More Related Content
Similar to ERM Consulting Overview
Similar to ERM Consulting Overview (20)
ERM Consulting Overview
- 1. We believe that implementing ERM is a multi-year process, the speed of which should be controlled by you – the
client. We can provide consulting advice throughout the entire implementation process, or you can select services
that meet your specific needs in each phase. For all contracted services, we collaborate with you to create appropriate
deliverables and outcomes – to assist your organization to build a robust and sustainable ERM program.
The ERM process we utilize is consistent with the principles, framework and process of ISO 31000, the
international risk management standard.
ERM Consulting – Phases and Options
© 2015 Arthur J. Gallagher & Co. All rights reserved.
15BSD27719A
Five-Phase Implementation Process Key Outcomes/Deliverables Include
1. Commitment & Framework
Build the case for ERM, understand
your mandate and commitment, review
roles and capabilities, begin the work to
develop a sustainable framework
• Meeting with ERM leaders
• Understand why to implement
ERM
• Advisory group formation
• ERM implementation plan
• Train ERM leaders
• Define key planning elements
• Roles and Responsibilities
• ERM resource guide
• Risk assessment process
• Risk register and map
• Risk ownership and treatment
• Data management plan
• Reports on key risks
• Train risk owners
• ERM training and education
• Integration into key business
processes
• Assess effectiveness of ERM
• Evaluate against performance
objectives
• Accountability and reporting
• Recommendations for
improvement
2. Leadership & Context
Train ERM leaders and advisory groups;
describe the context of operations and
identify key stakeholders; outline roles
and responsibilities, next steps and
create an implementation plan
3. Risk Assessment & Ownership
Organize a broader approach to risk
assessment; identify, analyze and
evaluate key risks, assign risk owners;
plan for data management, reporting
and communication
4. Risk Treatment & Integration
Develop risk treatment plans and
protocols; create appropriate progress
reports; train employees; integrate risk
oversight into position descriptions,
reviews and employee onboarding
5. Monitor & Review
Review ERM goals and
implementation plan; assess progress
against goals, ISO principles and
key performance indicators; identify
opportunities for improvement