Click here to access subscription content at The RTJ Bridge - The Premium Version of The RiskTech Journal
〰️
Click here to access subscription content at The RTJ Bridge - The Premium Version of The RiskTech Journal 〰️
The RiskTech Journal
The RiskTech Journal is your premier source for insights on cutting-edge risk management technologies. We deliver expert analysis, industry trends, and practical solutions to help professionals stay ahead in an ever-changing risk landscape. Join us to explore the innovations shaping the future of risk management.
When Robots Walk, Risk Converges - Humanoids and the Future of Integrated Risk Management
For IRM professionals, the emergence of humanoids provides a rare moment of clarity: no single risk domain can manage this disruption in isolation. Humanoid robotics is where GRC, ERM, ORM, and TRM collide—and where their integration becomes essential.
Flip the Risk Conversation Forward—Lessons from the Front Lines of Resilience
As operational complexity increases and business environments shift at a faster pace, organizations are under growing pressure to evolve their approach to risk. Risk management can no longer be reactive, control-focused, or functionally siloed. Instead, it must become proactive, performance-aligned, and strategically embedded. That was the focus of the breakout session "Holding the Line: Building Resilient Risk Programs in the Modern Era," presented at the 2025 Mitratech Interact Conference in Dallas.
The session was moderated by Ryan Fox, Director of GRC Solutions at Mitratech. It featured John A. Wheeler, CEO of Wheelhouse Advisors, and Andrea Elliott, Chief Compliance Officer at ACI Worldwide. The audience included legal, risk, and compliance leaders and practitioners seeking practical strategies to strengthen program maturity and build enterprise resilience.
No Manager, No Strategy—Why GRC Alone Can’t Win the Risk Game
If Governance, Risk, and Compliance (GRC) is like a team without a manager, IRM is the system that brings structure, alignment, and leadership to the field. Without a manager, even talented players operate in silos—doing what they think is best individually but without strategic coordination or shared purpose. That’s the reality in many organizations today: siloed compliance, governance, and risk functions acting without integration.
IRM provides the playbook and the leadership. It integrates GRC with Enterprise Risk Management (ERM), Operational Risk Management (ORM), and Technology Risk Management (TRM) to form a unified team—managed strategically, guided by data, and aligned around shared enterprise objectives.
The Limits of Legacy GRC — Seven Reasons It Fails Modern Risk Management
In the corridors of risk management conferences and behind closed doors at technology vendor meetings, there's a reluctant acknowledgment that few are willing to voice publicly — traditional Governance, Risk, and Compliance (GRC) platforms are struggling to meet the demands of today's dynamic risk landscape. As someone who has spent decades consulting with both GRC vendors and their customers, I've heard the whispered confessions from technology providers who recognize these limitations but fear alienating their long-standing clients by admitting them openly.
The Strategic Evolution of Chief Risk Officers: Catalyzing Integrated Risk Management
Recent insights from the Optimising Growth: The Evolving Role of the Chief Risk Officer report by Bayes Business School and the IRM Navigator™ Buyer Persona Guide by Wheelhouse Advisors underscore the pivotal transformation of Chief Risk Officers (CROs) as strategic enablers within Integrated Risk Management (IRM). These findings highlight the growing importance of IRM frameworks in addressing the complexities of modern risk landscapes and fostering sustainable growth.
A Pivotal Moment for Integrated Risk Management: Lessons from Oracle's GRC Exit
Oracle's announcement to discontinue its Governance, Risk, and Compliance (GRC) solution by May 2025 marks a significant turning point in the Integrated Risk Management (IRM) landscape. This decision underscores the necessity for unified frameworks that encompass all risk domains: Governance, Risk, and Compliance (GRC), Enterprise Risk Management (ERM), Technology Risk Management (TRM), and Operational Risk Management (ORM). As businesses face increasingly complex regulatory environments and interconnected risks, the need for integrated approaches has never been greater.
How Integrated Risk Management Will Propel the Board Agenda in 2025
As we step into 2025, corporate boards face an increasingly complex risk landscape characterized by geopolitical shifts, economic uncertainty, technological disruption, and heightened stakeholder expectations. Integrated Risk Management (IRM) is set to play a pivotal role in helping boards navigate these challenges and align risk oversight with strategic priorities. Leveraging insights from recent reports on board and audit committee agendas, this article explores how IRM will shape boardroom discussions and drive value creation.
Risk Transformation Is Accelerating: Why 68% of Companies Are Integrating Risk Management Systems
With 61% of executives anticipating a significant increase in the level of risk over the next three to five years, the need for a more sophisticated and integrated approach to risk management has never been more pressing.
Why Fortune 500 Companies Are Turning to IRM to Tackle AI Risks Head-On
Given the complex and evolving nature of AI-related risks, traditional risk management approaches may fall short. The fragmented and siloed nature of many corporate risk management strategies can make it difficult to get a clear, holistic view of AI risks and their potential impact across the enterprise. This is where Integrated Risk Management (IRM) becomes critical.
Strengthening Healthcare Resilience: Integrated Risk Management as a Response to the Change Healthcare Cyberattack
The recent cyberattack on Change Healthcare, a pivotal entity in the U.S. healthcare ecosystem, has laid bare the vulnerabilities in the sector's interconnected infrastructure. This incident, which disrupted insurance billing and payments for months, underscores the critical need for a more comprehensive approach to risk management. As the healthcare industry grapples with the fallout, integrated risk management (IRM) emerges as a vital framework to bolster resilience and safeguard against future threats.
Streamlining AI Risk Management with NIST and IRM
The rapid advancement of artificial intelligence (AI) technology has brought about significant benefits and transformative potential across industries. However, with these advancements come inherent risks that must be managed effectively to ensure AI systems are trustworthy, safe, and aligned with ethical standards. The National Institute of Standards and Technology (NIST) has developed the AI Risk Management Framework (AI RMF) to address these challenges. This framework, particularly its recent expansion to include the Generative AI Profile, offers a comprehensive approach to managing AI risks. When integrated with an Integrated Risk Management (IRM) strategy, organizations can achieve a robust risk management posture.
How IRM Technology Can Enhance Banking Resilience: Insights from BIS
In his speech titled “An Integrated Approach to a Safer and More Resilient Banking System,” delivered on July 19, 2024, at the Central Reserve Bank of Peru’s 15th Annual Conference in Cusco, Agustín Carstens, General Manager of the Bank for International Settlements (BIS), highlighted the importance of comprehensive risk management in the banking sector. Reflecting on the banking turmoil of March 2023, he underscored how the failures of institutions like Credit Suisse and Silicon Valley Bank (SVB) stemmed from inadequate governance, weak risk oversight, and poor regulatory compliance.
Global Digital Breakdown: Lessons in Resilience and Integrated Risk Management
The recent CrowdStrike update incident serves as a wake-up call for organizations worldwide. Our digital landscape is inherently fragile, and the consequences of a single misstep can be far-reaching and severe. By adopting an Integrated Risk Management approach, organizations can better navigate the complexities of today’s digital environment, ensuring resilience and continuity in the face of unexpected disruptions.
How Integrated Risk Management (IRM) Can Significantly Reduce Cyber Insurance Premium Costs
In today's digitally-driven business environment, the threat of cyber-attacks has escalated to unprecedented levels, necessitating robust cyber defenses to secure competitive cyber insurance premiums. This article delves into how Integrated Risk Management (IRM) can be pivotal in reducing cyber insurance premiums, enhancing overall risk resilience, and positioning businesses for sustainable success.
Moving Beyond a Security-Based Mindset: The Need for Integrated Disclosure and Internal Controls
In today’s interconnected and complex business environment, it is crucial for organizations to shift away from a security-based mindset that focuses narrowly on immediate threats. Instead, they must adopt an integrated risk management (IRM) approach that balances both tactical and strategic risk perspectives. Lessons learned from the SolarWinds cyberattack serve as a stark reminder of this necessity.
Leading with Purpose: How Boards Can Drive Sustainability Through Integrated Risk Management
The integration of sustainability into business strategy is no longer optional; it's imperative for long-term success and resilience in today's volatile business environment. The recent 2024 European Corporate Governance Conference, sheds light on the multifaceted benefits and challenges of embedding sustainability into corporate governance, emphasizing the crucial role of Integrated Risk Management (IRM).
The Critical Role of Leadership in Implementing an Integrated Risk Management Framework
The appointment of Melissa Martinez as Chief Risk Officer (CRO) at Meridian Capital Group, as reported by the Wall Street Journal, underscores a fundamental truth in risk management: strong leadership is paramount for successfully implementing an Integrated Risk Management (IRM) framework.
IRM's Role in Effective IFRS Integrated Reporting
Organizations today must go beyond traditional financial reporting to provide a comprehensive view of their performance, strategy, and value-creation processes. Integrated Reporting (IR), guided by the IFRS Integrated Reporting Framework, combines financial and non-financial information, ensuring stakeholders understand how organizations create value over time. Integrated Risk Management (IRM) is crucial in achieving effective integrated reporting.
20 AI Use Cases for Integrated Risk Management in 2024 and Beyond
This article explores the transformative role of Artificial Intelligence (AI) in Integrated Risk Management (IRM), emphasizing how AI enhances risk visibility and mitigation across Enterprise Risk Management (ERM), Operational Risk Management (ORM), Technology Risk Management (TRM), and Governance, Risk, and Compliance (GRC). By linking strategic goals, business processes, technology assets, and compliance frameworks, AI-driven IRM provides a comprehensive approach to navigating today's complex risk landscape.
Elevating Fairness in Compliance: A Strategic Imperative for Integrated Risk Management
IRM transcends traditional risk management by incorporating GRC into the domains of ERM, ORM, and TRM, ensuring that governance and compliance are not isolated but integrated with all risk management activities. This comprehensive approach is crucial in an era where banking innovations such as digital platforms, and products like Buy Now Pay Later (BNPL) and Earned Wage Access (EWA), are rapidly evolving. These innovations, while beneficial, introduce complex compliance and operational risks that require an integrated approach to manage effectively.