RIMS - CRMP Complete Study Guide M M M M M
1. Risks: The effect of uncertainty on objectives
M M M M M M
The chance of something happening that will have an impact on objectives
M M M M M M M M M M M
Being prepared for the worst and being poised to exploit opportunities as they ared
M M M M M M M M M M M M M M
iscovered
2. Enterprise Risk Management: A strategic business discipline that supports thea
M M M M M M M M M M
chievement of an organization's objectives by addressing the full spectrum of its risk
M M M M M M M M M M M M
s and managing the combined impact of those risks as an interrelated risk portfolio.
M M M M M M M M M M M M M
3. Support Function: Business continuity and crisis management: Risk identifi-
M M M M M M M M
cation, assessment and creation of emergency response and recovery plans relatedto t
M M M M M M M M M M M M M
hreats or hazards that might lead to operational disruptions
M M M M M M M M
4. Analysis: A systematic examination and evaluation of data or information by brea
M M M M M M M M M M M
king it into its component parts to uncover their relationships. An examination ofdata
M M M M M M M M M M M M M M
and facts to uncover and understand cause-
M M M M M M
effect relationships, thus providingbasis for problem solving and decision making.
M M M M M M M M M M
5. To embed risk management in both routine and strategic decision, what sho
M M M M M M M M M M M
uld managers be able to recognize?: The type of decision being made; Whoshould
M M M M M M M M M M M M M M
be included in the decision making process; Where in the process decisionsare being
M M M M M M M M M M M M M M
1M/M26
,made
6. Risk management strategies' general focus: Meeting or exceeding an organi-
M M M M M M M M M
zation's objectives
M M
Adhering to control- M M
based objectives, rules and/or controlsComplying with regu
M M M M M M M
latory requirements
M
7. Support Function: Internal Audit: Risk identification, assessment and treatmentth
M M M M M M M M M
rough audit plans with focus on fraud, corruption, regulatory noncompliance and/ormi
M M M M M M M M M M M
srepresentation related to the organization's internal control systems, financial oper
M M M M M M M M M
ations, financial statements and reporting as well as enterprise risk and the organiza
M M M M M M M M M M M M
tion's risk management framework and process.
M M M M M
8. What steps can the risk management professional take to embed risk mana
M M M M M M M M M M M
gement in decision making?: Include risk assessment in planning process;Leverage
M M M M M M M M M M
M cross-
functional risk assessment team and subject matter experts to identify enterprise ris
M M M M M M M M M M M
ks; Consider cascading and cumulative effects
M M M M M
9. Gap Analysis: Technique that can be used to determine what steps might needto
M M M M M M M M M M M M M M
be taken to improve the organization's capacity to move from a current state to adesi
M M M M M M M M M M M M M M M
red future state.
M M
2M/M26
,10. Risk appetite: The total exposed amount that an organization wishes to un-
M M M M M M M M M M M
M dertake on the basis of risk-return trade-
M M M M M M
offs for one or more desire and expectedoutcomes.
M M M M M M M M
3M/M26
, 11. Communication and Consultation: Risk management professional's role inIm M M M M M M M M
plementing Risk Strategies M M
12. Support Function: Legal: Risk identification, assessment and treatment of risks
M M M M M M M M M M
related to the obligation an organization undertakes and transfers through con-
M M M M M M M M M M
tracting, as well as its compliance with applicable laws and regulatory obligations.
M M M M M M M M M M M M
13. What are the typical failures in risk management which can be avoided if it
M M M M M M M M M M M M M
M is embedded in the decision making process?: Program not integrated into strat
M M M M M M M M M M M
egy or its execution; Focused on the wrong risks; Not executed in a repeatableproces
M M M M M M M M M M M M M M
s; Risk management is practiced in a silo; Activity not viewed as being valueadded
M M M M M M M M M M M M M M
14. Strategic Plan: Determines that actions the organization will take at any stageof
M M M M M M M M M M M M
M the planning period as circumstances change.
M M M M M
15. Risk owner: The individual who is ultimately accountable for ensuring that riski
M M M M M M M M M M M M
s managed appropriately, including the implementation of selected responses.
M M M M M M M M
16. Risk Identification Process: Finding, Recognizing and Recording Risks
M M M M M M M
17. Support Function: Compliance: Risk identification, assessment and treatmentof
M M M M M M M M M
risk related to regulations that may affect the organization's ability to operate in itsre
M M M M M M M M M M M M M M
spective jurisdictions, as well as activities that fall within its compliance and ethicspr
M M M M M M M M M M M M M
ograms.
18. To successfully integrate risk management into decision making, risk man
M M M M M M M M M
4M/M26
1. Risks: The effect of uncertainty on objectives
M M M M M M
The chance of something happening that will have an impact on objectives
M M M M M M M M M M M
Being prepared for the worst and being poised to exploit opportunities as they ared
M M M M M M M M M M M M M M
iscovered
2. Enterprise Risk Management: A strategic business discipline that supports thea
M M M M M M M M M M
chievement of an organization's objectives by addressing the full spectrum of its risk
M M M M M M M M M M M M
s and managing the combined impact of those risks as an interrelated risk portfolio.
M M M M M M M M M M M M M
3. Support Function: Business continuity and crisis management: Risk identifi-
M M M M M M M M
cation, assessment and creation of emergency response and recovery plans relatedto t
M M M M M M M M M M M M M
hreats or hazards that might lead to operational disruptions
M M M M M M M M
4. Analysis: A systematic examination and evaluation of data or information by brea
M M M M M M M M M M M
king it into its component parts to uncover their relationships. An examination ofdata
M M M M M M M M M M M M M M
and facts to uncover and understand cause-
M M M M M M
effect relationships, thus providingbasis for problem solving and decision making.
M M M M M M M M M M
5. To embed risk management in both routine and strategic decision, what sho
M M M M M M M M M M M
uld managers be able to recognize?: The type of decision being made; Whoshould
M M M M M M M M M M M M M M
be included in the decision making process; Where in the process decisionsare being
M M M M M M M M M M M M M M
1M/M26
,made
6. Risk management strategies' general focus: Meeting or exceeding an organi-
M M M M M M M M M
zation's objectives
M M
Adhering to control- M M
based objectives, rules and/or controlsComplying with regu
M M M M M M M
latory requirements
M
7. Support Function: Internal Audit: Risk identification, assessment and treatmentth
M M M M M M M M M
rough audit plans with focus on fraud, corruption, regulatory noncompliance and/ormi
M M M M M M M M M M M
srepresentation related to the organization's internal control systems, financial oper
M M M M M M M M M
ations, financial statements and reporting as well as enterprise risk and the organiza
M M M M M M M M M M M M
tion's risk management framework and process.
M M M M M
8. What steps can the risk management professional take to embed risk mana
M M M M M M M M M M M
gement in decision making?: Include risk assessment in planning process;Leverage
M M M M M M M M M M
M cross-
functional risk assessment team and subject matter experts to identify enterprise ris
M M M M M M M M M M M
ks; Consider cascading and cumulative effects
M M M M M
9. Gap Analysis: Technique that can be used to determine what steps might needto
M M M M M M M M M M M M M M
be taken to improve the organization's capacity to move from a current state to adesi
M M M M M M M M M M M M M M M
red future state.
M M
2M/M26
,10. Risk appetite: The total exposed amount that an organization wishes to un-
M M M M M M M M M M M
M dertake on the basis of risk-return trade-
M M M M M M
offs for one or more desire and expectedoutcomes.
M M M M M M M M
3M/M26
, 11. Communication and Consultation: Risk management professional's role inIm M M M M M M M M
plementing Risk Strategies M M
12. Support Function: Legal: Risk identification, assessment and treatment of risks
M M M M M M M M M M
related to the obligation an organization undertakes and transfers through con-
M M M M M M M M M M
tracting, as well as its compliance with applicable laws and regulatory obligations.
M M M M M M M M M M M M
13. What are the typical failures in risk management which can be avoided if it
M M M M M M M M M M M M M
M is embedded in the decision making process?: Program not integrated into strat
M M M M M M M M M M M
egy or its execution; Focused on the wrong risks; Not executed in a repeatableproces
M M M M M M M M M M M M M M
s; Risk management is practiced in a silo; Activity not viewed as being valueadded
M M M M M M M M M M M M M M
14. Strategic Plan: Determines that actions the organization will take at any stageof
M M M M M M M M M M M M
M the planning period as circumstances change.
M M M M M
15. Risk owner: The individual who is ultimately accountable for ensuring that riski
M M M M M M M M M M M M
s managed appropriately, including the implementation of selected responses.
M M M M M M M M
16. Risk Identification Process: Finding, Recognizing and Recording Risks
M M M M M M M
17. Support Function: Compliance: Risk identification, assessment and treatmentof
M M M M M M M M M
risk related to regulations that may affect the organization's ability to operate in itsre
M M M M M M M M M M M M M M
spective jurisdictions, as well as activities that fall within its compliance and ethicspr
M M M M M M M M M M M M M
ograms.
18. To successfully integrate risk management into decision making, risk man
M M M M M M M M M
4M/M26
