The Institute of Enterprise Risk Practitioners (IERP®) is the world’s first and leading certification institute for Enterprise Risk Management (ERM).

Image Alt

Enterprise Risk Advisor (ERA®)

  /    /  Enterprise Risk Advisor (ERA®)

Take Charge of Value Creation in Your Organisation

Enterprise Risk Management (ERM) is everyone’s responsibility. Whilst senior management tends to understand this statement, there tends to be some confusion over it at middle and more junior management levels. As a certified Enterprise Risk Advisor, you will be able to take on more responsibilities in your organisation in the area of risk management. You will also have the practical know-how to support the strategic objectives of your organisation through the implementation of ERM.

The ERA® certification builds on the ERT® (Enterprise Risk Technician) program and provides intermediate-level knowledge for those seeking to deepen their expertise in ERM in a holistic way.

Summary Info

  • Delivery method : In-person, virtual training
  • Duration : 4 modules over 4 Days
  • CPE hours : 32 hours

Certification Modules

To become fully certified, participants will have 3 years to complete all training modules. Registration for individual training modules is also available.

Enterprise Risk Management (10 July 2023)

Anyone involved in ERM or embarking a career in ERM must have a sound practical grounding in the theories and practices of ERM – and its linkages to other relevant and associated disciplines and standards (eg. BCM). When implemented and utilized properly, ERM can become a driver for Commercial Sustainability as well as Organizational Agility and Resilience. This program coaches participants in how to achieve all of this. The module explains and re-emphasises the fundamentals of ERM and shows how it can be utilized to drive strategy, performance and the linkages to corporate governance and internal controls. Participants will be taught how to apply strategic risk management concepts to enhance decision making processes and to add value to the business.

Corporate Governance (11 July 2023)

There are many existing definitions of Corporate Governance (“CG”) and best practice guidelines vary from one international region to another. This program is designed to provide participants with a solid fundamental understanding of the origins, principles, development and current status of CG and CG standards. As a developing ERM practitioner, this program will help you gain the necessary skills and knowledge to utilise and move CG from value preservation activities towards value enhancement activities, principles, processes and concepts in relation to ERM. Participants will be instructed in how the concepts and basics of CG developed, as well as the roles of the various bodies and organisations key in its evolution, application and enforcement. The program includes instruction in effective CG drivers and how to establish, assess, improve and monitor effective CG programs in your organisation. The course provides participants with an overview of CG, its relevance to GRC concepts and how to achieve results through effective implementation of all of the above.

Evaluating Risk and Internal Controls (12 July 2023)

Internal Controls are an important element in any Operational Risk Management process and framework – and accordingly constitute an important element when conducting any evaluation over the fitness of purpose of an Operational Risk Management process or program. This module encompasses a detailed examination into various options available to Risk Practitioners for evaluating internal controls in relation to the management of Risk. Participants will be guided through various evaluation tools, including Risk Control Self Assessments (RCSA) options. The studies entail understanding and applying the various approaches and methodologies including their purpose and design, tools, and their fit into an ERM framework. Participants will be taken through a detailed case study, workshop and exercise over a complete RCSA lifecycle. The module also includes exercises where participants will be given the opportunity to practice the tools and concepts covered in the program.

Establishing a Cybersecurity Framework (23 August 2023)

In this age of increasing cybersecurity threats, what is required is a prioritized, flexible, repeatable, performance based, and cost-effective approach. This includes information security measures and controls – especially over critical infrastructure – to help organisations identify, assess, and manage cyber risks. Management and risk managers should focus on using business drivers to guide cybersecurity activities and considering cybersecurity risks as part of the organization’s risk management processes. At the core of this program is a set of cybersecurity activities, outcomes, and informative references that are common across sectors and critical infrastructure which organisations should bear in mind. The Framework taught enables organizations – regardless of size, degree of cybersecurity risk, or cybersecurity sophistication – to apply the principles and best practices of risk management to improve security and resilience. The program teaches a flexible way to address cybersecurity, including cybersecurity’s effect on physical, cyber, and people dimensions. It is applicable to organizations relying on technology, whether their cybersecurity focus is primarily on information technology (IT), industrial control systems (ICS), cyber-physical systems (CPS), or connected devices more generally, including the Internet of Things (IoT). This can assist organizations in addressing cybersecurity as it affects the privacy of customers, employees, and other parties. The framework taught is not a one–size– fits–all approach: Organization can customize practices, activities and prioritize investments to maximize the impact of each dollar spent.

ERA® Graduates of 2020


Only applicable to those seeking a full certification. There are no eligibility requirements for individual modules. 

A degree-holder (or its equivalent, and above) with at least 1.5 years relevant working experience OR a non-degree holder with at least 5 years relevant working experience

  • Internal Audit and Assurance professionals
  • C-Level executives and head of departments who are decision-makers in their organisations
  • Risk management professionals
  • Non-risk management professionals working in Corporate Planning, Strategy, Governance, Compliance, Operations, Investment, Treasury, Product Development, Regulators, Legal, Quality, Environmental Health & Safety, Project Management, Insurance, Underwriting, and other related areas.

To become fully certified, participants will be assessed based on the following criteria:

  1.      Attendance and participation in class
  2.      Multiple choice examination


Who are the instructors?

All our faculty are practitioners with relevant risk management and BCM experience, averaging over 30 years of working experience each and with most of their last positions being C-Level executives in large national and multi-national corporations. Some hold Board Directorships and chair Board Committees such as Board Risk, Board Audit, and Board Investment Committees.

How many modules are there in this programme?

4 modules over 4 days

What is the time limit for me to finish this programme if I can’t attend all the modules within one year?

Maximum 3 years

Can I attend the certification program in other country?

Yes, however, you will have to pay whatever fee applicable in that country. And you will have to pay the travel, accommodation and subsistence yourself.

What will I get after taking this certification course?
  • Enhances your professional credibility
  • Gives you confidence that you have “passed through the chairs” and proof of ability
  • Extends your knowledge and skills, preparing you for more job responsibilities
  • Enriches self-image and reputation among peers
  • Improves career opportunities-promotion, pay increases, job portability
  • Establishes you as a continuous learner who believes in continuous professional development
  • Gives you an edge over your competition in the eye of your potential employers
  • Plugs you into a new network of like-minded risk professionals “club”

In addition, you will receive instant recognition that you have achieved the minimum standard of competency as a certified and qualified enterprise risk manager. Organizations have also started approaching the Institute to source for risk managers – which is one of the services that the Institute offers to corporate members of the Institute.

Request a Brochure

    Name (required)

    Email Address (required)

    Mobile Number (required)

    Company (required)

    Designation (required)

    Preferred Contact Method: (required)

    What is the biggest challenge in your job/industry

    Which modules are you interested in? (required)
    Enterprise Risk ManagementCorporate GovernanceEvaluating Risk and Internal ControlEstablishing a CyberSecurity FrameworkEnterprise Risk Advisor Certification Program


    User registration

    Reset Password