Problem: Maturity management consists of a planning and control system, where initially the targeted maturity level is specified, and over time its achievement is monitored and adjustment actions are taken if deviations occur. In the case of an Enterprise Risk Management (ERM) maturity management the maturity level of the ERM implementation is monitored. For this purpose, a maturity model in form of a development model is required for getting an unambiguous feedback concerning the achieved maturity level and the needed adjustments for a maturity level improvement.
Research Method: For specifying such a development model for the maturity levels the ideas from the Capability Maturity Model Integration (CMMI) model of the Software Engineering Institute (Carnegie Mellon University) are taken, where successive maturity levels are arranged according to a progressive scale concerning the maturity level specific attributes. The ERM Maturity Assessment (ERMMA) context is defined by using the ERM model of the Committee of Sponsoring Organizations of the Treadway Commission (COSO) as best practice case, from which different maturity levels for the ERM implementation are derived.
Schwaiger/Brandstätter: Qualitätsmessung von ERM-Systemen anhand von Reifegraden, Controller Magazin (CM), März/April, Freiburg, 2020.