CN117787714A - Risk assessment method and device for enterprise, storage medium and terminal equipment - Google Patents
Risk assessment method and device for enterprise, storage medium and terminal equipment Download PDFInfo
- Publication number
- CN117787714A CN117787714A CN202311841965.9A CN202311841965A CN117787714A CN 117787714 A CN117787714 A CN 117787714A CN 202311841965 A CN202311841965 A CN 202311841965A CN 117787714 A CN117787714 A CN 117787714A
- Authority
- CN
- China
- Prior art keywords
- risk
- internal
- external
- score
- enterprise
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 52
- 238000012502 risk assessment Methods 0.000 title claims abstract description 31
- 238000013507 mapping Methods 0.000 claims description 20
- 238000011156 evaluation Methods 0.000 claims description 10
- 238000012544 monitoring process Methods 0.000 claims description 9
- 238000004590 computer program Methods 0.000 claims description 4
- 239000003086 colorant Substances 0.000 claims description 3
- 238000004364 calculation method Methods 0.000 abstract description 5
- 230000000694 effects Effects 0.000 abstract description 3
- 238000004891 communication Methods 0.000 description 17
- 230000002159 abnormal effect Effects 0.000 description 9
- 230000006870 function Effects 0.000 description 8
- 238000012545 processing Methods 0.000 description 7
- 238000010586 diagram Methods 0.000 description 5
- 230000008569 process Effects 0.000 description 5
- 230000010485 coping Effects 0.000 description 2
- 238000011161 development Methods 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 239000004973 liquid crystal related substance Substances 0.000 description 2
- 230000009466 transformation Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 239000013307 optical fiber Substances 0.000 description 1
- 238000009877 rendering Methods 0.000 description 1
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The embodiment of the application discloses a risk assessment method, a risk assessment device, a storage medium and terminal equipment for enterprises, and relates to the field of risk management. The method comprises the steps of counting the occurrence times of at least one external risk factor associated with each external risk problem, and calculating the risk score and the risk grade of the external risk problem according to the occurrence times and the weight. Counting the number of related units and the amount of related units of at least one internal risk factor associated with each internal risk problem, calculating the score of each internal risk factor according to the counted data, calculating the risk score and the risk grade of the internal risk problem according to the score and the weight of each internal risk factor, and then generating a risk problem list of the enterprise according to the calculation results of the internal risk problem and the external risk problem. The enterprise risk assessment method based on the internal assessment model and the external assessment model uses a plurality of different dimensions to assess enterprise risk, achieves quantitative assessment of enterprise risk, and improves accuracy and intuitiveness of assessment effects.
Description
Technical Field
The present invention relates to the field of risk management, and in particular, to a risk assessment method, apparatus, storage medium and terminal device for an enterprise.
Background
Company strategic transformation and management transformation require that the risk management work of enterprises can adapt to more open and marketable operation environments, and simultaneously along with the vigorous development of advanced information communication technology, the digital development trend is more obvious, and the pneumatic control function is required to be actively developed in the aspect of digital speaking, so that the application of big data technology and models in the field of risk management is deeply explored and advanced, and at present, when each enterprise carries out the risk management work, the situation that the improvement is needed in the aspect of scientifically, efficiently and accurately presenting the risk assessment result still exists.
Disclosure of Invention
The embodiment of the application provides a risk assessment method, a risk assessment device, a storage medium and terminal equipment for enterprises, which can intuitively and accurately assess the risk of the enterprises. The technical scheme is as follows:
in a first aspect, an embodiment of the present application provides a risk assessment method for an enterprise, where the method includes:
acquiring an external risk problem library and an internal risk problem library of an enterprise; wherein the external risk problem library comprises at least one external risk problem and the internal risk problem library comprises at least one internal risk problem;
aiming at each external risk problem, acquiring at least one external risk factor associated with the external risk problem, counting the occurrence times of each external risk factor, determining the score of each external risk factor according to the occurrence times, calculating the risk score of the external risk problem according to the weight and the score of each external risk factor, and determining the risk grade according to the risk score of the external risk problem;
aiming at each internal risk problem, acquiring at least one internal risk factor associated with the internal risk problem, counting the related unit quantity and the related amount of each internal risk factor, calculating the score of the internal risk factor according to the related unit quantity and the related amount, calculating the risk score of the internal risk problem according to the weight and the score of each internal risk factor, and calculating the risk grade of the internal risk problem according to the risk score;
and generating a risk problem list of the enterprise according to the risk scores and the risk grades of the external risk problems and the risk scores and the risk grades of the internal risk problems.
In a second aspect, an embodiment of the present application provides a risk assessment apparatus for an enterprise, the apparatus including:
the acquiring unit is used for acquiring an external risk problem library and an internal risk problem library of the enterprise; wherein the external risk problem library comprises at least one external risk problem and the internal risk problem library comprises at least one internal risk problem;
the external evaluation unit is used for acquiring at least one external risk factor associated with each external risk problem, counting the occurrence times of each external risk factor, determining the score of each external risk factor according to the occurrence times, calculating the risk score of the external risk problem according to the weight and the score of each external risk factor, and determining the risk grade according to the risk score of the external risk problem;
the internal evaluation unit is used for acquiring at least one internal risk factor associated with each internal risk problem, counting the related unit quantity and the related amount of each internal risk factor, calculating the score of the internal risk factor according to the related unit quantity and the related amount, calculating the risk score of the internal risk problem according to the weight and the score of each internal risk factor, and calculating the risk grade of the internal risk problem according to the risk score;
and the generation unit is used for generating a risk problem list of the enterprise according to the risk scores and the risk grades of the external risk problems and the risk scores and the risk grades of the internal risk problems.
In a third aspect, embodiments of the present application provide a computer storage medium storing a plurality of instructions adapted to be loaded by a processor and to perform the above-described method steps.
In a fourth aspect, embodiments of the present application provide a server, which may include: a processor and a memory; wherein the memory stores a computer program adapted to be loaded by the processor and to perform the above-mentioned method steps.
The technical scheme provided by some embodiments of the present application has the beneficial effects that at least includes:
according to an external risk problem library set by an enterprise, counting the occurrence times of at least one external risk factor associated with each external risk problem, and calculating the risk score and the risk grade of the external risk problem according to the occurrence times and the weight. According to an internal risk problem library set by an enterprise, counting the number of related units and the amount of related units of at least one internal risk factor associated with each internal risk problem, calculating the score of each internal risk factor according to the counted data, calculating the risk score and the risk grade of each internal risk problem according to the score and the weight of each internal risk factor, and then generating a risk problem list of the enterprise according to the calculation results of the internal risk problem and the external risk problem. The enterprise risk assessment method based on the internal assessment model and the external assessment model uses a plurality of different dimensions to assess enterprise risk, achieves quantitative assessment of enterprise risk, and improves accuracy and intuitiveness of assessment effects.
Drawings
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings that are required in the embodiments or the description of the prior art will be briefly described below, it being obvious that the drawings in the following description are only some embodiments of the present application, and that other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
Fig. 1 is a schematic diagram of a network architecture provided in an embodiment of the present application;
FIG. 2 is a flow chart of a risk assessment method for an enterprise according to an embodiment of the present application;
FIG. 3 is a schematic structural diagram of an enterprise risk assessment apparatus provided in the present application;
fig. 4 is a schematic structural diagram of a terminal device provided in the present application.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the present application more apparent, the following detailed description of the embodiments of the present application will be given with reference to the accompanying drawings.
It should be noted that, the risk assessment method of the enterprise provided in the present application is generally executed by a server, and accordingly, the risk assessment device of the enterprise is generally disposed in the server.
FIG. 1 illustrates an exemplary system architecture of a risk assessment method or risk assessment apparatus that may be applied to an enterprise of the present application.
As shown in fig. 1, the system architecture may include: a terminal device 101 and a server 102. The communication between the terminal device 101 and the server 102 may be performed through a network for the medium providing the communication link between the above-mentioned respective units. The network may include various types of wired or wireless communication links, such as: the wired communication link includes an optical fiber, a twisted pair wire, a coaxial cable, or the like, and the WIreless communication link includes a bluetooth communication link, a WIreless-FIdelity (Wi-Fi) communication link, a microwave communication link, or the like.
The server 102 stores internal data collected from an information management system of an enterprise and external data collected from a credit service website of a blockchain network or a third party, the external data represents the occurrence times of each external risk factor, the internal data represents the number of units involved and the amount involved of each internal risk factor, and the terminal device 101 obtains the external data and the internal data in the server 102 to evaluate the risk of the enterprise.
The terminal device 101 and the server 102 may be hardware or software. When the terminal apparatus 101 and the server 102 are hardware, they may be realized as a distributed server cluster composed of a plurality of servers, or as a single server. When the terminal device 101 and the server 102 are software, they may be implemented as a plurality of software or software modules (for example, to provide distributed services), or may be implemented as a single software or software module, which is not particularly limited herein.
Various communication client applications can be installed on the terminal device of the present application, for example: video recording applications, video playing applications, voice interaction applications, search class applications, instant messaging tools, mailbox clients, social platform software, and the like.
The terminal device may be hardware or software. When the terminal device is hardware, it may be various terminal devices with a display screen including, but not limited to, smartphones, tablet computers, laptop and desktop computers, and the like. When the terminal device is software, the terminal device may be installed in the above-listed terminal device. Which may be implemented as multiple software or software modules (e.g., to provide distributed services), or as a single software or software module, without limitation.
When the terminal equipment is hardware, a display device and a camera can be arranged on the terminal equipment, the display device can be various equipment capable of realizing the display function, and the camera is used for collecting video streams; for example: the display device may be a cathode ray tube display (cathode ray tube display, CR), a light-emitting diode display (light-emitting diode display, LED), an electronic ink screen, a liquid crystal display (liquid crystal display, LCD), a plasma display panel (plasma displaypanel, PDP), or the like. The user can view the displayed text, picture, video and other information by using the display device on the terminal device.
It should be understood that the number of terminal devices, networks and servers in fig. 1 is merely illustrative. Any number of terminal devices, networks, and servers may be used as desired for implementation.
The method for risk assessment of an enterprise according to the embodiment of the present application will be described in detail with reference to fig. 2. The risk assessment device of the enterprise in the embodiment of the present application may be a terminal device shown in fig. 1.
Referring to fig. 2, a flow chart of a risk assessment method for an enterprise is provided in an embodiment of the present application. As shown in fig. 2, the method according to the embodiment of the present application may include the following steps:
s201, acquiring an external risk problem library and an internal risk problem library of an enterprise.
Wherein, the user establishes an external risk problem library and an internal risk problem library for the enterprise according to the actual evaluation requirement, and the external risk problem library comprises at least one external risk problem, for example: the external risk problems are: judicial risks, management risks, public opinion risks and tax risks. The internal risk problem library includes at least one internal risk problem, such as: the internal risk problems are funds management risk, accounting risk and financial tax management risk. Each external risk question in the external risk question bank is pre-associated with at least one external risk factor, and each internal risk question in the internal risk question bank is pre-associated with at least one internal risk factor. For example: the external risk factors associated with a certain external risk problem are: administrative penalty events, legal litigation events, and tax violation events. The internal risk factors associated with a certain internal risk problem are: fund transaction anomalies, accounts payable anomalies, and incompatible post violation anomalies.
In some embodiments of the present application, the terminal device may display a risk monitoring configuration interface, where a user creates an external risk problem library and an internal risk problem library of an enterprise on the interface by using an input unit, sets one or more external risk factors for each external risk problem in the external risk problem library, and sets one or more internal risk factors for each internal risk problem in the internal risk problem library, so as to implement risk monitoring of multiple dimensions of the enterprise according to actual requirements.
S202, aiming at each external risk problem, acquiring at least one external risk factor associated with the external risk problem, counting the occurrence times of each external risk factor, determining the score of each external risk factor according to the occurrence times, calculating the risk score of the external risk problem according to the weight and the score of each external risk factor, and determining the risk grade according to the risk score of the external risk problem.
The method for calculating the risk score of each external risk problem in the external risk problem library by the terminal equipment comprises the following steps: acquiring at least one external risk factor associated with the external risk problem, counting the occurrence times of each external risk factor, and calculating a score corresponding to the occurrence times of each external risk factor according to a preset external risk factor scoring rule, for example: the external risk factor scoring rule is expressed by adopting a mapping relation between the occurrence frequency interval and the score, the occurrence frequency interval in which the occurrence frequency of the external risk factor falls is judged, and then the corresponding score is determined according to the occurrence frequency interval. Each external risk factor is provided with a weight, the sum of the weights of all external risk factors associated with the same external risk problem is equal to 1, the risk score of the external risk problem is calculated according to the score and the weight of each external risk factor, and the risk grade of the external risk problem is determined according to the risk score of the external risk problem, for example: the mapping relation between the scoring areas and the risk levels is preset, the risk levels are determined according to the scoring areas where the risk scores of the external risk problems are located, the number of the risk levels can be determined according to actual requirements, and the application is not limited.
For example, according to the example of S201, the external risk factor associated with the external risk problem 1 is: the method comprises the steps of counting an administrative punishment event, a legal litigation event and a tax illegal event of an enterprise, wherein the occurrence frequency of the administrative punishment event of the enterprise is counted to be X1, the occurrence frequency of the legal litigation event is counted to be X2, the occurrence frequency of the tax illegal event is counted to be X3, the weight of the administrative punishment event is α1=0.3, the weight of the legal litigation event is α2=0.4, and the weight of the tax illegal event is α3=0.3. The external risk factor scoring rule preconfigured by the terminal equipment is expressed as follows: the occurrence times are more than or equal to 10, and the score is full; the occurrence frequency is more than or equal to 6 and less than 10, and the score is 80% of full score; the occurrence frequency is more than or equal to 3 and less than 6, and the score is 60% of full score; the occurrence times are less than 3 and more than 0, and the score is 30% of full score; the number of occurrences equals 0, scoring 0. The full score can be determined according to actual requirements, for example: the full scale is 100 minutes. Obtaining a score S1 of an administrative punishment event, a score S2 of a legal litigation event and a score S3 of a tax illegal event according to the counted occurrence times and a preset external risk factor scoring rule, and then calculating a risk score of the external risk problem 1 according to the weight of each external risk factor as follows: s1×α1+s2×α2+s3×α3. The terminal equipment is preconfigured with a mapping relation between a risk score interval and a risk grade: the risk score is more than 80 points, and the risk grade is high risk; the risk score is more than 40 and less than or equal to 80, and the risk grade is medium risk; the risk score is less than or equal to 40, and the risk grade is low risk. And determining the risk grade corresponding to the calculated risk score according to the mapping relation. According to the method, the risk scores and the risk grades of all the external risk problems in the external risk problem library can be calculated.
In some embodiments of the present application, the terminal device may count the occurrence times of each external risk factor of the enterprise in the blockchain network, enhance the reliability of the data source, and improve the accuracy of risk assessment of the enterprise. The terminal equipment can acquire the occurrence times of various external risk factors of the enterprise through the authoritative credit service website, and the terminal equipment can access the website through a remote access mode.
S203, at least one internal risk factor associated with each internal risk problem is obtained, the number of related units and the related amount of each internal risk factor are counted, the score of the internal risk factor is calculated according to the number of related units and the related amount, the risk score of the internal risk problem is calculated according to the weight and the score of each internal risk factor, and the risk grade of the internal risk problem is calculated according to the risk score.
The terminal equipment calculates the risk scores and the risk grades of all the internal risk problems in the internal risk problem library, and the calculating method comprises the following steps: at least one internal risk factor associated with the internal risk problem is obtained, the number of related units and the related amount of each internal risk factor in the enterprise are counted, and the score of the internal risk factor is calculated according to the number of related units and the related amount of money. For example: the terminal equipment is preconfigured with a first mapping relation between the related unit quantity and the occurrence probability score and a second mapping relation between the related sum and the influence degree score, the corresponding occurrence probability score is inquired in the first mapping relation according to the related unit quantity of the counted internal risk factors, the corresponding influence degree score is inquired in the second mapping relation according to the related sum of the counted internal risk factors, and the score of the internal risk factors is obtained after the occurrence probability score and the influence degree score are multiplied. After calculating the scores of the internal risk factors, calculating the risk scores of the internal risk problems by combining the weights of the internal risk factors, and then calculating the corresponding risk levels according to the mapping relation between the risk scores and the risk levels.
For example, according to the example of S201, the internal risk factors associated with the internal risk problem 2 are: fund transaction anomalies, accounts payable anomalies, and incompatible post violation anomalies. Counting the number of related units of the abnormal event of the fund transaction in an enterprise as A1 and the related amount as B1; counting the number of related units of the payable abnormal event in the enterprise as A2 and the related amount as B2; the number of related units of the enterprise, which is used for counting incompatible post violation abnormal events, is A3, and the related amount is B3. The first mapping relation configured by the terminal equipment is expressed as follows: the number of related units is less than 5, and the occurrence probability score is 1; a probability of occurrence score of 2, involving a number of units greater than or equal to 5 and less than 10; a probability of occurrence score of 3, involving a number of units greater than 10 and less than 20; a probability of occurrence score of 4, involving a number of units greater than or equal to 20 and less than 30; involving a number of units greater than or equal to 30, the occurrence probability score is 5 points. The second mapping relationship is expressed as: the related amount is less than 10 ten thousand yuan, and the influence degree score is 1 score; the related amount is more than or equal to 10 ten thousand and less than 100 ten thousand, and the influence degree score is 2 points; the related amount is more than or equal to 100 ten thousand and less than 200 ten thousand, and the influence degree score is 3 points; the related amount is more than or equal to 200 ten thousand and less than 500 ten thousand, and the influence degree score is 4 points; the related amount is more than or equal to 500 ten thousand, and the influence degree score is 5 points. And multiplying the occurrence probability score and the influence degree score of the fund transaction abnormal event, the receivable coping abnormal event and the incompatible post violation abnormal event according to the first mapping relation and the second mapping relation to obtain a final score. Assuming that scores of the fund transaction abnormal event, the receivable coping abnormal event and the incompatible post violation abnormal event are G1, G2 and G3, respectively, weights are β1, β2 and β3, respectively, a risk score of the internal risk problem 2 is g1×β1+g2×β2+g3×β3. The terminal device is preconfigured with a mapping relationship between the risk score interval and the risk level, for example: the mapping relationship is expressed as: risk score greater than 16, risk grade high risk; the risk score is greater than 4 and less than or equal to 16, and the risk grade is medium risk; the risk score is less than or equal to 4, and the risk grade is low risk. According to the calculation method, the risk scores and the risk grades of all the internal risk problems in the internal risk problem library can be calculated.
Further, for comparison, the maximum risk scores of the external risk problem and the internal risk problem are equal, and the type of the set risk level, and the mapping relationship between the risk level and the risk score interval are also the same, for example: the maximum risk scores were all 100, and the risk classes included high risk, medium risk, and low risk.
Further, the terminal device may be configured by an information management system deployed by an enterprise, for example: ERP system or SAP system, etc. to obtain the unit number and the amount of each internal risk factor, to improve the credibility of data source, the information management system is integrated into a communication interface, and the terminal device can use the communication interface to obtain the needed data by using the API mode.
Further, in some embodiments of the present application, the server periodically collects the occurrence times of the external risk factors according to the external risk problem library, then stores the collected external data in the database, and the terminal device periodically collects the related amount and the related unit number of the internal risk factors according to the internal risk problem library, then stores the collected external data in the database, and the terminal device subsequently directly obtains the external data and the internal data in the database without collecting the external data and the internal data, which can save the calculation overhead of the terminal device and improve the processing efficiency.
S204, generating a risk problem list of the enterprise according to the risk scores and the risk grades of the external risk problems and the risk scores and the risk grades of the internal risk problems.
The terminal device generates a risk problem list of the enterprise according to the risk scores and the risk grades of the external risk problems calculated in S202 and the risk scores and the risk grades of the internal risk problems calculated in S203. Further, the terminal device may display a risk problem list on the risk monitoring interface through a statistical chart, for example: the statistical chart is a histogram, the abscissa in the statistical chart represents each external risk problem and each internal risk problem, the ordinate represents the risk scores and risk grades of the risk problems, the risk scores are arranged in descending order according to the size, and different risk grades are marked with different colors, for example: the high risk mark is red, the middle risk mark is blue, and the low risk mark is green, so that a user can intuitively know the risk distribution situation of enterprises in different dimensions through the risk monitoring page.
Further, in order to more comprehensively understand the external risk problem of the enterprise, the terminal device may obtain a collaboration unit list of the enterprise, for example: the information management system of the enterprise is used for acquiring a collaboration unit list of the enterprise, the collaboration unit refers to a provider or a customer, then the risk score and the risk grade of each external risk problem of the collaboration unit are calculated according to the external risk problem library, and the calculating method can refer to the process of S202 and is not repeated here. Through the risk assessment of the cooperation units of the enterprise, the risk situation of the enterprise can be more comprehensively known.
According to the method and the device, the occurrence times of at least one external risk factor associated with each external risk problem are counted according to an external risk problem library set by an enterprise, and the risk score and the risk grade of the external risk problem are calculated according to the occurrence times and the weight. According to an internal risk problem library set by an enterprise, counting the number of related units and the amount of related units of at least one internal risk factor associated with each internal risk problem, calculating the score of each internal risk factor according to the counted data, calculating the risk score and the risk grade of each internal risk problem according to the score and the weight of each internal risk factor, and then generating a risk problem list of the enterprise according to the calculation results of the internal risk problem and the external risk problem. The enterprise risk assessment method based on the internal assessment model and the external assessment model uses a plurality of different dimensions to assess enterprise risk, achieves quantitative assessment of enterprise risk, and improves accuracy and intuitiveness of assessment effects.
The following are device embodiments of the present application, which may be used to perform method embodiments of the present application. For details not disclosed in the device embodiments of the present application, please refer to the method embodiments of the present application.
Referring to fig. 3, a schematic structural diagram of a risk assessment apparatus for an enterprise according to an exemplary embodiment of the present application is shown, which is hereinafter referred to as apparatus 3. The apparatus 3 may be implemented as all or part of a terminal device by software, hardware or a combination of both. The device 3 comprises: an acquisition unit 301, an external evaluation unit 302, an internal evaluation unit 303, a generation unit 304.
An acquiring unit 301, configured to acquire an external risk problem library and an internal risk problem library of an enterprise; wherein the external risk problem library comprises at least one external risk problem and the internal risk problem library comprises at least one internal risk problem;
an external evaluation unit 302, configured to obtain, for each external risk problem, at least one external risk factor associated with the external risk problem, count the occurrence number of each external risk factor, determine a score of each external risk factor according to the occurrence number, calculate a risk score of the external risk problem according to the weight and the score of each external risk factor, and determine a risk level according to the risk score of the external risk problem;
an internal evaluation unit 303, configured to obtain, for each internal risk problem, at least one internal risk factor associated with the internal risk problem, count a number of units involved and an amount involved of each internal risk factor, calculate a score of the internal risk factor according to the number of units involved and the amount involved, calculate a risk score of the internal risk problem according to weights and scores of the internal risk factors, and calculate a risk level of the internal risk problem according to the risk score;
the generating unit 304 is configured to generate a risk problem list of the enterprise according to the risk score and the risk level of each external risk problem, and the risk score and the risk level of each internal risk problem.
In one or more possible embodiments, the calculating the score of the internal risk factor from the related unit quantity and the related amount includes:
inquiring corresponding occurrence probability scores in a first mapping relation according to the number of related units;
inquiring the corresponding influence degree score in the second mapping relation according to the related amount;
multiplying the occurrence likelihood score by the impact level score yields a score for an internal risk factor.
In one or more possible embodiments, further comprising:
the monitoring unit is used for displaying a risk problem list on the risk monitoring interface through the statistical chart; and each risk problem in the statistical chart is arranged in a descending order according to the magnitude of the risk score, and the risk problems of different risk grades are marked by different colors.
In one or more possible embodiments, the number of occurrences of the external risk factor for the enterprise is obtained from the blockchain network; the amount and the number of units involved of each internal risk factor are obtained from the enterprise's information management system.
In one or more possible embodiments, the risk level is high risk, low risk, or medium risk; the maximum risk scores for the external risk problem and the internal risk problem are equal.
In one or more possible embodiments, the external evaluation unit 301 is further configured to obtain a collaboration unit list of the enterprise; the collaboration unit list comprises at least one collaboration unit, wherein the collaboration unit is a provider or a customer;
and calculating the risk scores and the risk grades of the external risk questions of each cooperation unit according to the external risk question library.
In one or more possible embodiments, further comprising:
the configuration unit is used for displaying a risk monitoring configuration interface;
creating an external risk library of the enterprise based on configuration instructions of the user, and setting external risk factors associated with each external risk problem; an internal risk library of the enterprise is created, and internal risk factors associated with each internal risk problem are set.
It should be noted that, when the apparatus 3 provided in the foregoing embodiment performs the risk assessment method of the enterprise, only the division of the foregoing functional modules is used as an example, and in practical application, the foregoing functional allocation may be performed by different functional modules according to needs, that is, the internal structure of the device is divided into different functional modules, so as to complete all or part of the foregoing functions. In addition, the risk assessment device of the enterprise and the risk assessment method of the enterprise provided in the foregoing embodiments belong to the same concept, which embody detailed implementation procedures in the method embodiment, and are not described herein again.
The foregoing embodiment numbers of the present application are merely for describing, and do not represent advantages or disadvantages of the embodiments.
The embodiment of the present application further provides a computer storage medium, where the computer storage medium may store a plurality of instructions, where the instructions are adapted to be loaded by a processor and execute the method steps of the embodiment shown in fig. 2, and the specific execution process may refer to the specific description of the embodiment shown in fig. 2, which is not repeated herein.
The present application also provides a computer program product storing at least one instruction that is loaded and executed by the processor to implement the method of risk assessment for an enterprise as described in the various embodiments above.
Referring to fig. 4, a schematic structural diagram of a terminal device is provided in an embodiment of the present application. As shown in fig. 4, the terminal device 400 may include: at least one processor 401, at least one network interface 404, a user interface 403, a memory 405, and at least one communication bus 402.
Wherein communication bus 402 is used to enable connected communications between these components.
The user interface 403 may include a Display screen (Display) and a Camera (Camera), and the optional user interface 403 may further include a standard wired interface and a standard wireless interface.
The network interface 404 may optionally include a standard wired interface, a wireless interface (e.g., WI-FI interface), among others.
Wherein the processor 401 may include one or more processing cores. The processor 401 connects the various parts within the entire terminal device 400 using various interfaces and lines, performs various functions of the terminal device 400 and processes data by executing or executing instructions, programs, code sets, or instruction sets stored in the memory 405, and invoking data stored in the memory 405. Alternatively, the processor 401 may be implemented in at least one hardware form of digital signal processing (Digital Signal Processing, DSP), field programmable gate array (Field-Programmable Gate Array, FPGA), programmable logic array (Programmable Logic Array, PLA). The processor 401 may integrate one or a combination of several of a central processing unit (Central Processing Unit, CPU), an image processor (Graphics Processing Unit, GPU), a modem, etc. The CPU mainly processes an operating system, a user interface, an application program and the like; the GPU is used for rendering and drawing the content required to be displayed by the display screen; the modem is used to handle wireless communications. It will be appreciated that the modem may not be integrated into the processor 401 and may be implemented by a single chip.
The Memory 405 may include a random access Memory (RandomAccess Memory, RAM) or a Read-Only Memory (Read-Only Memory). Optionally, the memory 405 includes a non-transitory computer readable medium (non-transitory computer-readable storage medium). Memory 405 may be used to store instructions, programs, code sets, or instruction sets. The memory 405 may include a stored program area and a stored data area, wherein the stored program area may store instructions for implementing an operating system, instructions for at least one function (such as a touch function, a sound playing function, an image playing function, etc.), instructions for implementing the above-described various method embodiments, etc.; the storage data area may store data or the like referred to in the above respective method embodiments. The memory 405 may also optionally be at least one storage device located remotely from the aforementioned processor 401. As shown in fig. 4, an operating system, a network communication module, a user interface module, and application programs may be included in the memory 405, which is one type of computer storage medium.
In the terminal device 400 shown in fig. 4, the user interface 403 is mainly used for providing an input interface for a user, and acquiring data input by the user; the processor 401 may be configured to invoke an application program stored in the memory 405, and specifically execute the method shown in fig. 2, and the specific process may be shown in fig. 2, which is not repeated herein.
Those skilled in the art will appreciate that implementing all or part of the above-described methods in accordance with the embodiments may be accomplished by way of a computer program stored on a computer readable storage medium, which when executed may comprise the steps of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a read-only memory, a random access memory, or the like.
The foregoing disclosure is only illustrative of the preferred embodiments of the present application and is not intended to limit the scope of the claims herein, as the equivalent of the claims herein shall be construed to fall within the scope of the claims herein.
Claims (10)
1. A method for risk assessment of an enterprise, comprising:
acquiring an external risk problem library and an internal risk problem library of an enterprise; wherein the external risk problem library comprises at least one external risk problem and the internal risk problem library comprises at least one internal risk problem;
aiming at each external risk problem, acquiring at least one external risk factor associated with the external risk problem, counting the occurrence times of each external risk factor, determining the score of each external risk factor according to the occurrence times, calculating the risk score of the external risk problem according to the weight and the score of each external risk factor, and determining the risk grade according to the risk score of the external risk problem;
aiming at each internal risk problem, acquiring at least one internal risk factor associated with the internal risk problem, counting the related unit quantity and the related amount of each internal risk factor, calculating the score of the internal risk factor according to the related unit quantity and the related amount, calculating the risk score of the internal risk problem according to the weight and the score of each internal risk factor, and calculating the risk grade of the internal risk problem according to the risk score;
and generating a risk problem list of the enterprise according to the risk scores and the risk grades of the external risk problems and the risk scores and the risk grades of the internal risk problems.
2. The method of claim 1, wherein calculating the score for the internal risk factor based on the number of units involved and the amount of money involved comprises:
inquiring corresponding occurrence probability scores in a first mapping relation according to the number of related units;
inquiring the corresponding influence degree score in the second mapping relation according to the related amount;
multiplying the occurrence likelihood score by the impact level score yields a score for an internal risk factor.
3. The method according to claim 1 or 2, further comprising:
displaying a risk problem list on a risk monitoring interface through a statistical chart; and each risk problem in the statistical chart is arranged in a descending order according to the magnitude of the risk score, and the risk problems of different risk grades are marked by different colors.
4. The method of claim 3, wherein the number of occurrences of the external risk factor for the enterprise is obtained from a blockchain network; the amount and the number of units involved of each internal risk factor are obtained from the enterprise's information management system.
5. The method of claim 1 or 2 or 4, wherein the risk level is high risk, low risk or medium risk; the maximum risk scores for the external risk problem and the internal risk problem are equal.
6. The method as recited in claim 5, further comprising:
acquiring a collaboration unit list of the enterprise; the collaboration unit list comprises at least one collaboration unit, wherein the collaboration unit is a provider or a customer;
and calculating the risk scores and the risk grades of the external risk questions of each cooperation unit according to the external risk question library.
7. The method of claim 1 or 2 or 4 or 6, further comprising:
displaying a risk monitoring configuration interface;
creating an external risk library of the enterprise based on configuration instructions of the user, and setting external risk factors associated with each external risk problem; an internal risk library of the enterprise is created, and internal risk factors associated with each internal risk problem are set.
8. A risk assessment apparatus for an enterprise, comprising:
the acquiring unit is used for acquiring an external risk problem library and an internal risk problem library of the enterprise; wherein the external risk problem library comprises at least one external risk problem and the internal risk problem library comprises at least one internal risk problem;
the external evaluation unit is used for acquiring at least one external risk factor associated with each external risk problem, counting the occurrence times of each external risk factor, determining the score of each external risk factor according to the occurrence times, calculating the risk score of the external risk problem according to the weight and the score of each external risk factor, and determining the risk grade according to the risk score of the external risk problem;
the internal evaluation unit is used for acquiring at least one internal risk factor associated with each internal risk problem, counting the related unit quantity and the related amount of each internal risk factor, calculating the score of the internal risk factor according to the related unit quantity and the related amount, calculating the risk score of the internal risk problem according to the weight and the score of each internal risk factor, and calculating the risk grade of the internal risk problem according to the risk score;
and the generation unit is used for generating a risk problem list of the enterprise according to the risk scores and the risk grades of the external risk problems and the risk scores and the risk grades of the internal risk problems.
9. A computer storage medium storing a plurality of instructions adapted to be loaded by a processor and to perform the method steps of any one of claims 1 to 7.
10. A terminal device, comprising: a processor and a memory; wherein the memory stores a computer program adapted to be loaded by the processor and to perform the method steps of any of claims 1-7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311841965.9A CN117787714A (en) | 2023-12-29 | 2023-12-29 | Risk assessment method and device for enterprise, storage medium and terminal equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311841965.9A CN117787714A (en) | 2023-12-29 | 2023-12-29 | Risk assessment method and device for enterprise, storage medium and terminal equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117787714A true CN117787714A (en) | 2024-03-29 |
Family
ID=90394143
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202311841965.9A Pending CN117787714A (en) | 2023-12-29 | 2023-12-29 | Risk assessment method and device for enterprise, storage medium and terminal equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117787714A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20230351026A1 (en) * | 2020-04-08 | 2023-11-02 | Wells Fargo Bank, N.A. | Security model utilizing multi-channel data with risk-entity facing cybersecurity alert engine and portal |
-
2023
- 2023-12-29 CN CN202311841965.9A patent/CN117787714A/en active Pending
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20230351026A1 (en) * | 2020-04-08 | 2023-11-02 | Wells Fargo Bank, N.A. | Security model utilizing multi-channel data with risk-entity facing cybersecurity alert engine and portal |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8548843B2 (en) | Individual performance metrics scoring and ranking | |
| CN117787714A (en) | Risk assessment method and device for enterprise, storage medium and terminal equipment | |
| US10943691B2 (en) | Cost of healthcare analytics platform | |
| US20130006705A1 (en) | Small business intelligence tool | |
| CN112085344A (en) | Equipment health analysis method and device and electronic equipment | |
| CN116823471A (en) | Transaction policy return method and device, electronic equipment and storage medium | |
| JP2020013229A (en) | Device, method and program for calculating default probability | |
| CN115545088A (en) | Model construction method, classification method and device and electronic equipment | |
| CN110992118B (en) | Method, device, storage medium, equipment and system for issuing electronic invoice | |
| CN113409119A (en) | Method and device for assessing capital risk of financing lease enterprise, storage medium and electronic equipment | |
| CN113450208A (en) | Loan risk change early warning and model training method and device | |
| CN112418866A (en) | Method, device and system for preventing payment from being turned over | |
| CN113360474A (en) | Data processing method and device, electronic equipment and computer readable medium | |
| CN114881656A (en) | Monitoring method and device for fund settlement, storage medium and computer equipment | |
| CN115017875B (en) | Enterprise information processing method, device, system, equipment and medium | |
| CN115239474A (en) | Monitoring method, device, storage medium and computer equipment for funds from collection to entry | |
| CN117557131A (en) | Assessment method and device for internal simulation market, storage medium and terminal equipment | |
| CN118429115A (en) | Cross-unit financial account combining method and system | |
| CN115713300A (en) | Compilation method and device of merged report, storage medium and computer equipment | |
| CN117829727A (en) | Certificate making method and device for out-in storage business, storage medium and terminal equipment | |
| CN112613976A (en) | Logical condition determination method, logical condition determination device, logical condition determination medium, and electronic apparatus | |
| CN116402484A (en) | Training reward accounting and account reporting method and device based on micro-service architecture, storage medium and computer equipment | |
| CN116974621A (en) | Parameter configuration method, device and equipment | |
| CN117132387A (en) | Method, device, storage medium and computer equipment for evaluating cross-border electronic commerce credit line | |
| CN115297210A (en) | Grading model based differentiated outbound configuration generation method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |