Internal risks and controls: a methodology to measure business risk control levels
DOI:
https://doi.org/10.1590/S1519-70772007000100005Keywords:
Internal Controls, Risk Management, Risk Matrix, Importance-Performance MatrixAbstract
This paper presents a control measurement methodology applied in the processes performed by any entity. The methodology is derived from the analysis of the mitigation capabilities of the controls currently in use by the entity. The method enables risk managers to identify which risks require urgent actions to improve the control levels, which risks are already adequately controlled and which ones are in a situation of excessive control. This kind of information can play an important role to improve the application of available internal risk and control management resources in companies. The methodology was applied to a case study and revealed to be a satisfactory tool to assess and identify control levels.Downloads
Downloads
Published
Issue
Section
License
The content of the article(s) published in the RC&F are of the entire liability of the authors, including with regard to the truth, updating and accuracy of data and information. The authors shall assign the rights in advance to the Department of Accounts and Actuarial Sciences of the FEA/USP, which shall permit the publication of extracts or of the whole, with prior permission, provided that the source is cited (Creative Commons – CCBY).
RC&F shall not charge a fee for the submission of articles. The submission of articles to RC&F shall imply that the author(s) authorizes/authorize its publication without the payment of author’s rights.
The submission of articles shall authorize the RC&F to adjust the text of the article(s) to their publication formats and if necessary, to make spelling, grammar and regulatory changes.
