Risk Control Framework for Business Process Assessment

Categories : All, Retail / E-commerce

Client Requirement


The application is a web-based system for online assessment of various business processes under
respective units. It is also used for monitoring the tasks of individuals in an organization. The
system hierarchy is categorized based on companies under the various Group Companies. It also allows viewing the reports based on various aspects which will help to take corrective measures for any process failure under specific units. The system is based on Client/Server architecture. It is divided in different modules and categories.

The client-defined purpose of the application is for audit department of the organization to assess the risk factors and review and rate the level of risks associated in each business processes across various divisions in a company.

Client required the modules for application as follows. Each section is accessible to the users based on authorization and authentication:

  • The Home Screen acts as a dashboard for admin users that shows 2D charting representation of data at macro level and data access screen for external users
  • Master data management section allows admin users to set up master information and also to external users to view the authorized details. User management section is accessible only to admin users.
  • The Risk assessment is a transactional module and accessible to the users based on authorization.
  • Action plan allows setting an action and deadline for failed processes
  • Reports section helps the admin and management users to analyze the status of the each business process across various divisions for particular companies

The uers are categorized based on various roles. Each role is associated with different modules of the application. The modules have View and Edit permissions associated with it

The Risk Assessments should be conducted as per authorizations. The auditors can set the ratings for business processes under units and for risks which are associated with it. The auto generated business process score and ratings based on the assessment by the users will be used by the auditors to review the state of business processes and set necessary corrective Action Plans.

Reports should be allowed to download in either Excel or PDF formats.

Project Challenges

Team faced the following challenges:
  • Generating animated chart representation with Drill down features to enhance the analysis and decision making process.
  • Allowing users to download formatted reports in MS Excel format and PDF format using 3rd party APIs such as POI & iText respectively
  • Developing enhanced views in database to ensure the aggregated data from disparate data resources and generating group results.
  • Harmonizing the simultaneous execution of various integrated features and options while maintaining consistent load balance.
  • ping a fully AJAX-driven site, with various features, without compromising at performance and execution level
  • Ensuring safe and secure login of users while integrating External web services and JavaScript compatibility for all browser
  • Developing a sturdy and dependable framework to support the real-time updation of content on the site.

Technologies Used

Operating System & Server Management Windows OS, Multi-Server Architecture with Staging & Production Environment through Version Controlling releases, Server Optimization, Security & SSL Implementation, Scheduler for Back-ups, Alert Monitoring System Integration, Server Performance Tuning at regular intervals, Software Firewall Configuration & Maintenance
Development Tools & Environments Eclipse, JSP, Servlet, JDom, Apache Tomcat Server 6, HTML, CSS, JavaScript, SVN, POI, iText etc.
Database Oracle 10g Database Server, DB Clustering, DB Optimization, Master Slave Replication, Query Optimization, Scheduler for Backups


Project Leader 1
Developers 3
Designers 1
Quality Assurance Testers 1


The following four-tier development approach was adopted to equip the site with numerous features and functionality mentioned before:
  • The Database layer containing Oracle 10g Database, Tables,triggers and so on
  • The Data Access layer containing the Data Access Objects responsible for accessing data from database
  • The business Layer Objects consisting of all business logic procedures for modules such as Reagent, Protocols, Facilities, Timer, Profile, and Message center, Account settings, Network etc.
  • The user Interface Layer that forms the Graphical User Interface of the website



Development Highlights

The RCF application is based on MVC Architecture consisting of three parts: the JSP UI, the J2EE Server and the Data sources. In addition to these, the user logins are verified by external web services of the client

Details of servers


The application is hosted on the cloud server instances with cenTOS. The heart of the application is the Tomcat app server. The web application is hosted on the WebApps folder. The code for the website is served by the WebApps (/Program Files/Apache Software Foundation/Tomcat 6.0/webapps) and the services for the user’s login are handled by the Web Services located on the Servers. The application uses JSP and Servlet technologies and Oracle 10g for business logic wiring and database access.

Application connects to DB Server through TCP/IP Connection based on the Socket Architecture. It uses Type4 driver to connect to the Oracle Database. Connection with the application server is managed by a dedicated server architecture where multiple instances will be created to serve each connection requests in order to fasten the response.

The application follows a Service-Oriented Architecture that exposes login services in the Java Services layer. All remote method calls originating from the JSP UI are processed by the Tomca Server engine which then utilizes one or more Java Services. Calls such as login, post chart and subscribe which originates from the HTML pages are processed by the JSP/Servlet layer that further uses the Java Services.

The login data for users is authenticated with the help of Web Service access. The Web Service is hosted on the Application Servers. J2EE Application Server communicates with company’s
Application Servers for authentication and authorization through these web services for the users.

[Total: 0    Average: 0/5]

Client Saying

BIG THANK YOU to Brainvire team for all their smart work and fantastic services. We are very pleased with the...
Mr. Greg Pietsch
When the world was moving at a very speedy pace, Brainvire helped us stay connected. Thanks to their unique services...
Travis French
One of my friend recommended me Brainvire. It was an immense pleasure to work with them. I found their team...
Mr. Umesh ranglani
Brainvire is a professional company with professional developers who understand the problems that we are facing as a company. Outsourcing...
Mr. Clarke Verdel
I am truly happy with Brainvire’s exceptional service. Whenever I had a question they answered it without delay. With extreme...
Mr. Richard Desilva

Latest Happenings

  • 04 Oct 2016
    Brainvire Making great Strides with Symfony Development Services [ + ]
  • 29 Sep 2016
    Brainvire augments its List of Offerings with Magento Sears Integration Services [ + ]