The COSO Enterprise Risk Management Framework is an approach to thinking about enterprise risk and internal controls. Enterprise Risk Management (ERM) requires an entity to take a “portfolio” view of risk that examines the entire organization, from the enterprise level, to a division or subsidiary, to the level of a single business unit’s processes. (Here is the actual COSO version.)
This video does a good job of explaining the objectives of the COSO framework.