In the Governance, Risk, and Compliance environment, Simulation shows the impact that risks and controls have on performance and costs of a company's processes. The data is based on business process models containing relevant information on controls and risks. For risks, you need to define when and how often they occur and what damage they cause. For controls, you need to determine when and how often they are executed, and how successfully they prevent or reduce risk events. Risk occurrences and associated controls impact process costs, process time, and resources used. Since the controls are involved in the value-added process only indirectly it is important that their expense is limited to a minimum. Simulation supplies the information for estimating and evaluating these expenses, for example:
Influence of controls on throughput times
Bottlenecks and utilization of resources by controls
Damages caused by risks occurred per simulation run, per process, or per risk
Costs caused by controls performed per simulation run, per process, or per control
Damages that controls reduce or prevent
The evaluations of Simulation supply the necessary data. For example, you can use this data to compare different scenarios, with and without controls, or in terms of costs and benefits of controls. Based on the evaluations, you can calculate economic KPIs to reach a final assessment and then be able to make the corresponding decisions.