Enterprise Risk Management (ERM) Module for IT-GRC 3.0
Enterprise Risk – Meeting the Challenge
New guidance issued by the U.S. Securities and Exchange Commission in 2007 places increasing scrutiny on top-down risk assessment, and the New York Stock Exchange now requires the audit committees of its listed companies to “discuss policies with respect to risk assessment and risk management.” Enterprise risk management empowers managers to identify and analyze the many risks that can affect the organization. Identifying preventive steps reduces the likelihood and magnitude of adverse impacts. The challenge most organizations face is that they must determine how to measure and manage risk consistently and sustainably, given its highly subjective nature and its reach into many disparate areas of the organization.
A Flexible, User-Friendly, User-Driven Solution
The Web-based Agiliance Enterprise Risk Management (ERM) module follows leading standards body guidance, including COSO ERM and AS/NZ 4360, while also accommodating custom risk statements. It enables organizations to easily aggregate risk information, collaborate in risk analysis and response decisions, and ensure the follow-through required to manage risk.
Now that the Agiliance IT-GRC Suite has been extended to ERM, organizations can establish a single risk score for all applicable risks, spanning from business to IT.