Strategic Risk Register

The strategic risk register is a living document that tracks competitive risks at the enterprise level. Each risk entry includes the six-element format: description, probability, impact, current mitigation, recommended action, and residual risk. The register is updated quarterly and presented to the board as part of the competitive landscape summary. Between board meetings, risks are escalated to the executive team when probability or impact assessments change significantly.

The register has three sections: active risks (probability or impact changed this quarter), monitoring risks (no material change, included for continuity), and retired risks (resolved or assessed as no longer material, documented for audit trail). The active risks section drives the board discussion. The monitoring section provides context. The retired section demonstrates that risks are tracked through resolution, not just through identification.