Risk Management
Extensive prior knowledge of the subject is not a prerequisite. You will be guided by an experienced risk professional who has both sat on and advised boards on corporate governance and helped companies to enhance their Risk Management and associated systems. This training course is suitable for a wide range of professionals but will greatly benefit:
- Practitioners & RM implementers requiring a refresher on recent developments
- Auditors who seek to fully understand the ISO 31000 implementation process
- Line & Project Managers need to ensure that they are effectively managing risk
- Professionals who want a practical starting point for establishing an effective RM and Business Continuity Management framework
- Middle to Senior managers benefiting on how RM can be used as a leadership and decision-making tool
Extensive prior knowledge of the subject is not a prerequisite. You will be guided by an experienced risk professional who has both sat on and advised boards on corporate governance and helped companies to enhance their Risk Management and associated systems. This training course is suitable to a wide range of professionals but will greatly benefit:
- Practitioners & RM implementers requiring a refresher on recent developments
- Auditors who seek to fully understand the ISO 31000 implementation process
- Line & Project Managers need to ensure that they are effectively managing risk
- Professionals who want a practical starting point for establishing an effective RM and Business Continuity Management framework
- Middle to Senior managers benefiting on how RM can be used as a leadership and decision-making tool
By the End of the Training Course, Participants will be able to:
- Determine and master the concepts, approaches, standards, methods, and techniques for the effective implementation of RM
- Develop the necessary leadership skills enabling you to communicate your RM findings to all levels and all stakeholders
- Determine your organization’s appetite and tolerance for risk
- How RM relates to crisis management, business continuity, and other key business areas
- Apply invaluable and highly relevant RM knowledge to put into practice and benefit you and your organization immediately on returning
Day One: ISO 31000 - Principles of Risk and Risk Management
- Objectives & Governance, concepts & definitions of risk & Risk Management
- Mapping and assessing Your current governance arrangements
- Commitment - Setting Your objectives for implementing ISO 31000:2018
- Who are the internal and external stakeholders
- The importance of culture, communication and behaviour in seeking an effective Risk Management structure
- An overview of the global business and risk environment
- Enterprise Risk Management – The Resilient Organisation
Day Two: ISO 31004 - Designing the Framework for Managing Risk
- Risk Management framework and process
- Risk Management responsibilities – who does what, who is on the team
- Risk Management accountabilities and performance measures
- Compare Your current Risk Management to ISO 31000:2018 principles
- Alignment between Risk Management policy and the organisation
- Risk attitude – pursue, retain or avoid with respect to risk appetite and tolerance
- A close look at options for risk criteria, assessment, identification, analysis and evaluation
Day Three: Business Continuity Management Systems (BCMS)
- Fundamental principles of Business Continuity Management
- Implementation of a BCMS in accordance with ISO 22301 & 27031
- Business Impact Analysis (BIA) and Risk Assessment
- To understand the relationship between BCMS and compliance with the other RM requirements, including supply chain management
- Writing a business case and a project plan for the implementation of a BCMS
- Incident and emergency response management (including mutual aid)
Day Four: Implementing Effective Risk Management
- Resources and methodologies to implement the Risk Management Plan
- Ensuring Risk Management becomes part of significant decision-making
- What are the likely barriers to implementation (risk culture)
- Risk reporting and the limitations of various risk reporting tools & methodologies
- Assess the respective merits of both quantitative risk modelling and qualitative reporting
- Align your risk reporting processes with other strategically important management activities, such as reputation management. (learn from recent cases of failure)
Day Five: Monitoring, Review and Continuous Improvement of the Framework
- Key risk indicators (KRI´s)
- Continuous improvements, running your own team-based risk workshops
- Collate risk and control information from multiple sources into a central risk register or inventory of risk information system
- Controls register or inventory of controls. (The “Five Ws”)
- Understand feedback provided to you by those you communicate with and take on board “lessons learnt”