Professional Documents
Culture Documents
Definition of Risk
• Risk means “the possibility that something unpleasant or unwelcome
will happen”.
• A risk is an uncertain event which may occur in the future.
• The word ‘risk’ derives from the early Italian “risicare”, which means ‘to
dare’.
• In this sense, risk is a choice rather than a fate. The actions we dare to
take, which depend on how free we are to make choices, are what the
story of risk is all about.
• Note that not all risk is bad, some level of risk must be taken in order to
progress / prevent stagnation.
Definition of Risk
• Risk is defined in financial terms as the chance that an outcome or
investment's actual gains will differ from an expected outcome or
return.
• Risk includes the possibility of losing some or all of an original
investment.
• A risk may prevent or delay the achievement of an organization’s or
units objectives or goals.
• ‘Risk’ is dynamic and subject to constant change.
• A risk is not certain – Its likelihood can only be estimated.
Classification of Risks
Internal Risks External Risks
Human Risks Competition and Market Risks
Equipment and Information Business Environment Risks
Technology Risks
Other Internal Risks
Human Risks
Death Theft and fraud
Owner Product and inventory theft
Employee Time sheet fraud
Accounting and cash fraud
Risk-neutral
• Comfort with risk that is taken for a good reason such as risks that are taken
rationally based on an analysis of risk-reward.
• For example, an individual who makes a risky career choice who knows it
may be a difficult path is willing to face this risk to reach a goal they feel is
important.
Types of Risk Appetite
Risk adverse
• A tendency to prefer the safest choices in every list of options.
• In some cases, efforts to avoid risk can create larger secondary risks.
• The classic example of this is an investor who avoids all risk who fails to
preserve the value of their wealth due to inflation.
What is Risk Management?
• Risk Management is the name given to a logical and systematic
method of identifying, analysing, treating and monitoring the risks
involved in any activity or process.
• Risk Management is a methodology that helps managers make
best use of their available resources
• Risk Management practices are widely used in public and the
private sectors, covering a wide range of activities or operations.
These include: Finance and Investment, Insurance, Health Care,
Public Institutions and Governments
Risk Management
• It is a process to:
– Identify all relevant risks
– Assess / rank those risks
– Address the risks in order of priority
– Monitor risks & report on their management
Risk Management – why do we need it?
• Identifying areas of threat to the business
• Assessing the potential impacts and managing these
• Growth and continued existence of the business
• Promotes good management
• May be a legal requirement depending upon industry or sector
• Resources available are limited – therefore a focused response to
Risk Management is needed
How is Risk Management used?
• The Risk Management process steps are a generic guide for any
organisation, regardless of the type of business, activity or function.
• There are 7 steps in the RM process. The basic process steps are:
1. Establish the context
2. Identify the risks
3. Analyse the risks
4. Evaluate the risks
5. Treat the risks
6. Monitoring and review
7. Communication & consultation
Risk Management Process
1. Establish the context
The strategic and organisational context in which risk
management will take place.
For example, the nature of your business, the risks inherent in
your business and your priorities.