An RCSA is undertaken by ‘the business’ (first line of defence) with support and oversight from the risk management function (second line of defence).
The quality and integrity of the RCSA is one of the main points of concern for Internal Audit (third line of defence) as they seek to provide assurance to the board and executive team, and oversight committees that the firm’s risk profile is within risk appetite boundaries.
The RCSA is a systematic review of the risks and controls within the firm. This is completed by an internal expert(s) and/or by the person who is accountable for the risk.
KRM22’s Global Risk Platform provides applications to help you address your firm’s regulatory, market, technology and operations risk challenges and to manage your entire enterprise risk profile. KRM22 is a public Group listed on AIM and headquartered in London.