Enterprise Risk Management (ERM) refers to the methods and processes used by corporations to manage risks and take control of opportunities related to the achievement of corporate objectives. ERM can also be described as a risk-based approach to managing the enterprise, integrating concepts of strategic planning, operations management, security risk management, and internal control. The foundation of any thorough analysis of risk is data availability, integrity and confidentiality. The process of data use, transmission and storage must be as diligent as the conception of the data itself.”]
Source: https://www.csoonline.com/article/2136294/risk-as-a-service.html