Events posing a threat to achieving goals, particularly financial statement preparation

The likelihood of an auditor finding material misstatements

External factors that only affect the company's reputation

Internal control weaknesses that are easily fixed

Directly implementing risk mitigation actions for the company.

Evaluating the significance and probability of occurrence of identified risks.

Setting the company's overall risk tolerance levels.

Providing detailed financial reporting risk lists to management.