...Assignment 2: Organizational Risk Appetite and Risk Assessment Due Week 4 and worth 70 points Imagine you have just been hired as an Information Assurance Officer and the leader of business impact analysis (BIA) and risk assessment team for a video game development company. The organization network structure is identified in the network diagram below and specifically contains: •2 firewalls •3 file servers •1 Web / FTP server •1 wireless access point (WAP) •1 exchange email server •100 desktop / laptop computers •1 Network Intrusion Detection System (NIDS) •In-house PKI environment •2 Windows 2008 Active Directory Domain Controllers (DC) •VoIP telephone system Description: Network The Chief Information Officer (CIO) has seen reports of malicious activity on the rise and has become extremely concerned with the protection of the intellectual property and highly sensitive data maintained by your organization. As one of your first tasks with the organization, the CIO requests your help. Write a three to five (3-5) page paper in which you: 1.Conduct an organizational business impact analysis (BIA) and determine which information assets need to have a risk assessment performed. 2.Conduct an organizational risk assessment and provide an initial report that includes the following: 1.Identify information assets and prioritize identified assets. 2.Define risks and prioritize the risks. 3.Identify the critical asset(s) and its associated...
Words: 539 - Pages: 3
...must be completed, signed and attached to each assignment you submit within the Faculty of Business and Law. If submitting online, this form must be completed and submitted with your assignment. Last NamePlease use block letters, and enter your name as it appears on your Deakin student card | First Name | Student ID | Li | Ke | 900335188 | Unit code | Unit name | Campus | Lecturer/Tutor/Unit Coordinator | MAF754 | Enterprise Risk Management | | Lecturer: David SewellPeter | | | | Tutor: | Assignment number / title | Due date | Assignment 2: A research paper of enterprise risk management for Sinomaster(SMT) group | 25 May 2012 | If this assignment has been completed by a group or team:1. Each student in the group must complete and sign a separate form;2. The assignment will be returned to the student in the group nominated below.*This assignment was completed in a group or team: No (circle or delete as necessary)The assignment should be returned to the student named on this form: No (circle or delete as necessary) | Plagiarism and Collusion Plagiarism occurs when a student passes off as the student’s own work, or copies without acknowledgement as to its authorship, the work of another person. Collusion occurs when a student obtains the agreement of another person for a fraudulent purpose with the intent of obtaining an advantage in submitting an assignment or other work. Work submitted may be reproduced...
Words: 3717 - Pages: 15
...换一个你的 School of Management, University of Glamorgan Research on Internal Audit Participate in Risk Management-Based on the ERM Framework of COSO By: Weichen Zhu Candidate no: 学号 September 2012 Supervised by: 你导师的名字 The dissertation is submitted as part of the requirement for the award of Masters of Science: 你专业的名字 Declaration This Dissertation has been prepared on the basis of my own work and that where other published and unpublished source materials have been used, these have been acknowledged. Word Count: Student Name: __________________ Signature: ______________________ Date of Submission:______________ Acknowledgement This is my first time to go aboard for studying. During different campus life in the UK, it is wonderful with deep impression. I learned how to use my internal power to make things happen and how to live my own life. All efforts contribute to my growth, but I cannot forget people who encourage and help me. Probably, I am not happy to study in my whole postgraduate time without support. Firstly, I would like to thank my supervisor 你导师的名字. He helps me develop the ideas and complete this dissertation. Especially, when I make a survey in China, I communicate with him through email. Sometimes, I am afraid that my timetable could have bad effects on him. However, he usually gives me feedback as soon as possible. Therefore, I only use 20 days to finish my survey. This kind of strong professional ethic is worth to learn...
Words: 20009 - Pages: 81
...Risk Management Guidelines for Commercial Banks & DFIs. Table of Contents Page No. Introduction Defining Risk Risk Management Board & Senior Management oversight Risk Management Framework Integration of Risk Business Line Accountability Risk Evaluation / Measurement Independent Review Contingency Planning 1 1 2 3 3 4 4 4 4 5 5 7 8 8 9 9 10 10 13 14 15 15 17 17 18 18 18 19 20 20 21 21 21 22 24 24 24 25 Managing Credit Risk Components of Credit Risk Management Board & Senior Management oversight Organization Structure Systems and Procedures Credit origination Limit setting Credit Administration Measuring Credit Risk Internal Risk Rating Credit Risk Monitoring & Control Risk Review Delegation of Authority Managing Problem Credits Managing Market Risk Interest Rate Risk Foreign Exchange Risk Equity / commodity price Risk Element of Market Risk Management Board and Senior Management Oversight Organization Structure Risk Management Committee ALCO Middle Office Risk Measurement Repricing Gap Models Earning at Risk &Economic Value of Equity Models Value at Risk Risk Monitoring Risk Controls Audit Risk limits 25 27 28 28 30 30 30 31 31 33 34 34 35 36 37 37 38 38 38 39 39 39 Managing Liquidity Risk Early Warning Indicators Board and Senior Management Oversight Liquidity Risk Strategy and Policy ALCO/ Investment Committee Liquidity Risk Management Process MIS Liquidity Risk Measurement & Monitoring Contingency Funding Plan Cash Flow Projections Liquidity Ratios...
Words: 18341 - Pages: 74
...Risk Management Guidelines for Commercial Banks & DFIs. Table of Contents Page No. Introduction Defining Risk Risk Management Board & Senior Management oversight Risk Management Framework Integration of Risk Business Line Accountability Risk Evaluation / Measurement Independent Review Contingency Planning 1 1 2 3 3 4 4 4 4 5 5 7 8 8 9 9 10 10 13 14 15 15 17 17 18 18 18 19 20 20 21 21 21 22 24 24 24 25 Managing Credit Risk Components of Credit Risk Management Board & Senior Management oversight Organization Structure Systems and Procedures Credit origination Limit setting Credit Administration Measuring Credit Risk Internal Risk Rating Credit Risk Monitoring & Control Risk Review Delegation of Authority Managing Problem Credits Managing Market Risk Interest Rate Risk Foreign Exchange Risk Equity / commodity price Risk Element of Market Risk Management Board and Senior Management Oversight Organization Structure Risk Management Committee ALCO Middle Office Risk Measurement Repricing Gap Models Earning at Risk &Economic Value of Equity Models Value at Risk Risk Monitoring Risk Controls Audit Risk limits 25 27 28 28 30 30 30 31 31 33 34 34 35 36 37 37 38 38 38 39 39 39 Managing Liquidity Risk Early Warning Indicators Board and Senior Management Oversight Liquidity Risk Strategy and Policy ALCO/ Investment Committee Liquidity Risk Management Process MIS Liquidity Risk Measurement & Monitoring Contingency Funding Plan Cash Flow Projections Liquidity Ratios...
Words: 18341 - Pages: 74
...Credit Risk Management CHAPTER: ONE ORIENTATION TO THE REPORT CHAPTER-1 Orientation to the Report 1.1 THE AUTHORIZATION FACT Internship is a compulsory requirement for everybody pursuing a BBA degree at University of Dhaka. The Internship program includes organizational attachment period of 12 weeks and report writing period of 4 weeks. I am working with the Operations Divisions of IDLC Finance Limited. After consultation with my faculty advisor Mr. Md. Nazim Uddin Bhuiyan and my supervisor in the host organization Mr. Md. Abdul Hannan, I decided to work on the policies and practices of credit risk management and appraisal process of IDLC. I strongly believe that, this study will enrich my knowledge in the very crucial area of the financial institutions (FIs): Credit Risk Management. 1.2 OBJECTIVES OF THE REPORT • MAIN OBJECTIVE: The main focus of the report is on credit risk management practices and credit appraisal procedure of IDLC Finance Limited. • SPECIFIC OBJECTIVES: The specific objectives are: ❖ To look at the portfolio of sectors financed by IDLC ❖ To evaluate the norms and rules practiced in assessing the borrower ❖ To compare the credit policy of IDLC with the credit policy guideline for the financial institutions (non-bank) of Bangladesh Bank and to identify the extent to which IDLC follows this guideline. ❖ To compare the credit risk management practices of IDLC Finance Limited with that of Industrial Promotion and Development Company...
Words: 20597 - Pages: 83
...pursuing a BBA degree at University of Dhaka. The Internship program includes organizational attachment period of 12 weeks and report writing period of 4 weeks. I am working with the Operations Divisions of IDLC Finance Limited. After consultation with my faculty advisor Mr. Md. Nazim Uddin Bhuiyan and my supervisor in the host organization Mr. Md. Abdul Hannan, I decided to work on the policies and practices of credit risk management and appraisal process of IDLC. I strongly believe that, this study will enrich my knowledge in the very crucial area of the financial institutions (FIs): Credit Risk Management. 1.2 OBJECTIVES OF THE REPORT • MAIN OBJECTIVE: The main focus of the report is on credit risk management practices and credit appraisal procedure of IDLC Finance Limited. • SPECIFIC OBJECTIVES: The specific objectives are: ❖ To look at the portfolio of sectors financed by IDLC ❖ To evaluate the norms and rules practiced in assessing the borrower ❖ To compare the credit policy of IDLC with the credit policy guideline for the financial institutions (non-bank) of Bangladesh Bank and to identify the extent to which IDLC follows this guideline. ❖ To compare the credit risk management practices of IDLC Finance Limited with that of Industrial Promotion and Development Company of Bangladesh Limited, as a sample financial institution, to get an idea of the common deviations of credit risk management practices of the FIs from the central bank guideline. ❖ To...
Words: 20723 - Pages: 83
...you should rely. Melbourne Business School reserves the right to change course content, lecturers, course time, examination procedures and other course details. To the extent permitted by law, Melbourne Business School specifically excludes any liability for any error or inaccuracy in, or omissions from, the information in this Guide and any loss or damage which you or any person may suffer. Last updated: 12 March 2010 1 2 MELBOURNE BUSINESS SCHOOL 2010 ACADEMIC CALENDAR ___________________________________________________________________ TERM 1 Thursday Monday Tuesday 14 January 18 January 26 January Orientation Evening – Weekend Mode and Standard Part Time World of Management Weekend Mode and Part Time (until Friday 22 January) Australia Day Academic School Holiday Carlton Campus on Sunday operations Monday Thursday Friday Monday Thursday Friday Friday Thursday Friday Sunday 9 February 18 February 26 February 8 March 18 March 19 March 2 April 15 April 16 April 25 April Commencement Term 1 Teaching (standard 12-week format subjects) Weekend Mode – Module 1a (until Monday 22 February) Elective Weekend Mode – Module 1a (until Sunday 28 February) CORE Labour Day Normal teaching day Weekend Mode – Module 1b (until Monday 22 March) Elective Weekend Mode – Module 1b (until Sunday 21 March) CORE Easter Break (until Monday 5 April) Carlton Campus on Sunday operations Weekend Mode – Module 1c (until Monday 19 April) Elective Weekend Mode – Module...
Words: 31716 - Pages: 127
...An Introduction to PMBOK Guide 5th Edition: Knowledge Areas, Processes and Process Groups One of the most discussed tables in the Project Management Institute’s (PMI), A Guide to the Project Management Body of Knowledge, (PMBOK® Guide) Fifth Edition is the “Project Management Process Groups and Knowledge Areas Mapping” matrix, found in Table 3-1 on page 61. This table maps the 47 processes of project management to their corresponding Knowledge Area, as well as to their corresponding Process Group. At first glance, the table seems quite complicated, so let’s break it down and uncover why a solid understanding of the relationships between processes, Process Groups, and Knowledge Areas is important to anyone preparing to take the Project Management Professional (PMP) ® exam. It’s so important, in fact, that we suggest you memorize this matrix and the relationships it calls out. Memorizing the table will prove to be a valuable asset to you during your PMP Exam. What is a “Process” – 47 processes of project management? Let’s start with the building blocks of the matrix - what is a process? At its most basic level, a process is simply a way of transforming an input into an output using proven tools and techniques. The PMBOK® Guide defines a process as “a set of interrelated actions and activities performed to achieve a specified set of products, results, or services.” Good processes-based on sound principles and proven practices-are extremely important for a project’s success....
Words: 20151 - Pages: 81
...Management of Information Security Third Edition This page intentionally left blank Management of Information Security Third Edition Michael Whitman, Ph.D., CISM, CISSP Herbert Mattord, M.B.A., CISM, CISSP Kennesaw State University ———————————————————————— Australia • Brazil • Japan • Korea • Mexico • Singapore • Spain • United Kingdom • United States Management of Information Security, Third Edition Michael E. Whitman and Herbert J. Mattord Vice President, Career and Professional Editorial: Dave Garza Executive Editor: Stephen Helba Managing Editor: Marah Bellegarde Product Manager: Natalie Pashoukos Developmental Editor: Lynne Raughley Editorial Assistant: Meghan Orvis Vice President, Career and Professional Marketing: Jennifer McAvey Marketing Director: Deborah S. Yarnell Senior Marketing Manager: Erin Coffin Marketing Coordinator: Shanna Gibbs Production Director: Carolyn Miller Production Manager: Andrew Crouth Senior Content Project Manager: Andrea Majot Senior Art Director: Jack Pendleton Cover illustration: Image copyright 2009. Used under license from Shutterstock.com Production Technology Analyst: Tom Stover © 2010 Course Technology, Cengage Learning ALL RIGHTS RESERVED. No part of this work covered by the copyright herein may be reproduced, transmitted, stored, or used in any form or by any means graphic, electronic, or mechanical, including but not limited to photocopying, recording, scanning, digitizing, taping, Web distribution, information...
Words: 229697 - Pages: 919
...the audit of Springer’s Lumber & Supply a. What deficiencies existed in the internal environment at Springer’s? The "internal environment" refers to the tone or culture of a company and helps determine how risk consciousness employees are. It is the foundation for all other ERM components, providing discipline and structure. It is essentially the same thing as the control environment in the internal control framework. The internal environment also refers to management's attitude toward internal control, and to how that attitude is reflected in the organization's control policies and procedures. At Springer's, several deficiencies in the control environment are apparent: 1. Management authority is concentrated in three family members, so there are few, if any, checks and balances on their behavior. In addition, several other relatives and friends of the family are on the payroll. 2. Since the company has a "near monopoly" on the business in the Bozeman area, few competitive constraints restrain prices, wages, and other business practices. 3. Lines of authority and responsibility are loosely defined, which make it difficult to identify who is responsible for problems or decisions. 4. Management may have engaged in "creative accounting" to make its financial performance look better, which suggests a management philosophy that could encourage unethical behavior among employees. b. Do you agree with...
Words: 16377 - Pages: 66
...≈√ F M A G u i d e l i n e s on Operational Risk Management These guidelines were prepared by the Oesterreichische Nationalbank in cooperation with the Financial Market Authority Published by: Oesterreichische Nationalbank (OeNB) Otto-Wagner-Platz 3, 1090 Vienna, Austria Austrian Financial Market Authority (FMA) Praterstraße 23, 1020 Vienna, Austria Produced by: Oesterreichische Nationalbank Editor in chief: Günther Thonabauer, Communications Division (OeNB) Barbara Nösslinger, Staff Department for Executive Board Affairs and Public Relations (FMA) Editorial processings: Chapter I and III: Roman Buchelt, Stefan Unteregger (OeNB) Chapter II and IV: Wolfgang Fend, Radoslaw Zwizlo, Johannes Lutz (FMA) Design: Peter Buchegger, Communications Division (OeNB) Typesetting, printing and production: OeNB Printing Office Published and printed at: Otto-Wagner-Platz 3, 1090 Vienna, Austria Inquiries: Oesterreichische Nationalbank Communications Division Otto-Wagner-Platz 3, 1090 Vienna, Austria Postal address: Post Office Box 61, 1011Vienna, Austria Phone (+43-1) 40420-6666 Telefax (+43-1) 40420-6696 Austrian Financial Market Authority (FMA) Executive Board Affairs & Public Relations Division Praterstraße 23, 1020 Vienna, Austria Phone (+43-1) 24959-5100 Orders: Oesterreichische Nationalbank Documentation Management and Communications Services Otto-Wagner-Platz 3, 1090 Vienna, Austria Postal address: Post Office Box 61, 1011Vienna, Austria Phone...
Words: 50825 - Pages: 204
...a Solutions for Chapter 4 Audit Risk, Business Risk, and Audit Planning Review Questions: 4-1. Business Risk - Those risks that affect the operations and potential outcomes of organizational activities. Engagement Risk - The risk auditors encounter by being associated with a particular client: loss of reputation, inability of the client to pay the auditor, or financial loss because management is not honest and inhibits the audit process. Financial Reporting Risk - Those risks that relate directly to the recording of transactions and the presentation of financial data in an organization’s financial statements; also referred to as the risk of material misstatement. Audit Risk - The risk that the auditor may provide an unqualified opinion on financial statements that are materially misstated. 2. Business risk management is defined as: “Process, effected by an entity’s board of directors, management and other personnel, applied in strategy setting and across the enterprise, designed to identify potential events that may affect the entity, and manage risks to within its risk appetite, to provide reasonable assurance regarding the achievement of entity objectives.” (COSO, 2004) The organization itself bears the responsibility for effective implementation of ERM. It is important for all organizations to implement an effective ERM so that risks are understood and properly controlled by members of the organization, particularly...
Words: 18740 - Pages: 75
...a million dwelling units. HDFC has developed significant expertise in retail mortgage loans to different market segments and also has a large corporate client base for its housing related credit facilities. With its experience in the financial markets, a strong market reputation, large shareholder base and unique consumer franchise, HDFC was ideally positioned to promote a bank in the Indian environment. • BUSINESS FOCUS HDFC Bank's mission is to be a World-Class Indian Bank. The objective is to build sound customer franchises across distinct businesses so as to be the preferred provider of banking services for target retail and wholesale customer segments, and to achieve healthy growth in profitability, consistent with the bank's risk appetite. The bank is committed to maintain the highest level of ethical standards, professional integrity, corporate governance and regulatory compliance. HDFC Bank's business philosophy is based on four core values - Operational Excellence, Customer Focus,...
Words: 6845 - Pages: 28
...Project Management Institute A Guide to the Project Management Body of Knowledge (PMBOK® Guide) – Fifth Edition Licensed To: Jorge Diego Fuentes Sanchez PMI MemberID: 2399412 This copy is a PMI Member benefit, not for distribution, sale, or reproduction. Library of Congress Cataloging-in-Publication Data A guide to the project management body of knowledge (PMBOK® guide). -- Fifth edition. pages cm Includes bibliographical references and index. ISBN 978-1-935589-67-9 (pbk. : alk. paper) 1. Project management. I. Project Management Institute. II. Title: PMBOK guide. HD69.P75G845 2013 658.4’04--dc23 2012046112 ISBN: 978-1-935589-67-9 Published by: Project Management Institute, Inc. 14 Campus Boulevard Newtown Square, Pennsylvania 19073-3299 USA Phone: +610-356-4600 Fax: +610-356-4647 Email: customercare@pmi.org Internet: www.PMI.org ©2013 Project Management Institute, Inc. All rights reserved. “PMI”, the PMI logo, “PMP”, the PMP logo, “PMBOK”, “PgMP”, “Project Management Journal”, “PM Network”, and the PMI Today logo are registered marks of Project Management Institute, Inc. The Quarter Globe Design is a trademark of the Project Management Institute, Inc. For a comprehensive list of PMI marks, contact the PMI Legal Department. PMI Publications welcomes corrections and comments on its books. Please feel free to send comments on typographical, formatting, or other errors. Simply make a copy of the relevant page of the book, mark the error, and...
Words: 162869 - Pages: 652
