Risk ManagementInternational (COSO)
COSO Enterprise Risk Management (ERM) Framework (2017)
COSO Enterprise Risk Management framework (2017 edition, Integrating with Strategy and Performance), structured as five interrelated components (Governance and Culture; Strategy and Objective-Setting; Performance; Review and Revision; Information, Communication, and Reporting) and 20 principles. Copyrighted by COSO/AICPA; full control text requires a licensed copy..
Domains
Information, Communication, and Reporting
Review and Revision
Performance
Strategy and Objective-Setting
Governance and Culture
Compare COSO Enterprise Risk Management (ERM) Framework (2017)
COSO Enterprise Risk Management (ERM) Framework (2017) vs ISO 27001:2022View comparison →COSO Enterprise Risk Management (ERM) Framework (2017) vs SOC 2View comparison →COSO Enterprise Risk Management (ERM) Framework (2017) vs NIST CSF 2.0View comparison →COSO Enterprise Risk Management (ERM) Framework (2017) vs GDPRView comparison →COSO Enterprise Risk Management (ERM) Framework (2017) vs HIPAAView comparison →COSO Enterprise Risk Management (ERM) Framework (2017) vs PCI DSS 4.0View comparison →
COSO Enterprise Risk Management (ERM) Framework (2017) by Industry
COSO Enterprise Risk Management (ERM) Framework (2017) for Healthcare→COSO Enterprise Risk Management (ERM) Framework (2017) for Financial Services→COSO Enterprise Risk Management (ERM) Framework (2017) for Technology→COSO Enterprise Risk Management (ERM) Framework (2017) for Government→COSO Enterprise Risk Management (ERM) Framework (2017) for Manufacturing→COSO Enterprise Risk Management (ERM) Framework (2017) for Energy→COSO Enterprise Risk Management (ERM) Framework (2017) for Retail→COSO Enterprise Risk Management (ERM) Framework (2017) for Education→
COSO Enterprise Risk Management (ERM) Framework (2017) by Role
COSO Enterprise Risk Management (ERM) Framework (2017) for CISOs→COSO Enterprise Risk Management (ERM) Framework (2017) for Compliance Officers→COSO Enterprise Risk Management (ERM) Framework (2017) for Risk Managers→COSO Enterprise Risk Management (ERM) Framework (2017) for IT Directors→COSO Enterprise Risk Management (ERM) Framework (2017) for DPOs→COSO Enterprise Risk Management (ERM) Framework (2017) for Auditors→
Frequently Asked Questions
What is COSO Enterprise Risk Management?
COSO Enterprise Risk Management framework (2017 edition, Integrating with Strategy and Performance), structured as five interrelated components (Governance and Culture; Strategy and Objective-Setting; Performance; Review and Revision; Information, Communication, and Reporting) and 20 principles. Copyrighted by COSO/AICPA; full control text requires a licensed copy..
How many controls does COSO Enterprise Risk Management have?
COSO Enterprise Risk Management contains 20 controls organized across 5 domains.
Where does COSO Enterprise Risk Management apply?
COSO Enterprise Risk Management is applicable in International (COSO). Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
How do I get started with COSO Enterprise Risk Management compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for COSO Enterprise Risk Management (ERM) Framework (2017)?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.