EXECUTIVE POLICY GROUP

Enterprise Risk Management

Campus Safety Security & Business Continuity

Enterprise
EnterpriseRisk
RiskManagement
Management www.utdallas.edu
 Enterprise Risk Management (ERM)

• ERM forms an important element of organizational

management and provisioning of consolidated
services.

• The effective deployment of resources performs a

rollup of risks into a holistic view.

• Monitoring and testing provides transparency into the

operational ‘state of readiness’ at most process
points to effectively manage organizational efficiency.

Enterprise Risk Management www.utdallas.edu

 Emergency Notification IR Systems
Response Training Administrative
Test & Review Services
Campus Finance
Safety & Security
Risk Business Continuity
Assessment
Procurement
IR Data
Emergency Backup
Operations

Executive Policy Group

Enterprise Risk
Management
Faculty/Student Human Facilities
Readiness Special Needs Resources
Planning Preparation & Resilience Management
Populations
Modes of
Instruction
Enrollment Policies Internal Audit
& Compliance
Learning International Communications
Mgmt System
Academic Library
Research
Affairs
Student
Athletics Academic Continuity Research
Housing
Operational Continuity

Mitigation Preparedness Response Recovery

Enterprise Risk Management www.utdallas.edu
 Integrated Framework

ERM Policies
Present a holistic method of managing both
operational and strategic risks across the organization.

The strategic plan for Enterprise Risk Management

includes four strategic initiatives for all areas:
1. Mitigation
2. Preparedness
3. Emergency Response
4. Resumption & Business Recovery

Enterprise Risk Management www.utdallas.edu

 Management Activities
• Create high level-risk strategy (policy) aligned with
strategic business objectives

• Create a risk management organization structure and

ensure clear reporting lines

• Develop/assign responsibilities for risk management

• Communicate vision, strategy, policy, responsibilities

and reporting lines to all employees across organization

Enterprise Risk Management www.utdallas.edu

 Embed Risk Activities into
ongoing Business Processes

• Align and integrate risk management activities within

all processes

• Embed real-time controls related to risk into digital

systems as appropriate

• Develop continuous improvement processes related

to risk

Enterprise Risk Management www.utdallas.edu

 Measure & Monitor
• Identify key performance indicators and critical
success factors related to risk

• Establish success measures for risk strategy/activities

• Provide a periodic process for measuring risk/return

• Identity and implement monitoring processes and

methods of feedback

Enterprise Risk Management www.utdallas.edu

 Enterprise Risk Management is meant to have a broad meaning as
an all-encompassing term to describe an integrated and enterprise-
wide comprehensive processes that include: 1.) emergency response;
2.) resumption; 3.) recovery; and 4.) restoration
Accident Business Business Business Command ERM
prevention Impact Analysis Recovery Resumption Centers Perspective
Planning

Contingency Crisis Crisis Disaster Emergency Strategic Risk

Planning Communication Management Recovery Management &
Response

Exercising & Information Mitigation Risk Control Risk Financing Operational

Training Security Planning & Insurance Risk

Safety & Risk EHS Police BAIT Reputation Risk

Security Management

Event Computer Business Regulatory Safety & Regulatory or

Management Security Continuity Compliance Security Council Contractual
Risk

Fire Protection Student Academic Operations Risk Mgmt Financial Risk

Housing Administration Adhoc
Committee

Enterprise Risk Management www.utdallas.edu