
Colin Calleja
The Business Risk Assessment (BRA) is a regulatory obligation that has been drawing increased scrutiny by supervisory authorities. The BRA enables organisations to develop a thorough understanding of the inherent and residual risks present in their operating environment.
BDO applies a BRA methodology which can be adopted to the industry or sector in which an organisation operates. The methodology meets of the regulatory requirements, emanating primarily from the FIAU Implementing Procedures. The BRA methodology is quantitative in nature.
BDO’s Business Risk Assessment methodology is designed to reflect the nature, size and complexity of the organization, as well as the industry or sector in which it operates. It is intended to identify and assess specific risks which may impact the organisation. A comprehensive risk scoring is applied to assess the inherent risks and control effectiveness implemented across the organisation.
BDO’s BRA process includes an introductory and walkthrough phase, a risk assessment phase comprising risk identification, analysis and evaluation, and a concluding phase with a Business risk assessment (BRA) report which details the organisation’s risk profile.
The BRA methodology considers five main risk factors. These are customer risk, geographical risk, interface risk, product risk and enterprise risk.
BDO can assist organisations to complete their business risk assessment, not only for regulatory purposes, but with the aim of enabling them to assess their risk profile. In this respect, it is recommended that a business risk assessment is reviewed and updated on a regular to reflect the current business environment in which the organisation is operational.
Colin Calleja