Instructions:
Analyze Amazon’s persistent supply chain disruptions risk event in the past two years.
Create a report to be presented to your board of directors (“Board”), which identifies, assesses, responds to (action plan), and monitors (KRI, including design and frequency.
You should include diagrams to communicate results (e.g. bow-tie, heat map, control effectiveness, risk matrix with inherent/controls/residual).
Submitted papers (document form) should not exceed 5 pages (with readable fonts in diagrams).
Demonstrate your ability to understand, discuss, and evaluate COSO Internal Control Framework and COSO ERM Framework principles. Apply these concepts, terminology, and methodology to risk assess Amazon’s antitrust risk event. Do some research online and prepare the following analysis (using the Internal Control Framework or ERM framework or both):
Risk Identification: root cause analysis including risk factors- triggers and conditions.
Inherent Risk Assessment and Measurement: control weaknesses, likelihood, and impact of risk events with rationale.
Risk Mitigation and Corrective Action Plans: existing mitigation and plan to enhance mitigation for specific risk or control weakness, including actions and timing.
Residual Risk Assessment and Measurement: likelihood and impact of risk event after mitigation in place with rationale, as well as Control Effectiveness Rating (e.g. reflects how much likelihood and impact are reduced by the mitigation).
Risk Monitoring: Establish KRIs around risk factors identified in root cause analysis.