EXECUTIVE POLICY GROUP Enterprise Risk Management Campus Safety Security & Business Continuity Enterprise EnterpriseRisk RiskManagement Management www.utdallas.edu Enterprise Risk Management (ERM) • ERM forms an important element of organizational management and provisioning of consolidated services. • The effective deployment of resources performs a rollup of risks into a holistic view. • Monitoring and testing provides transparency into the operational ‘state of readiness’ at most process points to effectively manage organizational efficiency. Enterprise Risk Management www.utdallas.edu Notification Emergency Response IR Systems Administrative Services Training Test & Review Campus Safety & Security Finance Business Continuity Risk Assessment Procurement IR Data Backup Emergency Operations Executive Policy Group Enterprise Risk Management Faculty/Student Special Needs Readiness Populations Modes of Instruction Enrollment Learning Mgmt System Policies International Academic Affairs Athletics Planning Preparation & Resilience Enterprise Risk Management Facilities Management Internal Audit & Compliance Communications Library Research Academic Continuity Mitigation Human Resources Student Research Housing Preparedness Operational Continuity Response Recovery www.utdallas.edu Integrated Framework ERM Policies Present a holistic method of managing both operational and strategic risks across the organization. The strategic plan for Enterprise Risk Management includes four strategic initiatives for all areas: 1. 2. 3. 4. Mitigation Preparedness Emergency Response Resumption & Business Recovery Enterprise Risk Management www.utdallas.edu Management Activities • Create high level-risk strategy (policy) aligned with strategic business objectives • Create a risk management organization structure and ensure clear reporting lines • Develop/assign responsibilities for risk management • Communicate vision, strategy, policy, responsibilities and reporting lines to all employees across organization Enterprise Risk Management www.utdallas.edu Embed Risk Activities into ongoing Business Processes • Align and integrate risk management activities within all processes • Embed real-time controls related to risk into digital systems as appropriate • Develop continuous improvement processes related to risk Enterprise Risk Management www.utdallas.edu Measure & Monitor • Identify key performance indicators and critical success factors related to risk • Establish success measures for risk strategy/activities • Provide a periodic process for measuring risk/return • Identity and implement monitoring processes and methods of feedback Enterprise Risk Management www.utdallas.edu Enterprise Risk Management is meant to have a broad meaning as an all-encompassing term to describe an integrated and enterprisewide comprehensive processes that include: 1.) emergency response; 2.) resumption; 3.) recovery; and 4.) restoration Accident prevention Business Impact Analysis Business Recovery Business Resumption Planning Command Centers ERM Perspective Contingency Planning Crisis Communication Crisis Management Disaster Recovery Emergency Management & Response Strategic Risk Exercising & Training Information Security Mitigation Planning Risk Control Risk Financing & Insurance Operational Risk Safety & Security Risk Management EHS Police BAIT Reputation Risk Event Management Computer Security Business Continuity Regulatory Compliance Safety & Security Council Regulatory or Contractual Risk Fire Protection Student Housing Academic Administration Operations Risk Mgmt Adhoc Committee Financial Risk Enterprise Risk Management www.utdallas.edu