While the level of risk oversight maturity is higher for these subsets of organizations than the full sample and the numbers improved compared to previous years’ results, it is important to note that a significant percentage of these subsets of organizations still do not describe their approaches to ERM as being “mature” or “robust.” When you consider the results concerning the changing complexity and volume of risks facing most organizations, along with growing expectations for improved risk oversight, opportunities remain for all types of organizations to increase the level of their enterprise-wide risk management maturity.