HOPEX Business Process Analysis > Managing Risks and Controls > Identifies risks
Identifies risks
 
Risk Identification Methods
Method based on risk type or risk factor lists
Method based on enterprise objectives and business process diagrams
Method of identification from incidents repository
Accessing risks
Creating risks
Risk characteristics
Risk scope
RACI on a risk
Responsibility levels
Specifying Responsibilities
When the control internal environment has been defined and enterprise objectives in terms of risk have been specified, the step of identification of events at risk starts.
Identification of risks is generally carried out within the framework of a specified control system.
*A risk and control system is a set of controls that enables the assurance of risk prevention and management, application of internal operating rules, respect of a law or regulation, or achievement of an objective as defined by company strategy.
This control system can be defined as the implementation of a regulation within the framework of one of the enterprise business functions, such as application of an enterprise financial policy in the purchasing field.