Discrete risk management processes within an enterprise (Risk Specialists)

This is the head article for risk specialists on the topic ‘Discrete risk management processes within an enterprise’. If you haven’t read the Everyone articles on this topic, you should start on those now.


Discrete risk management processes are the ‘work-horses’ of formalised risk management. No-one said out loud that ERM is the show pony.

There has been widespread experience of ERM efforts not producing results of any real value. On the other hand, special purpose risk management has a long and reasonably successful history.

The main messages are in the Everyone articles. There are three drill-downs for risk management specialists. Two are quite dry and technical, Vocabulary for ‘risk management process’ and COSO and ISO 31000 on discrete risk management processes. The third drill-down article assumes an understanding of Enterprise Risk Management, and further explores the relationship between ERM and discrete risk management processes.

Further Reading

Main articles on the topic: 1. Discrete risk management processes within an enterprise (Everyone) 2. Shapes for discrete risk management processes (Everyone) 3. Examples of discrete risk management processes (Everyone) 4. Risk ‘to’ an area of activity and risk ‘from’ the activity (Everyone)

Drill-down articles:

Vocabulary for ‘risk management process’ (Risk Specialists)

This blog uses the term ‘discrete risk management process’ to refer to an identifiable application of risk management that has a defined context and scope. A discrete risk management process would typically have its own risk register. It may also have its own risk criteria.

COSO and ISO 31000 on discrete risk management processes (Risk Specialists)

COSO ERM and ISO 31000 do not recognise discrete risk management processes within an enterprise.

ERM and discrete risk management processes (Risk Specialists)

ERM may try to recognise all risks everywhere, or just high level risks. Trying to recognise all risks in ERM may be easier with many discrete risk management processes.

Some other main topics

What is Risk Management?

Coming soon: Scoping a risk management activity; ERM and RM; RM across an organisation, without a central register; Context setting, Objectives, expected and acceptable outcomes, priorities and tradeoffs.

All pages on ‘Discrete risk management processes within an enterprise’

Articles for everyone Discrete risk management processes within an enterprise (Everyone) Shapes for discrete risk management processes (Everyone) Examples of discrete risk management processes (Everyone) Risk ‘to’ an area of activity and risk ‘from’ the activity (Everyone)
Supplements for reader streams
For Risk Specialists: Risk management processes within an enterprise (Risk Specialists)
For CRMA Candidates: Risk management processes within an enterprise (CRMA)
For CRISC Candidates: Risk management processes within an enterprise (CRISC)
Extras for risk specialists: Vocabulary (Risk Specialists) COSO and ISO 31000 on discrete risk management processes (Risk Specialists) ERM and discrete risk management processes (Risk Specialists)

Risk consequences as the final effect on objectives (LinkedIn – registration required)

For Executives: Risk management processes within an enterprise (Executives)
For Australian Government readers: Risk management processes within an enterprise (Australian Government)

Leave a Reply

Your email address will not be published. Required fields are marked *