RICHFIELD

FACULTY OF INFORMATION TECHNOLOGY

IT RISK MANAGEMENT 600
ST
1 SEMESTER ASSIGNMENT
Name & Surname: _________________________________ ICAS No: _________________

Qualification: ______________________ Semester: _____ Module Name: __________________________

Date Submitted: ___________

ASSESSMENT CRITERIA MARK EXAMINER MODERATOR

ALLOCATION MARKS MARKS
MARKS FOR CONTENT
QUESTION ONE 30
QUESTION TWO 30
QUESTION THREE 30

TOTAL MARKS 90
MARKS FOR TECHNICAL ASPECTS
1. TABLE OF CONTENTS
Accurate numbering according to the numbering in text 2
and page numbers.
2. LAYOUT AND SPELLING
Font – Calibri 12
3
Line Spacing – 1.0
Margin should be justified.
3. REFERENCE
5
According to the Harvard Method
TOTAL MARKS 10
TOTAL MARKS FOR ASSIGNMENT 100
Examiner’s Comments:

Moderator’s Comments:

Signature of Examiner: Signature of Moderator:

QUESTIONS ONE [30 MARKS]

1.1 When planning a project it is important to learn about the internal and external factors that
can affect the project. There are some excellent strategic planning methods that you can use to
analyse all these factors. SWOT analysis and PEST analysis are two of the most frequently used
planning methods or strategies

1.1.1 Based on the above statement, use the SWOT and PEST strategies in an organization of your
choice to illustrate how the organisation can use these tools for competitive advantage.
Justify your essay with theory and practical examples. (15)

1.2 A risk manager is instructed to determine the impact of a possible fire on the organisation.
Critically evaluate any five of the methods that might assist the risk manager in determining the
severity of such a possible loss for the organisation. Support your evaluation with theory and
practical examples. (15)

QUESTIONS TWO [30 MARKS]

2.1 ENTERPRISE RISK MANAGEMENT

In today's business environment, the effective management of enterprise risk is a key factor in
planning for any organization's long-term viability. As a result, enterprise risk management (ERM)
has shifted from a "good business" discussion to a "mission critical" means of addressing volatility.

2.1.1 The effective management of risk is essential if organisations are to achieve their
objectives and satisfy the needs of their stakeholders. In view of this statement, evaluate the
benefits of effective implementation of Enterprise Risk Management in a technology firm. (15)

2.2 There are three Codes of Governance (Sarbanes) in South Africa. Each became more relevant
than the prior because it entails the contents of the prior as well as new contacts. Analyse the three
Codes of Governance elaborating on how each became more influential than the prior. Provide
valid South African examples where possible to support your analysis. (15)
QUESTIONS THREE [30 MARKS]

3.1 Define business ethics management and discuss the benefits of implementing ethics risk
management in an organisation. (10)

3.2 The reality is “you cannot grow a business without taking risks, and you cannot take risks without
being prepared”. Elaborate on the meaning of this statement with specific reference to the
roles IT plays in risk management. (10)

3.3 Themba has been appointed as the project manager for Group Five Construction (Pty) Ltd, a
company that has been awarded a tender to build Reconstruction and Development Programme
(RDP) houses in Limpopo. You have organized a meeting to plan risk management.

3.3.1 Who could be the possible attendees to this meeting? (At least 4 FOUR). Explain and justify
their roles in a project. (10)
TOTAL MARKS: 100