project management

Why Do Most Organizations Avoid Quantitative Risk Assessment?

No ERM process that is effective at helping a company understand threats and opportunities to achieving objectives is going to just create a list of risks. While that may be sufficient for a regulator, it means absolutely nothing for helping executives run the organization better. After identification, companies then take the vital step of assessing…
Read More

Using Monte Carlo Simulation to Support Decision-Making

My first interview with Hans Læssøe last month covered a wide-range of topics, including background on what led Hans’ former company to adopt ERM and a few factors key to its success. In this interview, we discuss a topic I’ve touched on briefly in previous articles but haven’t elaborated on much, until now. Monte Carlo…
Read More

Why Organizations Struggle with Key Risk Indicators and How to Make Them Work

If done properly, key risk indicators (KRIs) can be a valuable tool for proactively managing risks to achieving strategic objectives. As I explain in a previous article, being proactive is one of the key differences between traditional and enterprise risk management. Despite their potential for facilitating the proactive management of risk, around 70% of organizations…
Read More

ERM at Thanksgiving – An Illustration of Risk Management in Action

It’s Thanksgiving week in the U.S. – the air is crisp, Fall colors abound, and there is a palpable excitement as we enter the year-end holiday season. This week’s holiday provides a great opportunity to reconnect with family and old friends and take stock of what we’re grateful for. On occasion, I like to take…
Read More

What are Organizations’ True Barriers to Implementing ERM?

My posts for this month (May 2019) have focused on results from the 2019 State of Risk Oversight report from NC State. Each of these posts (see here and here) not only reported survey results but also included additional commentary based on my experience. Up to this point, I had no reason to challenge anything…
Read More
risks to initiatives

How to Ensure Risks to Initiatives are Being Considered Alongside Objectives

A reader sent me a question about identifying risks to initiatives… More specifically, the reader wanted to know how she could ensure that risk identification focused on objectives doesn’t lose sight of risks that may be associated with initiatives. Before going any further, I want to provide a couple of quick definitions: Objectives – a…
Read More

Key Players for Successful Risk Identification

In order to have a risk management effort that ultimately “creates, protects, and enhances shareholder value,” you must first have a successful risk identification process. I’ve said it many times, and have heard it repeated elsewhere, that risk identification serves as the foundation for the entire risk management process…without it, the entire process is just…
Read More

GDPR Compliance Exposes Huge Interdependencies within Organizations

Now that some of the heat has died down on this topic, I thought it would be a good time to discuss observations about GDPR from an ERM perspective. Last month, the General Data Privacy Regulation from the EU was a hot topic. You undoubtedly received emails from your subscriptions and apps explaining that new…
Read More
Menu