Escolar Documentos
Profissional Documentos
Cultura Documentos
0
NEW
ARM
This document provides a breakdown of the key features and benefits in Active
Risk Manager (ARM) to help highlight the capabilities for risk, issue, incident and
opportunity management at Project, Program, Portfolio and Enterprise levels.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM Apps
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Risk Identification A B C D Benefits
Opportunities capture.
Using the ability to create different "risk objects" the system can be
configured to manage Opportunities that deliver increased cost reductions or
revenue opportunities to projects and the business. Promotes a positive view
of managing value across the program and business while also offsetting
the risks. Can be used in both a simplified manner or extended out to deliver
significant financial benefits as intended by 6 Sigma Process Excellence type
programmes.
Configurable fields.
Helps extend or reduce fields within the records to meet different capturing,
reviewing and reporting requirements. Allows the software to be configured
to match the risk process(es) within a business. Can be administered by the
business without reference to IT or external consultants reducing time to
value and cost.
Form designer.
Enables user data entry forms to be painted by administrators. This helps
align the risk capture process with the wider risk process making it more
relevant and streamlined, easier for users to understand. It also means that
customers can do this themselves at the business level without the need for
expensive external consultants or IT involvement.
Label Customization.
Improves user familiarization and promotes user buy-in across the
program or organization with the ability of having multiple label sets to
support multiple processes or languages. Helps different aspects of the
risk process (eg HR, Project and HSE) to use terminology that is relevant
and understandable by them rather than a generic set of labels. Can be
administered by the business without reference to IT or external consultants
reducing time to value and cost.
Linked documents.
Provides a dynamic link to any document to support the relevance of the
data entered. This link can be to a SharePoint document (photo, PDF file etc)
that is installed on the ARM Server or any document able to be referenced in
this way through the customers own document management solution.
Linkage of a risk/opportunity/issue
to multiple risk breakdown structures
Enables the user to assess and manage multiple impacts of one risk
without double-counting, providing more accurate and relevant risk impact
(WBS, RBS, OBS, Functions, Processes, assessments including the relevant scoring schemes. Risks linked in this way
Assets, Financial Accounts, Objectives, have their own impact assessment relevant to the node the risk has been
KPIs etc.) linked to.
Association of a risk/opportunity/issue to
multiple risk breakdown structures (WBS,
Enables the user to assess and manage multiple impacts of one risk without
double-counting, providing more accurate and relevant risk impact assessments
RBS, OBS, Functions, Processes, Assets, including the relevant scoring schemes. Risks linked this way have a single
Financial Accounts, Objectives, KPIs etc.) impact assessment that is the same for each linked folder tree item.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Risk Identification A B C D Benefits
Creation of master/copy risks that can
be used for monitoring interfaced risks.
Beneficial in pushing out standard corporate risks across the business as
copies yet retaining control of the master risk.
Risk review.
Ability to record and monitor formal risk reviews from ARM users on a regular
basis as risk reviews are conducted in your program or organization.
These are available as "journals" and can be used to audit and monitor the
reviews a risk has been through by identifying review comments, reviewer
and date.
Risk Feedback.
Ability to record and monitor feedback comments on risks by contributors.
These are available as "journals" and can be used to audit and monitor the
reviews a risk has been through by identifying review comments, reviewer
and date.
Coefficient of variation.
See the amount of variation contained in an impact expressed as a
coefficient to enable you to compare and assess risk impacts in terms
of their assessment spread as well as size.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Risk Assessment A B C D Benefits
Next assessment date warning.
Gives an indication to the appropriate risk/control owner of when the next
assessment is due.
Response scoring.
Users can score individual responses qualitatively or quantitatively in order
to record the target and actual risk level achieved by the mitigating action.
There is also a feature to enable automatic response scoring when
a response is marked complete.
Response sharing.
Use a response on more than one mitigation plan where circumstances
result in the same response being applicable to more than one risk mitigation
scenario.
Mitigating Actions.
Ensures that risks are managed effectively down to the target level using one
off measures that have ownership and due dates.
Controls.
Ensures that risks are managed effectively down to the current level using
recurring measures (see section on Internal Controls Management in relation
to the documentation and effectiveness of controls as part of this process).
Fallback plans.
Provides the ability to mitigate residual risk where it is not possible or too
expensive to mitigate risks down to an acceptable level through controls and
actions (eg for external risks around OPEC Oil pricing). Fallbacks provide a
failsafe option normally in the form of insurance policies and contingency
plans should a risk impact.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Risk Treatment A B C D Benefits
Tracking of Overdue responses.
Improves Managements visibility of Action/Control Owners efficiency.
% Completion of actions/controls.
Gives more flexibility to Action Owners.
Default filters.
Allocate individuals or groups default filters to increase efficiency and
simplify tasks.
Analysis A B C D Benefits
Multiple Single risk and aggregated
Risk and Opportunity Matrix (Probability
Enables organisations to deploy multiple qualitative heat maps within a
single instance. Offering benefits around reporting against multiple risk
Impact Diagram or Heat Map.) reporting requirements simply.
Provides a priority view of relevant risks scored using the appropriate scoring
criteria and shows both current and target levels of risks thereby showing
at a glance risks that breach risk appetite levels regardless of the level of
appetite of the user. Gives a simplistic picture of which risks need to be
focussed on and increases risk awareness.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Analysis A B C D Benefits
Caveats and Classifications on all charts
and reports (set by risk breakdown
Enables the system to conform to high level security and data confidentiality
information reporting requirements often found in defence and high security
structure.) organisations.
Tornado Chart.
Analyses which project tasks are the most sensitive to the risks identified
helping you to decide where you should best deploy mitigation resources.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Analysis A B C D Benefits
Adaptable Analysis Reporting.
Ability to run analysis reports straight from the ARM desktop based on user
defined criteria such as:
Risk exposure and draw down
Contingency/provision spend charts
Summary/Detail relationships and aggregated cost
Risk Process health checking
Prioritisation of risks based on compound criteria such as Impact, proximity
and manageability.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Business Continuity A B C D Benefits
Identification and documentation of
Business Continuity risks and fallback
Supports the capture, analysis and reporting of key risks that threaten
the continuity of your business in order to make decisions on where to
plans as part of the the top down risk best deploy resources. From these continuity assessments it is normally
management process dealing with found that residual risk remains as a factor outside risk appetite levels and
residual risk. therefore requires a strategy for how to deal with the impact of the risk as
opposed to managing the current level of risk or reducing it through other
mitigation vehicles.
Standard reporting.
A number of standard BC reports are provided in the system to help
managers stay informed of the status of business continuity threats,
mitigation strategies and quality of plans. These include:
Business Continuity Dashboard
BC Plan Summary
Key Processes/BCP Report
BC Plan Detail
Business Continuity Financing
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Incident Management A B C D Benefits
Configurable data collection forms for
customer defined incident types.
Supports the set up of incident/issue/loss processes for various kinds of real
world events within the business such as Accidents, Compliance Breeches,
Project Issues and Operational losses. Different forms can be configured for
each type of incident set up and the characteristics.
Summary/Detail linking.
Often a major incident has multiple secondary incidents - such as a
train derailment impacting individual assets such as bridges, people etc.
The Summary/Detail relationship helps manage these top events while
addressing the underlying detailed incidents.
Copy/Paste.
Easily move incident and investigation records around the organisation as
and when the organisation changes. Also useful when looking to archive
incidents.
Spell Checker.
Identify those embarassing typo's in management reporting.
Email alerting.
Keep process owners, incident owners, interested parties and action owners
informed of the status of the incident and their required action in the incident
process workflow.
Standard reports.
Standard listings and registers of incidents together with summary aggregate
loss analysis from a financial perspective.
ARM Apps.
Ability to push incident management across the company by configuring very
small data capture "portlets" to run under Corporate intranets, SharePoint or
MS Outlook to enable the entire organisation to record unapproved incidents
and therefore capture incidents as they occur at source rather than a
centralised process.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Audit Management A B C D Benefits
Create and maintain an audit universe
to drive annual audit planning cycles.
Effective coverage of all processes and business units based on a risk based
assessment to prioritise audit plans.
Create and maintain audit capture
templates that support the planning,
Highly flexible and adaptive process for supporting different types of audits
and to adapt as the audit process adapts. Customers able to perform this
engagement, execution, reporting and work themselves so quick time to value and very cost effective.
follow up process.
Creation of different types of audit
process - eg Internal Audit, Quality
Ability to remove manual processes from across the organisation to provide
efficiency, integrity and transparency.
Management, HSE.
Setup of label sets that reflect the
terminology of the specific process.
Solution is able to adapt to more than one audit process.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Risk Connectivity Module A B C D Benefits
Interactive graphical display showing
the strength of the relationships
It is well proven that most major incidents occur when more than one risk
impact at the same time. The ability to understand the relationship between
(connectivity) between risks based risks and in particular how low level risks can act as a catalyst for larger risks
on risk taxonomy and other encoding is increasingly an important consideration for risk analysts.
structures.
The out-dated method of manually setting risk correlations between all risks
is both prone to subjective error, is very labour intensive and is not dynamic
to move as the risk register changes. Risk Connectivity moves this forward
by addressing these issues.
Gives Risk Managers and their Stakeholders an ability to see the risks that
really matter to determine their connected impact and the source of such
a connected exposure. Also prompts better use of Treatment or Handling
Plans to control or mitigate connected clusters of risks which in turn saves
Treatment Plan costs by reducing duplication.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Custom Dashboards & A B C D Benefits
Reports (RPM)
Users able to produce their own
dashboards and reports including grids,
Ability for users to create reports in hours not weeks or months without
technical help. Empowers users to satisfy Stakeholders with impressive
pivot tables and charts. dashboard style outputs or simple wizard driven tables, matrices or charts
using ARM datasets whilst preserving ARM security and filters.
Risk Performance Manager is developed and maintained alongside Active
Risk Manager so all reports produced will be future-proof and not require
redevelopment after subsequent version upgrades.
All available ARM data fields can be incorporated into charts including Risk,
Incident and Audit data and all related entities.
Able to report upon historical Risk and Response data as well as
relationships between Risks (Summary/Detail and Master/Copy) as well
as links between Risks and Incidents and Risks and Audits.
User Groups.
Offers confidence to user groups as to confidential information. As a result users
can use the system freely to identify risks leading to better Risk Management.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Security User Authentication A B C D Benefits
MS Windows authentication.
Standard, safe and good level of security to prevent unauthorised access.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Administration A B C D Benefits
Simple wizard installation.
Simple wizard installation requiring little administrator intervention with the
ability to specify any server locale.
License Management.
Analyze ARM concurrent usage and manage licences across test and
production databases to ensure the most efficient use of your ARM system
and highlight the value derived from the system in supporting your risk
management process.
User Management.
Distinguish between ARM users and resources that are part of the risk
management process but do not consume a licence. Retire users keeping
audit history but preventing them from logging into the system; reassign their
actions and risks to another user. Use alerts to track the creation of new
ARM accounts.
Role Management.
Assign users to specific roles, build a role hierarchy to help local
administrators assign rights to roles beneath them in the hierarchy
to give management abilities where they are needed.
Architecture A B C D Benefits
Platform based on pure MS technology
(.NET).
One of the dominant and long term technology stacks. Only MS, therefore it
all works together. Means new MS Technology products work in conjunction.
MS technology means least potential conflict with IT technology strategy and
lower total cost of ownership.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Architecture A B C D Benefits
Works within the cloud.
Achieve economies of scale - increase volume output or productivity
with fewer people. Your cost per unit, project or product plummets.
Reduce spending on technology infrastructure. Maintain easy access to
your information with minimal upfront spending. Pay as you go (weekly,
quarterly or yearly), based on demand.
Globalize your workforce on the cheap. People worldwide can access
the cloud, provided they have an Internet connection.
Streamline processes. Get more work done in less time with less people.
Reduce capital costs. Theres no need to spend big money on hardware,
software or licensing fees.
Improve accessibility. You have access anytime, anywhere, making your
life so much easier!
Monitor projects more effectively. Stay within budget and ahead of
completion cycle times.
Less personnel training is needed. It takes fewer people to do more work
on a cloud, with a minimal learning curve on hardware and software issues.
Minimize licensing new software. Stretch and grow without the need to buy
expensive software licenses or programs.
Improve flexibility. You can change direction without serious people
or financial issues at stake.
Performance A B C D Benefits
System benchmarked to 500 concurrent
users (500 people using the system
Confidence in performance and use in Enterprise situations demonstrates
quality technology build. Confidence in that we have customers who run
at the same time) by Active Risk this size of user bases.
(equivalent to approx 10,000 named
users.)
Browser based user interface runs on Existing delivery mechanism. Industry standard will also support home
MS Internet Explorer 8 or greater. working. Reduced deployment costs, supports technical strategy increased
HR benefits for home working.
Database A B C D Benefits
SQL Server and Oracle supported
(please see platform support matrix for
Offers DBMS choice without compromise. Oracle enables UNIX operating
systems to be used.
which releases support which versions
of DBMS tools.)
Hardware independent.
Enables better performance/cost mix. May fit IT strategy better. Enables
wider choice. Fewer barriers to change (for acceptance.)
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
Service Orientated A B C D Benefits
Architecture
MS SharePoint Services delivered as
a native framework.
ARM Apps can be dropped into Sharepoint which can deliver role based
views to users faster. Meets specific user group needs better (tailored
interaction with Risk Management and Incident Management process).
Enables high levels of front-end integration with other applications.
Exchange A B C D Benefits
Send URL hyperlinks to colleagues to
allow them to access ARM risk data
ARM integrates with common desktop applications and encourages usage
and buy in to the risk management process.
directly from an email or a document.
Interfaces A B C D Benefits
Excel/Server-to-Server
Interface to export and import risk,
impact, plan and response data from
Offers simplistic method of moving data in and out of the ARM database
without loss of information. Reduces effort and increases flexibility in being
ARM to Excel, and from one ARM server able to get data in and out of the application. Supports use of ARM in secure
to another ARM server selecting the environments where data can be sanitized, security cleared and updated on
appropriate data (including Risk and the Universal ARM database automatically (dependent on rules).
Activity and Risk data relationships) to
send/receive.
KEY: A ARM (Core) B ARM Unplugged C ARM Reporting/ARM RPM D ARM App
EMEA Headquarters US Headquarters Australia
Sword Active Risk Sword Active Risk, Inc. Sword Active Risk Pty Ltd
1 Grenfell Road 13221 Woodland Park Road 40/140 William Street
Maidenhead Suite 440 Melbourne
Berks SL6 1HN Herndon, VA 20171 VIC 3000
UNITED KINGDOM UNITED STATES AUSTRALIA
Tel: +44 (0)1628 582500 Tel: +1 (703) 673 9580 Tel: +61 3 9229 3850