Protecht.ERM Showcase: Manage the full lifecycle of risk management in one system
Register Now

Get started with Protecht.ERM

Dynamically manage all your risks in a single platform: Risks, Compliance, Health and Safety, Internal Audit, Incidents and KRIs.




Take a holistic view of all your risks

Risk Assessment


Risk and Controls Self-Assessment. Protecht.ERM delivers centralized divisional and group risk assessments as well as control testing to support control effectiveness ratings.

Compliance Management


Create automated Compliance Attestations based on internal or external policies and regulations. Centrally manage obligations and breaches in a single platform.

Internal Audit


Plan and execute internal audits.  Streamline management of any internal audit findings.

Key Risk Indicators


Enable users to enter and track their key risk indicators (KRIs),  Key Control Indicators (KCIs) and Key Performance Indicators (KPIs). Quickly and easily see trends in risk appetite and performance metrics through highly visual analytics.

Incident Management


Allows quick and easy capture and notification of incidents with subsequent investigation and corrective actions. ORX reporting available.

Actions Management


Treatment plans for risk assessments, incidents and more captured in a simple action form for all users. Assignment and followup automated through email notifications.

Registers Included


Convert your paper or electronic forms into fully customisable registers. See some examples. 


All your Risk Information in Real-Time, in One Place

Flexible & Easy to Use

It can be challenging to engage front line users with limited risk experience. Protecht.ERM has been designed for usability and is accessible from multiple devices, including mobile. 

Key Information at a Glance

Engage the whole organization and keep your risk and compliance information consistent with just one system. Create sophisticated dashboards and high-quality reports for board and senior management.


Key Functionalities Included

Complete Package
Access the complete suite of integrated Governance, Risk and Compliance (GRC / IRM) components.
Mobile App
Native mobile App for data capture and review when online and data capture in offline mode.
Dynamic Form Builder
Control the way your forms display by simple drag and drop design. No coding required.
Automate notifications and email alerts based on your business processes and rules.
Bulk Update
Ability to make high volume data updates and migration with the click of a button.
Integration with other systems

APIs allow for integration with both on premise and cloud based third party systems.

Obligations Content
Ability to integrate with external content providers to embed regulatory content with automated alerts and notifications.
Central Libraries
Consistent terminology for risks, controls and causes with accessible libraries.
Create multi-dimensional connections between data from different modules.
BI and Risk Analytics
Highly informative analytics and visual dashboards available in a variety of formats that can be scheduled to run and emailed.

Examples of Included Registers

Risk and Controls Assessments
Supporting ISO 31000, assess your risks and controls based on your methodology.
Key Metrics
Create and assign KRIs, KPIs and KCIs. 
Compliance Attestations
Create and assign compliance attestations linked to obligations, controls and risks.
WHS Management
Manage safety hazards, WHS incidents and cases within a single system.
Audit Findings
Log and monitor the status of audit findings assigned to responsible managers.
Incident and Issues Management
Manage any type of Incident from notification to closure.
Third-Party Management
Monitor and manage all interactions with external parties.
Conflicts Register
Capture and decide on potential procurement conflicts.
Resilience and Business Impact Analysis
Bring your business impact analysis and BCP testing to life.
Change Management
Streamline change risk assessments, requests and approvals.
Policy Management
Manage your policy review lifecycle.
IT Security Risk Management
ISO27001 certification registers.
Contractor Management
Manage your contractors, induction, certifications and insurance.
Complaints Register
Systematically deal with complaints and escalations to regulators.
Action Plans and Tasks
Create, assign and monitor any type of action, mitigation plan or tasks

Are you a...

Risk Manager

Risk Manager

Bring your risk management framework to life and manage all risks across the organization.

Learn More >
Compliance Manager

Compliance Manager

Focus on the right things by taking away the manual and time-consuming processes of managing compliance obligations. 

Learn More >
Internal Auditor

Internal auditor

Manage the full audit process with audit plans, final reports and findings. 

Learn More >
Third Party Vendor Risk Manager

Third Party Vendor Risk Manager

Improve management of third party vendor risk through systematic onboarding and automated security and regulatory questionnaires.

Learn More >

Industries We Specialise In

Unleash new risk management possibilities for businesses of all sizes and risk maturity stage. We cover government, financial services, retail, transport, not-for-profit, property management, gaming and entertainment, education and more.

"The ERM system has allowed the Group to centralize its risk
management and compliance information to all 1100

Colin Stirling, Group Asset Protection Manager - Super Retail Group

"We needed a system that would run reports quickly and smoothly without having to manually trawl through hundreds of files. Protecht plugged it in for us and we worked together on the initial modules until we got a feel, but then literally within the first month we were putting out other registers such as Access Requests, Audit Checks, Legal Requests and more."

Craig Greenwood

Chief Compliance Officer
Website - Board of Directors (3)

"Protecht.ERM allows us to continuously improve our risk and compliance management processes. As we work our way further down our risk tree, we feel confident that we have all key risks appropriately mitigated, despite knowing that the risks we face constantly change."

Matthew Spithill

Chief Financial Officer, AXA Investment Managers
Image 009

Frequently Asked Questions

Do I have to pay for the modules separately?

Protecht.ERM licensing is based on the number and type of named active users. All functionality is provided allowing Protecht.ERM to be configured to capture data, workflow  and report on it, regardless of the business process.

We’re moving our data from another system. Can you help us migrate our data?

During the initial implementation, we will migrate your data. The Bulk Import and Export functionality will allow you to import data at any time from CSV format while the use of web services and APIs will allow for integration with other systems.

We’re a small organization, what’s your pricing structure like?

Protecht.ERM is highly scalable. We have clients with as few as 2 users through to major organisations with over 20,000 users. Annual licence fees are based on the number and type of users named and active in Protecht.ERM.

Will this system work for us if we adopt a custom risk methodology?

Protecht.ERM is highly configurable without needing coding skills. Data capture forms, workflow rules, reports and dashboards can be quickly and easily configured to match your risk methodology or any other business process.

What about the sovereignty and security of my data?

Hosted in your region, allowing you to enjoy high availability and performance. Hosting is in highly secure data centers that are ISO 27001 certified, PCI/DSS compliant and certified or approved by government for hosting of highly sensitive data.