Page 1
RT.A.12.3.1 Assessment 2 Question Set 2 – Rubric_V3.1 0921
© 2021 Chartered Accountants Australia and New Zealand ABN 50 084 642 571. All rights reserved.
Risk and Technology
Assessment 2
Rubric
| Requirement 1 Evaluate the current risk management for Clean Hotels (excluding biz4intellia): a) Identify where the RAS is misaligned with the Risk Register and make relevant recommendations to the Risk and Audit Committee. b) Considering Clean Hotels’ strategic objectives, assess which risk category is missing from the Risk Appetite Statement and Risk Register. Recommend four steps management should take to include the identified risk in the risk management process. |
AssignmentTutorOnline
Page 2
RT.A.12.3.1 Assessment 2 Question Set 2 – Rubric_V3.1 0921
© 2021 Chartered Accountants Australia and New Zealand ABN 50 084 642 571. All rights reserved.
| Exemplary 100% |
Highly proficient 75% |
Meets expectation 50% |
Below expectation 25% |
No attempt/ no assessable attempt 0% |
Total |
| Assessment criteria: Evaluate current risk management 1 a) Identify where the current RAS is misaligned with the risk register |
|||||
| Identifies in a clear and concise manner all four areas of misalignment between RAS and risk register and correctly illustrates the misalignments. |
Identifies in a clear and concise manner three areas of misalignment between RAS and risk register and correctly illustrates the misalignments. |
Identifies in a clear and concise manner two areas of misalignment between RAS and risk register and correctly illustrates the misalignments. |
Insufficient, or undeveloped; fails to identify or identifies and illustrates only one misalignment between RAS and risk register. |
No attempt, or no assessable attempt. |
/4 |
| 1 a) Make relevant recommendations to the Risk and Audit Committee | |||||
| Provides clear and logical recommendations on how to address misalignments in all four risk categories. |
Provides clear recommendations on how to address misalignments in three risk categories; occasional inconsistencies evident in logic and clarity. |
Provides clear recommendations on how to address misalignments in two risk categories; at times lacks logic and clarity. |
Provides insufficient or undeveloped recommendations on how to address misalignments in any risk category; logic and clarity not evident or hard to follow. |
No attempt, or no assessable attempt. |
/8 |
| Assessment criteria: Evaluate current risk management 1 b) Given strategic objectives, assess which risk category is missing from the Risk Appetite Statement and Risk Register |
|||||
| Assesses valid missing risk category with concise and logical assessment of alignment with strategic objectives and risk documents. |
Assesses valid missing risk category with basic assessment of alignment with strategic objectives and risk documents. |
Identifies valid missing risk category with insufficient or underdeveloped assessment of alignment with strategic objectives. |
Identifies valid missing risk category with no assessment of alignment with strategic objectives. |
No attempt, or no assessable attempt. |
/4 |
| 1 b) Recommend four steps management should take to include the identified risk in the risk management process |
|||||
| Provides four appropriate recommendations on how to incorporate this missing risk category into the risk management process. |
Provides three appropriate recommendations on how to incorporate this missing risk category into the risk management process; fourth recommendation missing or inappropriate. |
Provides two appropriate recommendations on how to incorporate this missing risk category into the risk management process; third and fourth recommendations missing or inappropriate. |
Provides one valid recommendation on how to incorporate this missing risk category into the risk management process; second and third recommendations missing or inappropriate. |
No attempt, or no assessable attempt. |
/8 |
Page 3
RT.A.12.3.1 Assessment 2 Question Set 2 – Rubric_V3.1 0921
© 2021 Chartered Accountants Australia and New Zealand ABN 50 084 642 571. All rights reserved.
| Requirement 2 For the proposed Biz4Intellia solution: a) Evaluate how introducing the Biz4intellia IoT solution will increase or decrease the residual risk rating for one relevant risk listed in the Risk Register. b) Previous Clean Hotels projects have not been well managed due to poor risk identification and management. For each of the following project risk categories, evaluate one key risk and one potential mitigation strategy (for the selected risk) that Clean Hotels should consider for the project implementation of the Biz4intellia IoT solution: i. Project scope – what needs to be achieved to deliver the project. ii. Project schedule – what needs to be done, which resources must be utilised, and when the project is due. iii. Project cost – total funds needed to monetarily cover and complete the project scope. iv. Customer acceptance – the extent to which a consumer will use a certain innovation. v. Staff acceptance – employee acceptance of the strategic objectives and goals. vi. Information Technology (IT) – management of increased cyber security risks and ensuring access to appropriate technology. c) Continuing on from the customer acceptance section in b) above – evaluate one ethical issue to be considered and explain why this issue is important to Clean Hotels. |
Page 4
RT.A.12.3.1 Assessment 2 Question Set 2 – Rubric_V3.1 0921
© 2021 Chartered Accountants Australia and New Zealand ABN 50 084 642 571. All rights reserved.
| Exemplary 100% |
Highly proficient 75% |
Meets expectation 50% |
Below expectation 25% |
No attempt/ no assessable attempt 0% |
Total |
| Assessment criteria: Proposed Biz4intellia IoT solution 2 a) Impact of Biz4intellia IoT solution on Clean Hotels’ risk management |
|||||
| Identifies relevant risk category with concise and logical evaluation of its relevance and impact on residual risk rating. |
Identifies relevant risk category with concise evaluation of its relevance and impact on residual risk rating; occasional inconsistencies evident in logic. |
Identifies relevant risk category with insufficient or underdeveloped evaluation of its relevance and impact on residual risk rating. |
Identifies relevant risk category with no evaluation. |
No attempt, or no assessable attempt. |
/8 |
| Assessment criteria: Proposed Biz4intellia IoT solution 2 b) Implementation of Biz4intellia IoT solution in Clean Hotels’ project risk management |
|||||
| Evaluates valid key risks for all six project risk categories. |
Evaluates valid key risks for most (four to five) project risk categories. |
Evaluates valid key risks for a some (three) project risk categories. |
Evaluates valid key risks for few (one to two) project risk categories. |
No attempt, or no assessable attempt. |
/8 |
| Provides valid mitigation strategies for all six project risks identified. |
Provides valid mitigation strategies for most (four to five) project risks identified. |
Provides valid mitigation strategies for some (three) project risks identified. |
Provides valid mitigation strategies for few (one to two) project risks identified. |
No attempt, or no assessable attempt. |
/8 |
| Assessment criteria: Proposed Biz4intellia IoT solution 2 c) Evaluate one ethical issue to be considered and explain why this issue is important to Clean Hotels |
|||||
| Assesses relevant ethical issue with concise and logical evaluation of its relevance and importance. |
Assesses relevant ethical issue with basic evaluation of its relevance and/or importance. |
Assesses relevant ethical issue with insufficient or underdeveloped evaluation of its relevance and importance. |
Assesses a relevant ethical issue with no evaluation. |
No attempt, or no assessable attempt. |
/4 |
Page 5
RT.A.12.3.1 Assessment 2 Question Set 2 – Rubric_V3.1 0921
© 2021 Chartered Accountants Australia and New Zealand ABN 50 084 642 571. All rights reserved.
| Exemplary 100% |
Highly proficient 75% |
Meets expectation 50% |
Below expectation 25% |
No attempt/ no assessable attempt 0% |
Total |
| Assessment criteria: Structure of a board paper | |||||
| Consistently clear, and unambiguous professional written language; form of written communication appropriate for the audience. No inconsistencies. |
Mostly clear and unambiguous professional written language; form of written communication appropriate for the audience. |
Less clear and often ambiguous written language that is not appropriate for the audience. Uses some inappropriate or ineffective language. |
Written language is unclear and ambiguous. Use of written language inappropriate for the audience. |
No attempt, or no assessable attempt. |
/4 |
| Highly accurate grammar, spelling, and sentence structure throughout the report. No errors evident. |
Few errors in grammar, spelling, and sentence structure throughout the report. |
There are some consistent errors in grammar, spelling. and sentence structure throughout the report. |
Comprehension difficult due to frequent errors in grammar, spelling, and sentence structure throughout the report. |
No attempt, or no assessable attempt. |
/4 |
