All organisations have business objectives on performance and growth that must be met or exceeded whilst managing risk. Many of these organisations strive for IS31000 accreditation; the only internationally recognised standard for enterprise risk management.
The principles, framework and processes of enterprise risk management (ERM) are used to manage the risks and opportunities that materially influence each business objective at all levels.
ERM drives an organisation forward to:
A holistic ERM approach encompasses the real-estate of the organisation, its projects impacting the real estate, the provision of facilities, and ongoing operations and maintenance. Within the ERM framework, business criticality determines the optimum stacking of facilities by locating critical business departments in appropriately resilient facilities. Business criticality also determines vendor or service levels, and incident and crisis response priorities for business continuity management and disaster recovery.
Business operations have become increasingly complex, ‘siloed’, regulated and outsourced. Also, client-retained organisations are becoming much smaller while the Managing Agent or Principal Vendor-Partner relationship with the ultimate client is becoming more complex. Outsourcing creates a mismatch between risk control and ownership of consequential losses. The responsibility for regulatory compliance and risk ownership remains firmly with the client while the risk and reward factors for vendors are smaller and limited be contracts. All these issues result in increased risk to organisational operations.
A holistic ERM approach:
These are used to aid continuous improvement of performance and risk, including a reduction in the operating costs and the likelihood, impact and duration of adverse incidents
CRA provides a full life-cycle facility performance and risk management service.
We review and develop systems consistent with ERM requirements to ISO31000 and our client’s business objectives, irrespective of a task’s size or complexity. These include creating policy, strategy, governance, audit, Operational Risk Management (ORM), Compliance, Management Information System (MIS), KPIs, KRIs, Responsibility Assignment (RACI) matrices, down to procedures and tools. By reviewing the engagement of all stakeholders, costs, control/governance arrangements and the consequences of management actions, we gain a first hand understanding of our clients’ needs.
CRA provides significant performance and compliance enhancements while reducing the risks caused by the impact, duration and likelihood of adverse events. Using innovative tools and processes designed for safety and critical industries such as nuclear power, defence and banking, CRA delivers best-practices gained from its cross-sector expertise.
Our teams are specialists in quantitative risk assessment, business impact analysis, dependency modelling, setting and analysing KPI/KRIs, and testing performance during normal operation or in the event of disruption.
CRA can help by integrating with your teams and stakeholders within an ERM framework to improve performance.
Real Estate Portfolio Risk Management
Capital Project Governance
Facilities Risk Management
Business Resilience
Incident Reporting and Crisis Management
Business Continuity/Disaster Recovery
We have been working closely with a client in the fusion energy industry to provide world class qualitative and quantitative expertise in the areas of Safety and Regulation and also Enterprise Risk Management that is ISO 31000 compliant.
We have reviewed the risk management framework for the company and helped them develop their risk register. We are currently advising them on the risk assessment tools that match their requirements for use during the design and development of their technologies.
Cookie | Duration | Description |
---|---|---|
cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |