Professional Documents
Culture Documents
RISK MANAGEMENT
SMC: RISK MANAGEMENT Home
Session Content
1. Conceptual Framework – What risk Management is all
about
2
SMC: RISK MANAGEMENT Home
Definition of Risk
The possibility that an event will occur and adversely affect the achievement
of objectives
▪ Committee of Sponsoring Organizations (COSO) Enterprise Risk
Management Framework
The chance of something happening that will have an impact upon objectives
• AS/NZS 4360:1999, Risk Management
3
SMC: RISK MANAGEMENT Home
Risk is…
Require re-think
of processes
DEFINITION OF RISK
6
SMC: RISK MANAGEMENT Home
7
SMC: RISK MANAGEMENT Home
Risk universe
Definition: All risk types and categories across all business lines, functions,
geographical locations and legal entities that could affect an organization.
Strategic
Financial
Operational
Compliance
Environmental
8
SMC: RISK MANAGEMENT Home
Failure to measure
Project delays cost performance
overruns and Achieving Service adequately
inadequate quality
standards
Delivery
Failure to monitor
Inadequate service implementation
plans to maintain
continuity of service
delivery
Inadequate skills or Failure of contractors, Failure to properly Technical risk – failure to keep
resources to deliver partners or other evaluate pilot projects pace with technical
services as required government agencies to before a new service is developments, or investment
provide services as required introduced may result in in inappropriate or
problems when the service mismatched technology
becomes fully operational
9
SMC: RISK MANAGEMENT Home
10
SMC: RISK MANAGEMENT Home
The COSO ERM framework defines essential components, suggests a common language,
and provides clear direction and guidance for enterprise risk management.
11
SMC: RISK MANAGEMENT Home
12
SMC: RISK MANAGEMENT Home
ISO 31000
Defines Risk management principles as well as
providing a framework/model
13
SMC: RISK MANAGEMENT Home
14
SMC: RISK MANAGEMENT Home
15
SMC: RISK MANAGEMENT Home
16
SMC: RISK MANAGEMENT Home
17
SMC: RISK MANAGEMENT Home
18
SMC: RISK MANAGEMENT Home
19
SMC: RISK MANAGEMENT Home
20
SMC: RISK MANAGEMENT Home
RISK
4 IxL
IMPACT
RISK
3 IxL
RISK
1 IxL
1 2 3 4 5
LIKELIHOOD
• Note that the zones are not symmetrical across the matrix
– High impact low probability events much more important than likely low
impact events
21
SMC: RISK MANAGEMENT Home
22
SMC: RISK MANAGEMENT Home
24
SMC: RISK MANAGEMENT Home
25
SMC: RISK MANAGEMENT Home
Contingency Planning
• Risks associated with the technical aspects can have the most sever
outcomes
• Can be mitigated by building and testing prototypes of critical components
• Have available backup or alternate designs that have much lower risk
• Risks associated with the schedule usually require a trade-off
• Manage “slack” time to provide resources for delayed components
• Bring in more people (increase costs) or reduce performance
• Risks associated with costs usually result from estimate errors and
omissions
• Time & cost are related; trade-off schedule delays with lower cost
• “Descope” options that remove components of the project, but still allow the
primary mission to proceed
• All “budgets” (mass, power, schedule, cost) should include a reserve
percentage that can be expended as risk events occur
26
SMC: RISK MANAGEMENT Home
27
SMC: RISK MANAGEMENT Home
28
SMC: RISK MANAGEMENT Home
29
SMC: RISK MANAGEMENT Home
30
SMC: RISK MANAGEMENT Home
END
31