Skip to main content
Poole College of Management
Enterprise Risk Management Initiative

All Resources

Sep 1, 2007

ERM in Higher Education

This document provides guidance for the embrace of Enterprise Risk Management (ERM) in Higher Education. While this is not a step-by-step guide on how to implement ERM at any specific institution, it does provide a good overview of the ERM process, where to begin, and best resources available for structuring and implementing an ERM framework. The document also summarizes examples of ERM at several institutions of higher learning.

Jun 1, 2007

Risk Language

Internal Auditor published an article titled, The Language of Risk, which stresses the need for a clear risk language throughout all organizations. By using a common language, different levels of a business can communicate more effectively. Without a common risk language, lots of time can be wasted in clarifying risk issues that are miscommunicated

May 1, 2007

Tools and Techniques for Enterprise Risk Management Execution

The Institute of Management Accountants has issued a new document that summarizes tools and techniques used by businesses that have effectively implemented an ERM program. After identifying risks, businesses should focus on risk drivers and utilizing the vast number of tools currently available for managing risks. Also, the importance of an enterprise-wide approach should be considered when organizations become trapped into managing risks reactively or by use of the silo method. This document contains numerous practical tools and templates that can be adapted for a variety of organizational settings.

Apr 1, 2007

Integrating SOX and ERM- Truths and Myths

For most organizations, the efforts being made to meet compliance regulations are not tied to current ERM processes. Procedures should be put in place to integrate compliance functionality into existing risk management plans.

Nov 1, 2006

RIMS ERM Maturity Model

The Risk and Insurance Management Society (RIMS) has recently introduced its Risk Maturity Model (RMM) to help organizations better utilize Enterprise Risk Management. The RIMS Risk Maturity Model can be used by chief risk officers and other risk practitioners as a resource to aide in planning, implementing, and benchmarking Enterprise Risk Management practices within their organizations.

Sep 25, 2006

ERM-Benefits for Strategic Planning

The Quarterly Journal of the EDS Agility Alliance recently published an article titled, Coming of Age: As Enterprise Risk Management Matures, So Does Its Value in Strategic Planning, to emphasize the rewards of ERM. Even though some senior managers still lack the broad perspective needed to deal with risk management issues, new tools have emerged and ERM has rapidly gained momentum. The Risk-Capital-Value Framework (RCV) is an example of a concept developed to help businesses manage risks.

Mar 24, 2006

Home Depot’s Approach to ERM

David Whatley, vice president for risk management at Atlanta-based Home Depot Inc., spoke on March 24th to 130 business professionals at the second of three Spring 2006 ERM Roundtables. Whatley described Home Depot’s approach to managing risks at the world’s largest home improvement retailer.

Sep 30, 2005

Evolution of ERM

Business professionals have varied personal definitions of enterprise risk management (ERM) based on their limited exposure to the new idea and their specific encounters with its effects given their roles within their companies. However, in order to better understand risk management, and especially ERM, risk itself must be better understood with greater uniformity than that with which it has been understood in the past. Misconceptions have kept business professionals from understanding risk as measurable in both negative and positive outcomes, as existent even without the occurrence of an event, and as affective of businesses in many areas, not just in the consideration of insurance.

Sep 1, 2005

CROs (Chief Risk Officer) Challenged by IT Risks

The white paper focuses on the increasing dependency companies have on IT processes and the new challenges placed on CROs. Senior executives at various industries were asked to provide insight on digital risks and the role CROs play in tackling such risks.

Sep 1, 2005

Best Practices for Structuring ERM Within the Organization

In order for the risk management division to function properly, it is essential to structure it properly within the firm. The risk management division should be placed in high stature within the firm and should report directly to the CEO. Risk managers should have a deep understanding of the company's business in order to effectively communicate with risk takers in the firm. Structuring the risk management division properly will ensure a more holistic view of risk within the organization.