Portfolio governance is possible only when teams use identical definitions for risk and control.

Why this matters

Shared semantics make governance enforceable, not just aspirational.

What this looks like in practice

• Governance policies translate directly into control code without ambiguous translation.
• Risk assessments from different teams are comparable using identical definitions.
• Escalation decisions are consistent because escalation criteria are uniformly defined.

How teams use it

• implementing portfolio-level policy consistently across autonomous teams
• comparing risk across domains using identical metrics
• auditing governance decisions systematically instead of narrative review

Enterprise risk is knowable only when all units assess risk identically.