Demonstrate And Critically Analyse The Risk Management Process Finance Essay - Free Essay Example

Sample details Pages: 9 Words: 2794 Downloads: 9 Date added: 2017/06/26 Category Finance Essay Type Analytical essay Did you like this example? ABSTRACT Today, its become difficult to protect financial organisations from risks. It harms the organisation in different ways like damaging assets, information or data. It can be in any organisation whether it relates to Business, Finance, or IT. Don’t waste time! Our writers will create an original "Demonstrate And Critically Analyse The Risk Management Process Finance Essay" essay for you Create order Therefore to handle risk companies use Information Risk management. It is the process of managing risks and protecting organisations. There are many issues like information classification where different categories of information are needed to protect using different terminologies. The information risk management adopt international standards according to business context. It has management principles to securely manage organisational assets. INTRODUCTION Information plays vital role for organisations to get success. To protect information companies have Information risk management. It is a powerful source to tackle with the risks found in the organisations. The Risk management define strategies to locate the risks and threats in the organisations and also provide solution to reduce the affect of risks. An effective risk management process is an important component of a successful IT security program. The principal goal of an organizations risk management process should be to protect the organization and its ability to perform their mission. (Stoneburner et.al, 2002) The information risk management process considers the goal and objective of the organisation to manage and remove risk from the company. The risk management processes has certain predefined steps to follow and to manage risks in business. These steps include identification, analysis, evaluation, treatment, monitor and review techniques. These steps are reviewed and monito red to check whether processes are going in right direction or not. safety_flow_chart Risk Management Process (Exton, 2010) Another way of protecting information is Information classification by using this process organisations classify there information into categories having different security levels. In a finance companies like Bank, Insurance companies, Loan companies, etc risk management processes are required to provide secure environment and confidential information. Its dificult for any bank to convey information they have regarding their customers or stakeholders. The financial risks are also very high in the banks. They need financial strategic plan to protect transactions. Therefore they use risk management strategies to prevent the informaiton they have form hacking and to secure other information assets. Identify and critically assess the importance of the information classification process and other related issues. Information is an important asset of every organisation. The each phase of organisation needs information. Every department has some specific information to protect. Therefore for security reasons the classification of information is important. Organisations usually classified there information into different categories like Secret, Confidential, Restricted, Unrestricted, and Sensitive. The increasing need for companies to protect their customer and financial information is obvious. (Fowlar, 2003) The classification of information in financial companies is become important because now a days banking sectors are using IT technology. They transfer money online which is quite risky because of hacking, phishing, sniffing, etc techniques used by Hackers. An important aspect of protecting critical electronic information knowing what information needs to be protected, what doesnt, and who are the authorized recipients. Countless organizations stamp Confidential at the bottom of their docume nts. It says everyone inside the organization can access it, but nobody outside. (Landwehr, 2007) This classification method will help to identify important information of the organisation which helps to protect it. Another most important and difficult portion of information classification defines very strict classification rules to ensure that there isnt any overlapping between different information entities. If the information overlaps then it leads for redundancy of data and function in IT enterprise. (Nattygur, 2005) Issues Related To Information Classification: While performing these tasks there are many problems that a bank faced to reduce risks. The first issues that arise are categorising information into different categories like public and confidential. To divide information, review of whole information is necessary. Therefore a responsible person is required. Some time companies higher Information Security Consultants from outside the organisation which may work for more than one organisation. Therefore it is a risk to the confidentiality of the information security. Risk in the classification of information depends upon risk factors of information used by banks. The information which is more prone to threats is categorised with higher level of security and other in lower level according to low risk. The information classification issue is dependent on context and content of the information. Example: if john smith has $100 in his account then it is not sensitive but if he has $100,000 in his account then information becomes extremely sensitive.(Bayuk, 2009) It becomes difficult for some organisaitons to create flow chart to depict the nature of classification because of complexity in use of information. Critically analyse the information Classification schemes and information classification management process. Information classification scheme is a process of classifying information for public and private sector. The effective information classification scheme can be setup by defining organisations goal, which says what you want to do with classified data. The classification scheme of information is developed to categories information into different categories. The main prospective of classification is to provide security to information used in organisations. In financial organisations like bank, the information used is known as bank information. (Rao et.al, 2007) In Banks, they need to take financial decisions those are required to be confident. Therefore to protect this information bank store it according to different modes of security. In banks the financial information is classified as account amounts, saving, deposit and loan values, ratios, call reports, and financial statements. (Rao et.al, 2007) The classification of information in this context helps to provide protection to custom ers. Generally organisaitons classify information in following categories: Secret- The Secret information is accessible only to higher authorities. Confidential- The Confidential information is customers personal info saved by organisations. Sensitive- The sensitive category includes data which can be easily damaged. Restricted- The restricted type has restriction to access information without privileges. Whereas it can be classified as Colour coding Scheme, Classes, Nation-wise. Information classification schemes used in banks filter information and define it according to Classes. These classes have labels of security to access and use information in different fields. The motive of financial organisations to use classification scheme is apparently to secure the information form copying or to protect it from being damage by intruders. In other way classification of information is making it Confidential. If it is written at the bottom of the document that means the information is highly sensitive. If the sensitivity is high that means the level of information security is higher. Information classification management process: The Information classification for financial organisations is required to manage under continues process. The commercial banks need information under different classes. Most banks use e-banking for the transactions of information and money. This process requires more security to protect information from hackers. The banks classify information and prioritise into different categories according the security requirements. For each system that enters, processes, stores, or transfers data that the bank has classified as highly confidential, controls should be in places that are commensurate with the information they protect. The information classification process will assist bank management in focusing attention on priority areas first and pinpointing key areas of vulnerability.(Bonnette, 2002) For example in Colour Coding scheme management classify information according to its privacy. Management assign different colours which represent how much particular information is secured like; re d is more secure, purple is intermediate, and green coloured information can be assessed by any authorised user. Please find steps to classify information in Appendix-I. Demonstrate the needs for information risk management and the importance of adopting international information risk management standards. Risk is the probability that a hazard will turn into a disaster. (Fairhurst, 2002) Risk is an unexpected event which causes damage to the organisation. The organisations use Information Risk Management (IRM) to Manage, Identify, Plan and Reduce the risk factor from companies. The basic need of risk management is to protect information assets and the goal of the organisation. The risk management also helps to protect organisation from internal and external threats. The need of IRM is for: Information risk management easily track and find risk from the organisation. IRM requires to protect the firm against market, credit, liquidity, operational, and legal risks.(IFRI) The risk management provide transparency in business strategies. Every organisation has some vital information to protect that information risk management will help. It removes the risks in given time spam from the business. IRM monitor risk throughout the life cycle of running process and tell where risk lie before it create any damage to information assets. The risk management is used to maximise the resources of organisations. The IRM protect the reputation of business organisation. IRM also resolve the issues related to risks The IRM helps in planning, decision making processes as well. Importance of adopting international standards of IRM: The international standards are importantly used in many finance companies to implement security. There are many standards available but mostly ISO/IEC 27001:2007 and BS7799 are commonly used in UK based organisations. The important aspect to use these standards is to improve the quality of the information, and to reduce risk factor. These two standards have defined life cycle which include risk management, risk analysis, risk evaluation, risk assessment, and risk treatment steps to manage risks in the organisations. If banks have some standard then it increases customers liability which leads to more investment in bank. It also provide framework to handle issues related with security. The international standards make organisations more aware about risks. In financial companies it increases the investment and helps to grow organisation with great extent. Demonstrate and critically explore the concepts of information risk management in the business context. The business organisations deals in finance have many risks related to money, information loss, weak strategic plans, etc. The companies having risks also suffer from delays in outcomes, processes, financial problems, operational work flow. To overcome these difficulties companies make use Information Risk Management which is very beneficial for improving their financial power. Information risk management is used in every organisation whether Business, IT, or Finance. A string of large and highly public corporate failures over the past 10 to 15 years has focused investors and regulators attention worldwide on the way in which company directors and managers are managing risk. Many companies have focused on value creation as a key goal. (ICA, 2002) The need of managing risk is to meet the business goals. Stakeholder, investors and other members of managing committees make sure that best technique must be used. IRM use following steps to manage risk in business: In the first step Identification of risks in the companys are determined and they ranked according to higher threats. Selecting the risk management technique to avoid and eliminate risks. Defining controls to manage risks. Continuously monitor effectiveness of risk management strategies. Reviewing techniques and improving business by experiences.(ICA,2002) The financial director has responsibility of managing and regularly monitoring risks in organisations. IRM helps in defining long term strategies, reduction in programming errors, making and planning of projects, operational outcome of organisations, and financial transactions. The risk has different levels i.e. Strategic, Program, Project, Operational, and Financial. Information risk management handle risk according to its severity in business. The IRM track the risk and then take action according to different terminologies. It mitigate, accepts, transfer, eliminate, and reduce risk according to its possibility of occurrence. In UK financial organisations use CRAMM (CCTA Risk Analysis Management Method) tool to protect from financial risks in business. (Sans, 2002) Critically explore the different types of information risk management terminologies used and the types of assets. Information is the important key of doing things in right format. In organisational way the information is the processed form of data. Companies gather data from different sources, which is called as raw data and then they process this data to derive the required information. To protect this processed information there is a need of risk assessment. The Risk Assessment is an examination of knowing everything is going right or not. And finding whether precautions are needs to revise or not. To procure information assets of organisations the Risk Treatment is necessary. The organisations are using many tactics to control and manage risks. The Risk Management process is used to identifying, analysing, and prioritising risks according to its severity. To protect information there are different types of terminologies available. The terminologies are defined as a set of terms used to manage organisation. These are designed according to organisations work flow. The different terminologies in use today are: Mitigation: It is a process of improving or reducing new risks occurred in organisations or those might occur to harm financial assets. Accept: According to this terminology IRM allows bank to enter risks which does not damage to companies assets. Transfer: It transfer risk to other party handling risks in the banks. Eliminate: This terminology is used to reduce risks from banks. Risk owner: The Risk Owner is the person acknowledged by financial organisations as the responsible individual for overseeing the risk. The Risk Owner identifies and assesses risk to produce probability and impact information. He or she should develop risk mitigation and contingency plans and provide status data for respective risk issues.(McNair, 2001) Residual risk: It is any disclosure arises from risk completion or management terminologies. Different Types of Assets: The information management is very valuable in context to information protection and for the protection of information assets. The Informational Assets are another important aspect as organisational view. There are different types of assets like tangible assets or intangible assets. In financial markets tangible assets are also known as physical assets. (Brigham, Houston, 2007, page 145).It includes all hardware equipments used in organisations. The intangible assets are Software devices, Information or Data used in company, Policies, Pricing details, Business continuity plans, Training material, Risk analysis, etc. IRM also use different terminologies to handle risks. Investigate the risk management principles in terms of organisations information security management and develop the information risk management strategy for organisation to effectively handle the issues. The IRM has important role for financial organisations like banking sector to diminish risk. There are different terminologies used to save company from risk. Every bank using information risk management has some principles or rules to follow. These principles are as follow: Confidentiality- The banks keep the customer information as very confidential. They provide satisfaction to their customer to keep their information secret. They also do some paper work for the satisfaction of customers. Integrity- This principle protect information from modification by unauthorised persons. Availability- The availability means it should be available whenever it requires in the Banks. Authentication- It ensure that both parties wants to access information has right to access that information. The Information Risk Management (IRM) provides transparency between Bank and their customers to gain faith of people. The managing committee of bank set priority of accessing information risks. IRM minimise credit risk in most of the banks. IRM deploy Risk avoidance, Risk Transfer, Risk reduction, Risk assumption techniques for banks. IRM develop many strategies to handle risks in banks these are like: Risk Avoidance: The risk avoidance is similar to ignoring the anything else. But only those risks can be avoided those are not dangers. Risk Acceptance: The organisation accept risk when the losses are less but the profit is higher by accepting it. But it does not mean that management do not know about the effectiveness of risk. Risk Mitigation: It is a process of minimising the probability of occurrence risks. Risk Transfer: In this the risk is transferred to another group of risk handlers to overcome the load of processing. (Nikonov, 2009) Risk Retention: This process is used to retain risk at the current position until it recovered. Risk Abatement: This is used to reduce the risk from the organisation. Risk Allocation: In this, organisations share risk with other parties if risk become higher. By using these strategies financial risks can be moderated. While developing strategies for banks the IRM must know about financial behaviour of the bank, what type of risks can be occurred to divide information of Bank into different levels of security. By developing strategies the organisations can reduce risks and improve the financial conditions of banks. CONCLUSION: In Conclusion, the information risk management has vital role in organisations. It provides security to classified data by using different techniques. It work according to the principles and terminologies defined. The adaptation of international standards also helps to secure information. The IRM develop risk management strategies accordingly the occurrence of risks in organisations. RECOMMENDATION: I would like to recommend deploying Information Risk Management strategies in financial organisations because the financial information is open to threats and hackers always in deed to hack that information. And most importantly the organisations must use international standards.

Gun Control A Continuous Problem - 851 Words

Gun control; a continuous problem in the United States since the late 1700’s. Gun control does not necessarily mean to ban guns, but rather to put a better control on who has access to them. The ongoing issue of whether to keep or eliminate guns has Americans all over the world in distress over an issue that is not impossible to resolve. Gun control is a task that takes a community as a whole to accomplish. No matter how small, every individual’s effort can make a difference. To take control of guns and put a better grasp on who has access to them is not necessarily one for those with more authority.(reword) We live in a society where fear is abundant and safety is desperately desired.Many feel that the right to carry a gun provides them with security and comfort. However, without gun control, our society will be faced with more hardships than expected. With help, Americans could have a controlled system of gun usage without banning them all together. Guns should not be banned as a whole. There are many precautions that can be taken before completely getting rid of all machinery. The first step to controlling the usage of guns would be to limit who has the access to purchase them. This might sound difficult, but it doesn t have to be. One way is to have a full background check on anyone who is interested in buying a gun before being sold to, insuring that the gun is in good hands. If the buyer rejects the background check that should be an automatic red flag and theShow MoreRelatedThe Violence Of Domestic Violence954 Words   |  4 PagesViolence As stated by the Executive Office of Public Safety and Security, â€Å"domestic violence is defined as a pattern of coercive and controlling behaviors and tactics used by one person over another (by or to any household member) to gain power and control. This may include verbal abuse, financial abuse, emotional, sexual, and physical abuse.† (The Official Website of the Executive Office of Public Safety and Security.) Domestic abuse frequently becomes more often and dangerous over time. After researchingRead MoreLimiting Our Protection : The Rights Of A Free State, The Right Of The People1135 Words   |  5 PagesTurkey established gun control. From 1915 to 1917, 1.5 million Armenians, unable to defend themselves, were rounded up and exterminated.(A Little Gun History) There are more statistics that prove that limiting your right to bear arms and gun control is ineffective. The right to bear arms shouldn’t be limited because, guns don’t kill people, people kill people, no studies have shown to prove that gun ownership increases risk of suicide, and in many crimes involving firearms the gun is not legally ownedRead MoreHidden Weapons Should Be Legal885 Words   |  4 PagesI. â€Å"..To whom much is given, much will be required...† – Luke 12:48 a. If you’re allowed a gun by law, there is a lot of responsibility that comes with it. II. In July 2012, in Salt Lake City, Utah, a problem arose (Barkoukis, 2012). a. A man in Smith’s Grocery Store purchased a knife, and began to stab people walking in and out of the store. b. The suspect managed to fatally injure a couple of victims. c. However, another man in the grocery store saw this occurring and happened to have a concealedRead MoreThe Issue Of Gun Control Laws1407 Words   |  6 Pagesshootings, averaging 1.02 shootings per day and continuous growing number of deaths, multiple mass shootings around the world leaving dozens of victims in its path. There is no exact definition of mass shootings, but most sources believe it is when four or more people are shot in one location. Citizens in America are easily able to obtain a gun and the growing issue is whether this should change and stronger laws in place. Although citizens believe gun control laws take away second amendment and rightRead MoreAmerica Needs A Better System of Gun Control Essay1630 Words   |  7 Pages Gun control has become an increasingly controversial topic in the nation due to the continuous debates relating to gun control and whether or not laws should be passed to make it harder for guns to be obtained. Guns serve for a variety of purpo ses that range from good to bad. Guns are not for everyone. Some individuals cannot handle guns properly, and some choose to use guns inappropriately. Lately, guns have become more of a problem in our society. There has been an increasing amount of shootingsRead MorePersuasive Essay On Gun Violence858 Words   |  4 Pagesevolving and highly debated problem that continues to grow in our society, is the gun control epidemic. Gun violence in America is a national epidemic. Many people carelessly take advantage of Gun use and manipulate the tool without much thought to any repercussions. Many lives have been loss due to people legally or illegally obtaining guns and taking matters upon themselves to be executioners in holding other peoples lives in their hands. Specifically, ongoing gun violence in schools have becomeRead MoreGun Rights - Right Or Wrong? . 28Th March 2017, Us History1534 Words   |  7 PagesGun Rights - Right or Wrong? 28th March 2017, US history I (R) block-3, Mr Hill Gun control is a major part of American Politics. One problem in the gun control discussion is if the people should have the right to â€Å"Conceal-and-carry† weapons with them all the time.The Founding Fathers saw owning a gun   as a means to protect against tyrannical rule. America’s foundation was built with firearms. Ever since America’s freedom from Britain, American’s have been enthralled with firearms. A part of ourRead MoreGuns and Mental Illnesses Dont Mix Essay1120 Words   |  5 Pagesâ€Å"Guns don’t kill people, people do.† This is a well known statement that is oftentimes considered true. However, it is not completely true. Someone who is mentally ill may be unable to make logical decisions and the perception they receive of reality may be tainted by the illness. Gun laws pertaining to those suffering mental illnesses should be more restrictive. Weapons such as guns make committing an act of violence, especially when the re are multiple victims, much easier. It is difficultRead MoreThe Rolling Tides Of Power1468 Words   |  6 Pagesthere may not be an apparent similarity between the three items, however, it truly is apparent, and that similarity is the aspect of competition for power. Throughout the course of the history of the United States, the want for power has been a continuous competition. this competition has been apparent on both a national and international level over disputes of social labeling and values, a competitive industrial economy, and as well a fight to be on top in the scientific worlds of medicine and militaryRead MoreThe uses of Firearms by civilians are very dangerous, and its history needs to be studied. Many1700 Words   |  7 Pagesprohibit keeping guns and firearms by individuals, but there are some other countries that continue to keep guns, such as the United States and the United Kingdom. I will focus on the gun culture in the United Kingdom from 1689 to 1997. Becau se the Unite King start allowing individual keeping guns by Bill of Rights in 1689, the 1689 Bill of Right guaranteed British subject certain rights. People consider that it was a manifestation of their right and freedom, but after some guns accidents that made

Literary criticism Free Essays

Literature represents a language or a people: culture and tradition. But, literature is more important than just a historical or cultural writing. Literature introduces us to new worlds of experience. We will write a custom essay sample on Literary criticism or any similar topic only for you Order Now We learn from books and literature; we enjoy the triumphs and the tragedies of poems, stories, and plays; and we may even grow through our literary journey with books. In conclusion, we may discover meaning in literature by looking at what the author says and how he/she says it. We may interpret the author’s message. However we interpret literature, there is still an artistic quality to the works. Literature is important to us because it speaks to us, it is both universal and individual, and in many ways it affects us, for the better. When some people think of the word â€Å"Literature† they think of books like, Walden, Old man and the Sea, Tom Sawyer, Great Expectations, or Moby Dick. These are what some call â€Å"the classics. † While these few books are indeed literature do we subconsciously judge other books based on the styling’s of these few? People believe that the true meaning of â€Å"Literature,† is a literary work in which the readers mind is opened to new concepts and ideals. For a writing to be called â€Å"Literature† it doesn’t have to be considered a â€Å"Classic† nor does it need to follow the same construct as these so called â€Å"Classics†. The book, 11/23/63, is much more of a form of â€Å"Literature† than A Tale of Two Cities. Based solely on the fact that in the Stephen King novel, he places the thought of, â€Å"What if? † into your mind.. Whereas, â€Å"A Tale of Two Cities†, depicts the plight of the French peasantry in the years leading up to the revolution, as opposed to opening your mind. While A Tale of Two Cities, shows you what life was like in those times. Stephen King shows you an alternate universe in which there was but one change, and how that one change affects how history takes its course. When the author helps your mind, explore worlds of endless possibility, or sheds light on a new way to perceive things. That is when the author has created a â€Å"True† work of literary merit. The thing about the term, â€Å"Literature†, is that it doesn’t have just one meaning. Literature is comprised of many things, but while Webster definition of â€Å"Literature† is, â€Å"the production of literary work especially as an occupation. † The â€Å"True† meaning is open to interpretation, meaning that one person’s definition of the word may be completely different than another person’s definition. This is both the great and horrid thing about the term. When scholars classify writing as literature, they often consider it a book or writing that has stood the test of time and despite its age it has surpassed many other great works through history by receiving merit from the scholars, based on their description of the word, influential. You may agree that it should be considered a piece of â€Å"Literature†, if it has done this, and you would be right, but what if it was a great piece of literary art that didn’t become a best seller? And thus was cast into the abyss to be forgotten until stumbled across one day by a mind ready to take in what the author wanted to say. Would you consider it â€Å"Literature? † Or would you just leave it in the abyss because it never became a best seller? Take Moby Dick for example, it is considered to be one of the Great American Novels and a treasure of world literature. However, it never received enough credit to title it a â€Å"Best seller. † One literary work, also helps define my idea of the word Literature, is The Hobbit by J. R. R Tolkien. The reason I consider this a piece of â€Å"Literature† is because of the amount of imagery Tolkien uses to bring his world to life in the imagination of the reader. In this excerpt from that book, he describes every thought of the characters and his use of imagery helps create the scene in the mind of the reader. â€Å"The dark came into the room from the little window that opened in the side of The Hill; the firelight flickered-it was April-and still they played on, while the shadow of Gandalf’s beard wagged against the wall. The dark filled all the room, and the fire died down, and the shadows were lost, and still they played on. And suddenly first one and then another began to sing as they played, deep-throated singing of the dwarves in the deep places of their ancient homes; and this is like a fragment of their song, if it can be like their song without their music. † (The Hobbit, Page 15) Tolkien’s powerful use of imagery in that passage painted a clear picture of what happens while the dwarves sing. However, Splatterpunk also uses powerful imagery to paint pictures. The key difference between the imagery used Splatterpunk and the imagery used in The Hobbit, is how the imagery is used. In the novel, The Cipher, which combined intensely poetic language and lavish grotesqueries, the author, uses imagery to place the pictures into the mind of the reader using powerful and descriptive words. As opposed to Tolkien, who draws upon the reader’s imagination with basic descriptions to help create a sketch in his mind. Now, many would not consider this a form of â€Å"Literature† due to the lack of personal connection between the story and the reader. However, I consider this book, and even this passage alone, to be a form of â€Å"Literature† solely because it opens my mind to a new world full of adventure and intrigue, while keeping the reader glued to the book during the time he reads. Imagery is a powerful tool for both the author and the reader, for if the author isn’t clear with his use of imagery it breaks the reader’s attention and allows him to be lost within the story, and not in a good way. Tolkien also uses diction to place an image into the readers mind, and he does this in such a way the reader begins to sing the song in his own head. Far over the misty mountains cold To dungeons deep and caverns old We must away, ere break of day, To claim our long-forgotten gold. Goblets they carved there for themselves And harps of gold; where no man delves There lay they long, and many a song Was sung unheard by men or elves. The pines were roaring on the height, The winds were moaning in the night. The fire was red, it flaming spread; The trees like torches blazed with light (The Hobbit, Page 16) Literature is important to us because it speaks to us, it is both universal and individual, and in many ways it affects us, for the better. In ways we sometimes may never understand. Ultimately, we may discover meaning in literature by looking at what the author says and how he/she says it. We may interpret the author’s message in one way, while someone else finds the message a different way. In this way we see how the definition of â€Å"Literature,† is subjective to both the readers own interpretation, and the overall meaning of the work. Because even when it is ugly, literature is beautiful. Sources Cited Tolkien, John R. R. The Hobbit. N. p. : George Allen Unwin, 1937. 15. Web. How to cite Literary criticism, Papers