Risk Management The Six Major Processes Involved Essay

Length: 5 pages Subject: Business Type: Essay Paper: #44052733 Related Topics: Risk, Risk Assessment, Process, Event Management
Excerpt from Essay :

Risk Management

The six major processes involved in risk management are planning risk management, identifying risks, performing qualitative risk analysis, performing quantitative risk analysis, planning risk responses and actually controlling risk. One might argue that the two most important of these processes are the first and the last ones -- the planning of risk management and the controlling of risk once it actually occurs and becomes a threat to a particular enterprise. Nonetheless, planning risk management has a preeminence associated with it for the simple fact that in this initial step, the vast majority of the other steps are considered. During the planning stage, organizations are essentially determining what sorts of risks they are susceptible to and how, how great a risk these things are to the organization, and how they will respond and ultimately mitigate or control the risk. The best example of this step is an organization that has newly formed and is holding a meeting of all relevant stakeholders to assess the risks that it collectively faces. The aforementioned brainstorming process of risks and levels of risks are discussed at such a meeting. Once the organization identifies risks and their nature, they are then tasked with forming a comprehensive plan to help mitigate that risk which will involve each of the five other steps in this process. Stakeholders must determine many vital points of focus during such a meeting, which can last for several days in some instances. Those include determining the overall scope of the risk management program, relevant environmental factors, communications processes and others. Still, the objective is to plan for each of the five other steps.

Identifying risks is the critical process in which an organization actually determines what the sources of risk are and how. Moreover, it also involves stratifying these risks according to type, severity, response, and other factors that are germane to the business objectives of an organization. It is noteworthy to mention that new risks arise daily, and that a company may need to conduct a risk analysis repeatedly to keep current with the level of threats that it encounters. The best example of an organization attempting to implement phase two of this process and identify risk is one that, after having completed the first phase of planning risk management, has moved on to the second phase. Doing so should involve a SWOT analysis, which will not only reveal positive prospects the company faces and its strengths, but also negative prospects and the sort of risk that it can best prepare for. There are other practical ways that an organization can conduct a risk assessment; one of the most eminent of these is an assumption analysis. An assumption analysis seeks to identify any assumptions that members of an organization are making regarding their business and operations processes, and then considers those a risk since they are mere assumptions and not fact. The goal of conducting these assessments is to record each and every risk the company can conceive of, so that it is then better able to prepare for it. Organizations should be able to use the information that they determined in the first of these processes, the planning risk management stage, to serve as a starting point for this second process.

The third step in the process is performing a qualitative risk analysis. This step is distinguished form the fourth one in that the letter attempts to quantify the nature of risks, whereas in step three risks are considered from a qualitative perspective. It hinges upon the second process because it requires organizations to assess all of the risks that were compiled during the second phase. Specifically, they will look to assess these risks and the likelihood of their occurrence, as well the degree of damage they can cause to the organization were a threat to actually occur. In this process of risk management, then, an organization effectively presents a hierarchy of its risks. Furthermore, just as it is necessary to repeatedly issue risk assessments to identify risks, it is also prudent to continually conduct qualitative risk analyses, because risks and their level of prioritization change. The prioritization of risks is partly based on the sense of urgency that accompanies them. In some ways, the point of a qualitative risk analysis is to ascertain the urgency of each credible risk so that the organization can prepare to deal with it accordingly. A practical example of an enterprise that is performing a quantitative risk analysis is one that utilizes a risk impact and probability assessment and matrix. These tools help to categorize risks according to their impact and likelihood of occurring. These tools are also improved by assigning numeric values to levels of probability and impact,...


Such a prioritization is the projected outcome of this particular phase.

In many ways, the fourth phase of a risk assessment plan, performing a quantitative risk analysis, is directly related to the preceding two processes identified in this task. Those two processes involve compiling a registry of risks and issuing a qualitative assessment of them to prioritize risks. Once those risks have been prioritized, the fourth process seeks to assign a qualitative value to that risk if it actually occurred. Quite frequently, such a value is based on time, money, or perhaps both. When an organization seeks to identify a temporal element to base its quantitative analysis on, it involves the amount of time an organization would be affected by that risk and how long it would take to overcome it. Economically, a quantitative analysis is mostly based on how much money an organization would have to spend to counteract the effect of a risk. Obviously, there are certain instances in which these two factors directly coincide. For example, in the event that there were a risk that would shut down the business processes for a company for two weeks, it would have to not only consider the time in which those processes were down but also the amount of money they would not be able to make because of that risk. These factors must be considered in conjunction with the cost of repairing those business processes, which might involve hardware, software, or even training new personnel.

Other than actually controlling a risk, the fifth process of risk management, planning risk responses, is one of the most vital. Although these processes have certainly been ordered in a logical progression, the need to plan a response to risks once they have been prioritized and gauged in terms of how much time and money they might cost an enterprise is an integral one which is the culmination of the preceding four. In order to sufficiently plan a response to a risk, an organization must develop some contingencies regarding a particular risk. For instance, in planning for the event of database failure, an appropriate response would be to have some means of replicating data (perhaps to a Cloud environment) that is autonomous of the data in a physical database located on premises. Such solutions, services, and vendors exist. Although the need to replicate data off premise in the event of failure is just an example, planning risk response involves the need to actually take action. Heretofore, all of the steps have involved analysis and planning, assessing and calculating. During the fifth step organizations need to actually act on those analyses and take preemptive action that can severely mitigate the effect of each of the risks they have identified in their evaluations. Necessarily, they should plan responses according the prioritization of risks which includes the factors of which risk will consume the most time and money.

Controlling risk is the final process in the six steps to risk management. In this final process, it is necessary for individuals at an executive level to actually implement the other processes to manage risk. These executives are responsible for determining when a risk has actually become a threat and is in danger of -- or already in the process of -- creating a noxious effect to the enterprise. If so, it is necessary that these executives implement the measures outlined in the fifth process area, planning risk responses, to actually respond to a particular risk. They should have an adequate amount of preparation to deal with the impact of that risk. Another responsibility that executives incur at this particular phase in a risk assessment program is to monitor the program itself. In doing so, they are helping to ensure that they stay prepared for any pre-designated risks. Additionally, they are responsible for making sure that the program objectives are being met and that new risks are constantly evaluated and assessed so that the program is as current as possible. Although the managers and employees of a company are responsible for implementing the various mechanisms outlined in a risk assessment program, it is ultimately up to those at the executive level to require full compliance with such a program. That level of compliance is…

Cite this Document:

"Risk Management The Six Major Processes Involved" (2014, November 30) Retrieved February 8, 2023, from

"Risk Management The Six Major Processes Involved" 30 November 2014. Web.8 February. 2023. <

"Risk Management The Six Major Processes Involved", 30 November 2014, Accessed.8 February. 2023,

Related Documents
Risk Management Integrated Emergency Planning an Emergency
Words: 1518 Length: 6 Pages Topic: Business - Management Paper #: 41539758

Risk Management Integrated Emergency Planning An Emergency Risk Management Plan for a Large Supermarket in the UK Emergency Planning in the UK Risk Identification and Qualification PESTEL Framework Risk Identification Table Risk Qualification Matrix Risk Quantification Disaster Management Plan Situation Mapping of Hazards, Vulnerabilities and Impact Vulnerability Table Loss Estimation Resource Inventory Communication Management Plan Monitoring Plan This emergency management plan has been created for a large independent supermarket chain in the UK. The supermarket is comprised of six locations in total and all of the

Risk Management Financial Derivatives Are an Innovation
Words: 4597 Length: 10 Pages Topic: Economics Paper #: 63055861

Risk Management Financial derivatives are an innovation in the field of finance that enable us to understand, measure and manage our financial risks. The definition of financial derivative according to the textbooks is of a financial instrument, and the value of any financial derivative is based on the value or values of the underlying securities or groups of securities that constitute the derivative. It can be said that there have been

Risk Management in Family Owned Businesses
Words: 4161 Length: 12 Pages Topic: Business Paper #: 78895817

Risk Management in Family Owned Businesses A family business can be simply described as "any business in which a majority of the ownership or control lies within a family, and in which two or more family members are directly involved" (Bowman-Upton, 1991). In other words, it is a multifaceted, twofold structure consisting of the family and the business meaning that the involved members are both the part of a job system

Risk Management Plan A&d High Tech Introduction
Words: 2418 Length: 9 Pages Topic: Business Paper #: 65638900

Risk Management Plan A&D High Tech Introduction to the Plan Company Background Risk Planning Charter, Scope, Plan, and WBS Scope of the Risk Management Plan 102.2 Risk Management Plan Components 112.3 Responsibility 112.4 Expected Monetary Value Analysis Risk Management Identification 123.1 Determine the Risks 133.2 Evaluate and Access the Risks 133.3 Qualitative and Quantitative Processes 143.4 Compare and Contrast Techniques Risk Matrix 144.1 Major and Minor Risks for the Risk Matrix 144.2 Risk Matrix Template 144.3 Reviews Corrective Action and Monitoring 155.1 Type of Corrective Risk Management 155.2 Corrective Plan 155.3 Corrective

Risk Management in Banks: Reference
Words: 4399 Length: 16 Pages Topic: Economics Paper #: 44661321

Hence, we decided to take differnet bank groups and companies (previously highlighted in the pie-charts) and compared the net growth of these selected bank groups in the finanical years of 2006 and 2007. Note that these net profits were claculated with the number of increase or decrease in the overall loans investments in these bank groups. An important thing to note here is that while bank credit is increasing in

Risk Management CAPM and APT
Words: 2664 Length: 8 Pages Topic: Economics Paper #: 2966411

RISK Management - CAPM and APT Capital Asset Pricing Model and Arbitrage Pricing Theory The contemporaneous business community is extremely competitive, meaning as such that the organizational leaders strive harder than ever to overcome the competitive forces. Virtually, they have to hire and retain the best skilled staff members; they have to develop and offer the best quality products and services and they must be able to raise the interest of a