The DECIMAL CS Enterprise Risk Management Application enables you to identify, assess, quantify, manage, and monitor enterprise risks in a highly streamlined, automated, and integrated manner. The ERM Application scales across the enterprise, capturing risk and control data, as well as risk assessment findings, losses, issues, KRIs, and remediation plans in a single, centralized system. With the Application, you gain a 360-degree, real-time view of your enterprise risks connected with strategic objectives to enhance decision-making.


Risk Identification and Documentation

Captures risk data, including risk description, impact, rating, mitigation plans, and emerging issues; maps this data to the associated processes, assets, and entities for comprehensive risk transparency

Risk Assessment and Analysis

Helps assess inherent and residual risk based on impact and likelihood; supports multi-dimensional risk assessments, including top-down and bottom-up approaches; provides configurable risk computation methodologies and algorithms

Control Design and Assessments

Helps define controls through frameworks such as COSO; supports control assessments based on predefined criteria and checklists; provides a mechanism to score, tabulate, and report results

Issue Management and Action Planning

Routes risk issues through a systematic process of investigation and remediation; keeps the process on track with automated alerts

Risk Monitoring and Reporting

Provides dashboards, analytics, heat maps, and reports with drill-down capabilities that deliver in-depth and real-time data on ERM across the enterprise


  1. Enable a streamlined and consistent approach to the ERM lifecycle
  2. Standardize, consolidate, and map risk data in a common repository for improved transparency
  3. Strengthen risk management with an extensive database of frameworks such as COSO, COBIT, and ISO
  4. Assess risks from multiple perspectives. Get an in-depth, well-rounded picture of enterprise risk
  5. Enable real-time tracking of risks, control status, issues, actions, KRIs, and other key data
  6. Transform raw risk data into valuable risk intelligence to drive strategy and business performance enhancement