Enterprise & Operational Risk Management

​Gain a clear, consolidated view of your organization's risk exposure.

  • Repeatedly recognized as a leader in the Gartner® Magic Quadrant for operational risk management (ORM) solutions.
  • Assess, monitor and address risks consistently by consolidating risk information from across your organization in one central solution.

What Is Operational Risk Management?

A subset of enterprise risk management, operational risk management (ORM) is a discipline that provides risk professionals with tools and frameworks for identifying, evaluating, monitoring and controlling operational risks. The Risk Management Association defines operational risk as “the risk of loss resulting from inadequate or failed internal processes, people, and systems, or from external events.” Examples of operational risks include catastrophic events, cyber attacks, fraud and non-compliance. Operational risk does not include strategic, reputational or financial risk, which fall under the broader umbrella of enterprise risk.

Featured Resources

Solution Brief

RSA Archer Operational Risk Management

This solution brief provides an overview of the RSA Archer Operational Risk Management solution, which includes use cases for top-down risk assessments, loss event management, risk catalogs, bottom-up risk assessments and more.

Access the Solution Brief

RSA Archer Maturity Model: Operational Risk Management

This white paper outlines the RSA Archer maturity model for operational risk management.

Read the White Paper

Benefits

Engage business units as your first line of defense, helping to identify and assess known and emerging risks that may impact their operations and objectives.

Reduce the likelihood and impact of negative events, lost opportunities and surprises by gaining a clear, consolidated view of enterprise and operational risks across your business.

Address enterprise risk management (ERM) and operational risk management (ORM) consistently across your business, with a common language and standard measurements, controls, rating scales and reporting.

Address your most critical operational risk issues by aligning resources and risk management activities with business priorities.

Deliver an accurate, real-time picture of enterprise and operational risks to your board of directors and executive management team.

Gain the ability to quickly report on and respond to risks that impede your organization’s objectives as they emerge.

RSA Archer Enterprise & Operational Risk Management

Elevate operational risk management (ORM) as a new source of competitive advantage for your organization. RSA Archer Enterprise & Operational Risk Management offers specific use cases to help you identify, monitor and manage risks, perform risk assessments and root cause analysis, and much more.

RSA Archer Risk Catalog

Record and track risks across your enterprise and establish accountability for them. Take a top-down, qualitative approach to assessing inherent and residual risk and enable a three-level rollup of risk, from a granular level up through enterprise risk statements.

RSA Archer Top-Down Risk Assessment

Document risks and controls throughout your organization. Perform risk assessments on new products and services, business processes, and mergers and acquisitions. Execute automated risk assessment campaigns using pre-built forms. Manage and report on identified risk issues and remediation progress.

RSA Archer Loss Event Management

Track and report on loss events, perform root cause analysis, and establish accountability across your enterprise. Manage the loss event lifecycle to understand where and how your operational risk management (ORM) program needs to be strengthened. Automate the review and analysis workflow for loss events.

RSA Archer Key Indicator Management

Manage the key indicator lifecycle to monitor and report on insights to business risks. Establish and monitor metrics related to each business unit within the organization. Associate metrics with risks, controls, strategies, objectives, products, services and business processes to monitor quality assurance and performance.

RSA Archer Bottom-Up Risk Assessment

Implement a consistent risk assessment program to more effectively identify operational risks within your business. Document projects and create questionnaires from the extensive library in RSA Archer. Conduct fraud assessments and risk assessments of new products, services, business processes, or M&A targets.

RSA Archer Operational Risk Management

Understand the business context of risk with an aggregated view of operational risks across the business. Engage business managers in using consistent methodologies to identify and manage the risks and controls under their purview.

RSA Archer Enterprise Risk Management

Manage risks to strategic business objectives for an edge in today’s competitive market. Consolidate all risks into one view across your enterprise for reporting and analytics, and to help prioritize limited resources. Capture loss events and perform root cause analysis, document and monitor key risk indicators, and perform risk assessments.

"Governance, risk and compliance, or GRC, is a critical element for us. We are operating in very difficult environments, and legal and regulatory requirements are important. It’s important for us to know what our risk posture and appetite are, and to be able to communicate them."
Keith Herndon
Manager of Compliance & Incidents

Royal Dutch Shell

Resources

E-Books

Data Sheets

  • RSA Archer Key Indicator Management This data sheet provides an overview of the RSA Archer Key Indicator Management use case for RSA Archer Operational Risk Management.
  • RSA Archer Operational Risk Management This data sheet provides an overview of RSA Archer Operational Risk Management use case for RSA Archer Operational Risk Management.
  • RSA Archer Risk Catalog This data sheet provides an overview of the RSA Archer Risk Catalog use case for the RSA Archer Enterprise & Operational Risk Management solution.
  • RSA Archer Top-Down Risk Assessment This data sheet provides an overview of RSA Archer Top-Down Risk Assessment use case for RSA Archer Operational Risk Management.

Solution Briefs

  • RSA Archer Operational Risk Management This solution brief provides an overview of RSA Archer Operational Risk Management, which includes use cases for top-down and bottom-up risk assessments, loss event management, risk catalogs and more.

Webinars

White Papers

Want a Demo?

Sign up for a free demo today and watch our products in action.

Ready to Buy?

It's easy. Speak with an RSA expert anytime to request a quote.