Skip to content
GeoDataVision
Thread Options Tools
#475 - 01/18/01 05:25 AM Risk Assessment Guidelines
wwmike Offline
Junior Member
wwmike
Joined: Dec 2000
Posts: 30
walla walla, wa, usa
I am looking for some guidelines are how to
prepare/complete a risk assessment for
audit and compliance purposes. I would appreciate any suggestions or references.

Thank you.


Return to Top
General Discussion
#476 - 02/06/01 11:03 PM Re: Risk Assessment Guidelines
Dana Turner Offline

Platinum Poster
Dana Turner
Joined: Dec 2000
Posts: 543
Pipe Creek TX - U.S.
wwmike:

What type of risk assessment? And what departments or functions should be covered? If you can elaborate, perhaps I can guide you.

------------------
Dana Turner
Security Education Systems
danaturner@bankersonline.com
830-535-6500

[This message has been edited by Dana Turner (edited 02-06-2001).]

_________________________
Celebrating 42 entertaining years of crime . . .
danaturner@email.com

Return to Top
#477 - 02/07/01 01:56 PM Re: Risk Assessment Guidelines
De Vonne Offline
Member
Joined: Jan 2001
Posts: 84
The Institute of Internal Auditors; Statement on Internal Auditing Standards No. 9 discusses risk assessments.

Try www.theiia.org

[This message has been edited by De Vonne (edited 02-07-2001).]


Return to Top
#478 - 02/08/01 12:00 AM Re: Risk Assessment Guidelines
Anonymous
Unregistered

The ABA Bank Compliance magazine had an article about risk management in its January/February 2001 issue. The article is good. Their number is (800)BANKERS.

Return to Top
#479 - 02/08/01 12:20 AM Re: Risk Assessment Guidelines
JoAnne Offline
Platinum Poster
Joined: Feb 2001
Posts: 795
Michigan
I use 9 categories and assign point values to each audit area and auditable unit that I have determined to be worthy of auditing. The categories I use are Human Resource Risk, Reputation Risk, Regulatory/Legal Risk, Regulatory Requirements, Audit/Exam findings and timing, regulatory changes and and any changes in products/services. I addup the scores from each category to come up with a total Risk score.

This risk assessment seems to work well within my organization, generating higher scores for the more risky areas/regulations and lower scores for the less "human" dependant ones.

[This message has been edited by JoAnne (edited 02-07-2001).]

_________________________
Opinions posted are not necessarily those of my employer.

Return to Top
#480 - 02/08/01 12:46 AM Re: Risk Assessment Guidelines
wwmike Offline
Junior Member
wwmike
Joined: Dec 2000
Posts: 30
walla walla, wa, usa
Thanks to everyone for all of the good suggestions! I'm glad I asked.

Just keep on posting if there are more.

Thanks again.


Return to Top
#481 - 02/09/01 05:02 AM Re: Risk Assessment Guidelines
Anonymous
Unregistered

I use a risk assessment model based on 13 factors for each audit area. I rate each of the 13 areas 1,2, or 3 with 3 being highest risk then add them up and divde by 13 to get a total rating. I then reassess the risk areas each time I audit the area. My categories are:

--Financial Exposure (asset accountability)
--Average Transaction Value
--Liquidity of Assets
--Annual Operating Expense
--Contribution to Revenue
--Last Audit Opinion
--Stability of Data Processing Operations
--Complexity of Operation
--Compliance with Applicable Regulations
--Management Team
--Staffing (turnover/effectiveness)
--Potential Adverse Publicity
--Inherent Business Risk

This system works well and can be tailored to fit your size financial institution. Good luck!


Return to Top