Traditionally, the practice of risk management comprises acceptance, transference, elimination, control, sharing, insurance and avoidance of a diverse array of risks. Risk management and internal control business models have subsequently been devised which cater for all eventualities - categorised by terms such as business, operational and reputational risk.