Independent analyst finds Active Risk Manager delivers, where the majority of risk solutions fail, in enabling organizations to aggregate and normalize risk enterprise-wide
Active Risk Manager (ARM), a risk management solution for enterprise, project and program risk has been assessed by independent, specialist analyst GRC 20/20. The resulting paper which has just been published; Solution Perspective, Sword Active Risk – Providing 360˚ Contextual Awareness of Risk, is based on detailed analysis of the solution and in-depth interviews with a range of users of ARM. The paper finds that, unlike most risk management solutions currently available, ARM is able to aggregate and normalize risks from different areas of the organization into portfolio, divisional, operational and enterprise risk reporting. ARM’s core domain model provides these capabilities out of the box, in contrast to toolkit solutions that require customized technical solutions to be developed.
At its core, ARM provides a centralized, robust and highly flexible information architecture and repository for management of risk that eliminates risk information silos and provides 360˚ contextual awareness of risk and reporting out of the box. ARM is able to aggregate and normalize risks with different scoring and perspectives, reassess risk at a project/department/function level against corporate risk appetite, provide quantitative risk aggregation, qualitative risk scoring, measure business unit aggregate risk and provide a measurement of an organization’s overall risk exposure.
Michael Rasmussen, Chief GRC Pundit for GRC 20/20 commented; “What GRC 20/20 finds really impressive about Active Risk Manager is its ability to manage risk in context of opportunity, as well as its ability to normalize and aggregate risk as it rolls up in the organization. It gives management at all levels the visibility they need into the range of risks across the organization and how they interrelate.”
The paper states that, typically, organizations deploy ARM to provide a single integrated information architecture for risk management that can handle a complex taxonomy of risks and provide integrated reporting across risk data and different types of risk records. It enables organizations to replace a variety of limited risk solutions, as well as manual processes that often include spreadsheets and emails. ARM users consistently praise the value in the ongoing cost of ownership in the speed of deployment and return on investment. Many say that the solution has dramatically improved the quality of their risk information and their ability to report on risk. The solution is flexible and able to adapt to their risk management needs, with all the core capabilities to support the growth and maturity of their risk management program over time.
Keith Ricketts, VP of Marketing at Sword Active Risk stated; “We are delighted to be working with GRC 20/20, the pre-eminent specialist consultancy in Governance, Risk and Compliance, and would like to thank all of our clients that took the time to share their experiences of ARM with the GRC 20/20 research team.
“Active Risk Manager has been developed over a number of years, growing in conjunction with our customers’ requirements. As the discipline of risk management has grown so ARM has developed to its current status as the leading risk management solution for enterprise, portfolio, divisional, operational, project and program risk management, that provides a 360˚ view of risk for the entire organization. As the risk management industry has matured our clients wish to add more value to the business - ARM is ideally positioned to provide this capability.”