<< Click to Display Table of Contents >> Navigation:  »No topics above this level« 5 Entity Risk Profiling

 

Most organisations are so large that it is not possible to simply try and identify all the risks to which they might be subjected and match these to the available mitigating controls. It is necessary to break the organisation down into more manageable pieces; in CAREweb™ these are referred to as ENTITIES.

 

Usually, Entities represent FUNCTIONAL areas within the business such as Finance, Marketing, Treasury, IT etc. Some organisations, however, prefer to measure and manage their Operational Risks by PRODUCT, or by main PROCESS, in either case there would be a separate ENTITY set up for each product or process. You could, of course, use a combination of all three.