positive risk

risk controls

An Easier Way to Understand the Effectiveness of Risk Controls

KRIs, KPIs, ORSA, ISO, COSO…risk controls, risk owners, risk appetite. The acronyms, the alphabet soup, oh my! To anyone with little to no experience, risk management jargon can be dizzying and confusing, especially to executives who are often deluged with risk registers, reports, and processes that are overwhelming and not helpful for managing the organization…
Read More

Practicing ERM without a Formal ERM Program

Many of the ERM resources you encounter on my blog and elsewhere focus on elements of a formal program like developing a framework, establishing risk appetite, and more. We imply, at least indirectly, that your organization must have this formal structure in place before practicing ERM. However, this isn’t always the case… Double-take – why…
Read More

Wait a Second – You Mean We Can Have Positive Risks Too?

I know, seems counter-intuitive, right? When we hear the word “risk,” we automatically think it has to be negative. In many cases, it is. Perhaps a certain process is outdated and causing the company to lose money, or a defective product is leading to some bad press. However, some risks can be considered “positive,” at…
Read More
Menu