Certified Chief Risk Officer (CCRO)

Certified Chief Risk Officer® – (CCRO®)

Applications can be submitted at any time throughout the year. Application close 10 Days prior to the Annual Conference.

Organisations are placing greater reliance on having competent senior risk professionals to influence, facilitate, evolve and guide the design, implementation, maintenance, improvement and evolution of the enterprise’s Risk Management Framework, which includes, but is not limited to:

  • Risk Management Plan
  • Risk Management Strategy
  • Risk Capacity (appetite statements, budget, limits, and tolerances)
  • Risk Culture
  • Risk Processes (identification, assessment, treatment, monitoring and reporting)

This involves interacting with the Board and the senior executive management to assist, guide, review, monitor and report on strategic, tactical and operational levels of risks within the business. This includes influencing the Board and executive management and the organisation as a whole in implementing risk management with particular emphasis on ISO31000:2018 Risk Management Standard (“Standard”). It is expected that organisations will ‘adapt’ the Standard to meet their organisational context and business environment. The CCRO™ role is wider than a person with qualifications, accountabilities and experience only in a specialty area such as Work Health & Safety, Security, Fraud, Audit, Training/Education Delivery etc.

It is a CCRO™ proficiency requirement to influence, develop, implement and evolve risk management enterprise-wide.

The RMIA expect applicants seeking accreditation as a Certified Chief Risk Officer (CCRO®) to have successfully achieved accreditation as a Certified Practising Risk Manager (CPRM®) and also be proficient in each of the factors listed below:

  • Business and Leadership Acumen
  • Strategic and Structured Thinking
  • Communicating and Influencing
  • Risk Management Knowledge
  • Ethical Practice

CCRO Certification Requirements

The extent of each applicant’s proficiency will be explored by the RMIA through this process:

  • A written submission by the applicant demonstrating by specific examples of their proficiency in each of the required areas.
  • Attained the RMIA designation Certified Practicing Risk Manager (CPRM).
  • Provide documentary evidence to support a minimum of 10 plus years’ experience in risk management within a business context, including 5 years’ experience in a senior risk management (or consulting) role. If the CCRO candidate has a master level qualification in Risk, for example, Master of Risk and Governance, then they must have at least 5 years’ experience in a senior risk management (or consulting) role.
  • Seeking the opinions of work colleagues (and others if necessary) who are familiar with the applicant’s work and experience in risk management at a senior level. This will be conducted by using a 360° profiling tool or by other means deemed appropriate by the RMIA.
  • An interview conducted by a panel appointed by the RMIA. This may include requiring the applicant to respond to a risk-based scenario or case study.
  • Reference checks, if deemed necessary by the RMIA.

Proficiency Statement – CCRO