The Risk framework library.
20 flagship frameworks operating the Outliers Risk Centre — ERM, governance, appetite, fraud, cyber, continuity, crisis and board oversight.
Enterprise Risk Management Framework™
ISO 31000 + COSO ERM applied to Nigerian operating reality.
An end-to-end ERM operating model — risk universe, appetite, KRIs, register, reporting and assurance — calibrated for Nigerian boards, regulators and second-line teams.
FrameworkRisk Governance Framework™
Three-lines model and board oversight that boards actually use.
A governance model that defines roles, escalation and reporting between the board, risk committee, executive, second line and assurance providers — anchored on NCCG, FRC and ISO 31000 expectations.
FrameworkRisk Appetite Framework™
Quantified appetite, limits and tolerances linked to strategy.
A risk-appetite framework converting board statements into quantitative limits, tolerances and KRIs measured on a live appetite dashboard.
FrameworkRisk Culture Framework™
Shape and sustain the behaviours and incentives that drive sound risk management at every level.
Risk culture is the set of shared values, attitudes and behaviours that determine how risk is actually managed day-to-day. This framework makes culture measurable and improvable so that policy translates into practice.
FrameworkStrategic Risk Framework™
Identify, assess and manage the risks to the strategy and business model — the risks most likely to create or destroy value.
Strategic risks are the threats and opportunities that most affect whether the strategy succeeds. This framework links every strategic objective to its risks and stress-tests the strategy against plausible futures.
FrameworkOperational Risk Framework™
Manage the risk of loss arising from day-to-day operations through RCSA, loss data, KRIs and control testing.
Operational risk is the risk of loss from inadequate or failed processes, people, systems and external events. This framework operationalises identification, control and monitoring across the first line.
FrameworkFinancial Risk Framework™
Protect liquidity, solvency and earnings by governing financial risk with appetite, limits, stress testing and contingency planning.
Financial risk threatens the balance sheet and earnings through liquidity, credit, market and capital exposures. This framework integrates the financial sub-risks under one governance with limits and stress testing.
FrameworkLiquidity Risk Framework™
Ensure the organisation can meet obligations under normal and stressed conditions.
Liquidity risk is the risk of being unable to meet obligations as they fall due. This framework protects the survival horizon through buffers, monitoring and a contingency funding plan.
FrameworkCredit Risk Framework™
Manage the risk of counterparty default and concentration across the credit portfolio.
Credit risk is the risk that counterparties fail to meet obligations, eroding earnings and capital. This framework governs credit through policy, limits, rating, concentration management and provisioning.
FrameworkMarket Risk Framework™
Manage exposure to adverse movements in market prices and rates.
Market risk is exposure to movements in FX, interest rates, commodity and other prices. This framework identifies exposures, sets limits, measures sensitivity and governs hedging.
FrameworkCyber Risk Framework™
NIST CSF + ISO 27005 risk discipline for the board.
A cyber risk framework translating NIST CSF and ISO 27005 into a register-grade, board-reportable cyber risk programme covering identify-protect-detect-respond-recover.
FrameworkThird-Party Risk Framework™
Manage risk from third parties across the full relationship lifecycle.
Third-party risk arises from vendors, suppliers, outsourcers and partners. This framework manages it across the relationship lifecycle, from tiering and due diligence to monitoring and exit.
FrameworkFraud Risk Framework™
Fraud typologies, controls and forensic indicators.
A fraud-risk management framework covering prevention, detection, response and lessons-learned — aligned to ACFE, ISO 37001 and Nigerian regulatory expectations.
FrameworkBusiness Continuity Framework™
ISO 22301-aligned resilience for Nigerian operating reality.
A BCM framework — BIA, recovery strategies, plan documentation and testing — sized for Nigerian enterprises that must operate through grid, FX and security shocks.
FrameworkCrisis Management Framework™
Decision rights, comms and recovery when the worst happens.
A crisis-management framework defining trigger thresholds, command structure, communications and recovery — exercised through tabletop and live simulations.
FrameworkEmerging Risk Framework™
Detect, assess and prepare for risks that are new, fast-moving or unprecedented.
Emerging risks are novel, fast-evolving or beyond historical experience. This framework detects, assesses and prepares for them through horizon scanning and a managed watchlist.
FrameworkAI & Technology Risk Framework™
Govern the risks arising from technology and AI adoption across the enterprise.
AI and technology risk spans model, data, ethical, operational and concentration risks from technology and AI adoption. This framework governs them with model-risk management and human oversight.
FrameworkESG Risk Framework™
Identify and manage ESG and climate-related risks and prepare for disclosure obligations.
ESG risk covers environmental, social, governance and climate exposures and obligations. This framework manages materiality, climate scenarios, metrics and disclosure readiness.
FrameworkCompliance Risk Framework™
Ensure conformance with laws, regulations and internal standards and manage regulatory change.
Compliance risk is the risk of failing to conform with laws, regulations and internal standards. This framework manages obligations, monitoring, regulatory change and breach handling.
FrameworkBoard Risk Oversight Framework™
Risk oversight a board can actually exercise.
A board-grade oversight framework — committee composition, reporting cadence, KRIs and decision rights — calibrated for Nigerian listed and regulated entities.