Skip main navigation

Application of risk to business enterprise: Enterprise Risk Management (ERM)

Enterprise Risk Management or ERM deals with risks and opportunities affecting value creation or preservation. Learn more in this step.

Enterprise Risk Management or ERM deals with risks and opportunities affecting value creation or preservation, and is defined as follows:

ERM is a process, effected by an entity’s Board of Directors, management and other personnel, applied in strategy-setting and across the enterprise, designed to identify potential events that may affect the entity and manage risks to be within its risk appetite, to provide reasonable assurance regarding the achievement of entity objectives.

The definition reflects certain fundamental concepts.

ERM is:

  • a process, ongoing and flowing through an entity
  • effected by people at every level of an organisation
  • applied in the strategy setting
  • applied across the enterprise, at every level and unit, and includes taking an entity level portfolio view of risk
  • designed to identify potential events that, if they occur, will affect the entity and the management of risk within its risk appetite
  • what enables the provision of reasonable assurance to an entity’s management and Board of Directors
  • geared to the achievement of objectives in one or more separate but overlapping categories.

Watch the video and then summarise what you have learned.

This article is from the free online

Enterprise Risk Management

Created by
FutureLearn - Learning For Life

Reach your personal and professional goals

Unlock access to hundreds of expert online courses and degrees from top universities and educators to gain accredited qualifications and professional CV-building certificates.

Join over 18 million learners to launch, switch or build upon your career, all at your own pace, across a wide range of topic areas.

Start Learning now