London · Executive Workshop 4 November 2026
Risk & Resilience Management by design.
A blueprint for business-integrated, agile, and context-aware risk and resilience programs, built for organisations that can no longer afford to leave resilience to chance.
Workshop Lead
Michael Rasmussen
Founder, GRC 20/20 Research · The GRC Pundit
The analyst who coined the term "GRC" in 2002 — with two decades advising Fortune Global 1000 organisations on integrated risk and resilience.
Date
04 Nov 2026
Venue
The May Fair
Location
Mayfair, London
Timings
10.00 – 16.00
Breakfast on arrival · lunch · post-event drinks & canapés 16.00–17.30
Hosted by Clew in partnership with GRC 20/20 Research, led by Michael Rasmussen, the pioneering analyst who coined the term “GRC.”
Why this, why now
The era of linear, local, and predictable business is over.
Yet many organisations still treat risk management as a siloed compliance obligation and resilience as a disconnected business continuity function. The result: gaps in preparedness, reactive responses, and missed opportunities to align risk-taking with performance and purpose.
01 / Context
360° awareness of objectives, risks, and interdependencies
Move beyond checklists and departmental metrics. Adopt a unified, federated approach that aligns risk, continuity, and resilience efforts across every function and operation.
02 / Integration
Connect risk to strategy, decisions, and performance
Risk-taking done well is a source of competitive advantage. Learn how to align risk appetite with strategic ambition — and turn resilience into a board-level asset.
03 / Assurance
Deliver continuous assurance to boards and regulators
Build the governance, data architecture, and reporting cadence that lets you answer, with evidence: are we prepared? — at any moment, to any stakeholder.
The program
Four parts. One blueprint for built-in resilience.
A working session — not a lecture. You leave with a drafted governance model, a lifecycle map, and a business case tailored to your organisation.
Part 01
Risk & Resilience by Design — Why It Matters Now
How risk and resilience shape strategy and performance
The disarray: silos, fragmentation, and blind spots in current practices
Exposure in a volatile world — where resilience gaps become existential
Global trends, drivers, and regulatory mandates shaping integration
Exercise — Map your organisation's maturity
Part 02
Governance — Building the Foundation
Establishing a federated governance model for integrated risk & resilience
Creating a committee with cross-functional authority
Drafting a charter that aligns mission, roles, and oversight
Building a strategic plan tied to business objectives
Exercise — Design your governance framework
Part 03
The Lifecycle — Managing in Context of Change
From identification to assurance — the full risk & resilience lifecycle
Monitoring internal and external environments for disruption
Risk assessments, BIAs, and forward-looking scenario planning
Engaging business units in treatment and response
Reporting that turns data into board-ready insight
Exercise — Build your lifecycle
Part 04
Architecture — Enabling Visibility & Agility
Designing information architecture for holistic insight and action
Integrating operations, strategy, compliance, and continuity data
Taxonomies, workflows, and linkages between risks, objectives, and controls
Technology architecture — what to prioritise, what tools matter
Building the business case: articulating ROI to leadership
Exercise — Map your information ecosystem
Exercise — Map your information ecosystem
Ten practical approaches you can put to work on Monday morning.
01
Define a complete, continuous lifecycle for managing risk and resilience.
02
Establish federated governance, strategic alignment, and cross-functional accountability.
03
Align risk and resilience with objectives, operations, and business change.
04
Monitor and respond to internal and external risks in real-time.
05
Enable consistent, scalable processes across departments and geographies.
06
Track critical risks, treatments, and resilience activities with full traceability.
07
Deliver board- and regulator-ready assurance on organisational resilience.
08
Identify and resolve material gaps, duplications, and inefficiencies.
09
Build a compelling business case tied to strategic outcomes.
10
Leverage technology for risk visibility, scenario planning, and reporting.
Who this is for
Built for leaders accountable for uncertainty.
Chief Risk Officers & Risk Managers
Business Continuity & Resilience Leaders
Operational Risk & ERM Professionals
Compliance & GRC Executives
Internal Audit & Assurance Teams
Strategy, Transformation & Program Managers
Technology Architects for GRC and BCM
Board Advisors & Governance Professionals
The venue
Set in the heart of Mayfair.
Est. 1927 · London
The May Fair
Hotel.
Historic style. Modern facilities. Central London.
Conveniently nestled into Stratton Street in London's prestigious Mayfair district, the iconic May Fair Hotel combines heritage character with world-class conference facilities — the right setting for the conversations this workshop is designed to provoke.
Nearest tube → Green Park (Piccadilly / Jubilee / Victoria lines)
Day → Wednesday, 4 November 2026
Format → Full-day interactive workshop