Fortifying your Business with Enterprise Risk Management
Hundreds of years ago, prosperous towns managed the various risks of foreign invaders, thieves and wild animals by fortifying their entire communities with walls and towers. Today’s business owners can take a similar approach with enterprise risk management (ERM).
In short, ERM is an integrated, companywide system of identifying and planning for risk. Many larger companies have entire departments devoted to it. If your business is ready to implement an ERM program, be prepared for a lengthy building process.
This isn’t an undertaking most business owners will be able to complete themselves. You’ll need to sell your managers and employees on ERM from the top down. After you’ve gained commitment from key players, spend time assessing the risks your business may face. Typical examples include:
- Financial perils,
- information technology attacks or crashes,
- weather-related disasters,
- regulatory compliance debacles, and
- supplier/customer relationship mishaps.
Because every business is different, you’ll likely need to add other risks distinctive to your company and industry.
Developing the program
Recognizing risks is only the first phase. To truly address threats under your ERM program, you’ll need to clarify what your company’s appetite and capacity for each risk is, and develop a cohesive philosophy and plan for how they should be handled. Say you’re about to release a new product. The program would need to address risks such as:
- Potential liability,
- protecting intellectual property,
- shortage of raw materials,
- lack of manufacturing capacity, and
- safety regulation compliance.
Again, the key to success in the planning stage is conducting a detailed risk analysis of your business. Gather as much information as possible from each department and employee.
Depending on your company’s size, engage workers in brainstorming sessions and workshops to help you analyze how specific events could alter your company’s landscape. You may also want to designate an “ERM champion” in each department who will develop and administer the program.
Yes, just as medieval soldiers looked out from their battlements across field and forest to spot incoming dangers, you and your employees must maintain a constant gaze for developing risks.
Our advice is: “Don’t go it alone.” Contact Reggie Novak, CPA, CFE, Ciuni & Panichi, Inc., Senior Manager for help at firstname.lastname@example.org or 216.831.7171. He is experienced in risk assessment and management and with his expertise, he can help you and your employees design and implement a program to protect your business.
You may also be interested in: