admin@yixiangs.com +86-138-700-21257 WhatsApp
About Us Contact Portal
Advanced CPD

Risk Management, Control & Compliance (Corporate Governance)

This advanced 5 days programme provides professionals with a rigorous, practice-oriented grounding in Risk Management, Control & Compliance (Corporate Governance). Designed for those working across the Risk Management sector, the course combines established theoretical frameworks with current industry practice through expert-led instruction, structured case studies, and hands-on workshops.

5 daysDuration
AdvancedLevel
5 Days · 15 ModulesProgramme
YX-RISK-002Code
Classroom Online In-House Blended
Starting From
$4,950
per delegate · live online

Choose Format

Classroom
Face-to-face at a global venue
$5,950
Online
Live interactive virtual sessions
$4,950
In-House
Delivered at your premises
Quote
Enquire & Book Request In-House Quote
Internationally Accredited
50+ Global Locations
Expert Advisory Team
Secure Booking Process

Course Overview

About this programme

This advanced 5 days programme provides professionals with a rigorous, practice-oriented grounding in Risk Management, Control & Compliance (Corporate Governance). Designed for those working across the Risk Management sector, the course combines established theoretical frameworks with current industry practice through expert-led instruction, structured case studies, and hands-on workshops.

Participants will engage with the most relevant tools, standards, and methodologies used in Risk Management today. By the final day, delegates will leave with a clear personal action plan and the confidence to apply their learning immediately, contributing to improved performance, compliance, and competitive advantage within their organisations.

Programme Objective

Equip professionals with the knowledge, skills, and frameworks required to excel in Risk Management, Control & Compliance (Corporate Governance), driving measurable improvement in Risk Management performance and delivering tangible value to their organisations.

5 daysTotal Duration
5 DaysTraining Days
15 ModulesModules Covered
Max 20Class Size
EnglishLanguage
CPDAccreditations

What You Will Learn

11 key learning outcomes

01

Apply enterprise risk management (ERM) frameworks including ISO 31000, COSO, and industry-specific standards

02

Conduct structured risk identification using HAZID, SWIFT, and bow-tie analysis techniques

03

Quantify risk likelihood and consequence using qualitative, semi-quantitative, and quantitative methods

04

Design and evaluate risk treatment measures including controls, contingency, and risk transfer

05

Integrate risk management into project, operational, and strategic decision-making processes

06

Build and maintain risk registers, heat maps, and risk reporting frameworks for different audiences

07

Apply operational risk management techniques to identify and mitigate process and people failure modes

08

Evaluate corporate governance and compliance frameworks for managing regulatory and legal risk

09

Assess and manage energy sector-specific risks: commodity, geopolitical, cyber, and environmental

10

Apply lessons learned from major industry incidents to improve organisational risk culture and controls

11

Lead risk workshops and facilitate structured risk identification and evaluation processes

Course Outline

5 training days · 15 modules · hands-on workshops

1
Risk
Management
2
Risk
Assessment
3
Risk
Treatment
4
Operational
&
5
Risk
Reporting,
Day 1

Risk Management Fundamentals & Frameworks

Establish the principles, frameworks, and vocabulary of enterprise risk management.

8 hours 3 modules
Module 1

Risk Management Fundamentals

  • Risk definition: uncertainty, likelihood, and consequence
  • ISO 31000:2018 principles and guidelines: risk management framework
  • COSO ERM framework: eight components and integration with strategy
  • Three lines of defence model: business, risk function, and audit
Module 2

Risk Culture & Governance

  • Risk appetite: definition, statement, and cascade to risk tolerances
  • Board and executive risk oversight: risk committee governance
  • Risk culture assessment: indicators of strong and weak risk culture
  • Behavioural risk: cognitive biases in risk perception and decision-making
Module 3

Risk Identification Methods

  • HAZID: structured hazard identification in energy sector
  • SWIFT analysis: structured what-if technique
  • Bow-tie analysis: threats, top event, consequences, and barriers
  • Workshop facilitation: preparing, running, and documenting risk identification
Practical Workshop

Risk identification workshop: teams facilitate a bow-tie analysis for a provided operational scenario, identifying threats, consequences, preventive barriers, and recovery barriers.

Day 2

Risk Assessment & Quantification

Apply qualitative and quantitative risk assessment methods to evaluate risk significance.

8 hours 3 modules
Module 1

Qualitative Risk Assessment

  • Risk matrix design: likelihood and consequence scales and categories
  • Risk rating: inherent, current, and target risk levels
  • Subjectivity and calibration: anchoring and groupthink mitigation
  • Risk heat map construction and communication
Module 2

Semi-Quantitative Methods

  • Layer of protection analysis (LOPA): initiating events and IPL credit
  • Risk ranking scores: frequency × consequence scoring systems
  • Relative risk ranking: Pareto analysis and priority setting
  • Sensitivity analysis: key risk drivers and impact ranking
Module 3

Quantitative Risk Assessment (QRA)

  • Fault tree analysis (FTA): cut sets and top event frequency
  • Event tree analysis (ETA): consequence probability branches
  • Monte Carlo simulation: probabilistic cost, schedule, and NPV risk
  • Individual and societal risk criteria: ALARP and F-N curves
Practical Workshop

Risk quantification exercise: teams build a simplified fault tree for a provided loss of containment scenario, calculate the top event frequency, and compare to the risk acceptance criterion.

Day 3

Risk Treatment & Controls

Design and evaluate risk treatment strategies and verify the effectiveness of controls.

8 hours 3 modules
Module 1

Risk Treatment Strategies

  • Risk avoidance, reduction, sharing, and acceptance: selection criteria
  • Hierarchy of controls: elimination, substitution, engineering, and administrative
  • Inherently safer design principles: minimise, substitute, moderate, simplify
  • Residual risk: acceptance and monitoring after treatment
Module 2

Control Design & Assurance

  • Control types: preventive, detective, directive, and corrective
  • Control effectiveness: design adequacy and operating effectiveness
  • Control assurance: testing plan, frequency, and evidence
  • Management of change: risk implications of operational changes
Module 3

Risk Transfer & Insurance

  • Risk financing: self-insurance, captives, and commercial insurance
  • Insurance programme design: property, liability, and business interruption
  • Contract risk allocation: liability caps, indemnities, and back-to-back
  • Political risk and export credit insurance in international operations
Practical Workshop

Controls assurance exercise: teams assess the design and operating effectiveness of a provided set of controls for a critical risk, identifying gaps and recommending improvements.

Day 4

Operational & Project Risk

Apply risk management to operational processes and capital project delivery.

8 hours 3 modules
Module 1

Operational Risk Management

  • Operational risk framework: Basel II/III for financial sector; ISO 31000 for energy
  • Key risk indicators (KRIs): design, data sources, and trigger levels
  • Process safety risk: HAZOP, LOPA, and barrier integrity management
  • Human and organisational factors: human error classification and prevention
Module 2

Project Risk Management

  • PMI risk management processes: plan, identify, assess, respond, monitor
  • Project risk register: structure, ownership, and review cadence
  • Quantitative schedule risk analysis: Monte Carlo with Primavera Risk Analysis
  • Earned value management: cost and schedule variance as risk indicators
Module 3

Supply Chain & Third-Party Risk

  • Third-party risk assessment: financial, operational, and reputational
  • Contractor prequalification: HSE, quality, and financial screening
  • Supply chain disruption: single-source dependencies and resilience planning
  • Third-party audit and assurance: scope, frequency, and findings management
Practical Workshop

Project risk workshop: teams conduct a risk assessment for a provided capital project, build a risk register with ranked risks, and develop response plans for the top five threats.

Day 5

Risk Reporting, Cyber Risk & Strategic Risk

Report risk effectively, manage cyber risk, and integrate risk into strategic planning.

8 hours 3 modules
Module 1

Risk Reporting & Communication

  • Risk reporting hierarchy: operational, management, and board levels
  • Risk dashboard design: KRIs, heat maps, and trend indicators
  • Narrative risk reporting: writing clear, concise risk descriptions
  • Communicating uncertainty: probability language and range reporting
Module 2

Cyber & Digital Risk

  • Cyber risk in operational technology: ICS/SCADA vulnerabilities
  • Cyber risk quantification: FAIR model and financial impact assessment
  • Cyber insurance: coverage scope, exclusions, and claims
  • Integrating cyber risk into the enterprise risk register
Module 3

Strategic & Emerging Risk

  • Horizon scanning: PESTLE and weak signal identification
  • Geopolitical risk: country risk assessment and political risk mitigation
  • ESG and climate risk integration into ERM: TCFD and scenario analysis
  • Emerging risks: AI, quantum computing, pandemics, and societal risk
Practical Workshop

Capstone risk report: teams produce an executive risk report for a provided organisation, including a heat map, top five risks with treatments, KRI dashboard, and emerging risk commentary.

The course outline is indicative. Content may be adapted to reflect current industry developments and delegate experience levels.

Who Should Attend

This programme is designed for professionals across these roles

Risk Managers & Officers

Professionals responsible for enterprise, operational, or project risk management programmes

Internal Auditors

Auditors assessing the design and effectiveness of risk and control frameworks

Engineers & Technical Managers

Technical professionals responsible for process safety, integrity, and operational risk

Senior Leaders & Decision Makers

Executives and business unit leaders who set risk appetite and make risk-informed strategic decisions

Project & Programme Managers

Professionals managing capital projects and needing to integrate risk into delivery frameworks

Commercial & Finance Professionals

Commercial teams assessing financial, counterparty, and commodity risk in energy transactions

Schedule & Fees

Upcoming public dates — enrol anytime

Jun
07
07 Jun – 11 Jun 2026
Dubai, UAE
Classroom 5 seats available
$5,950
per delegate
Jun
30
30 Jun – 04 Jul 2026
Live Online (Zoom)
Online Only 2 seats left!
$4,950
per delegate
Aug
01
01 Aug – 05 Aug 2026
Singapore
In-House Only 2 seats left!
Quote
custom pricing
Aug
28
28 Aug – 01 Sep 2026
Houston, USA
Blended 6 seats available
Quote
custom pricing
Sep
26
26 Sep – 30 Sep 2026
Abu Dhabi, UAE
Classroom Only 2 seats left!
$5,950
per delegate
Oct
23
23 Oct – 27 Oct 2026
Live Online (Zoom)
Online 6 seats available
$4,950
per delegate
Can't find a suitable date? Contact us for private cohort scheduling or in-house delivery options at your premises.

Accreditations & Recognition

This course carries internationally recognised professional credits

CPD Certified

Course Resources

Request documentation before you book

Course Brochure

Full curriculum, schedule, fees & logistics

In-House Proposal

Customised delivery for your organisation

Detailed Outline

Full day-by-day topic breakdown PDF

Group Booking

Discounts for teams of 3 or more delegates

Ready to Enrol?

Speak with our training advisors to confirm availability, group rates, and customised in-house options.

Enquire Now Browse More Courses