Operational Resilience Series #8: Designing a good self-assessment process

You’re well on your way in implementing an operational resilience program; you have identified your important business services, defined impact ...

Operational Resilience Series #7: What reporting do management want to see?

We’ve defined important business services, designed impact tolerances and mapped the processes and resources that support them. We’ve run through ...

Operational Resilience Series #6: Identifying vulnerabilities and actions

In this series we’ve defined important business services, designed impact tolerances and mapped the processes and resources that support them. In our ...

Operational Resilience Series #5: Design and running of a scenario

So far in this series we have identified important business services, designed impact tolerances and mapped the processes and resources that support ...

Operational Resilience Series #4: Mapping important business services

So far in this series we have identified your important business services, and designed impact tolerances. Now we turn to an important step in ...

Operational Resilience Series #3: Designing your impact tolerances

The previous blog in this series looked at how to define your important business services. In this blog, we will consider how you can determine the ...

Operational Resilience Series #2: What are your important business services?

In the first blog in this series, we covered what operational resilience is. In this article, we will focus on identifying your important business ...

OpRes vs BC vs DR: How you can all work together

In the first article in this series, we defined how operational resilience, business continuity and disaster recovery fit together conceptually ...

OpRes vs BC vs DR: What’s the difference?

Despite the catchy title, we should be honest and say that there isn’t really any ‘versus’ between Operational Resilience, Business Continuity and ...

When risk and reward don’t talk

Recently I visited a shopping centre that I hadn’t visited in a while. The below ‘feature’ caught my eye and caused me to scratch my head. Multiple ...

How NZAA took ownership of risk and compliance management

 

Cyber risk: If LastPass can be breached, what about you?

LastPass recently announced that they have been subject to a data breach, with some of their source code stolen (don’t worry, master passwords appear ...

Operational Resilience: Industry survey results

How prepared are organisations for resilience? Let’s cover the top-line data first. The survey of risk professionals found that nearly all surveyed ...

APRA CPS 230 webinar: Poll results and Q&A

Protecht held a webinar on APRA’s draft Prudential Standard CPS 230: Operational Risk Management earlier this month. The attendees completed several ...

Operational resilience: Webinar Q&A

Protecht held a webinar on operational resilience in July 2022. The attendees asked a range of questions, some which we were able to answer during ...

Operational resilience: What is a resilient organisation?

There has been an increased focus on operational resilience in organisations in recent years. In financial services in particular, operational ...

Operational resilience: Where is global regulation heading?

Regulators in the financial sector have been tackling the field of operational resilience head on for the last few years. Different regions are in ...

New APRA standard takes an outcome-based approach to operational risk

The much-anticipated draft Prudential Standard CPS 230: Operational Risk Management was released by APRA on 28 July 2022. It applies to all ...

Operational Resilience Series #1: What is operational resilience?

One of the key concepts getting serious airplay on the current risk management stage is operational resilience. It is a key focus of global financial ...

How resilient is Australia’s critical infrastructure?

Australia’s Department of Home Affairs issued a warning to critical infrastructure stakeholders in February 2022 in the wake of widespread ...

Year of discontent: Will strikes hit your business?

Inflation is on the rise, pushing up the cost of living. They say a picture is worth a thousand words, in which case this picture is a good place to ...

Rogers outage: When a resilience failure takes out a nation

We live in an increasingly connected world, and most of us experience that connectivity through our mobile phones and our home or work internet. How ...

Cyber risk: Bringing resilience to remote working

Most businesses and security experts agree that the shift to remote work has encouraged malicious actors and opened new attack surfaces for them to ...

Operational resilience: Standalone or an integral part of ERM?

Like many professions, we risk managers seem to be masters at picking the latest trend and promoting it as if it’s the only thing that matters. ...

Wells Fargo: The standard you walk past?

The US retail bank Wells Fargo has had a considerable number of incidents over the last several years.

Pinnacle stays in control worldwide with Protecht

Pinnacle Investment Management supports a diverse range of affiliate investment management firms across Asia-Pacific, EMEA and North America. ...

How Lotto NZ placed its risk management bets on Protecht.ERM

Lotto NZ (officially the New Zealand Lotteries Commission) is a Crown entity that operates lotteries nationwide. It's been one of New Zealand's ...

Airline delays: Is your operational resilience program flying high?

After some of the toughest years ever for the airline industry, travel is back on the cards as we adapt to the ‘new normal’. However, that new normal ...

New FDIC rules will help banks manage crypto risks

In April, the US banking regulator FDIC issued Financial Institution Letter 16-2022 on crypto-related activities to the banks that it supervises.

Retro Risk: Pepsi versus the Pentagon

How many brands can claim that their consumer goods promotion warranted a statement from the Pentagon? It turns out that the answer is “at least ...

Why insurers should follow a risk appetite approach to ESG

Global speciality insurer Chaucer Group has committed to net-zero greenhouse gas emissions by 2050. The insurer and reinsurer is among a growing ...
ESG

Barclays SEC breach shows no bank is immune to compliance failure

A few months ago, UK lender Barclays Bank announced that it had discovered a compliance breach from 2019 in its US operations. The bank sells ...

Is Google's multi-million fine a wake-up call for data protection?

Google is the latest tech giant to be fined for violations of GDPR provisions. The €10 mn (US$11 mn, AU$15mn) fine was issued by the Spanish data ...

RMIA speaking session: Maturing ERM to the next level

Risk bow ties: Mutually exclusive and collectively exhaustive?

In our recent webinar Risk Art Class - Visualize your risk with bow tie analysis, we were asked an interesting question: "How do you ensure that ...

Operational resilience: Is your software supply chain soft?

According to a recent survey of over 1000 Chief Information Officers by identity management provider Venafi, 82% believe their organisation is ...

ERM Webinar Review: Moving from a Siloed to a True Enterprise Approach

The traditional siloed view of risk management has evolved over many years of its development as a discipline, but there is increasing pressure to ...

Why insurers need to prioritise the digitisation of risk and compliance management

The global insurance industry has been impacted heavily by COVID and extreme weather events. Insurers worldwide have had to respond and adapt to such ...

Understanding what a practical Operational Resilience capability looks like

In this blog article, you will find the webinar recording of the session on Operational Resilience delivered by David Tattam, Chief Research and ...

ISO 37301: your next step in compliance?

Investment in compliance management continues to grow exponentially. In Macquarie Group’s latest financial results, compliance spend amounted to 17% ...

Risk Appetite Development and Operationalisation - Q&A

Protecht recently conducted a webinar on “Risk Appetite: Development and Operationalisation” covering our North American, EMEA and APAC markets. A ...

Are you allocating enough resources to compliance and risk management, and are you getting a positive ROI?

Macquarie Group has disclosed in its latest financial results that the group spent $785 million on compliance in the year to 31 March 2022, a 22% ...

Your Marketplace questions answered

What is Marketplace? Marketplace makes it easy to implement and scale Protecht.ERM. It provides templated registers, workflows and analytics ...

Freeway harnessing the power of risk in the insurance industry

Freeway UK Insurance Services Limited, a leading provider of taxi insurance across the UK market, engaged Protecht to deliver a holistic risk ...

Impax reimagines risk in asset management

Financial services firm Impax Asset Management administers a suite of equity, fixed income and private equity investments. The company has ...

Risk Appetite Driven Decision Making

"Would you rather?" is a party game that poses dilemmas by asking questions starting with "would you rather?". As an example:

4 Ways Marketplace Will Change Your Enterprise Risk Management

Establishing an ERM system can be as daunting as building a house from the ground up. There are hundreds of decisions to be made that will affect how ...

Top 5 Risk Management Challenges for FinTechs

It’s clear that today’s operating environment is changing at a very rapid pace, which means the risks are evolving fast, too. In this blog, we ...

Operational Resilience Leadership Webinar Wrap Up

The drivers of operational resilience are creating a perfect storm. On one hand, the financial services regulators are demanding action while on the ...

Investing in Operational Resilience – the most lucrative investment you will ever make!

The World Economic Forum has estimated that “Fighting COVID-19 could cost 500 times as much as pandemic prevention measures”[1]. This means that an ...

How Melbourne Polytechnic implemented a system that manages risks in a fluid tertiary education environment

Melbourne Polytechnic’s risk reporting was labour intensive and data was scattered across various platforms, making it difficult to access and ...

How the British Council implemented a centralised audit and incident management system in 100+ countries

The British Council exams program lacked up to date solutions for managing exams audit, incident management, and associated processes. Implementing ...

Risk Bow Tie Leadership Webinar Wrap Up

Risk Bow Tie Analysis is a powerful tool to document and communicate any type of risk. At Protecht we have always been passionate about the Bow Tie ...

ERM and other Risk Management acronyms

The management of an organization's risks on a true enterprise basis should be the aim of contemporary risk management. Enterprise Risk Management ...

Tie your risks with a Bow Tie

  The dress Bow Tie originates from the 17th century. Croatian mercenaries held their shirts together around the neck using tied scarfs during the ...

Are you really in control of your Culture and Conduct risks?

The list of key risks that should be keeping us awake at night seems to be forever changing. Whatever your list, Culture and Conduct Risk should be a ...

Webinar Q&A: Protecht.ERM Risk Management System Showcase

We want to thank Adel Fakhreddine for answering the questions and also to all the participants around the world for being really proactive and ...

Victorian Government raises the bar on Risk Management. How will you rise to the occasion?

The Victorian Government’s Risk Management Framework (VGRMF) which applies to Victorian Government departments and public bodies covered by the ...

From Static to Dynamic WHS Risk Reporting. WHS series session 10.

In this blog, David Tattam summarises his insights from the tenth live session "From Static to Dynamic WHS Risk Reporting" in the webinar series "A ...

Risk Culture Audits!

The IIA-Australia's guide is a timely reminder of the need for continued focus on risk culture. Although the guide is focused on Financial Services, ...

WHS Compliance and Compliance Risk Management. WHS series session 9.

Protecht’s eleven part complimentary webinar series focusing on a comprehensive deep dive into Workplace Health and Safety (WHS), kicked off on 23 ...

Controls Design and Controls Assurance for WHS. WHS series session 8.

Protecht’s eleven part complimentary webinar series focusing on a comprehensive deep dive into Workplace Health and Safety (WHS), kicked off on 23 ...

Incident Management. WHS Series Session 7.

In this blog, David Tattam summarised his insights from the seventh live session "WHS Incident Management " in the webinar series "A Deep Dive into ...

Identifying, Tracking, Monitoring and Reporting WHS Risk Metrics. WHS Series Session 5.

In this blog, David Tattam summarised his insights of the fifth live session "Identifying, Tracking, Monitoring, and Reporting WHS Risk Metrics" in ...

Risk and Hazard Assessment. WHS Series Session 4.

In this blog, David Tattam summarised his insights of the fourth live session "Risk and Hazard Assessment" in the webinar series "A Deep Dive into ...

A Risk Management Framework for WHS. WHS Series Session 3.

In this blog, David Tattam summarised his insights of the second live session "A Risk Management Framework for WHS" in the webinar series "A Deep ...

Understanding WHS Treatment Methods and Controls. WHS Series Session 2.

In this blog, David Tattam summarised his insights of the second live session "Understanding WHS Treatment Methods and Controls" in the webinar ...

How Toyota Financial Services Australia Went from Manual to Auto

Craig Greenwood, Former Toyota Financial Services Chief Compliance Officer, and his team wanted to continue using established business procedures but ...

Operational resilience

Over the past ten years, consumer banking behaviours have significantly changed. Today, the majority of customers engage banks via digital channels. ...

How will you shape the future of Risk Management?

A futurist’s role is to help shape the future of something (risk management) in order to make it more relevant and valuable based on: Its known ...

Webinar Wrap-up: Managing Disruption – The Keys to Riding the Storm

Over 800 risk professionals joined Richard Waterer, Managing Director EMEA for Aon, and David Tattam, Director of Research and Training from The ...

Understanding Workplace Health and Safety Risks

Protecht’s eleven-part complimentary webinar series focusing on a comprehensive and deep dive into workplace health and safety, kicked off on 23 July ...

Webinar Q&A: How COVID-19 learnings will shape the New Normal of Risk Management

During our live webinar session on How COVID-19 learnings will shape the New Normal of Risk Management, our participants asked questions covering ...

It all starts with sound Risk Management

This interview was featured in the Forge Magazine. You can access the full publication here.  Too many organisations view risk management as a ...

Aligning your Workplace, Health & Safety capability with an ERM framework. WHS Series Session1.

What does ERM mean? Enterprise Risk Management (ERM) is becoming increasingly accepted as an integral part of business management processes within ...

A Roundtable of COVID-19 Experiences Across 36 Organisations

The sharing of experiences at any time of life is an enriching and valuable experience. In times of crisis, experience sharing is gold. A key factor ...

Managing the War Room

One of the early observations we have made from the COVID-19 crisis experience to date relates to the operations of the war room and the crisis ...

COVID-19 Operational Resilience: Where will you bounce?

In a recent post by Warren Black, he stated: "Clearly, organisational resilience in the face of disruption, is not about bouncing back but rather ...

Compliance Management and COVID-19 – Joined at the Hip

Compliance at the best of times is often met with sighs and feelings of burden and “we need to do it because we’ve been told to” attitude. In a ...

Analysis and assessment of the treatment methods and controls for COVID-19

Now that the Pandemic risk has “hatched” and we are operating in the midst of its development, it has produced a substantially changed risk profile ...

Webinar Q&A: How to easily measure your risk culture

You can find here the list of questions and answers to the topics that were raised during the live session of the webinar: How to easily measure your ...

Risk Culture Dashboard

Risk Culture is the system of values and behaviours in an organisation that guides all risk-related decisions. We believe that getting the right ...

Webinar Q&A: Best practices to measure and manage Risk Culture

You can find here the list of questions and answers to the topics that were raised during the live session of the webinar: Best Practices to measure ...

The 20 Critical Questions Directors Should Ask About Internal Audit Resourcing 

Here are some audit committee questions you can ask to check the adequacy of internal resources: Organisation requirements 1. Does the internal audit ...

Culture and Conduct Risk – Myths and Realities

I have hope. Hope that my children (14 and 12) and their fellow Gen Zs and Gen Alphas will fix us. We are well on the way – the #MeToo movement and ...

Common IT questions around Risk Management Software

If you're reading this article, it's likely that you're facing one of these two scenarios: You are a risk manager looking for risk management ...

Risk Management Training to Improve Your Business

As a business seeking to maximise your return on employee investment, there’s hardly a better choice than to educate staff at all levels with risk ...

Dynamic Risk Profiling

At the end of last year I had the opportunity to do a workshop at the Annual Risk Leaders Conference organised by the Institute of Risk Management ...

Easy Monitoring with Health and Safety Incident Management Software

Our health and safety incident management software, Protecht.ERM, will help your organisation to minimise loss and disruption to your operations due ...

Use Protecht.ERM for Effective Enterprise Risk Management

Protecht.ERM is trusted by countless enterprises across dozens of different industries to deliver their ERM capability. Financial organisations that ...

Non-Financial Risk – Why the big focus?

The latest focus in risk management seems to be "Non-Financial Risk". Search for "Non-Financial Risk" on Google and you will be returned everything ...

Modern Slavery - Being Prepared

Do you know what the Modern Slavery Act is and how it will impact your business? We had the opportunity to have Associate Professor Justine Nolan ...

Controls Assurance Webinar

Awesome Controls Assurance: The Confidence to Go Faster This event was done live on Oct.22nd 2019. Access the recording here. “The greatest potential ...

Internal Audit and Enterprise Risk Management

What is Internal Audit? "Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an ...

Disparate and Disconnected Risk Processes and Information? Solving the Problem with Key Risk Indicators

This is part 4 of our video series on "Disparate and Disconnected Risk Processes and Information". In this video, David Tattam talks about key risk ...

Understanding Key Risk Indicators from a Personal Perspective

This is part 4 of our video series on "Difficulties in Engaging Staff in Risk Management". David Tattam provides an example of how you can explain ...

Understanding RiskInMotion: How to bring all your risk information into one dashboard

Risk is always in motion - its measurement is forever changing. In this webinar, David Tattam and David Bergmark talk about how using dynamic ...

Difficulties in Engaging Staff in Risk Management: Making Risk Management Real

This is part 2 of our video series on "Difficulties in Engaging Staff in Risk Management". David Tattam provides an example of how you can make risk ...

Difficulties in Engaging Staff in Risk Management: What, How and Why

This is part 1 of our video series on "Difficulties in Engaging Staff in Risk Management". In this video, David Tattam talks about why it's difficult ...

The Risk and Control Self Assessment Process in an Integrated Risk Management Framework

This is part 3 of our video series on "Disparate and Disconnected Risk Processes and Information". In this video, David Tattam talks about the eight ...

Inherent, Residual and Targeted Risk: What Risk Professionals Need to Know

Inherent, Residual and Targeted Risk: What Risk Professionals Need to Know This event was done live on Wednesday 19th June 2019. What you will learn ...

Designing and deploying first rate risk and control taxonomies

Designing and deploying first rate risk and control taxonomies  This webinar was done live on 16th May 2019.  What you will learn in this webinar:  ...

Auditing your Control Framework - SOPAC 2019

How do you encourage your staff to embrace risk and controls? In this recording, David Tattam talks about how understanding the dynamics and ...

Disparate and Disconnected Risk Processes and Information? Solving the Problem with Risk Taxonomies

This is part 2 of our video series on "Disparate and Disconnected Risk Processes and Information". In this video, David Tattam talks about what makes ...

Disparate and Disconnected Risk Processes and Information? Solving the Problem by Integrating the Building Blocks of Risk Management

This is part 1 of our video series on "Disparate and Disconnected Risk Processes and Information". In this video, David Tattam talks about the key ...

Building Resilience by Creating a Happy Marriage Between Risk & Reward. RMIA Conference

How do you build and improve resilience in your organisation? In this recording, David Tattam talks about how understanding the dynamics and ...

Enterprise Risk Management - Connecting the Dots. RiskInMotion

Connecting the dots (in this case, the risks). It has been a bit of a journey over the last 15 years. At Protecht, we started with the vision of a ...

Is risk management front and centre in your decision making?

In this video, David Tattam breaks down the questions you should be asking to better integrate risk management in your organisation's decision making.

Managing Risk with the Second Line of Defence Launchpad

The Second Line of Defence Launchpad within the Protecht.ERM system is an effective and interactive visualisation designed specifically for the Line ...

Can I? Should I? Would I? Using compliance as a decision making tool

Compliance is the act of “conforming to rules”. Deciding to, or not to, conform to rules affects the decisions we make. Compliance is therefore an ...

Importance of 'Challenge' in Risk Management

In my earlier blog “What we can all learn from the APRA prudential inquiry report into the CBA” I noted that one of the strong themes of the report ...

Are you a risk manager?

What does it take to be a risk manager? I am often asked “what are the key requirements that make a good risk manager?”  My first response is “to be ...

Risk Governance and the Three Lines of Defence

Effective risk management requires governance structures and processes commensurate with the organisation’s context. Regardless of the organisation’s ...

What we can all learn from the APRA prudential inquiry report into the CBA

Taking Risk Management to the next level  The APRA report of the prudential inquiry in the Commonwealth Bank of Australia (CBA) was issued on 1 May ...

Understanding Compliance Risk

Today, corporations and government agencies are facing an unprecedented wave of regulatory obligations and increased penalties for non-compliance. ...

How to promote Risk Culture in your team

In a recent discussion with a colleague on preparing for 'black swan' events, we concluded that regardless of the size, type and structure of an ...

Seven ways to improve your Risk Management Process using Protecht.ERM's latest features

This article is written with all the Risk and Compliance professionals like you in mind. Are you a junior, an analyst or a Chief Risk Officer? Your ...

Infographic: Information Risk Management Framework

In previous articles, we have talked about the increasing importance that data collection and data management have in business strategy. On this ...

How do Key Risk Indicators work?

In February this year, I ran a blog highlighting the power of the human brain and its senses in acting as a personal key risk indicator (KRI) system ...

Compliance Risk Management Real Example

Gorillas and Bears – Comply or Die! The story of Harambe, the Cincinnati Zoo’s much-loved Gorilla, went global in its interest. A defenceless animal ...

Making Risk Sexy

This article was written by Vicki Wilder , Board Director, Governance Professional. Edith Cowan University. We are sharing it with the Protecht Risk ...

Reputation Damage - Risk Event or Risk Impact?

Looking back over the last 12 months, corporate scandals continue with the finance industry seemingly always managing to make the headlines. Wells ...

Risk Appetite - how hungry are you for risk?

The setting of an organisation's risk ‘appetite' is a critical component of a robust risk management framework.  This article addresses: What does ...

Prevention is better than cure - and other risk management cliches

There are many well used, almost clichéd phrases in the English language that contain powerful messages for the risk manager. Some that come to mind ...

Risk Event Libraries. Do your own sanity check.

At Protecht, we get to see a lot of risk event libraries. There continues to be some confusion as to what is actually a risk event that is worthy of ...

How to Reduce Risks Caused By Human Error

What is Human Error? Risk events often have many contributing causes, a common one being ‘human error’. But what is human error and can it be ...

Opportunity risk management

Writing blogs in risk management is risky. It has a potential upside and a downside.  On the upside, the hope is that the blog adds to the ...

Risk Appetite - Inherent and Residual?

The case for setting both an Inherent and Residual Risk Appetite In the last two blogs, Inherent Risk - It is useful? and Expected and Targeted ...

How to Achieve your Risk Management Goals

10 KEYS to Risk Management Success  Having worked with many clients over the years in implementing, maintaining and developing their risk management ...

Expected and Targeted Risks

Are they useful? Residual risk, the risk after considering existing controls, is universally accepted as important to assess in the risk assessment ...

Inherent Risk – Is it useful?

The ISO 31000:2009 standard does not refer to “inherent” risk. Is this a deliberate omission and if so, what is the reason? This leads to the ...

The 6 key elements to creating and maintaining a good risk culture

You can take a horse to water but you cannot make it drink. You can take risk management to your business but you cannot make them do it. People, to ...

The Scoring of Residual Risk

The first issue to consider is how the level of residual risk is assessed taking into account the scoring of inherent risk and the level of control ...

30-Minute GRC: Build a Form, Workflow It, Report on It

Do you normally have to wait for your vendor or IT development team to build your GRC information capture, processing and reporting? In this free ...

The Risk of Gifts and Entertainment

As we approach the end of the calendar year, businesses grapple with the issue of giving and receiving gifts and entertainment to and from suppliers, ...

Successfully Implementing an Enterprise Risk Management System

5 factors of success I was thinking about the characteristics of companies that make the decision to acquire and then successfully implement an ...

Integrated Controls Assurance – Maximum Assurance, Minimum Effort

Controls assurance is a critical component of any robust risk management framework, providing an organisation with: Objective evidence that controls ...

What is the definition of Compliance? An overview of components

What is Compliance? Compliance Framework – Other components:  Attestations, Breach Registers, Culture In a previous article we wrote about the Key ...

Key Components of a Compliance Framework – The Obligations Register

What is the definition of Compliance? Compliance is an outcome of conforming to a rule. That rule may arise from an external source such as a law or ...

LexisNexis Content Integrated with Protecht.ERM

Is your compliance team tired of maintaining compliance and obligations registers in spreadsheets? Are they tired of trawling through email alerts ...

Why is Risk Training important?

The importance of risk management training Your people's perception, attitude, risk culture, engagement, behaviour and actions, with respect to risk ...

Risk Appetite – The starting point of great risk management

The concept of risk appetite has been around for a number of years now and many organisations have developed a form of risk appetite as part of their ...

Bow Tie Analysis

Bow Ties usually conjure up a vision of a formal event, to be used infrequently for special occasions. For risk bow ties, nothing could be further ...

Useful Tips to Improve Commercial Credit Risk Management

Maintenance and improvement of credit risk management practices by banks and lenders have become a top priority. Let us share with you some tips to ...

Operational Risk Management 3 –Risk and Controls Self-Assessment applied in a Business Context

This is the third blog in our Operational Risk Management series. In the first article, I explained the incredible KRI system we all have via our ...

7 Steps of the Risk and Control Self Assessment (RCSA) Process in Your Personal Life

This post is part of our series Operational Risk Management – Learning from yourself as an expert already! My last blog highlighted the extensive use ...

Information Security Risk Management: An Interview with Peter Walker, Protecht Group Chief Information Officer

In this blog post, Peter Walker, Protecht's Chief Information Officer, answers some questions around information security and getting ISO 27001 ...

Risk Management Controls in Tough Mudder

See the Slideshare and find the pictures of Protecht team members in Action Tough Mudder is an endurance event series in which participants attempt ...

Risk Control - Who owns the Risk Management Controls?

A common issue that arises when implementing an enterprise risk management (ERM) framework is “who owns, is responsible for, is accountable for risks ...

How to Balance Risk and Reward in your Organisation?

Finding the Optimal Balance to make better decisions Organisations, or more precisely, the employees of organisations, make hundreds, if not ...

Need Help Defining a Risk Control?

6 Key Questions to Define Risk Control In last week's blog, I discussed the basic but often confused issue, of describing operational risks in a ...

Need Help Defining Operational Risks?

Defining Operational Risks is not as easy as it looks  One of the most basic steps in any risk management process is to define your operational ...

A Real Life Risk Story…

This happened in the Protecht Neighbourhood I have read many posts recently where questions were asked about how to define a risk, and other about ...

10 Great Features of Protecht Enterprise Risk Management Software

Having an (ERM) has become a MUST Enterprise Risk Management has become a must for all organisations, regardless of size, complexity and industry ...

Business Intelligence for Commercial Credit Risk Management

Good practice in credit risk management is to turn periodic core banking data (eg. portfolio balance vs arrears) into meaningful information for ...

Can Residual Risk Be Higher Than Inherent Risk?

  For those that adopt inherent risk in their risk assessment process, there is general recognition that inherent and residual risk are connected in ...

Risk Velocity - The Third Dimension of Risk?

The primary purpose of risk management is to create and preserve value. Rather than it being a chore or a regulatory demand, risk management should ...

Risk and Control Self Assessment - Average or Worst Case?

Risk and Control Self Assessment (RCSA) has become a cornerstone of current Enterprise Risk Management, yet the quality of assessments differ greatly ...

Moving from ALM Risk Data to ALM Business Intelligence

As Albert Einstein said “If you can't explain it simply, you don't understand it well enough”… Interest rate risk measurement typically has a number ...

Compliance Risk Management

There has been, for many years, an ongoing debate as to the relationship between Compliance Management and Risk Management. Some have believed they ...

The Importance of Risk Training

The key to successful risk management in your business is your people. Their risk culture, perception, attitude, engagement, behaviour and actions, ...

Risk Management Transformation: What does it look like?

Transformation can be defined as “a marked change, as in appearance or character, usually for the better”. Risk management transformation is the ...

Featured Articles

feature image

Managing Risk and Compliance in a COVID-19 World

This is the time for a well-developed, well-embedded and well-operated enterprise risk management framework and processes. It is not a time to throw away risk management thinking. It is a time to bring it into action.
feature image

Redefining Risk - Never Look at Risk the Same Way Again

What was once a backstage concern must now play a leading role. The reality is, if you want to be better as a company, you need to get better at taking risks.

Get practical resources in your inbox every month.

Thought leadership content on risk management, governance and compliance.

Subscribe Now