COSO ERM Framework

COSO's new guidance, Compliance Risk Management: Applying the COSO ERM Framework, detailing the application of the Enterprise Risk Management—Integrating with Strategy and Performance (ERM Framework) to the management of compliance risks. The guidance was commissioned by COSO and authored by the Society of Corporate Compliance and Ethics & Health Care Compliance Association (SCCE & HCCA).

Risk Governance Structure Template Second Edition 2018 - 02

highlighting of the leadership by top management and the integration of risk management, starting with the governance of the organization

Nigerian Code of Corporate Governance 2018

A comprehensive framework designed to institutionalize high standards of transparency, accountability, and ethics in Nigerian companies. It utilizes an "Apply and Explain" philosophy, requiring organizations to implement 28 core principles and demonstrate how their specific practices achieve the intended governance outcomes.

UK Corporate Governance Code 2024

a revised framework issued by the Financial Reporting Council (FRC) that emphasizes board accountability, particularly regarding risk management and internal controls. Operating on a "comply or explain" basis, it shifts the focus toward "outcomes-based" reporting to ensure that governance disclosures reflect actual board decisions and their impact on long-term company strategy.

10 Steps to Implement Enterprise Risk Management

Outlines a practical framework for building Enterprise Risk Management (ERM) by focusing on value creation and organizational objectives rather than just compliance. It details ten strategic steps, ranging from securing executive sponsorship and starting with small "quick wins" to delegating accountability to specific risk owners and reporting progress through tangible results.

Essential Guide to the Enterprise Risk Management

This guide from MetricStream describes Enterprise Risk Management (ERM) implementation as a systematic process to integrate risk awareness into every level of an organization. It outlines a structured lifecycle beginning with establishing a framework (like ISO 31000 or COSO), gaining executive buy-in, and forming cross-functional teams to identify and assess risks. The process concludes with risk response planning, embedding these practices into daily business operations, and maintaining continuous monitoring through Key Risk Indicators (KRIs).