This site uses cookies to store information on your computer. Some are essential to make our site work; others help us improve the user experience. By using the site, you consent to the placement of these cookies. Read our privacy policy to learn more.

Risk management policies & procedures

About this topic

Based on the CGMA Competency Framework, these resources allow you to focus on technical, business, people, leadership, and digital skills. All areas are underpinned by the need for ethics, integrity and professionalism. Log in and start learning today.

Manage your CPD record here.

Assess your skills

Take a self-assessment to evaluate your skills and find related learning activities.

Get started

Risk culture: Resources for practitioners

Aimed at risk professionals, Risk Culture: Resources for Practitioners draws together practical experience and expert knowledge to demonstrate concepts and models.

Report Risk identification & assessment Advanced

Financial performance of state owned enterprises in emerging economies

This report examines the financial performance of state-owned enterprises (SOEs) in emerging economies, with specific reference to Pakistan Rail (PR).

Report Risk management policies & procedures Intermediate

Enterprise risk management and budgetary control

This report argues that the managerial role of ERM and its link with budgeting is both a strategic and a management challenge for companies.

Report Risk management policies & procedures Expert

A structured approach to Enterprise Risk Management and the requirements of ISO 31000

This guide provides a commentary on ISO 31000: ‘Risk management–Principles and guidelines’ and advices on the implementation of an enterprise risk management initiative.

Report Risk management policies & procedures Advanced

A structured approach to enterprise risk management (ERM) and the requirements of ISO 31000

This Association of Risk and Insurance Managers (Airmac) report discusses ERM implementation with particular reference to the importance of ISO 31000.

Report Risk management policies & procedures Advanced

Enterprise risk oversight: a global analysis

This report provides an overview of the state of enterprise risk oversight around the globe following the economic crisis.

Report Risk management policies & procedures Expert

Reporting and managing risk

This report summarises case studies on risk management practices at four major organisations: Tesco, Royal Bank of Scotland (RBS), Birmingham City Council and the...

Report Risk management policies & procedures Advanced

Curb your enthusiasm: corporate risk assessment of web 2.0

This article focuses on the risks of web 2.0, how it affects the behaviour of employees, suppliers and data holders, and how it provides new opportunities for cybercrime.

Report Risk management policies & procedures Expert

Corporate reputation perspectives of measuring and managing a principal risk

This report provides insights into how the risk to reputation should be managed and reported upon.

Report Risk identification & assessment Expert

SOC 2 ® Report on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality or Privacy

This page summarizes the purpose (including importance to stakeholders) and types of SOC 2 reports.

Article Service organizations Foundational

Segregation of Duties

This article discusses modeling segregation of duties, the management of access controls, and more.

Article IT controls Foundational