Certification in Control Self-Assessment® (CCSA®) Exam Syllabus — Domain V
Domain V: Risk Identification and Assessment (15-20%)
(P) = Candidates must exhibit proficiency (thorough understanding; ability to apply concepts) in these topic areas.
(A) = Candidates must exhibit awareness (knowledge of terminology and fundamentals) in these topic areas.
A. Risk Theory (P)
- Defining risk
- Relationship of risk to strategic, operational, or process objectives
- Risk tolerance, residual risk, and exposure
- Impact assessment
B. Risk models/frameworks (including COSO's Enterprise Risk Management/Integrated Framework) (P)
C. Understanding the risks inherent in common business processes (P)
D. Application of risk identification and assessment techniques (P)
E. Risk management techniques/cost-benefit analysis (P)
- Transfer, manage, or accept
- Impact/cost-benefit analysis
F. Using CSA in enterprise risk management (P)