Every department within your organization holds risk. The natural extension of this means that every department then also benefits from a mature risk management program, that helps mitigate and manage that risk. If these processes aren’t being done throughout your organization, you aren’t gaining the benefits of a mature program. Without evaluating the maturity of your program, you increase the risk of misalignment between your ERM team and the frontlines of your organization.
A mature risk management program also helps mitigate the risk of negligence within your organization. In order to not be found negligent, you must have a way of proving that the risks that materialized into the incident leading to the negligence claim were disclosed to your stakeholders. This is always addressed in a mature ERM program.