Updated COSO ERM framework ties in risk with strategy

By Neil Amato

September 6, 2017

Please note: This item is from our archives and was published in 2017. It is provided for historical reference. The content may be out of date and links may no longer function.

September 4, 2025

Summing up economic sentiment and concerns about inflation and tariffs

September 4, 2025

Business outlook brightens somewhat despite trade, inflation concerns

July 24, 2025

AICPA & CIMA Business Resilience Toolkit — levers for action

Management Accounting
- Strategy
- Enterprise Risk Management

The Committee of Sponsoring Organizations of the Treadway Commission (COSO) on Wednesday released an updated risk framework that highlights the importance of enterprise risk management’s (ERM’s) role in strategic planning.

The framework, Enterprise Risk Management—Integrating With Strategy and Performance, builds on 2004’s Enterprise Risk Management—Integrated Framework.

“The complexity of risk has changed, new risks have emerged, and both boards and executives have enhanced their awareness and oversight of enterprise risk management while asking for improved risk reporting,” said Bob Hirth, COSO’s chair. “Our overall goal is to continue to encourage a risk-conscious culture.”

The first part of the updated framework offers a perspective on current and evolving concepts and applications of ERM to meet the evolving business environment’s demands. The framework is divided into five components that accommodate different viewpoints and operating structures to enhance strategies and decision-making.

The updated framework focuses on challenges and evolving expectations of ERM that business leaders deal with today when making decisions, from fast-changing technology to shifts in economic markets to changing demographics.

“When embedding ERM in both day-to-day and strategic decision-making, ERM adds identifiable value,” said Suzanne Christensen, CPA, treasurer and head of investor relations and risk at Invesco and a member of the framework update advisory group. “The new guide better supports this objective by providing clearer linkage between ERM and decision-making.”

The updated framework was developed by PwC under the direction of the COSO board. COSO plans for the framework to be translated into several languages, including Chinese, Japanese, Spanish, and French.

The document is available in printed form, ebook, online subscription, and PDF licensing for organizations. COSO released its proposed ERM framework about a year ago and allowed public comment through last September.

COSO is a committee of five sponsoring organizations, including the AICPA, that provides thought leadership and guidance on ERM, internal control, and fraud deterrence.

For additional information, visit coso.org.

—Neil Amato (Neil.Amato@aicpa-cima.com) is a JofA senior editor.

Smart Strategies in Data Security and Risk Management

In an increasingly digital profession, data security has become one of the most critical challenges facing finance and accounting professionals today. Stay up to date with practical guidance to help you mitigate these risks and strengthen your security posture.

MAGAZINE

Updated COSO ERM framework ties in risk with strategy

Summing up economic sentiment and concerns about inflation and tariffs

Business outlook brightens somewhat despite trade, inflation concerns

AICPA & CIMA Business Resilience Toolkit — levers for action

Features

Calming nervous clients nearing retirement

7 retirement tips for small firm CPAs

Building a better CPA firm: Stepping up service offerings

2025 tax software survey

SPONSORED REPORT

Smart Strategies in Data Security and Risk Management

From The Tax Adviser

2025 tax software survey

Are you doing all you can to keep the cash method for your clients?

Current developments in S corporations

Paid student-athletes: Tax implications for universities and donors

MAGAZINE

HOME

ABOUT

SUBSCRIBE

AICPA & CIMA SITES