CMS
ERM
Lines of Defense
How well did you listen?
Risk Assessments
100

A CMS effectively manages this. 

What is compliance risk?

100

This is not always a negative.

What is risk?

100

Where Compliance lives in the lines of defense.

What is the Second Line of Defense?

100

This person is LLS' Chief Compliance Officer.

Who is Judith Tribble?

100

One of the risks associated with corporate and risk governance. 

What is [strategic, reputation, compliance, or operational] risk?

200

CMS is one part of this governance structure.

What is enterprise risk management?

200

The two main environments for threats and vulnerabilities.

What are external and internal?

200

First line of defense includes these actors.

What are frontline units/business units?

200
Name of LLS' GRC platform.

What is Resolver?

200

Risk is the _______ an event will occur and affect the achievement of strategic initiatives and business objectives. 

What is "possibility"?

300

This is one of many areas that the Board/Senior Management oversee with a CMS program.

What is [knowledge/commitment to CMS, change management, risk management, or self-identification and corrective actions]?

300

There are three of these when talking about a risk management system.

What are the 3 lines of defense?

300

This is the purpose of the Chief Credit Officer.

What is independently oversee and assess risk?

300

According to Ron Burgundy, this department is kind of a big deal.

What is the Compliance Department?

300

Impact / Severity in a risk assessment examine the potential magnitude of this. 

What is event/threat?

400

These three components make up a compliance management system.

What are Compliance Program, Board/Management Oversight and Compliance Audit?

400

Impact x Likelihood is known as this.

What is inherent risk?

400

The role of internal audit.

What is independent assurance to Board?

400

This actor appeared on the Slide "Enterprise Risk Management."

Who is Eddie Murphy?

400

Impact times likelihood is this type of risk.

What is "Inherent Risk"?

500

A CMS is this type of reaction.

What is "reactive?"

500

Exposure after responses and/or mitigation is called this.

What is residual risk?

500
This organization crafted the concept of the 3 lines of defense.

Who is the Institute of Internal Auditors?

500

This is the size of the yacht Elizabeth crewed.

What is 49 feet?

500

___________ are required after completing a risk assessment.

What is "Risk Report"?