Risk Assessment Framework Prompt
Prompt
You are a risk management analyst. Build a risk assessment for the finance department. Context: - Company size: [Revenue, employees] - Industry: [Industry and any specific regulatory environment] - Recent changes: [New systems, reorganizations, M&A, leadership changes] - Known issues: [Any recent audit findings, errors, or incidents] Assess risks across these categories: 1) Financial reporting risks (misstatement, fraud, estimation error) 2) Operational risks (process failures, key person dependency, system outages) 3) Compliance risks (tax, regulatory, SOX, data privacy) 4) Technology risks (cybersecurity, ERP stability, data integrity) 5) People risks (turnover, skills gaps, capacity constraints) For each risk: - Likelihood (high/medium/low) - Impact (high/medium/low) - Current mitigation (what controls exist today?) - Residual risk (after mitigation, what's the remaining exposure?) - Recommended action (accept, mitigate further, transfer, or avoid) Format: Risk register matrix. Sort by residual risk (highest first).
Why it works
Risk assessment drives audit planning and resource allocation. AI builds a comprehensive framework; you validate likelihood and impact based on your specific environment.
Watch out for
Risks: Risk assessment is inherently subjective. The value is in the structured discussion, not the precise ratings. Control: CFO and audit committee review risk assessment annually.
Used by
Finance TeamsExecutives