Three Lines of Defense Model

The Three Lines of Defense Model is a framework used to manage risks in organizations. 1. **First Line**: Operational managers and staff who handle day-to-day activities and are responsible for identifying and managing risks in their area. 2. **Second Line**: Risk management and compliance functions that provide guidance, support, and monitoring to ensure the first line is managing risks effectively. 3. **Third Line**: Internal auditors who provide independent assurance about risk management processes and controls, ensuring everything is working as it should. Together, these lines work to create a comprehensive approach to risk management.