Risk and Resilience Management Workshop, LONDON

A blueprint for business-integrated, agile, and context-aware risk and resilience programs, built for organisations that can no longer afford to leave resilience to chance.

Four parts. One blueprint for built-in resilience.

A working session — not a lecture. You leave with a drafted governance model, a lifecycle map, and a business case tailored to your organisation.

Part 01: Risk & Resilience by Design — Why It Matters Now

• How risk and resilience shape strategy and performance
• The disarray: silos, fragmentation, and blind spots in current practices
• Exposure in a volatile world — where resilience gaps become existential
• Global trends, drivers, and regulatory mandates shaping integration
• Exercise — Map your organisation’s maturity

Part 02: Governance — Building the Foundation

• Establishing a federated governance model for integrated risk & resilience
• Creating a committee with cross-functional authority
• Drafting a charter that aligns mission, roles, and oversight
• Building a strategic plan tied to business objectives
• Exercise — Design your governance framework

Part 03: The Lifecycle — Managing in Context of Change

• From identification to assurance — the full risk & resilience lifecycle
• Monitoring internal and external environments for disruption
• Risk assessments, BIAs, and forward-looking scenario planning
• Engaging business units in treatment and response
• Reporting that turns data into board-ready insight
• Exercise — Build your lifecycle

Part 04: Architecture — Enabling Visibility & Agility

• Designing information architecture for holistic insight and action
• Integrating operations, strategy, compliance, and continuity data
• Taxonomies, workflows, and linkages between risks, objectives, and controls
• Technology architecture — what to prioritise, what tools matter
• Building the business case: articulating ROI to leadership
• Exercise — Map your information ecosystem

Ten practical approaches you can put to work on Monday morning.

1. Define a complete, continuous lifecycle for managing risk and resilience.
2. Establish federated governance, strategic alignment, and cross-functional accountability.
3. Align risk and resilience with objectives, operations, and business change.
4. Monitor and respond to internal and external risks in real-time.
5. Enable consistent, scalable processes across departments and geographies.
6. Track critical risks, treatments, and resilience activities with full traceability.
7. Deliver board- and regulator-ready assurance on organisational resilience.
8. Identify and resolve material gaps, duplications, and inefficiencies.
9. Build a compelling business case tied to strategic outcomes.
10. Leverage technology for risk visibility, scenario planning, and reporting.

WHO THIS IS FOR: Built for leaders accountable for uncertainty.

• Chief Risk Officers & Risk Managers
• Business Continuity & Resilience Leaders
• Operational Risk & ERM Professionals
• Compliance & GRC Executives
• Internal Audit & Assurance Teams
• Strategy, Transformation & Program Managers
• Technology Architects for GRC and BCM
• Board Advisors & Governance Professionals

THE VENUE: Set in the heart of Mayfair.

EST. 1927 · LONDON, The May Fair Hotel.

Historic style. Modern facilities. Central London.

Conveniently nestled into Stratton Street in London’s prestigious Mayfair district, the iconic May Fair Hotel combines heritage character with world-class conference facilities — the right setting for the conversations this workshop is designed to provoke.

Nearest tube → Green Park (Piccadilly / Jubilee / Victoria lines)

Day → Wednesday, 4 November 2026

Format → Full-day interactive workshop

*With roundtable discussions and hands-on exercises, this workshop relies on active contribution and feedback between participants. Full participation is essential to maximise the value of the session. 

---

GRC 20/20 Presenter . . .

Michael Rasmussen is an internationally recognized authority, thought leader, and pioneer in the disciplines of governance, risk management, and compliance (GRC). With over 30 years of experience, he is globally known for defining and shaping GRC strategy, processes, and technology. In February 2002, while at Forrester Research, Michael developed the concept of GRC — establishing the foundation for how organizations approach strategy, process, and technology in today’s complex business environment. For this, he is widely acknowledged as the “Father of GRC.”

A trusted advisor to boards, executives, and professionals around the world, Michael has dedicated his career to helping organizations design and implement effective GRC strategies that are aligned with business objectives. His work empowers organizations to be more effective, efficient, resilient, and agile. He is a sought-after keynote speaker, author, and advisor, with his thought leadership influencing legislation, regulatory frameworks, and corporate best practices globally.

Michael is the host of the Risk is Our Business and the Hitchhiker’s Guide to the GRC Technology podcasts, where he leads conversations with global experts exploring the evolving frontiers of risk, resilience, and corporate integrity.

Workshop Host/Sponsor . . .

At Clew, we help organisations move from fragmented risk management to clear, confident decision-making that drives real business performance. Our SaaS platform connects objectives, risks, assurance, and actions in one simple, scalable system – creating a clear golden thread between strategy and execution. Rather than treating risk as purely a resilience or compliance exercise, we help teams build organisational understanding – clarifying uncertainty, prioritising what matters most, and turning insight into measurable outcomes. Clew is built for organisations operating in complex, regulated environments. We focus on being practical, affordable, and quick to implement, helping customers strengthen resilience, meet regulatory expectations, and improve performance without the cost or complexity of traditional enterprise tools. We’re a growing, ambitious team redefining what modern risk and assurance software should look like: intuitive, outcome-focused, and grounded in how organisations actually work. If you value clarity over complexity, care about real-world impact, and want to help organisations find the clew through uncertainty, you’ll feel right at home.