• First Reference
  • About us
  • Contact us
  • Blog Signup 📨

First Reference Talks

Discussions on Human Resources, Employment Law, Payroll and Internal Controls

  • Home
  • About
  • Archives
  • Resources
  • Buy Policies
You are here: Home / Business / New guidance on operational risk

By Occasional Contributors | 2 Minutes Read March 20, 2017

New guidance on operational risk

operational riskThe Risk Management Association has published Key Principles of Operational Risk Management.
Designed by practitioners at financial services organizations, the document make a number of good points.
But let me start with what is missing: guidance on when to take risks.
When an organization is focused on avoiding failure, it is very hard to be successful.
Operational risk is basically about the things that can go wrong in day–to–day processes that can trip you up.
It is impossible to eliminate such risk.
The best you can hope for is to take a level of risk that is appropriate given the business and what it takes to be successful.
It’s not even about “balancing” risk and reward. The potential for reward should always be higher than the potential for loss–but the key is to use the same assessment methods to understand the potential range of positive effects or outcomes as is used to assess the potential harms.
Recognize that it’s not ‘either or’ reward or loss. It is highly likely that both will occur!
Anyway, the guidance makes some good points:

  • Risk management is an integral part of business management and should be incorporated into overall business and financial planning.
  • Business culture within institutions must embrace the value of risk escalation and welcome independent challenge of risk decisions. Soliciting multiple points of view and engaging in debate result in better, more informed decisions
  • Senior management should provide direct oversight of current and emerging exposures. Meanwhile, risk management should be part of the normal management process and governance, not be made a separate, adjunct function.
  • Risk teams should be established with qualified, high–performing professionals who are closely integrated with business operations and the decision-making processes.
  • Effective risk management is a basic responsibility of business leaders and managers.
  • Risk management activities dictated solely by remote oversight functions lacking detailed execution experience are highly prone to error and inefficiency.

But I have a problem with the traditional perspective in this section:
As part of sound business and strategic decision–making, operational risk implications must be assessed and considered in order to determine whether to

  • Manage the risk.
  • Tolerate the risk.
  • Transfer the risk (for example, by insuring against the risk).
  • Decline the risk.

To be successful, sometimes you need to take the risk, even to embrace the risk because of the potential for reward.
The attitude of tolerating or even accepting the risk is simply wrong. Take it happily!
If financial services organizations fail to take the right level of the right risks, they will fail and fade away.
I welcome your comments.
Norman D. Marks, CPA, CRMA
Author, Evangelist and Mentor for Better Run Business
OCEG Fellow, Honorary Fellow of the Institute of Risk Management

  • About
  • Latest Posts
Occasional Contributors
In addition to our regular guest bloggers, First Reference Talks blog published by First Reference, provides occasional guest post opportunities from various subject matter experts on the topics of human resources, employment/labour law, internal controls, information technology, not-for-profit, business, privacy, tax, finance and accounting, and accessibility in Canada among others. If you are a subject matter expert and would like to become an occasional blogger, please contact us. If you liked this post, subscribe to First Reference Talks blog to get regular updates.
Latest posts by Occasional Contributors (see all)
  • Corporations Canada and new transparency about federal non-profit corporations under the CNCA and new fees for certain documents - December 21, 2022
  • How much should a Canadian registered charity spend on administration? - November 30, 2022
  • Finance proposes changes to disbursement quota for charities and some increased transparency - November 11, 2022

Article by Occasional Contributors / Business, Finance and Accounting / business management, operational risk, risk, risk management

Share with a friend or colleague

Get the Latest Posts in your Inbox for Free!

Electronic monitoring

About Occasional Contributors

In addition to our regular guest bloggers, First Reference Talks blog published by First Reference, provides occasional guest post opportunities from various subject matter experts on the topics of human resources, employment/labour law, internal controls, information technology, not-for-profit, business, privacy, tax, finance and accounting, and accessibility in Canada among others. If you are a subject matter expert and would like to become an occasional blogger, please contact us. If you liked this post, subscribe to First Reference Talks blog to get regular updates.

Footer

About us

Established in 1995, First Reference is the leading publisher of up to date, practical and authoritative HR compliance and policy databases that are essential to ensure organizations meet their due diligence and duty of care requirements.

First Reference Talks

  • Home
  • About
  • Archives
  • Resources
  • Buy Policies

Main Menu

  • About First Reference
  • Resources
  • Contact us
  • 1 800 750 8175

Stay Connected

  • Facebook
  • LinkedIn
  • Twitter
  • YouTube

We welcome your comments on our blog articles. However, we do not respond to specific legal questions in this space.
We do not provide any form of legal advice or legal opinion. Please consult a lawyer in your jurisdiction or try one of our products.


Copyright © 2009 - 2023 · First Reference Inc. · All Rights Reserved
Legal and Copyright Notices · Publisher's Disclaimer · Privacy Policy · Accessibility Policy