Useful resources for Risk Frameworks and standards
Association of Insurance and Risk Managers in Industry and Commerce (Provides resources and publications related to risk management)
Committee of Sponsoring Organizations of the Treadway Commission (COSO) (Provides the COSO Enterprise Risk Management (ERM) framework)
Factor Analysis of Information Risk (FAIR Institute focuses on quantitative risk analysis and offers a risk management framework for cybersecurity and information risk)
Institute of Risk Management (IRM) (Professional body focused on risk management, offers various resources and publications related to risk management frameworks)
International Organization for Standardization (ISO) (Offers several risk management standards and frameworks)
ISACA (International professional association focused on IT governance, risk management, and cybersecurity)
National Institute of Standards and Technology (NIST) (Develops and publishes risk management frameworks)
Open Compliance and Ethics Group (Provides the GRC Capability Model)
Organisation for Economic Co-operation and Development (OECD) (Offers risk management guidance for various policy areas, such as financial, environmental, and governance risks)
Project Management Institute (Offers the Risk Management framework as part of their project management standards)
Useful resources for Cyber Security Risks
Cyber Aware (UK government initiative aimed at promoting basic cybersecurity practices for individuals and small businesses)
Cybersecurity and Infrastructure Security Agency (Provides a wide range of cybersecurity resources for businesses and individuals)
European Union Agency for Cybersecurity (ENISA) (Provides resources and publications related to cybersecurity risk management)
Get Safe Online (Trusted source of information and resources for individuals, businesses, and families to stay safe online)
Information Systems Security Association (Promoting cybersecurity education, professional development, and community building)
National Institute of Standards and Technology (Comprehensive collection of cybersecurity publications, guidelines, and frameworks)
SANS Institute (Trusted source of cybersecurity training, certification, and research)
The National Cyber Security Centre (UK Government organisation providing support to the most critical organisations in the UK, the wider public sector, industry, SMEs as well as the general public)
The Open Web Application Security Project (Non-profit organization focused on improving web application security)
Useful resources for Data Protection
Center for Information Policy Leadership (The CIPL is a global privacy think tank that provides resources, guidance, and frameworks for privacy and data protection)
European Data Protection Board (The EDPB is an independent European body responsible for data protection and privacy)
European Data Protection Supervisor (The EDPS is an independent institution responsible for ensuring that EU institutions and bodies comply with data protection rules)
General Data Protection Regulation (The official website of the European Union provides comprehensive information about the GDPR, which is a regulation that addresses data protection and privacy for individuals within the EU)
Information Commissioner’s Office (ICO) (UK’s independent authority for data protection and information rights)
Useful resources for Horizon Scanning and Emerging Risk analysis
Environment Agency (Focuses on risk management assessments related to environmental risks)
Gartner’s Magic Quadrant assessments (Used to evaluate and compare technology markets)
GOV.UK (Official website of the UK government, provides access to a wide range of information and resources related to risk management, including Management of risk in government: framework and the National Risk Register)
Harvard Business Review (Publishes articles and research papers on various business topics, including risk management)
Health and Safety Executive (HSE) (offers risk management guidance and resources specifically related to occupational health and safety)
Risk.net (Leading source of news, analysis, and research on risk management and financial markets)
World Economic Forum (Provides valuable insights into global risks and emerging trends)
Useful resources for Finance industry
Association of British Insurers (Trade association for the UK’s insurance industry)
Bank of England (Central bank of the UK)
Bank Administration Institute (BAI) (Financial services organization that provides research, training, and thought leadership for the banking industry)
European Banking Authority (EBA) (Provides regulatory guidelines and frameworks specific to the banking sector)
Financial Conduct Authority (FCA) (Regulatory body for financial services firms in the UK)
FinExtra (Leading financial technology news)
Institute of International Finance (Global association of financial institutions, including banks and insurance companies)
Insurance Information Institute (Trusted resource for insurance-related information and resources)
Lloyd’s Market Association (The LMA represents the interests of the Lloyd’s insurance market)
Prudential Regulation Authority (PRA) (Responsible for the prudential regulation of banks, building societies, credit unions, and insurers in the UK including the PRA Rulebook)
UK Finance (Collective voice for the banking and finance industry in the UK)
World Bank (Provides risk management frameworks and guidelines for different sectors and industries, especially related to development projects)
