Enterprise Risk Management System Software

Take a holistic view of all your risks

Risk Assessment


Risk and Controls Self-Assessment: Our ERM software, Protecht.ERM, delivers centralized divisional and group risk assessments as well as control testing to support control effectiveness ratings. 

Compliance Management


Create automated Compliance Attestations based on internal or external policies and regulations. Centrally manage obligations and breaches in a single platform.

Internal Audit


Plan and execute internal audits.  Streamline management of any internal audit findings.

Key Risk Indicators


Enable users to enter and track their Key Risk Indicators (KRIs),  Key Control Indicators (KCIs) and Key Performance Indicators (KPIs). Quickly and easily see trends in risk appetite and performance metrics through highly visual analytics.

Incident Management


Allows quick and easy capture and notification of incidents with subsequent investigation and corrective actions. ORX reporting available.

Actions Management


Treatment plans for risk assessments, incidents and more captured in a simple action form for all users. Assignment and followup automated through email notifications.

Registers Included


Convert your paper or electronic forms into fully customizable registers. See some examples. 


All your Risk Information in Real Time, in One Place

Flexible & Easy to Use

It can be challenging to engage front line users who have limited risk experience. Our enterprise risk management software has been designed for usability and is accessible from multiple devices, including mobile. 

Key Information at a Glance

Engage the whole organization and keep your risk and compliance information consistent with just one system. Create sophisticated dashboards and high-quality reports for board and senior management.

Easily Measure Your Risk Culture

Get a new perspective on your risk culture

We believe that getting the right culture to support risk management is one of the most critical ingredients for an organization's success.

Risk Culture is multi-faceted and can be difficult to measure. We created the Risk Culture Dashboard to help you overcome this challenge.

See changes over time and target key areas

Get insights on where you need to focus more attention, see if your risk team is getting maximum value out of Protecht.ERM and if your end users are interacting with your ERM software consistently.

Read More About How It Works

Risk Culture Dashboard in Protecht.ERM

Key Functionalities Included

Mobile App
Native mobile App for data capture and review when online and data capture in offline mode.
Dynamic Form Builder
Control the way your forms display by simple drag and drop design. No coding required.
Automate notifications and email alerts based on your business processes and rules.
Bulk Update
Ability to make high volume data updates and migration with the click of a button. 
Integration with other systems

APIs allow for integration with both on-premise and cloud-based third party systems.

Obligations Content
Ability to integrate with external content providers to embed regulatory content with automated alerts and notifications.
Central Libraries
Consistent terminology for risks, controls and causes with accessible libraries.
Create multi-dimensional connections between data from different modules.
BI and Risk Analytics
Highly informative analytics and visual dashboards available in a variety of formats that can be scheduled to run and emailed.

Enterprise Risk Management Solutions

Examples of Included Registers

Risk and Controls Assessments
Supporting ISO 31000, assess your risks and controls based on your methodology.
Key Metrics
Create and assign KRIs, KPIs and KCIs. 
Compliance Attestations
Create and assign compliance attestations linked to obligations, controls and risks.
WHS Management
Manage safety hazards, WHS incidents and cases within a single system.
Audit Findings
Log and monitor the status of audit findings assigned to responsible managers.
Incident and Issues Management
Manage any type of Incident from notification to closure.
Third-Party Management
Monitor and manage all interactions with external parties.
Conflicts Register
Capture and decide on potential procurement conflicts.
Resilience and Business Impact Analysis
Bring your business impact analysis and BCP testing to life.
Change Management
Streamline change risk assessments, requests and approvals.
Policy Management
Manage your policy review lifecycle.
IT Security Risk Management
ISO27001 certification registers.
Contractor Management
Manage your contractors, induction, certifications and insurance.
Complaints Register
Systematically deal with complaints and escalations to regulators.
Action Plans and Tasks
Create, assign and monitor any type of action, mitigation plan or tasks

Are you a...

Risk Manager

Risk Manager

Bring your risk management framework to life and manage all risks across the organization.

Learn More >
Compliance Manager

Compliance Manager

Focus on the right things by taking away the manual and time-consuming processes of managing compliance obligations. 

Learn More >
Internal Audit

Internal auditor

Manage the full audit process with audit plans, final reports and findings. 

Learn More >
Third Party Vendor Risk Manager

Third Party Vendor Risk Manager

Improve management of third party vendor risk through systematic onboarding and automated security and regulatory questionnaires.

Learn More >

Industries We Specialise In

Unleash new risk management possibilities for businesses of all sizes and risk maturity stage. Our ERM software solutions cover government, financial services, retail, transport, not-for-profit, property management, gaming and entertainment, education and more.

"The ERM system has allowed the Group to centralize its risk management and compliance information to all 1100 users."

Colin Stirling, Group Asset Protection Manager - Super Retail Group

"We needed a system that would run reports quickly and smoothly without having to manually trawl through hundreds of files. Protecht plugged it in for us and we worked together on the initial modules until we got a feel, but then literally within the first month we were putting out other registers such as Access Requests, Audit Checks, Legal Requests and more."

Craig Greenwood

Chief Compliance Officer
Website - Board of Directors (3)

Protecht.ERM allows us to continuously improve our risk and compliance management processes. As we work our way further down our risk tree, we feel confident that we have all key risks appropriately mitigated, despite knowing that the risks we face constantly change.

Matthew Spithill

Chief Financial Officer, AXA Investment Managers
Image 009

Frequently Asked Questions

Do I have to pay for the modules separately?

Licensing for the core Protecht.ERM package is based on the number and type of named active users. Protecht.ERM package is configured to capture data and workflow and create reports, regardless of the business process.  

This does not encompass pre-configured templates delivered through Marketplace or the Operational Resilience module for Protecht.ERM, both of which are billed separately. 

We’re moving our data from another system. Can you help us migrate our data?

During the initial implementation, we will migrate your data. The Bulk Import and Export functionality will allow you to import data at any time from CSV format while the use of web services and APIs will allow for integration with other systems.

We’re a small organization, what’s your pricing structure like?

Protecht.ERM is highly scalable. We have clients with as few as two users through to major organisations with over 20,000 users. Annual licence fees are based on the number and type of users named and active in Protecht.ERM.  

Additional charges apply if you wish to use pre-configured templates delivered through Marketplace or to add the Operational Resilience module to Protecht.ERM. 

Will this system work for us if we adopt a custom risk methodology?

Protecht.ERM is highly configurable without needing coding skills. Data capture forms, workflow rules, reports and dashboards can be quickly and easily configured to match your risk methodology or any other business process.

What about the sovereignty and security of my data?

Hosted in your region, allowing you to enjoy high availability and performance. Hosting is in highly secure data centres that are ISO 27001 certified, PCI/DSS compliant and certified or approved by government for hosting of highly sensitive data. 


Get started with


Manage your risk from anywhere in the world with our most complete online risk management software. Flexible and easy to use with no coding required, Protecht.ERM is suitable for organizations of any size, industry and risk maturity stage.