Enterprise Risk Management

Enterprise Risk Management
Enterprise Risk Management


The risks faced by organisations are expanding to cyber-security, regulatory change and geo-political change such as Brexit. An effective risk management process is fundamental to the board’s risk oversight process and help directors and executive management identify emerging risks and face the future confidently.

Protiviti’s Enterprise Risk Management (ERM) professionals partner with management to ensure that risk is appropriately considered in the strategy-setting process and is integrated with both performance management and operational activities. We work with companies to design, implement and maintain effective risk management capabilities to mitigate their most critical risks and address cultural and other organisational issues.

Our highly skilled teams help design and enhance reporting capabilities such that senior management, oversight committees and non-executives can appropriately understand the risk profile of the organisations and ensure measured responses and controls are in place to respond to the risks. We also help management evaluate technology solutions for reliable monitoring and reporting, and implement new processes successfully over time.

We have been appointed to the skilled persons panel for control and risk management frameworks.

Our Services

Enterprise risk assessment

Enterprise Risk Assessment

Supporting the business to identify, evaluate and mitigate business risks within the organisation.

ERM diagnostic

ERM Diagnostic

Gap analysis between the existing risk framework and good practices. Looking at comparable ERM systems in similar organisations.

ERM design and implementation

ERM Design and Implementation

Design and implementation of a risk management process, its structure and  operating model including risk governance, risk processes and monitoring and reporting.

ERM assurance review

ERM Assurance Review

Independent review of the design and operating effectiveness of ERM activities, providing assurance over the adequacy of the risk framework.

Risk awareness Training

Risk Awareness Training

Supporting the organisation to raise awareness within the business providing training across risk management functions.

ERM reporting

ERM Reporting

Development of reporting tools to support the mitigation and monitoring of risks – Risk Index.

ERM governance

ERM Governance

Design and implementation of governance frameworks that provide assurance over the oversight and monitoring of the ERM process.

GRC tools

GRC Tools

Supporting the selection process of the GRC tools and/or the implementation of Protiviti Governance Portal.