Enterprise risk management strategy: A planning guide for CIOs

Last updated:April 2014

Essential Guide

Browse Sections

Editor's note

Enterprise risk management strategy is the process of recognizing, observing and banishing threats to an organization, which can range from careless human error to natural disasters, strategic management errors, financial uncertainties and many other IT bumps in the night. Fueled in part by recent government monitoring and retail-giant slip-ups -- as well as the traditional risks that have long plagued IT departments -- corporate executive boards are developing a heightened interest in mitigating threats in an effort to avoid massive financial injury and the loss of investor and customer trust.

In this CIO Briefing, learn why enterprise risk management strategy is important and how to influence your executive board to prioritize the protection of information assets. Read about today's organizations that are practicing good risk management, and get advice from CIOs who have taken on -- and warded off -- large-scale threats.

This Essential Guide on enterprise risk management strategy is part of the CIO Briefings series, which is designed to give IT leaders strategic management and decision-making advice on timely topics.

1Innovative enterprise risk management strategy for new technologies

Executing an enterprise risk management strategy is no easy task, especially as new technologies change the threat landscape. While cloud, mobility, bring your own device and big data have CIOs reconsidering their approach to risk management, we share stories of CIOs who are reevaluating and implementing new risk management strategies.

2Advice on managing risk, from CIOs for CIOs

In this section of our enterprise risk management strategy guide, practitioners and experts share what they've learned about risk management, offering tips for conducting a risk assessment, detecting common spreadsheet errors, protecting personal information and more.