Information and communication 4. Control activities 4.1. Authorization 4.2. Performance reviews 4.3. Information-processing controls 4.3.1. IT general controls 4.3.2. IT application controls 4.3.3. IT-dependent manual controls 4.4 Physical controls 4.5 Segregation of duties 5. Monitoring Following is a list of controls implemented by Waterfront, Inc. a. Management established a code of conduct that includes rules regarding conflicts of interest for purchasing agents. b. Waterfront's...

  • OPS Practice quiz 2. The benefits of risk pooling depend on the behavior of demand from...

    OPS Practice quiz 2. The benefits of risk pooling depend on the behavior of demand from one market relative to demand from another. True False 3. What is Supply Chain Management? A set of approaches utilized to efficiently integrate suppliers, manufacturers, warehouses and stores so that merchandize is produced, distributed at the right quantities, to the right locations and at the right time in order to minimize system wide costs while satisfying service level requirements. The management of the flow...

  • Read the article bellow an answer the question at the bottom. Broadcom Completes Acquisition of Symantec...

    Read the article bellow an answer the question at the bottom. Broadcom Completes Acquisition of Symantec Enterprise Security Business November 4, 2019 SAN JOSE, Calif., Nov. 4, 2019 /PRNewswire/ -- Broadcom Inc. (NASDAQ: AVGO), a global technology leader that designs, develops and supplies semiconductor and infrastructure software solutions, today announced that it has completed its acquisition of the Enterprise Security business of Symantec Corporation (NASDAQ: SYMC). Symantec's Enterprise Security business will now operate as the Symantec Enterprise division of Broadcom...

  • LO 10-6, 10 10-36 Based on an assessment of audit risk, the auditors are concerned with...

    LO 10-6, 10 10-36 Based on an assessment of audit risk, the auditors are concerned with the following two risks: 1. The risk that that the client might be making duplicate payments to vendors. 2. The risk that the client's accounting clerk might be making unauthorized payments to himself. a. Assuming that the client has a manual accounting system, describe how the auditors can design a test to identify the duplicate payments and unauthorized payments. b. Assuming that the client...

  • 1. Analyze the major challanges USB faced in the last 5 years, in your opinion, what were the cru...

    1. Analyze the major challanges USB faced in the last 5 years, in your opinion, what were the crucial factors in the banks downturn? 2. what are the main triggers to change the banks approach to communication and what is different today regarding the dealings and relationship to its share-and stakeholders? 3. How would you evaluate the constant replacement of the banks chairman and CEO? 4. in view of the future strategy of USB, what are your suggestions in order...

ADVERTISEMENT
Free Homework Help App
Download From Google Play
Scan Your Homework
to Get Instant Free Answers
Need Online Homework Help?
Ask a Question
Get Answers For Free
Most questions answered within 3 hours.
ADVERTISEMENT
ADVERTISEMENT