Enterprise Risk Management - Overview

Applying COSO's Enterprise Risk Management-Integrated Framework (ppt)
The COSO ERM framework defines components, suggests a common language, and provides clear direction for ERM.

ERM Center of Excellence
The Risk and Insurance Management Society, Inc. (RIMS) has developed the ERM Center of Excellence which is a comprehensive source for tools, papers, studies and news related to ERM. General information is available on the main website www.rims.org.

Risk Maturity Model
The Risk and Insurance Management Society, Inc. (RIMS) has developed the Risk Maturity Model which is a tool to help you evaluate your risk management program and take it to the next level. The RIMS Risk Maturity Model is an online resource that provides guidelines and best practices for developing and maintaining risk management programs.

AS/NZS 4360:2004
The Australia-New Zealand risk management "standard" is considered by some to be the gold standard for all other standards and has, in fact, been used as the benchmarks by ISO in the development of their standards. The AS/ZN development committee describes it as a "generic framework for establishing the context, identifying, evaluating, treating, monitoring and communicating risk". Any organization can adapt this framework to individual circumstances.

HB 436
Risk Management Guidelines-companion to AS/NS 4360:2004 contains specific guidance regarding the implementation of the AS/NS 4360:2004 Standard. The two documents are intended to be used together. This handbook is a clear, step by step, "how to" guide.

The Changing Face of Risk Management
This report summarizes a quantitative survey of RIMS members regarding the current state of risk management, how risk managers are responding to the new world or risk and the future direction of risk management. Of the companies responding to the survey, 4% have fully implemented ERM, 22% partially implemented and 47% are considering or planning on implementation.

Guide to Enterprise Risk Management: Frequently Asked Questions
This publication answers frequently asked questions relating to initiating, developing and implementing an ERM program and the COSO framework. This publication is supplemented by the bulletin entitled "Enterprise Risk Management: Practical Implementation Advice," an executive level ERM overview.

Enterprise Risk Management: Practical Implementation Ideas
Presents general information regarding the principles of ERM and a stepwise approach for implementing an ERM in an organization.

Community Trust Bancorp, Inc. Enterprise Wide Risk Management Policy (doc)
An example of an ERM policy that adopts the COSO definition of enterprise risk management and other aspects of the Treadway Commission framework.

Marsh & Risk and Insurance Management Society Inc.'s Excellence in Risk Management II: A Qualitative Survey of Enterprise Risk Management Programs (doc)
A study that examines the benefits and need for ERM, how to obtain the support of senior management for an ERM program, how to put formal processes in place and integrate ERM into the corporate culture going forward.

COSO Enterprise Risk Management - Integrated Framework (pdf)
An overview of the Treadway Commission's report; provides: key principles, concepts, a common language, and clear direction and guidance to determine how much risk an entity is prepared to and does accept. Also includes management framework to satisfy internal control needs and to move toward a fuller risk management process.

Survey: Responses to the COSO ERM Impact on Internal Auditing (doc)
Conducted in April 2004 by The Institute of Internal Auditors, Inc. reports the corporate response following the release of the COSO ERM Framework.

Article: In the Frame? (pdf)
From the Institute of Internal Auditors UK and Ireland's Internal Auditing and Business Risk, December 2004. Discusses the COSO Enterprise Risk Management - Integrated Framework.

Overview of Enterprise Risk Management-Casualty Actuarial Society (pdf)

Role of U.S. Corporate Boards in ERM (pdf)

Role of Internal Auditing in Enterprise-wide Risk Management (pdf)