This Association of Risk and Insurance Managers (Airmac) report discusses ERM implementation with particular reference to the importance of ISO 31000. Risk management is an increasingly important business driver and stakeholders have become much more concerned about risk. Risk may be a driver of strategic decisions, it may be a cause of uncertainty in the organisation or it may simply be embedded in the activities of the organisation. An enterprise-wide approach to risk management enables an organisation to consider the potential impact of all types of risks on all processes, activities, stakeholders, products and services. Implementing a comprehensive approach will result in an organisation benefiting from what is often referred to as the ‘upside of risk’. The global financial crisis in 2008 demonstrated the importance of adequate risk management. Since that time, new risk management standards have been published, including the international standard, ISO 31000 ‘Risk management – Principles and guidelines’. This guide draws together these developments to provide a structured approach to implementing enterprise risk management (ERM).

Flash Player 9.0.0 or above