This paper introduces a framework to create a business case for corporate risk management decisions – connecting risk management strategies with shareholder value.
A very good discussion the definition, benefits and implementation considerations of enterprise risk management (ERM).
This whitepaper uses the DuPont Model for risk analysis because this model connects incidents with their potential impact on profitability. To use this model, the reader needs knowledge on accounting and financial reporting, experience with risk scenarios, and how IT is affected.
This introduction to enterprise risk management (ERM) covers its definition, key trends, best practices and future direction.
This in-depth presentation provides a step by step guide to implementing an information technology risk management program
The 2010 IBM Global IT Risk Study revealed investing in IT risk management can provide significant business benefits
This presentation provides an overview of the COSO framework and discusses its use and implementation considerations.
This paper presents an executive summary of COSO – an integrated framework for enterprise risk management (ERM).
Risk assessment process with steps and checklist (chart)
Risk Management Guide for Information Technology Systems describes a risk management methodology, framework and process for risk assessment, evaluation and management.