ERM governance

Chief Risk Officer

Chief Risk Officer: An Increasingly Vital Role in Effective Risk Oversight

The 2019 State of Risk Oversight report from NC State recently came out with some interesting results about the current state of risk management leadership in organizations. The report breaks down results into four different industry-categories – large organizations, public companies, financial institutions, and not-for-profit. Over the last five years, nonprofits have seen the biggest…
Read More

The Board’s Role in Risk Oversight and Why It’s Important

A majority of articles here on the blog focus on the process of ERM for anyone involved in their organization’s strategy-setting and day-to-day operations. While learning about processes like risk identification, assessment, and reporting is important, there are other risk-related activities in the organization that are equally important, namely the oversight of risk by the…
Read More

COSO ERM Framework – Background & Overview

The COSO ERM framework is one of two widely accepted risk management standards organizations use to help manage risks in an increasingly turbulent, unpredictable business landscape. We previously discussed the background and a general overview of the other commonly used ERM framework, ISO 31000. COSO, which is short for the Committee of Sponsoring Organizations of…
Read More
ERM standard

The ISO 31000 ERM Standard – Background & Overview

Since its inception, ISO 31000 has become a widely accepted standard for enterprise risk management by private corporations, government bodies, and nonprofit organizations throughout the world. Although the ISO standard has only been around for 10 years, its origins date back to 1995 when the AS/NZS 4360 standard from Australia and New Zealand was first…
Read More
risk reporting

The Ultimate Primer for Effective Risk Reporting

A mechanism for ensuring leadership, business managers, and other stakeholders make risk-informed decisions and fulfill oversight duties At the end of the day, the ERM process should be regarded as a cycle or feedback loop…meaning, there’s never a definitive end point. It’s like the four seasons of the year – there’s never an end point,…
Read More

ERM Implementation: What Risk Professionals Consider the #1 Challenge To Be

Podcast: Play in new window | DownloadI recently asked of fellow risk professionals “what is your single biggest challenge when it comes to ERM implementation?” What do you think the answers were? Maybe figuring out how to assess risks? Maybe integrating with strategy? Or aggregation of risks? Nope. Tone at the top! Yes, the executives…
Read More

Practicing ERM without a Formal ERM Program

Many of the ERM resources you encounter on my blog and elsewhere focus on elements of a formal program like developing a framework, establishing risk appetite, and more. We imply, at least indirectly, that your organization must have this formal structure in place before practicing ERM. However, this isn’t always the case… Double-take – why…
Read More
implementing ERM

The Hazards of Implementing ERM without a Plan

I cannot tell you how many times someone has asked me questions about random parts of an ERM program. The discussions range from basic concepts all the way to advanced topics. What is prompting the jumping between topics? It is typically these two things: Someone looked up ERM and saw some aspects, which looked really…
Read More
Menu