Presentation is loading. Please wait.

Presentation is loading. Please wait.

Risk Management Principles & Guidelines (NCBJ) Maj. Hugh Blake Nov. 2011.

Published byCallie Rickson Modified over 10 years ago

Similar presentations

Presentation on theme: "Risk Management Principles & Guidelines (NCBJ) Maj. Hugh Blake Nov. 2011."— Presentation transcript:

1 Risk Management Principles & Guidelines (NCBJ) Maj. Hugh Blake Nov. 2011

2 Why talk about risk? Risk is something that we all face every day. As a company, we have to take risks in pursuit of our commercial objectives. To raise awareness that we all have to manage risk as part of our daily working lives as well as personal.

3 What do we know about RM? RM is part of our every day lives: Crossing the road- Risk of getting run-over Managing our finances– Risk of going broke Purchase of insurance– Risk of fire, theft, storm Choosing to smoke – Risk of cancer Going for a swim– Risk of drowning The choices we make in choosing to accept these risks is part of who we are

4 Perception of risk – Simple Example Which method of transportation has the greatest fatality rate? By Boat By Air By Road – Car By Road – Motorbike Walking Cycling Train

5 Research results By Boat5th By Air7th By Road – Car4th By Road – Motorbike1st Walking2nd Cycling3rd Train6th

6 Perception of risk contd.. Our perceptions usually determine our view of the level of risk posed by an activity

7 Attitude to Risk SETTLER Knows that there are risks out there Doesnt want to chance anything PIONEER Understands the Risks Takes chances but stays in control GOPHER Doesnt know whats out there & doesnt care Stays underground where its safe COWBOY Does what he feels like Doesnt think (or care) about the risk Risk Averse Risk Aware Risk Taking Risk Oblivious

8 Sources of Business Risk

9

10 The Effect of Risk control on Performance Managing Risk to Enhance Performance Managing Risk to enhance performance Excessive controls minimise risk and constrain performance Exposed & destroying performance IgnorantManagingObsessed Level of Risk Control Performance Low High

11 What is Risk Management?

12 Definition of Risk Management ISO / IRM: Coordinated activities to direct and control an organisation with regards to risk. It generally includes risk: assessment, treatment, acceptance & Communication. Contained in ISO 31,000:2009(E)

13 RM definition contd… A process whereby organisations methodologically address the risks attaching to their activities with the goal of achieving sustained benefit within each activity and across the portfolio of all activities. Sustained Benefit

14 Benefits of Implementing the International RM Standards Increase likelihood of achieving objectives Encourage proactive management Improve awareness of need to identify and treat risk throughout the organisation Improve the identification of opportunities and threats Comply with legal and regulatory requirement and international norms Improve mandatory and volutntary reporting

15 Benefits contd… Improve governance Improve stakeholder confidence and trust Establish a reliable basis for decision making and planning Improve control Effectively allocate and use resources for risk treatment Improve operational effectiveness and efficiency Enhance health and safety performance, as well as environmental protection

16 Benefits contd… Improve loss prevention and incident management Minimize losses Improve organisational learning Improve organizational resilience

17 International Standard Principles Creates value Integral par of organisational processes Part of decision making Explicitly addresses uncertainty Systematic, structured and timely Based on the best available information Tailored Takes human and cultural factors into account

18 Principles contd… Transparent and inclusive Dynamic, iterative and responsive to change Facilitates continual improvement and enhancement of the organisation

19 RM Framework

20 2.Establish the risk assessment process

21 Risk Identification Identify an organisations exposure to uncertainty Widely used approach is to break the risks down into categories: Strategic/commercial risks Economic/financial/market risks Legal, contractual and regulatory risks Organisational management/human factor Political/societal factors Environmental factors/Acts of God Technical/ operational/infrastructural risks

22 Methods of Identifying Events Facilitated workshop Interviews Targeted questionnaire Process flow analysis Leading Event Indicator and Escalation Trigger Loss event data tracking

23 Risk Analysis Risk analysis is concerned with the probability and impact of individual risks, taking into account any interdependence. Probability is the evaluated likelihood of a an event actually happening, including consideration of frequency of occurrence Impact is the evaluated effect or result of a particular risk actually happening

24 Example of Risk Probability Framework ProbabilityCriteria Very low0-5% (extremely unlikely, or virtually impossible) Low6-20% (low but not impossible) Medium21-50% (Fairly likely to occur) High51-80%(more likely to occur than not) Very high>80%(almost certain to occur)

25 Example of Impact Framework Cost Impact Very low $0 to $100,000 Low>$100,000 to <$500,000 Medium>$500,000 to <$1,000,000 High>$1,000,000 to < $5,000,000 Very high>$5,000,000

26 Impact Contd… Budgetary Impact Very low 0 to 3%: Negligible effect on projected cost Low3 to 10%: Small increase Medium10 to 30%: Significant increase High30 to 75%: Large increase Very high>75% Major increase

27 Identify Key Business Objectives (1) Identify Key Processes; Dependencies and Enablers (2) Identify key Threats and Indicators (3) Identify likelihood and Severity/impact of Occurrence of Threat (4) Assess Countermeasures (5) Develop Action Plan (6) XXX Ltd. Risk Management Value Chain XXX Ltd. Risk Management Value Chain

28 Business Objectives Identified: The management of XXX Ltd. production Inventory outlined their primary objective as the ability to efficiently meet the production demand for raw materials. However, to achieve this goal, the following sub-objectives / enablers would have to be met: 1. Proper Material Requirement Planning (MRP) and forecasting. 2. Efficient execution of the Purchasing Plan. 3. Proper receipt, storage and maintenance of stores. 4. Proper issue procedure. 5. Proper accounting for perpetual inventory.

29 What will be the IMPACT on the ability to achieve the object? 15153050 NegligibleSmallNoticeableSignificantMajor LIKELIHOOD (A): - If it is not occurring, how likely is it to occur? 124610 Unlikely to OccurLikely to occur rarely Likely to occurHighly likely to occur Certain to occur LIKELIHOOD (B): - If event is already occurring, how often does it occur? 124610 RarelyOccasionallyFrequentlyDailyContinuously URGENCY (A): - How soon is action required to prevent impact? 124610 1 year6 months1 quarter1 month1 week URGENCY (B): - How soon is action required to mitigate impact? 124610 Year6 months1 quarter1 monthImmediately Risk Ranking Table The following is used to assign impact, probability and urgency weights to identified risks / issues.

30 EnablersThreats Countermeasure In Place Is threat occurring Probability & frequency rating Recommended Countermeasure Yes No ProbFreq Efficient inventory computer based management system System failure due to crash, virus or physical destruction of hardware Information contained on system is backed-up on a routine basis and storage is done off- site XL Existing countermeasure is adequate Accurate input information Staff mistakes and negligence resulting in inaccurate physical stock checks Managements supervision and vigilance XL Conduct stock counts with a minimum of two independent counters. With the assistance of the IAD, establish documented counting procedure and train staff accordingly. Improper operation of the system due to incompetence of staff Recruitment of qualified individuals and training of staff XL Existing countermeasure is adequate Inaccurate supplier information Verification procedure for incoming stores XL Existing countermeasure is adequate Frequent physical stock count Poor planning and management Stock count scheduled and verified by Internal Audit Department XL Existing countermeasure is adequate Efficient internal control system at all stages of management Poor supervision and management Performance evaluation system as well as the productivity incentive system XL Sanction must be brought against managements and supervisors negligence Lack of documentation of accepted procedures All procedures documented under ISO XL Existing countermeasure is adequate Production Inventory: Proper accounting for perpetual inventory (FIFO & Expiration)

31 SrlRiskALEImpactLikeli hood UrgencyScoreRankRemark 01 System failure due to crash, virus or physical destruction of hardware 521106th 02Staff mistakes and negligence resulting in inaccurate physical stock checks 5661802nd Improper operation of the system due to incompetence of staff 5661802nd Inaccurate supplier information 542405th 03Poor planning and management 3021604th 04Poor supervision and management 15442401st Lack of documentation of accepted procedures 544803rd Production Inventory: Assessment and ranking of threats facing the enablers of objective #4

32 Risk Treatment Can involve: Avoiding the risk – not to start or continue an activity taking or increasing risk in order to pursue an opportunity removing the risk source Changing the likelihood Changing the consequences Transferring the risk or sharing with another party Retaining the risk by informed decision

33 Monitor performance and modify as needed

34 Summary All entities exist to provide value for its stakeholders Uncertainty presents risks and opportunities – with potential to erode / enhance value All entities face uncertainty – managements challenge balance the risk and opportunities RM provides management with a framework to effectively deal with uncertainty – the associated risks and opportunities – and enhance their capability to build value.

35 Organisations make and save money by taking risks and lose money by not effectively managing risk Thank you!!

Download ppt "Risk Management Principles & Guidelines (NCBJ) Maj. Hugh Blake Nov. 2011."

Similar presentations

1 of 21 Information Strategy Developing an Information Strategy © FAO 2005 IMARK Investing in Information for Development Information Strategy Developing.

1 of 21 Information Strategy Developing an Information Strategy © FAO 2005 IMARK Investing in Information for Development Information Strategy Developing.
Accident and Incident Investigation

Accident and Incident Investigation
A Joint Code of Practice Objectives and Summary Presentation

A Joint Code of Practice Objectives and Summary Presentation
EMS Checklist (ISO model)

EMS Checklist (ISO model)
Determining the Significant Aspects

Determining the Significant Aspects
Risk The chance of something happening that will have an impact on objectives. A risk is often specified in terms of an event or circumstance and the consequences.

Risk The chance of something happening that will have an impact on objectives. A risk is often specified in terms of an event or circumstance and the consequences.
Appendix H: Risk training slides (sample). What is Risk? “ Risk is the effect of uncertainty on objectives ” AS/NZS ISO31000:2009.

Appendix H: Risk training slides (sample). What is Risk? “ Risk is the effect of uncertainty on objectives ” AS/NZS ISO31000:2009.
The Aged Care Standards and Accreditation Agency Ltd Continuous Improvement in Residential Aged Care.

The Aged Care Standards and Accreditation Agency Ltd Continuous Improvement in Residential Aged Care.
Risk Management Policy & Procedures An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.

Risk Management Policy & Procedures An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.
Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group 209-754-9130

Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group
Control and Accounting Information Systems

Control and Accounting Information Systems
Risk Management and Internal Controls ASSAL 20 November 2014 Annick Teubner Chair, IAIS Governance Working Group.

Risk Management and Internal Controls ASSAL 20 November 2014 Annick Teubner Chair, IAIS Governance Working Group.
ISO 9001 : 2000.

ISO 9001 : 2000.
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.

Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
Service Design – Section 4.5 Service Continuity Management.

Service Design – Section 4.5 Service Continuity Management.
1 INTERNAL CONTROLS A PRACTICAL GUIDE TO HELP ENSURE FINANCIAL INTEGRITY.

1 INTERNAL CONTROLS A PRACTICAL GUIDE TO HELP ENSURE FINANCIAL INTEGRITY.
Eliot M. Stenzel, CPA,CIA IIA Instructor for many years. 220-3198 Risk Based Auditing.

Eliot M. Stenzel, CPA,CIA IIA Instructor for many years Risk Based Auditing.
AUDIT COMMITTEE FORUM TM ACF Roundtable IT Governance – what does it mean to you as an audit committee member July 2010 The AUDIT COMMITTEE FORUM TM is.

AUDIT COMMITTEE FORUM TM ACF Roundtable IT Governance – what does it mean to you as an audit committee member July 2010 The AUDIT COMMITTEE FORUM TM is.
The Australian/New Zealand Standard on Risk Management

The Australian/New Zealand Standard on Risk Management
Title slide PIPELINE QRA SEMINAR. PIPELINE RISK ASSESSMENT INTRODUCTION TO GENERAL RISK MANAGEMENT 2.

Title slide PIPELINE QRA SEMINAR. PIPELINE RISK ASSESSMENT INTRODUCTION TO GENERAL RISK MANAGEMENT 2.

Similar presentations

Ads by Google