This research focused on an assessment of risk management by the C-Suite. What do they think risk management is? How do they manage risk? How do they adapt to the changing business environment? How do they evaluate their performance? This report is a good read for a CIO to understand the discipline of risk management and how it is practiced at the board level.
This paper introduces a framework to create a business case for corporate risk management decisions – connecting risk management strategies with shareholder value.
A very good discussion the definition, benefits and implementation considerations of enterprise risk management (ERM).
This whitepaper uses the DuPont Model for risk analysis because this model connects incidents with their potential impact on profitability. To use this model, the reader needs knowledge on accounting and financial reporting, experience with risk scenarios, and how IT is affected.
This presentation discusses information security and compliance risk management – what is it? why do it? – and introduces a framework to implement it in the healthcare industry.
This paper provides a good overview of IT risk management – what is risk? why is it important to manage risk? how is risk assessed? how is risk managed? what are some common risk management frameworks?
This presentation discusses the lessons learned about risk management in process improvement projects.
This in-depth presentation provides a step by step guide to implementing an information technology risk management program
The 2010 IBM Global IT Risk Study revealed investing in IT risk management can provide significant business benefits
This presentation provides an overview of the COSO framework and discusses its use and implementation considerations.