Poroy. ae lurecess ‘Rei Geaed acing’ A Vale tag Prepon CASE STUDY For your organization, review the qualifications and backgrounds ofthe individuals on your Board of Direciors (BOD) and Executve Team. Are any major skil sets missing? ‘Are there specific needs fr any open postions? Skit ets covered by BOD: ‘Skil sets missing within BOD, ‘Skil sels covered by Executive Team: ‘Skil sets missing within Executive Team: “Tishaa of rat Anais, Atsmenio Spgs FLO 2008 Cane Say 70712ee Facinad ing Avan nee Prapaanon Case Sd [Also review your organization's mission, sion, valves and stakeholders, Tiission Vision values ‘Stakeholders ee [Te ate of ral Actor, Atari Spiga FL ©2008, Gane Stay? IE“Fi Bed Racing A Vales hd Brpoaien ry What elements of good Corporate Governance can you identify? Pefu 4 of 1g 4 pe yee athe Whelpry — What gaps in Corporate Governance can you identify? Fete Py A ANE 4 porn gape = & gaunt “Thane of eral Anion, laments Spiga, FLO 00 Gara Susy SaOo Fined Rag’ A Vaud Prowonion ore Strategy and Risks — 400057? ; ahve Consider your ocganzaton's strategy. T Tob. «How robust de you think the sratene panning process is? woeeny ‘© Who should! be involved inthe strategic planning process? Mop ones ‘©. Who should oun the strategic planning process? ‘© How would you provide reasonable assurance thatthe strategy would be carried out as determined? nh ones Peter nal He © How woul yes monte sucees of te satay asi evolved? o Tewhom woud you report progress the sates evohed? vi cannes cite qipne teri dene oO “Fo ane of rat Aas, Rianne Songs FLO 2008 Casas“Bia Rang A Vale A apeaiog Der Ychl Strategy and Risks: Small-Group Activity“ “jrene-{ Pash : Ffaor arpie isc inageent ea process fete by an en's board of rectors, ‘management, and atherrersonnel, applied in a strategy setting across the enterprise. ‘The process is designed fo identify potential everts that may affect the enily, manage risks tobe within ifs isk appetite, and provide reasonable assurance regarding the fchieverent of enlty objectives. In your group, brainstorm the broad risks to your organization's strategy as you Understand them. Make any assumptions based on your business experience. Assign them to the four broad ris categories of Stategic, Operational, Financial, of Compliance, Broad risks to strategy: Risk Category 1 2 Sena pew 10. What are the three moet eel seks a8 you understand your curtent business medel? 1 2 3. ‘The tte of wionalAadios,Alamonte Spings, FLO 7009 Cae Samy BaP‘His Baed Acg. A aba iss Propenion aS Key Business Processes: Small-Group Activity ‘business process is a collecion of elated, structured acivites~a chain of events ‘that produce 8 specie serves or product for a particular customer or customers. ‘A business process's a series of actions thatis definable, repeatable, and messurable that supports the enferpse’s objectives within a known ik a Cay clon inyour smal gfoups, corsider the strategy and review the departments of a typical division, Idently the Key business processes that should be aligned wit the strategy. ‘Consider how you might erganize processes across department lines to align the key business processes tothe overall organizational strategy. nce Pea PRR ontewty fe Bo pres 2 3 a ebebe & & r omy Wane “a i ofrecer Sng, FL © 2000 Cae Suay 6oFEpoked on WiSton, viSio b Com PPOY obircotiah ‘What ore the three most sgnicant business processes relative tothe overall strategy? 1 2 - ——— 3 Does your group have any consensus around the three most signifcant business processes? “The nse a nea Aoaion Alamos Spings LOMO Ca SuayTot?eee ‘icine ung A Von RS Proposon ‘Sasa Sh Business Process Objective: Small-Group Activity ‘buts ofa business process objecve: © Cleary defined deliverable or outcome ‘© Inludes the business event that tiggers the process © States inputs and aubuts Includes business decisions that are part ofthe event response May indicate fw of material or infermation between process st tn your small groups, rie a process objective statement for one ofthe three most ‘igniicant business processes you defined onthe previous page. Seek consensus on the phrases that wouls be te fist rough draft ofan objective statement that would ‘satisfy the attributes noted above. Do not try to draft an elegant statement for ‘publication. Your tasks to identify the key elements to define and describe the business process you selected Business Process Objective Statoment: ee _—————— ee ) = Samia a ee sata wba an es ao tt an SAA “a“Fi Bad Rucig’ A Vie A ogonion ry Risks to the Business Process: Small-Group Activity Risk is any event occuring that wil have an impact onthe achievement of ebjectves and is measured in ernisof impact and iketnood Categories of RK © Strategic Reputation, plannira, market, prising, legislative, regulatory, products, services © Operational HR, IT, asset manegement, feud, communications, costs © Reporting ‘Outside financial, management information, reputation, stakeholder information ‘© Compliance Regulatory. SOX, Health, Safely, HIPAA {In your group, use the defniton ofthe business process objective you selected and deni the risks to meeting the objective. Organize the risks you identified within the four categories (Strategic, Operational, Reporting, ard Compliance). Adatonaly, Inca the lkelinood andimpact ofthe identified risks using a high, medium, and low scale (H, M, and L). Finaly, assign a score of 1,2, or 3 to datermine the Fighest risks ‘considering both liketnood and impact. For exam, you might rata a specic inherent "isk as high impact (H) but low ikelhood(L). The overall risk score might therefore be a 2, you rated a specific inherent risk as high impact and medium likelinood, the overall ‘isk Score might be f. You are free to apply whatever scale makes sense to you “The nse ores Adlon, Alanna Spinga FLOOD Gass Suaysorte—————— Fis Be Rang: A VauS RT ropoalion Tae Rists to the Business Process: Worksheet Likely t _——————— eae EEE ee _ [Taine era ior Namo Songs, FL ©2008, Coa Sagy OTEIdentifying Controls: Small-Group Activity “A contol sary action taken by management, the board, and other parties to manage {isk and increase the lkelhood that established objectives and goals will be achieved ‘Management plans, organizes, and directs the performance of sufficient actions to provide reasonable assurance that objectives and goals wil be achieved. Inyour group, review the risks you have identied and determine the key or citcal Controls you would expect find to effectively manage the risks in a cost-ffective ‘manne. Consider both enty-wide controls and activly.based contol. Entty-wide Contos include integrity and ethical values, commitment of competence, management's Philosophy and operating syle, organizational stucture, assignment of authori and Fesponsibity, HR polices and practices, board of directors and audit committee, ‘Additionally indicate how you would test these contro. “Theinstie of iriamat Aucion, Alanante Spengs FLOZ009 Cae Susy 10oe FB Auda A Vas a Prepoalion Cae Sy Controls to Manage the Risks: Workshect ols for Str Tost hn eee “The st eral Anore, Atowont Spgs FL 2009 Cas DAR