Get a Quote
+92 (003) 68-090

Call to Our Experts

  • Home
  • /
  • Risk Resources

Risk Resources

Risk Knowledge
Curated frameworks, regulatory references and practitioner guides — freely accessible.

Enterprise Risk Management (ERM) Control Framework

COSO is a holistic methodology and framework that enables risk management and internal controls from the perspective of the overall organization in a top-down approach.

  • Control Objectives: Operations, Reporting, Compliance
  • Five Pillars: Control Environment, Risk Assessment, Control Activities, Information & Communication, Monitoring
  • Levels: Entity, Division, Operating Units, Functions

Risk Management Framework and Its Implementation

  • Framework Components
  • Implementation Strategy
  • Monitoring and Review
  • Continuous Improvement

Risk Assessment and Mitigation Strategies

  • Risk Identification Methods
  • Assessment Techniques
  • Mitigation Approaches
  • Implementation Guidelines

Additional Resources

COSO — Enterprise Risk Management Framework

The Committee of Sponsoring Organizations (COSO) ERM Framework integrating strategy and performance. Includes practical guidance, compendium of examples and latest 2026 update.

Read more →

ISO 31000 — Risk Management Guidelines

International standard providing principles, framework and process for managing risk across any organization or industry sector.

Read more →

Basel III — Capital & Liquidity Standards

Bank for International Settlements (BIS) Basel III framework covering capital adequacy, stress testing, leverage and liquidity requirements.

Read more →

Solvency II — EU Insurance Regulation

EIOPA guidance on Solvency II risk-based capital requirements, governance and supervisory review for European insurance undertakings.

Read more →

ICAAP — Internal Capital Adequacy Assessment

EBA guidelines on the Internal Capital Adequacy Assessment Process (ICAAP) and Supervisory Review and Evaluation Process (SREP) under Basel Pillar 2.

Read more →

AI Risk — NIST AI Risk Management Framework

NIST AI RMF 1.0: voluntary guidance for organizations to manage risks related to artificial intelligence systems across the full lifecycle. Updated with GenAI profile (2024).

Read more →

DORA — Digital Operational Resilience Act

EU regulation on ICT risk management, incident reporting, resilience testing and third-party oversight for financial entities. Applicable from January 2025.

Read more →

FINMA — Swiss Supervisory Framework

FINMA circulars and regulatory guidance on risk management, governance, ICT risk and capital adequacy for Swiss financial institutions.

Read more →

Operational Risk — Basel Sound Practices

BIS Basel Committee principles for the sound management of operational risk — the definitive reference for banks and financial institutions.

Read more →

Country Risk — IMF Financial Sector Assessment

IMF methodology and guidance for country and sovereign risk assessment used in the Financial Sector Assessment Program (FSAP).

Read more →

GARP — Risk Management Resources

Global Association of Risk Professionals: research, certification and practitioner resources covering all domains of financial risk management.

Read more →

PRMIA — Professional Risk Managers

Professional Risk Managers International Association: standards, research and guidance for enterprise and financial risk practitioners worldwide.

Read more →