Apogee Global RMS launches enterprise risk survey to map cross-domain threats

Apogee Global RMS has launched ARIS, a complimentary assessment that helps organizations evaluate how cyber, physical and human capital risks intersect across the enterprise. The survey is designed to expose governance gaps and blind spots as companies face tighter scrutiny over cybersecurity, resilience and integrated risk management. Why it matters: - Organizations increasingly face risks that do not stay in one lane. A cyber incident can trigger operational disruption, regulatory scrutiny, reputational damage or workforce instability. - The ARIS survey is meant to help boards and leadership teams see those connections earlier so they can respond before problems escalate. - The assessment is built to support companies navigating SEC cybersecurity disclosure requirements, NIST CSF 2.0 adoption and other sector-specific expectations. What happened: - Apogee Global RMS launched the Apogee Risk Intelligence Survey, or ARIS, on June 15, 2026. - The interactive assessment is designed to evaluate how cyber, physical and human capital risks intersect across an organization. - Apogee Global RMS says organizations can access the complimentary assessment here . - Founder and Principal Advisor M. K. Palmore said the tool is intended to help leadership teams identify risk relationships early and make more informed decisions. The details: - ARIS is built on Apogee Global RMS’ proprietary Nexus of Risk Framework. - The framework aligns with COSO’s Enterprise Risk Management Integrated Framework and ISO 31000. - The survey is aimed at executive leadership teams, boards, audit committees and enterprise risk functions. - ARIS evaluates exposure concentrations across cyber, physical and human capital risk domains. - The survey looks at governance and escalation effectiveness across enterprise risk functions. - ARIS measures alignment between operational controls and broader organizational risk objectives. - The assessment considers external environmental conditions, including geopolitical and economic pressures. - ARIS is designed to provide cross-functional visibility into emerging operational and strategic risks. - Apogee says the survey does not produce a standalone maturity score. - Instead, the goal is to surface blind spots and improve enterprise-wide risk visibility. - The firm says many organizations still manage cybersecurity, physical security and human capital risk as separate disciplines. - Apogee says fragmented ownership across cybersecurity, physical security, compliance, HR and operations limits visibility into cross-domain threats. - The company says many enterprise risk programs still focus on isolated incidents instead of integrated scenarios. - The Nexus of Risk Framework organizes enterprise risk into interconnected categories that show where exposures originate, how they spread and which outside factors can increase severity. - The framework can be incorporated into existing governance, compliance and audit structures. - Apogee says the framework can also support organizations dealing with SEC cybersecurity disclosure requirements and NIST CSF 2.0 adoption. - Apogee Global RMS describes itself as a veteran-led, SDVOSB and DVBE certified integrated enterprise risk management advisory firm headquartered in San Jose, California. - The firm’s service areas include Enterprise Risk Operations, Strategy and Organizational Resilience, and Talent Advisory and Human Capital Risk. - Apogee says those services are structured around the Nexus of Risk Framework. - Organizations can also schedule advisory sessions to review ARIS findings and develop integrated risk management strategies. - More information is available at the company’s website . Between the lines: - ARIS reflects a broader shift away from siloed risk management toward a more integrated model. - The survey also positions Apogee Global RMS as a practitioner-led alternative to traditional consulting firms and single-domain advisory providers. - The company is leaning on military, federal law enforcement, enterprise technology and strategic risk experience to differentiate its offering. What’s next: - Organizations that want a baseline view of enterprise risk exposure can complete the complimentary ARIS assessment. - Teams that want deeper guidance can use Apogee’s advisory sessions to turn survey findings into integrated risk management plans. - The firm is likely to use the launch to expand conversations with boards, audit committees and enterprise risk leaders looking for stronger resilience frameworks.