Please enable JavaScript.

Coggle requires JavaScript to display documents.

ISO 31000 'Risk management - Principles & guidelines - Coggle…

- - - - Risk classification systems: enables a firm to identify strategies, tactics & operations that are most vulnerable
- - - - Framework for managing risk
      - Risk treatment: activity of selecting and implementing appropriate control measures
    - - Audit Committee: routine report from GRMC; sets annual audit programmes & priorities; monitors progress with audit recommendations
        
        Group Risk Management Committee (GRMC): formulate strategy & policy based on risk appetite, risk attitudes & risk exposures; receives reports from BUs, review risk management activities; track RM activity in BU & keep the risk management context review
        
        Disclosure Committee: review & evaluate disclosure + controls & procedures; consider materiality of information disclosed to external parties
        
        Business Units: produce specific policy statements, manage control risk self-certification activities