risk assessment

risk assessment
The identification, analysis, and measurement of *risks relating to an activity or organization. Risk assessment comprises the initial stages of *risk management, and it is one of the five components of effective *internal control identified in *Internal Control - Integrated Framework (the COSO Report). Risk assessment practices have spread beyond their historic heartlands of the insurance and financial services sectors to enter the wider organizational mainstream. In turn, the centrality to *corporate governance of both external and internal auditing has resulted in risk assessment becoming central to auditing. Auditors use risk assessment to prioritize work and to maximize resources. For example, risk assessment techniques can be used to identify suitable areas for review in a large *audit universe, and to identify specific *audit tests for a defined topic. This approach contrasts with the often cyclical nature of *audit planning prior to the 1990s. Some commentators have expressed reservations over the extensive use of risk assessment techniques in auditing: "A worry is that over emphasis on risk assessment may perpetuate the traditional culture of the risk-averse internal auditor, with risk being seen as something to avoid rather than being an opportunity to be exploited" (Vinten, 1996, 93). However, risk assessment is now generally considered to be indispensable to effective auditing. Risk assessment for both auditing and wider corporate governance purposes can take the form of *quantitative or *qualitative measurements, or a combination of the two. Some commentators make a distinction between risks (quantifiable) and *uncertainties (unquantifiable). The dangers of attempting to place overreliance on quantitative risk assessment techniques has been expressed as follows: "On occasion the calculation of risk assessment ‘formulae’ seems to provide a veneer of pseudo-scientific clarity to complex matters that cannot be captured purely by numbers... Risks are often difficult (and sometimes impossible) to quantify, and over-reliance on quantified data may reduce the scope for intuitive assessment. The risk assessor who over-relies on numbers often therefore seems to dance around the heart of the risk assessment process, never quite managing to penetrate its core. In extreme cases, over-elaborate risk assessment processes can detach themselves from the organizational realities they purport to represent. A curious scenario then develops, in which risk-assessment becomes a self-referential exercise divorced from the surrounding context. In such cases, the process has as much to do with effective risk assessment as the obsessive polishing of a car has to do with maintaining its engine" (O’Regan, 2003a, 41). In practice, risk assessment often involves a combination of quantitative and qualitative factors. Further reading: AS/NZS 4360 (1999); IIA UK (1998); Messier and Austen (2000); Reding et al. (2000); Shelton et al. (2001)

Auditor's dictionary. 2014.

Игры ⚽ Поможем написать реферат

Look at other dictionaries:

  • Risk assessment — is a common first step in a risk management process. Risk assessment is the determination of quantitative or qualitative value of risk related to a concrete situation and a recognized threat. Quantitative risk assessment requires calculations of… …   Wikipedia

  • risk assessment — noun A complete description of the safety of something, eg a nuclear plant, to evaluate the likelihood and consequence of any possible accident • • • Main Entry: ↑risk * * * risk assessment UK US noun [countable/uncountable] [singular risk… …   Useful english dictionary

  • risk assessment — ➔ assessment * * * risk assessment UK US noun ► [C or U] (also risk analysis) MANAGEMENT the process of finding out how much risk is involved in doing something: »He has responsibility for financial management, strategic planning and risk… …   Financial and business terms

  • risk assessment — In the context of employment law, an assessment of the levels of harm which may be involved in various workplace activities and as a result of using equipment required to carry these activities out and the likelihood of such harm occurring. Risk… …   Law dictionary

  • risk assessment — UK / US noun [countable/uncountable] Word forms risk assessment : singular risk assessment plural risk assessments business the process of calculating how much risk is involved in a particular action …   English dictionary

  • Risk Assessment — The process of determining the likelihood that a specified negative event will occur. Investors and business managers use risk assessments to determine things like whether to undertake a particular venture, what rate of return they require to… …   Investment dictionary

  • risk assessment — /ˈrɪsk əsɛsmənt/ (say risk uhsesmuhnt) noun the assessment of possible hazards involved in the workplace, on school excursions, at community events, etc., especially with regard to insurance: the school conducted a risk assessment before taking… …   Australian-English dictionary

  • risk assessment — viešojo juridinio asmens rizikos valdymo įvertinimas statusas Aprobuotas sritis auditas apibrėžtis Vidaus auditoriaus pateiktos išvados apie viešojo juridinio asmens rizikos valdymą. atitikmenys: angl. risk assessment; risk management assessment… …   Lithuanian dictionary (lietuvių žodynas)

  • risk assessment — (in psychiatry) an assessment of the risk that a patient may pose at a given time, which is part of every mental state examination. Risk assessments are based primarily on past behaviour and certain aspects of current behaviour. They are usually… …   The new mediacal dictionary

  • risk assessment — The identification and assessment of hazards (first two steps of risk management process) …   Military dictionary

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”