Posted: July 29th, 2022 9:09am +00:00 | By Phil Walden

What do you need before embarking on an ERM project?

Climate change, the COVID 19 pandemic, financial crises and geo-political instabilities are just the sort of hard-hitting topics that make organisations question their collective abilities to navigate a successful path through the risks and successfully achieve their strategies.

This doesn’t mean that a business can hope to mitigate the wider effects of climate change or the pandemic, but it can lessen the effect on itself. This can be achieved through the development of a pro-active risk management plan, a framework, that enables risk to be identified, ownership of said risk to be established and mitigations put in place to lessen the impact or severity where possible.

A pro-active approach will allow you to “shut the gate before the horse has bolted” rather than after.

Your own organisation may well have a framework in place but often to be universally accepted, and thus effective, a technology solution is necessary.

If you are at the beginning of this journey, what do you need to consider prior to an implementation?

1.     Is the framework accepted?

You don’t want to start a technology implementation to then have stakeholders start to question the methodology. Get the framework agreed and stakeholders bought in before beginning.

2.     Is your IT team on board?

Many ERM solutions are externally hosted to make support easier and to offer a greater level of resilience. Are IT happy with externally hosted solutions? Are there questions around security that need to be addressed before the implementation?

3.     Do you have authority over the project?

A not uncommon problem is that an ERM implementation, which has the potential to impact upon various other facets of management, becomes “owned” by another department, for example IT or Finance or Audit/performance. This can often dilute the requirement set out by the Risk team and can affect the implementation (see point 1).

4.     Do you have senior management buy in and support?  

I appreciate that I am stating the blindingly obvious but without a senior sponsor it is unlikely that the implementation will be successful.  The key here is to get them to articulate what data they need to do their jobs better or how ERM will improve the bottom line, reputation, provide competitive advantage or achieve strategy?

If you’ve got 4 ticks then it looks like you could be ready to talk with us. Please get in touch at

News you might like
LACHS Newsletter

JCAD LACHS Newsletter

Read more
Has the purpose of the FOI Act been lost?

The purpose of FOI The FOI Act was passed in 2000 with the full right of provisions coming into play…

Read more
Halton Borough Council move LACHS to jCLOUD

Halton Borough Council moved LACHS to JCAD’s jCLOUD in April 2023. Reducing the responsibility of Halton Borough Council’s internal IT…

Read more

JCAD will subscribe you to our newsletter . Please see our updated privacy policy for more information regarding the use of your data. You can unsubscribe whenever you like through the preferences option on the newsletter.