SEARCH
Search within CPAB
Category: Risk assessment

In the posts collected here we will examine how to assess a risk assessment, including a) the design of risk assessments – whether as part of an ERM-based assessment or a stand-alone C&E risk assessment; b) the operation of a risk assessment – including the types of findings that reflect a sound process; and c) the use of information generated by a risk assessment to enhance other aspects of a C&E program.

In the posts collected here we will examine how to assess a risk assessment, including a) the design of risk assessments – whether as part of an ERM-based assessment or a stand-alone C&E risk assessment; b) the operation of a risk assessment – including the types of findings that reflect a sound process; and c) the use of information generated by a risk assessment to enhance other aspects of a C&E program.

Assessing risk assessment

When the Federal Sentencing Guidelines for Organizations were first issued in 1991, risk assessment was not among the specified elements of an effective C&E program. By the time risk assessment was added to the definition of an effective C&E program