Risk Publishing is a specialist enterprise risk management knowledge platform serving business continuity, compliance, and project risk professionals worldwide. Since 2021, our enterprise risk management resources have grown to over 1,200 articles, frameworks, templates, and practical guides used by risk managers, compliance officers, and business continuity practitioners across financial services, the public sector, infrastructure, and technology.
Every article is written to solve a real enterprise risk management problem: how to build a risk register your board will actually read, how to set recovery time objectives for 24/7 operations, and how to design key risk indicators that trigger action before losses materialise. We combine standards-based rigour with the practical realities of implementing risk management inside complex organisations.
Who Is Behind Risk Publishing – Founder Chris Ekai
Risk Publishing was founded by Chris Ekai, a risk management professional with over a decade of experience spanning enterprise risk management, business continuity, compliance, and project risk.
Chris currently serves as Manager of Risk, Compliance and Business Continuity at a major pension fund, where he leads business process risk assessments, strategic risk assessments, compliance risk assessments, business continuity management, and business impact analysis across the organisation.
Professional Risk Management Qualifications
MSc Risk Management — University of Portsmouth, United Kingdom
Certified Public Accountant (CPA)
ISO 31000 Lead Risk Manager — Certified to lead enterprise risk management implementations aligned to the international risk management standard
ISO 22301 Lead Implementer — Certified to implement and manage business continuity management systems
This combination of academic grounding, professional certification, and hands-on operational experience across financial services, pension fund management, infrastructure finance, and regulatory compliance shapes everything we publish.
What Risk Publishing Covers
Our content is organised around the core disciplines that risk professionals work in every day. Each topic area includes foundational explainers, advanced frameworks, practical templates, and real-world case studies.
| Topic Area | What You Will Find |
| Enterprise Risk Management | Risk appetite frameworks, risk register design, ERM implementation guides, COSO and ISO 31000 alignment, board reporting templates, KRI libraries, and strategic risk assessment methodologies. |
| Business Continuity Management | Business impact analysis guides, BCP and DRP templates, ISO 22301 implementation, recovery strategy development, exercise planning, crisis communication frameworks, and sector-specific continuity planning (including cryptocurrency and fintech). |
| Key Risk Indicators | KRI development frameworks, industry-specific KRI libraries (banking, healthcare, cybersecurity, AI/ML, legal, compliance, fraud, third-party vendor), dashboard design, and threshold-setting methodologies. |
| Project Risk Management | Project risk assessment methods, risk matrices, stakeholder risk communication, construction and infrastructure project risk, and project lifecycle risk integration. |
| Compliance and Regulatory Risk | MiCA, DORA, NIST frameworks, SOX compliance, AML risk assessment, data protection, and regulatory mapping across jurisdictions. |
| Supply Chain Risk Management | Vendor risk assessment, third-party due diligence, supply chain resilience strategies, and supplier performance monitoring. |
Our Approach to Risk Management Content
We write for practitioners, not academics. Every article follows a simple test: can a risk manager read this on Monday morning and apply something from it by Friday? If the answer is no, we rewrite it.
Our content is anchored to recognised international standards: ISO 31000 for risk management, ISO 22301 for business continuity, COSO ERM for enterprise governance, and the Three Lines Model for accountability. Where we reference regulatory frameworks (NIST, EU AI Act, MiCA, DORA), we cite the source documents directly so you can verify and go deeper.
We prioritise actionable outputs: risk registers you can adapt, BIA templates you can fill in, KRI dashboards you can present to your board, and scenario analyses you can run with real data. Theory matters, but only when it leads to better decisions.
Enterprise Risk Management Consultancy Services
Beyond the blog, Risk Publishing offers enterprise risk management consultancy services for organisations that need hands-on support building or strengthening their risk management capabilities. Our risk management consultancy work covers:
Enterprise Risk Management: ERM framework development, risk appetite statements, risk register design and implementation, strategic risk assessments, and board-level risk reporting.
Business Continuity Management: Business impact analysis, BCP and DRP development, crisis management frameworks, exercise design and facilitation, and ISO 22301 implementation support.
Compliance and Project Risk: Compliance risk assessments, regulatory mapping, project risk management frameworks, and risk-based audit planning.
We work with organisations across financial services, pension funds, public sector, infrastructure, and technology. Engagements range from targeted assessments to full framework builds. Every deliverable is standards-anchored and tailored to your regulatory context.
Who Reads Risk Publishing
Our readers include Chief Risk Officers, enterprise risk managers, business continuity managers, compliance officers, internal auditors, project managers, and graduate students pursuing careers in risk management. Whether you are building your first risk register or preparing a board presentation on strategic risk appetite, this site is built to save you time and improve your outputs.
Get in Touch with Risk Publishing
For consultancy enquiries, content partnerships, or general questions:
Email: info@riskpublishing.com
Office: Hazina Trade Centre, 5th Floor, Moktar Daddah Street, Nairobi, Kenya
Website: riskpublishing.com