In today’s increasingly competitive and regulated market, risk managers are faced with a multitude of challenges. They must manage both operational and strategic risks while tracking compliance against a moving landscape, all while increasing stakeholder value and meeting corporate objectives. They can approach future investments in risk management initiatives merely as a means to abide by corporate directives, or they can use these investments as an opportunity to strengthen and unify their risk culture and align risk-based practices to protect and enhance shareholder value. Sustainable Risk Management Program The Governance Portal for Risk Management provides an integrated solution that enables leading risk practices. The system features risk and control self-assessment, key indicator management and action plan management, and also provides integrated loss event and internal audit modules. The technology facilitates the communication of risk frameworks and directives from the governing risk committees to the employees throughout the organization, while enabling a comprehensive risk assessment, measurement and monitoring process. The Governance Portal is a market-leading Governance Risk and Compliance (GRC) software solution used by hundreds of clients around the world – providing vis- ibility and insight needed to manage and mitigate critical risk and compliance issues today and in the future. The Governance Portal helps clients: • Start quickly • Execute efficiently • Create sustainability • Add value Protiviti has been positioned as a “Challenger” by Gartner, Inc. in the September 2013 Magic Quadrant for Enterprise Governance, Risk and Compliance Platforms. “We use the Risk Management module to administer our Internal Control review. Usage of the tool enables us to successfully manage our large recipient base of nearly eight-hundred individuals and to quickly provide meaningful consolidated reporting while maintaining anonymity for our employees. We have done this for three consecutive years and will continue to do so in the future.” – Controls Manager, Global Engineering Company Protiviti’s Governance Portal for Risk Management Define and Plan Execute Report Monitor and Follow Up Define Measure Monitor Manage © 2014 Protiviti Inc. 104213 • Establish a common risk event model and organizational hierarchy through- out the integrated framework. • Map risk objectives, risks and controls to this framework. • Incorporate a qualitative and quantita- tive risk assessment approach by developing configurable scoring models and leveraging historical loss data within a unified risk framework. • Schedule periodic assignments and notify personnel of their responsibilities. • Establish response strategies, apply controls, remediate deficiencies and provide information for management decision-making through an integrated reporting suite. • Use self-assessment techniques to drive ownership and acceptance of program responsibilities throughout the business. • Analyze assessments results and monitor key risk indicators (KRI) and audit findings to provide a compre- hensive report to risk management. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.