Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
21 Cards in this Set
- Front
- Back
The main difference between the COSO RM standard and the ISO 31000 standard is: |
They define risk differently |
|
RM standards share some common characteristics. List three. |
1) Adoption of an enterprise approach 2) Monitored treatment plans 3) Understanding of and accountability for defining risk appetite |
|
In order for the RM process to be implemented successfully, the standard should be selected based upon several important criteria. One of these is the concept of risk governance. What does risk governance mean in the context of a RM standard? |
Integration of the management principles governing the organization into the RM process. (Governance = Integration) |
|
What is the purpose of the Risk Maturity Model (RMM) developed by RIMS? |
To be used as a tool to provide periodic self-assessments using a consistent measuring tool containing best practices. (Risk Maturity Model = Tool) |
|
What are three essential attributes of the RMM model? |
1) An ERM based approach 2) Root cause discipline 3) Performance management |
|
In ISO 31000, the RM framework performs what function? |
Provides a structure by which to integrate the RM process into the organization |
|
After establishing the context, the ISO 31000 Process calls for what sequence of actions regarding risk, continually subject to communication and monitoring/review? |
1) Identification 2) Analysis 3) Evaluation 4) Treatment
(IAET) |
|
In ISO 31000, the process steps of identification, analysis, and evaluation fall under the general concept of: |
Risk Assessment |
|
Reference standards, measures, or expectations used in judging the significance of a given risk in context with strategic goals are known as: |
Risk Criteria |
|
In the risk assessment step, upon identifying risks, they need to be categorized in terms of what? |
Their impact on organization objectives |
|
COSO enterprise RM differs from other RM standards in that it does not address which issue? |
Root cause analysis |
|
The origin of the COSO standards is in which type of risk? |
Financial |
|
The COSO Framework is designed to help an organization achieve its objectives in which categories? |
1) Strategic 2) Reporting 3) Compliance
NOT Hazard |
|
What term refers to the amount of risk an organization bears before any actions are taken to alter it? |
Inherent risk |
|
The COSO Framework consists of eight interrelated components. Which of those deals with, among other issues, whether a risk is a negative risk or an opportunity risk? |
Event indentification |
|
Control activities in the COSO standard consist of two parts. The first is developing the policy that states what should be done. What is the second part? |
Creating the procedure to accomplish the policy |
|
What is risk-based capital? |
The amount of capital an insurer needs to support its operations given its risk characteristics |
|
Basel II and III apply to what type of industry? |
Banking |
|
Solvency II contains three supporting pillars. What are they? |
1) Financial requirements including adequate capitalization 2) High standards of RM and organizational governance 3) High levels of transparency for supervisors and the public
NOT underwriting standards that avoid adverse selection |
|
Basel II is a comprehensive set of reform measures to strengthen the regulation, supervision, and RM of the banking sector. What are its goals? |
1) Improve the banking sector's ability to absorb shocks from financial and economic stress 2) Improve RM governance 3) Strengthen banks' transparency and disclosure |
|
According to The Basel Committee, what is the fifth process of RM? |
Ensuring that an effective capital planning and monitoring program is in place |