what is the simplest way to eliminate risk?

Nosotros tin't command what people say to us – nosotros tin only control our response.

Risk and dubiousness are much the aforementioned I suppose…

The original version of the following article has been one of the well-nigh popular here at my web log..

Like other popular posts, such every bit this comparison of traditional risk direction and ERM, information technology's important to take a pace back and re-examine this topic for two main reasons: changes in perspective since the commodity was outset published and the web log'due south considerable growth has resulted in more resources to support the sections below.

The cadre theme of this piece from the starting time has really been about answering one basic question. You, your team, executives, and risk owners have done the work of identifying, assessing, and analyzing risks and opportunities, so the question that naturally comes up is – now what?

In some cases, reducing or avoiding risks is the all-time option, especially if the alternative means breaking the police or someone getting hurt or killed. It's a common misnomer that chance direction is all about reducing damage or averting failure, simply equally nosotros'll become into more later, this isn't e'er the instance and tin can, in fact, pb to failure.

The first four response strategies below are very traditional in nature and, every bit Hans Læssøe discusses in his book Prepare to Dare on the different levels of chance direction, well established.

A diversity of factors internal to your arrangement will drive which of the following options management chooses. Hazard appetite is one of several tools for helping you determine the right response strategy, but contrary to the original version of this article, it is by no means the only or always the best as this piece from Norman Marks explains.

Recollect too that your risk response strategy can modify over time equally conditions warrant, which is why consequent monitoring of risks and the broader environment is and then of import.

(To learn more check out Risk Monitoring: 6 Considerations for Understanding this Make or Interruption Moment for ERM.)

Without farther ado, below are 5 potential run a risk response strategies to consider for handling strategic, operational, legal, or other risks and opportunities.

Risk Response Strategy #1 – Avoid

As the proper name implies, quitting a particular action or opting to non get-go it at all is an option for responding to a risk. When y'all cull to avoid a risk, you are cut off whatsoever possibility of it posing a threat to your enterprise. Like I hash out in the intro section in a higher place, executives and managers volition choose this selection for any risks that could get the company in major legal trouble or lead to someone getting killed.

A recent example of this is the shift to working from home to prevent employees from contracting COVID-xix. Virtually organizations decided to avert the run a risk of their employees getting sick. Other examples of this selection can include halting the production of a particular product, selling a partition of the company, or deciding confronting an expansion.

Now on the surface, this may seem similar an attractive option, but it's not ever practical or advisable as we'll explain in risk response strategy #5 below. However, if you're absolutely certain there is nix tolerance for the risk in question, then the avoid option is the appropriate risk response.

To learn more, check out What to Practice When Risks are Unavoidable.

Take chances response strategy #2 – Reduce

What this ways in ERM speak is to take steps to reduce the likelihood or impact of a loss. If the risk is just slightly in a higher place your appetite and tolerance level, and so reduction is a reasonable strategy for bringing information technology down to within acceptable limits.

On a personal level, we all apply risk reduction in one way or another in our daily lives. When we get in our auto to go somewhere, we put on a seatbelt to reduce the potential impact of an accident.

Notice though that this action does not reduce the chance of an accident occurring – if that is your goal, then you would need to simply stay home.

In business, spending too much to reduce a take chances can be a waste matter of fourth dimension and resources…to illustrate, I'k going to go back to my beginning job equally a cashier at a grocery store.

A big responsibility of a cashier is to make sure your drawer balances at the end of each shift. At my shop, we were immune some latitude, specifically an "over/under" of upwardly to $3; meaning, if my drawer was missing $i.80, the store would just write it off. It was somewhat of a relief to know I had this cushion, simply if information technology happened all of the time, the store would have reason to be suspicious.

At present, let'south say there was an over/nether latitude of only 2 cents…

Would it make sense to pay someone their hourly rate to hunt down 50 cents or a dollar or would information technology be more efficient to just accept that you lost a dollar?

As you should exist able to see by this instance, spending too much fourth dimension on piffling matters can be wasteful, so go along that in mind when choosing this take a chance response.

To learn more than, check out Risk Reduction – A Response Strategy for Decreasing the Impact of Potential Adventure Events.

Chance response strategy #3 – Transfer

Unlike options 1 and two, this pick does not eliminate or reduce the chances of it occurring, just instead delegates or transfers responsibility of the hazard to a third-party. Purchasing insurance for your dwelling doesn't reduce or eliminate harm from a storm, but it does provide a financial condom net in the upshot damages practise occur.

Besides insurance, another common method for transferring run a risk is to include indemnification clauses in contractual arrangements, which are commonly found in structure and service task contracts, rental contracts, buy order agreements, lease agreements, consulting agreements and more. The bespeak of both these and insurance policies is to brand you lot whole in the event a covered peril (or event) occurs.

One of import point to remember with this pick – it simply kicks in post-event, and as nosotros've discussed in many articles since the original article, intangible risks like reputation and talent cannot exist transferred to a third-party.

Think of it this way: You lot tin can outsource a process, simply you cannot outsource a risk.

In the end, when managing risks to the enterprise, the goal of take a chance transfer is to ultimately reduce the (mostly financial) touch should something materialize. The company is therefore willing to accept a take chances on the chance occurring.

Take a chance response strategy #iv – Accept

In that location will probable be other risks outside your tolerance where i of the other response options will not be a good fit since the probability and/or the touch is so depression that information technology does not make sense to expend resources to avoid, transfer, or reduce the gamble.

In cases similar this, yous can simply accept the risk as-is and practice cipher…yes, y'all read that right, you can practise nothing! In other words, risk acceptance is a passive decision since it requires no action.

Other risks that can fall into this category include emerging risks, or ones that may pose some sort of threat in the afar time to come.

If you lot desire to get technical, all risks except ones you completely avoid can fall into the accept category.

If you reduce a adventure, you lot're even so accepting the part within your appetite. If you transfer the risk via insurance, yous still accept part of the risk as it relates to your monthly premiums and deductible/retentiveness. Only when a covered event exceeds this amount does your insurance accept over to compensate y'all for the losses.

Therefore, unless you're avoiding the run a risk altogether, yous are using a combination of the reduce (mitigate), transfer, and/or have risk response strategy by default.

To acquire more, read Ane Tool for Informed and Responsible Hazard Acceptance.

Adventure response strategy #5 – Accept risks

Here's where things go more interesting. Up until now, we've really be looking at risks every bit a negative and different response strategies for helping your company avert failure.

But equally we've discussed in other posts, particularly over the last one-2 years, companies who simply focus on minimizing losses are putting themselves at an extreme disadvantage over more agile competitors, risking (you guessed it!) failure.

It'south e'er been true, but it'due south fifty-fifty more and so today – in guild to succeed, y'all have to have risks.

Allow's say y'all have a goal and have identified the risks to achieving it. However, some of these risks exceed your company's pre-determined appetite. If yous were strictly using risk appetite every bit your metric, the response may exist to avoid the risk altogether, but if you do this, yous will not attain the goal.

In this situation, decision-makers could make up one's mind to have on the risks – notation that this is non the aforementioned as the "accept" strategy above because risk credence is passive in nature.

In this situation, you are actively facing the risk head on past making preparations. Having a game plan does non reduce the severity or likelihood of this event occurring, it simply makes the organization's deportment mail-risk smoother and more than integrated.

Take a commonly discussed risk these days, cyber.

Because of all the scary headlines out there, information technology is natural to reach the conclusion to reduce, transfer, and avoid this risk as much as possible. However, as Norman Marks discusses in his book Making Business concern Sense of Technology Risk , y'all have to balance these problems against your goals and objectives.

For example, your visitor may want to develop an app as part of a multi-twelvemonth initiative to modernize services (Focused on opportunity!). You know in that location are risks of a data breach and so on, but executives decide to push forrard anyway considering, if you do non develop the app, the chances of beingness displaced by a competitor who is willing to have this risk is quite loftier.

Several tools are available, both qualitative and quantitative, for helping inform conclusion-makers on the level of risk they are taking and the likelihood of success. These can range from root crusade and scenario assay to Monte Carlo simulation, sophisticated modeling, and more.

This response represents a more than advanced level of chance or uncertainty management that forward-thinking companies are embracing to build a competitive advantage, or every bit Hans Læssøe explains in his book Prepare to Dare:

All companies take risks in pursuit of their strategic aspirations. Deploying this enhanced level [of] risk management, the risk taking becomes intelligent and based on identified and validly assessed risks and opportunities – based on a balanced utilization of the risk tolerance.

The former Formula I and Indy 500 race driver Mario Andretti stated 'If everything is under control, yous are moving too ho-hum.' This is true in business concern likewise, and having an advanced level risk management in place enables moving faster.

Besides creating a competitive advantage, chance professionals who pursue this level of uncertainty management will get increasingly valuable to the arrangement in the years to come as many basic run a risk management tasks are automated.

Regardless which risk response strategy you choose, monitoring will exist a primal part of ensuring y'all stay on rail .

As nosotros talk over in the intro, a risk response can change over time, which is even more true since this article was first written. Consistent, systematic adventure monitoring is crucial for understanding which response strategies you lot should alter and when.

How does your company cull its risk response strategies? Do you take a more than traditional take a chance-averse arroyo or the opposite?

The original version of this commodity has generated a lot of discussion since it was first published. I hope y'all find this updated version helpful in understanding changes in risk management and how it can be used a tool for improve controlling. To share your perspective, please feel free to leave a comment beneath or bring together the conversation on LinkedIn.

And to discuss your company's methods for understanding risks and determining the best response strategy, don't hesitate to reach out to me to hash out your situation today!

Featured image courtesy of Stuart Seeger via Wikimedia Commons

dykefameth92.blogspot.com

Source: http://www.erminsightsbycarol.com/risk-response-strategies/

Share this post