International Journal of Engineering and Technology

In this era of fast paced technological advancements, security issues and risks related to it have become a key concern for all organizations. Enterprise Governance, Risk management and Compliance (GRC) is the popular approach to handle enterprise risks and reduce its impact. This paper focuses on the risk management, especially the risk assessment approaches and proposes an aspect oriented approach to risk management. In this approach, the risk management processes are designed separately from the core business processes and are weaved to the flow of business process steps wherever necessary. This brings the advantage of separation of concerns of risk management from the business process. The design of business processes then need not look into the design of risk assessment related to it. This will enable handling of risk and its assessment by expert risk advisories, those who are specialized in it.