Risk management mechanisms are incorporated into instructions and second-tier checks are carried out by the permanent control functions. Risk is also managed via decision-making and authorisation rules or special solutions incorporated into the IT systems (such as the Disaster Recovery Plan). 1.5.4....