risk monitoring

3 Factors to Consider Before Escalating Risk Issues to the Board

After beginning as a requirement for financial firms, active Board oversight of risk management has increasingly become an expectation, even a necessity, for all types of organizations over the last 20 years. The annual State of Risk Oversight report from North Carolina State University corroborates this. According to their survey, a high number of Boards,…
Read More
ERM framework

ERM Framework vs. ERM Process – Understanding the Difference

In the vast arsenal of materials discussing enterprise risk management, words are thrown around that may be unclear to novice risk professionals or executives unfamiliar with ERM. While I intuitively know the difference between an ERM framework and process, the random use of these terms can lead to confusion for some. If you’ve read my…
Read More

The Board’s Role in Risk Oversight and Why It’s Important

A majority of articles here on the blog focus on the process of ERM for anyone involved in their organization’s strategy-setting and day-to-day operations. While learning about processes like risk identification, assessment, and reporting is important, there are other risk-related activities in the organization that are equally important, namely the oversight of risk by the…
Read More
risk reporting

The Ultimate Primer for Effective Risk Reporting

A mechanism for ensuring leadership, business managers, and other stakeholders make risk-informed decisions and fulfill oversight duties At the end of the day, the ERM process should be regarded as a cycle or feedback loop…meaning, there’s never a definitive end point. It’s like the four seasons of the year – there’s never an end point,…
Read More
risk owner

Why Assigning a Risk Owner is Important and How to Do It Right

Falling in the middle of the risk management cycle (after developing risk appetite and tolerance and identifying, but before assessing and analyzing risks), the organization then must identify who will “own” or be responsible for a particular risk. Although the exact definition of what a risk owner is will vary depending on the organization, it…
Read More
risk review

3 Ways to Avoid the Check-the-Box Trap in Risk Review

In both my experience and according to a white paper from PwC, a common ERM challenge is how an annual risk review becomes a check-the-box activity. It shouldn’t be this way… Regardless of the reasons, everyone from executives all the way down to entry-level managers and employees have enough “bureaucratic” burdens as it is. An…
Read More
Menu