- Document business processes and internal controls that exist in the company; - Identify risks, perform risks analysis and evaluation - Evaluate internal controls to determine their effectiveness and efficiency - Determine the level of compliance with internal policies and procedures, state and federal laws and government regulations - Create contingency mitigation action plan and a system of risk management. - Participate in the improvement of controls and modifying of policies and procedures for the risk mitigation resolution.