Risk Analysis and Management

  1. Risk Management Frameworks and Standards
    1. ISO 31000 Risk Management Guidelines
      1. Core Principles
        1. Integrated Approach
          1. Structured and Comprehensive
            1. Customized to Organization
              1. Inclusive Stakeholder Engagement
                1. Dynamic and Responsive
                  1. Best Available Information
                    1. Human and Cultural Factors
                      1. Continual Improvement
                      2. Risk Management Framework
                        1. Leadership and Commitment
                          1. Integration into Organization
                            1. Framework Design
                              1. Implementation Strategy
                                1. Evaluation and Improvement
                                2. Risk Management Process
                                  1. Communication and Consultation
                                    1. Scope, Context, and Criteria
                                      1. Risk Assessment
                                        1. Risk Treatment
                                          1. Monitoring and Review
                                            1. Recording and Reporting
                                          2. COSO Enterprise Risk Management Framework
                                            1. Governance and Culture
                                              1. Board Risk Oversight
                                                1. Operating Structure
                                                  1. Core Values
                                                    1. Risk Culture
                                                    2. Strategy and Objective-Setting
                                                      1. Business Context Analysis
                                                        1. Risk Appetite Definition
                                                          1. Strategy Evaluation
                                                            1. Business Objective Formation
                                                            2. Performance
                                                              1. Risk Identification
                                                                1. Risk Assessment
                                                                  1. Risk Prioritization
                                                                    1. Risk Response Implementation
                                                                    2. Review and Revision
                                                                      1. Substantial Change Assessment
                                                                        1. Risk and Performance Review
                                                                          1. ERM Improvement
                                                                          2. Information, Communication, and Reporting
                                                                            1. Information Systems
                                                                              1. Communication Channels
                                                                                1. Reporting Mechanisms
                                                                              2. Additional Risk Frameworks
                                                                                1. NIST Cybersecurity Framework
                                                                                  1. Identify Function
                                                                                    1. Protect Function
                                                                                      1. Detect Function
                                                                                        1. Respond Function
                                                                                          1. Recover Function
                                                                                          2. Basel Accords for Financial Institutions
                                                                                            1. Basel I Capital Requirements
                                                                                              1. Basel II Risk-Based Capital
                                                                                                1. Basel III Enhanced Regulations
                                                                                                2. COBIT for IT Governance
                                                                                                  1. ITIL for IT Service Management
                                                                                                    1. Project Management Risk Standards
                                                                                                      1. PMI Risk Management
                                                                                                        1. PRINCE2 Risk Management

                                                                                                    Previous

                                                                                                    1. Foundations of Risk Management

                                                                                                    Go to top

                                                                                                    Next

                                                                                                    3. Risk Context and Environment