Home

Designing Risk Management BlueprintRisk Management / ChatGPT

Enquire MoreRegister NowCorporate Courses

DurationTwo days
Course Dates12 Feb 2026 9:00am - 13 Feb 2026 5:00pm
11 May 2026 9:00am - 12 May 2026 5:00pm
20 Aug 2026 9:00am - 21 Aug 2026 5:00pm
19 Nov 2026 9:00am - 20 Nov 2026 5:00pm

Course Fee

Member $722.70
Non-Member $850.20
  • Members enjoy a 15% discount before GST
  • Group Discount (3 or more participants) - 10%

  • Company and Individual funding are no longer applicable in 2025

Introduction

Risk management is often treated as a compliance exercise, yet many organisations still experience unexpected losses and control failures. This programme helps participants understand how modern risk management is structured at an organisational level, using frameworks such as COSO ERM, COSO Internal Control, and SOX to show how governance, risk, controls, and assurance work together in practice. Through case-based discussions, the focus is on judgement and practical application rather than documentation.

 

Key Takeaways

  • Conceptualise a clear, organisation-wide risk management blueprint
  • Understand the purpose and inter-relationship of COSO ERM, COSO Internal Control, and SOX
  • Distinguish between governance, management, and assurance responsibilities
  • Interpret risk registers, control documentation, and assurance reports more intelligently
  • Engage meaningfully with senior management, boards, auditors, and consultants on risk matters

 

Who Should Attend

This programme is suitable for executives, managers, and professionals involved in risk management, governance, finance, internal audit, compliance, or strategy who wish to develop a clear understanding of how risk management is structured and integrated across the organisation.

 

Programme Outline

Day 1: Foundations & Architecture

  1. Why RM Needs a Blueprint
  • Risk management as a system, not a checklist
  • Causes of fragmented and ineffective RM
  • Compliance-driven vs purpose-driven RM
  • Characteristics of a coherent RM blueprint
  1. Risk Governance & Accountability
  • Board, management, and assurance roles
  • Risk ownership, escalation, and accountability
  • Risk appetite vs risk tolerance
  • Consequences of weak risk governance
  1. COSO ERM: Purpose & Structure
  • Intent and philosophy of COSO ERM (2017)
  • Linking risk with strategy and performance
  • ERM vs traditional risk management
  • Common misunderstandings in ERM adoption
  1. RM Blueprint Mapping Workshop
  • Positioning governance, ERM, and operations
  • Linking strategy, objectives, and risks
  • Identifying gaps and overlaps in RM structures
  • Developing a high-level RM architecture

Day 2: Execution & Assurance

  1. COSO Internal Control: From Risk to Execution
  • Role of internal control in risk mitigation
  • Overview of the five COSO IC components
  • Risk–control linkage and control design logic
  • Control effectiveness vs control volume
  1. SOX & Assurance Thinking
  • Conceptual intent of SOX
  • Management responsibility and assertions
  • Preventive vs detective controls
  • Evidence, documentation, and accountability
  1. Integrating ERM, IC & SOX
  • How ERM, IC, and SOX complement one another
  • Avoiding duplication and RM fatigue
  • Aligning risk identification, execution, and assurance
  • Interpreting RM artefacts holistically
  1. Applying the RM Blueprint
  • Reading RM documents with confidence
  • Asking the right RM and governance questions
  • Identifying practical post-course next steps
  • Personal RM capability roadmap

Methodologies

This programme uses case-based discussions and facilitated mapping exercises to help participants conceptualise how risk management is structured at an organisational level. Recognised frameworks such as COSO ERM, COSO Internal Control, and SOX are introduced as sense-making tools to build an integrated risk management blueprint.

Programme Trainer

Lawrence Poh, CA (Singapore), ATP (Income Tax & GST), FCCA, ACTA

Member: SAAL, IIA, SID

BA (NUS), MA (Applied Linguistics, NTU)

Lawrence Poh draws on his background in communication, finance, and adult learning to help professionals present ideas with clarity and confidence. With over 30 years of corporate and international training experience, he has conducted programmes on presentation, communication, and executive writing for clients including the Brunei Investment Agency, Kenya Institute of Management, Erdenet Mining, Civil Authority of Mongolia, and Maldives International Airport. Known for his clear, warm, and practical style, Lawrence encourages participants to discover their authentic voice and deliver messages that connect with both intellect and emotion.

If you are interested in this corporate programme, please complete the following form and one of our representatives will get back to you as soon as possible.

I would like to receive marketing, advertising and promotional messages via:
(Please untick if you do not wish to receive)

MDIS values your privacy and we are committed to safeguarding your personal data in compliance with the Personal Data Protection Act 2012. By providing your personal details, you have authorised MDIS to share with you our marketing, advertising and promotional materials.

Quick Information

Risk management is often treated as a compliance exercise, yet organisations still face unexpected losses and control failures. This programme helps participants understand how modern risk management works at an organisational level using frameworks such as COSO ERM, COSO Internal Control, and SOX, with a practical, case-based focus on judgement and real-world application rather than documentation.

Contact Details

  +65 6842 6666
  mdc@mdis.edu.sg