Audit >

A risk-based and cyclical audit support suite

Risk >

Sound, insightful risking, across your organisation

Compliance >

Streamlined compliance strategy and monitoring

Governance >

Give your Board the information they need

Third Party >

Know your risk across your extended enterprise

Information Security >

Comply with IT governance policies and frameworks

BCP/Op Res >

Give your Board the information they need

SOX >

Be in complete control of all aspects of SOX

Regulatory Reporting >

Oversight for all of your regulatory submissions

Enterprise Compliance Engine >

Real-time compliance & regulatory change with AI

Artificial Intelligence >

Innovative, agile, user-centric GRC software​ interwoven with AI

DORA >

One cohesive compliance platform to meet all DORA demands

Digital Operational Resilience Act

One cohesive compliance platform to meet all DORA demands. Learn more >

DORA

 

Operational Resilience

Deliver critical operations and defy disruption with Decision Focus. Learn more >

Operational Resilience

Platform Overview >

One Platform, many solutions, with an interface our users love

No-Code Solution >

Decision Focus evolves easily via simple button push configuration tools.

Integrations >

Connect your business applications for worry-free GRC

Built In Reporting >

100% of data is used across a multitude of visuals.

Platform Security >

ISO27001, Access Management and Live Vulnerability Scans.

Surveys >

Advanced survey tools are built into the platform.

AI-Powered GRC Software

Ever innovative, Decision Focus harnesses AI to develop agile, flexible, user-centric GRC software​

Learn more

Downloads >

Here you can find all our latest Product Sheets, Brochures and Case Studies​

Onboarding >

The 5-easy-steps for migrating to Decision Focus

Blog >

Read the latest blog posts from the Decision Focus team

Events >

Learn from experts and peers by joining our events

News >

Keep up to date with Decision Focus news articles

A No-Code Solution

At Decision Focus, our no-code solution allows users to adapt and modify fields and functionality within the application whilst hiding what happens behind the scenes, making our platform easily configurable to meet your exact needs.

LEARN MORE

Our Company >

Built by a team who've been in your shoes.

Join Us >

Become part of our team

Contact >

Get in touch with us

Want to Know more?

At Decision Focus we deliver a GRC solutions customised to your needs - all in one SaaS platform.

Our support team is ready to help your organisation get started with Decision Focus.

BOOK A DEMO

Risk & Resilience by Design Workshop
Michael Rasmussen

 

DATE: 

THU 24 APRIL 2025

VENUE:

Andaz London Liverpool Street
40 Liverpool St,
City of London,
London EC2M 7QN 

 

 

 

rassmussen-event-hexagon_8-final

Objectives of the workshop:

Attendees will take back to their organization’s approaches to address:

  • Effectively managing risk and resilience
  • Understand the challenges and pitfalls of managing risk and resilience
  • Achieve success by capitalizing on agility while maintaining risk and resilience
  • Facilitate ongoing monitoring of risk and resilience
  • Define a risk and resilience management lifecycle
  • Provide risk and resilience management process consistency
  • Communicate effectively with employees and stakeholders on matters of risk and resilience
  • Track critical risk and resilience workflow and tasks
  • Deliver effective risk and resilience governance and assurance to the board of directors, regulators, and stakeholders
  • Monitor metrics to establish effectiveness or risk and resilience management
  • Identify and resolve risk and resilience issues

Organizations take risks all the time but fail to monitor and manage these risks effectively in an environment that demands agility. Too often, risk management is seen as a compliance exercise and not truly integrated with the organization’s strategy, decision-making, and objectives. It results in the inevitable failure of risk management, providing case studies for future generations on how poor risk and resiliency management leads to the demise of organizations – even those with strong brands.

Keeping risk, complexity, and change in sync is a significant challenge for the organization’s boards, executives, and management professionals. This challenge is even greater when risk management is buried in the depths of departments and approached from a compliance or audit angle, not as an integrated discipline of decision-making that has a symbiotic relationship with performance and strategy.

This is further compounded when business continuity programs are completely disconnected and not part of risk management. Organizations need to understand how to monitor risk-taking, measure that the associated risks are the right risks, and review whether the risks are managed effectively to ensure the organization’s resilience.

The ecosystem of business objectives, uncertainty/risk, and integrity is complex and interconnected and requires a holistic, contextual awareness of the organization – rather than a dissociated collection of processes and departments.

Change in one area has cascading effects that impact the entire ecosystem. This interconnectedness of business demands 360° contextual awareness in the organization’s risk and resilience processes to reliably achieve objectives, address uncertainty, and act with integrity.

Organizations must see the intricate intersection of objectives, risks, and boundaries across the business. Firms globally and across industries are focused on integrating risk management and resilience (historically business continuity/disaster recovery) programs.

This is becoming a key regulatory requirement in some industries. Delivering this requires a holistic view of the objectives and processes of the organization in the context of uncertainty and risk and the symbiotic interaction of risk management and business continuity.

This workshop aims to provide a blueprint for attendees on successful risk and resilience management with an integrated strategy, process, information, and technology architecture.

Objectives of the workshop:

Attendees will take back to their organization’s approaches to address:

  • Effectively managing risk and resilience
  • Understand the challenges and pitfalls of managing risk and resilience
  • Achieve success by capitalizing on agility while maintaining risk and resilience
  • Facilitate ongoing monitoring of risk and resilience
  • Define a risk and resilience management lifecycle 
  • Establish risk and resilience management ownership and accountability
  • Provide risk and resilience management process consistency

 

  • Communicate effectively with employees and stakeholders on matters of risk and resilience
  • Track critical risk and resilience workflow and tasks
  • Deliver effective risk and resilience governance and assurance to the board of directors, regulators, and stakeholders
  • Monitor metrics to establish effectiveness or risk and resilience management
  • Identify and resolve risk and resilience issues

 

Agenda:

Part 1: Risk & Resilience by Design

Why Risk & Resilience Management Matters
  • Risk and Resilience in Disarray: how organizations mismanage risk and resilience
  • Risk Exposure: how mismanaged risk expose the organization
  • Current drivers & trends on organizations in risk and resilience management
  • Different ways organizations approach risk and resilience management
  • What Effective Risk & Resilience Management Achieves

Part 2:  Risk & Resilience Governance

Blueprint for Effective Risk & Resilience Management
  • Risk & Resilience Governance Committee: bringing together the range of risk and resilience roles and responsibilities in the organization
  • Risk & Resilience Management Charter: defining a structure to govern risk and resilience across the organization
  • How to Develop a Risk & Resilience Management Strategic Plan

Part 3: Risk & Resilience Management Lifecycle

Managing Risk & Resilience in Context of Business Change
  • Risk identification
  • Ongoing risk and internal/external business context monitoring
  • Risk assessment, business impact assessments, and scenario planning
  • Risk treatment and engagement with the business
  • Risk & resilience metrics & reporting
  • Risk & resilience evaluation, benchmarking & assurance

Part 4: Risk & Resilience Management

Architecture Enabling Information & Technology Management for Risk & Resilience Management
  • Risk & Resilience Management Information Architecture: Blueprint for Managing Risk & Resilience Content and Related Data
    • Types of risk and resilience management information and how it integrates into risk management processes
    • Components and requirements for a compliance information architecture
  • Risk & Resilience Management Technology Architecture: Blueprint for Enabling Risk & Resilience Management Processes with Technology
    • Kinds of risk and resilience management technologies and what best serves the organization
    • Capabilities and requirements of risk and resilience management platforms
  • Risk & Resilience Management Business Case: Articulating the Value of Effective Risk & Resilience Management

Schedule:

09:00am Breakfast
09:30am Part 1: Risk & Resilience by Design
11:00am

Mid Morning Break (Biscuits, Tea & Coffee)
11:30am

Part 2: Risk & Resilience Governance
12:30pm Buffet Lunch
13:30pm Part 3: Risk & Resilience Management Lifestyle 
14.30pm Mid Afternoon Break (Biscuits, Tea & Coffee)
15:00pm

Part 4: Risk & Resilience Management
16:30pm Drinks Reception & Canapes
18:30pm End of Day

Breakfast, lunch, drinks & canapes provided.

bank-and-moorgate-food-2
Speakerhexagon

GRC 20/20 Speaker Michael Rasmussen

GRC 20/20 Research Michael Rasmussen – The GRC Pundit @ GRC 20/20 Research, Michael Rasmussen is an internationally recognized pundit on governance, risk management, and compliance (GRC) – with specific expertise on the topics of GRC strategy, process, information, and technology architectures and solutions.

With 30+ years of experience, Michael helps organizations improve GRC processes, design and implement GRC architectures and select solutions that are effective, efficient, and agile. He is a sought-after keynote speaker, author, and advisor and is noted as the “Father of GRC” – being the first to define and model the GRC market in February 2002 while at Forrester Research, Inc. 

Any questions?

The Decision Focus team are here to answer your questions.

GET IN TOUCH