CASE PROJECTS Case Project 1-1: Qualitative Risk Assessment As a consultant with the Risk Analysis Consulting...
Fantastic news! We've Found the answer you've been seeking!
Question:
Transcribed Image Text:
CASE PROJECTS Case Project 1-1: Qualitative Risk Assessment As a consultant with the Risk Analysis Consulting Co., you have been asked to perform a qualitative risk assessment for the TRC Chemical Company. TRC Chemical has a large outside sales force, numbering in the hundreds. Most of these employees use their own home computers (70% laptops, 30% desktops) to conduct TRC Chemical business. You have been asked to assess the risks associated with the use of home computers versus company-owned and-managed computers. Case Project 1-2: Quantitative Risk Assessment As a consultant with the Risk Analysis Consulting Co., you have completed a qualitative risk assessment regarding the risks associated with using non- company-owned computers to conduct company business. Your customer, TRC Chemical, is pleased with the results of the qualitative risk assessment and wants to see hard numbers to see whether it can justify the capital and expense burden of equipping the sales force with company-owned computers, based upon risk mitigation alone. In your risk assessment, make best estimates on the value of information and costs associated with purchasing and supporting company-owned computers. Case Project 1-3: Segregation of Duties Matrix As a consultant with the Risk Analysis Consulting Co., you have been asked to help the BBX Internet Stock Trading Company develop a viable segregation of duties for the management of its online software and supporting infrastructure. The activities that BBX is concerned with include: • Request and assignment of privileged access at the network, operating system, database, and application layers • Setup of new customers • Changes to audit alert settings For each of the activities listed above, develop a segregation of duties matrix where different parts of each process are performed by different individuals. Things to consider: • Separate the activity of requesting an action from performing the action. • Add an activity of confirming correct completion of the action. • Include any recordkeeping for the action so that an auditor can examine the action after the fact to see if the action was appropriately carried out. CASE PROJECTS Case Project 1-1: Qualitative Risk Assessment As a consultant with the Risk Analysis Consulting Co., you have been asked to perform a qualitative risk assessment for the TRC Chemical Company. TRC Chemical has a large outside sales force, numbering in the hundreds. Most of these employees use their own home computers (70% laptops, 30% desktops) to conduct TRC Chemical business. You have been asked to assess the risks associated with the use of home computers versus company-owned and-managed computers. Case Project 1-2: Quantitative Risk Assessment As a consultant with the Risk Analysis Consulting Co., you have completed a qualitative risk assessment regarding the risks associated with using non- company-owned computers to conduct company business. Your customer, TRC Chemical, is pleased with the results of the qualitative risk assessment and wants to see hard numbers to see whether it can justify the capital and expense burden of equipping the sales force with company-owned computers, based upon risk mitigation alone. In your risk assessment, make best estimates on the value of information and costs associated with purchasing and supporting company-owned computers. Case Project 1-3: Segregation of Duties Matrix As a consultant with the Risk Analysis Consulting Co., you have been asked to help the BBX Internet Stock Trading Company develop a viable segregation of duties for the management of its online software and supporting infrastructure. The activities that BBX is concerned with include: • Request and assignment of privileged access at the network, operating system, database, and application layers • Setup of new customers • Changes to audit alert settings For each of the activities listed above, develop a segregation of duties matrix where different parts of each process are performed by different individuals. Things to consider: • Separate the activity of requesting an action from performing the action. • Add an activity of confirming correct completion of the action. • Include any recordkeeping for the action so that an auditor can examine the action after the fact to see if the action was appropriately carried out.
Expert Answer:
Answer rating: 100% (QA)
Answer Case Project 11 Qualitative Risk Assessment As a consultant with the Risk Analysis Consulting Co I have been asked to perform a qualitative risk assessment for the TRC Chemical Company TRC Chem... View the full answer
Related Book For
Statistics for Business and Economics
ISBN: 978-0132930192
8th edition
Authors: Paul Newbold, William Carlson, Betty Thorne
Posted Date:
Students also viewed these economics questions
-
This case study on project evaluation is applicable for beginning courses in corporate finance or finance strategy. Two alternative investment options are available to evaluate. Challenges are...
-
This case study on project evaluation is applicable for beginning courses in corporate finance or finance strategy. Two alternative investment options are available to evaluate. Challenges are...
-
Case Study: Quick Fix Dental Practice Technology requirements Application must be built using Visual Studio 2019 or Visual Studio 2017, professional or enterprise. The community edition is not...
-
f is continuous, but not necessarily differentiable, has domain [0, 6], reaches a maximum of 6 (attained when x = 5), and a minimum of 2 (attained when x = 3). Additionally, x = 1 and x = 5 are the...
-
Why would increased spending as a percentage of GDP on, say, household appliances or education in a particular economy be regarded as economically desirable? Why, then, is there so much concern about...
-
On the London Metals Exchange the price for copper to be delivered in one year is $9,000 a ton. (Payment is made when the copper is delivered.) The risk-free interest rate is .5% and the expected...
-
Zaire Company had a \(\$ 26,000\) net loss from operations. Depreciation expense for the year was \(\$ 9,600\), and a dividend of \(\$ 2,000\) was declared and paid. The balances of the current asset...
-
1. The University of Pittsburgh Medical Center (UPMC) relies on information systems to operate 19 hospitals, a network of other care sites, and international and commercial ventures. Demand for...
-
meetings every seven days in the first semester. Email and a listserv was used for communication in addition to the weekly meetings. We eventually developed a website that was used to document...
-
The Chartered Financial Analyst (CFA) designation is the de facto professional certification for the financial industry. Employers encourage their prospective employees to complete the CFA exam....
-
Create a table called 'ZONE'. Columns, data types, and column notes are below. Field Data Type Zoneld int Name Notes Typeld int Primary Key (set as a constraint called 'pk zone), Required varchar(20)...
-
Discuss objectives of an organization's internal control system. Discuss the 5 components of internal control.
-
American Automotive, a national chain of automotive repair shops, acquired all of the outstanding common stock of Southern Parts for $598,000 in cash. The book values and the market values of...
-
Explain the endosymbiotic theory and discuss the evidence that supports the idea that mitochondria and chloroplasts originated from free-living prokaryotic organisms .
-
1. Adjusted Gross Income. How is adjusted gross income determined? 2. Standard Deduction. What is a standard deduction? How much is the standard deduction for taxpayers filing single? For married...
-
Stormiez Camping Supply sells tents. The company has the following income statement. Sales ($1,000 per unit) $200,000 Less Cost of Goods sold ($475 per unit) 95,000 Gross margin 105,000 Less...
-
Data for Case Study 5.1 Probability Distribution for Repair Cost Type of Repair Probability Repair Cost (in $) None 0.76 Minor 0.13 80 Major 0.08 320 Catastrophic 0.03 500
-
Define a traverse in Surveying?
-
In Chapter 1 we described graphically, with a frequency distribution and histogram, the time (in seconds) for a random sample of n = 110 employees to complete a particular task. Describe the data in...
-
A publisher sends advertising materials for an accounting text to 80% of all professors teaching the appropriate accounting course. Thirty percent of the professors who received this material adopted...
-
A manufacturer of detergent claims that the contents of boxes sold weigh on average at least 16 ounces. The distribution of weight is known to be normal, with a standard deviation of 0.4 ounce. A...
-
When a board member leaves the board, when is it desirable or wise to keep this person involved with the organization? How could this be accomplished?
-
What is meant by board - driven and CEO - driven organizations? What might be the distinctive characteristics of each?
-
How should a board define its optimal size? What issues influence this choice?
Study smarter with the SolutionInn App