Risk Management in Business

Risk management in business attempts to forecast and so prevent the occurrence of undesirable events which may have a negative impact on a company. Although the traditional definition restricts risk management measures to prevention and mitigation of harm, by the early 21st century, management theory had identified both negative and positive aspects of risk. For example, the ISO Guide defines risk as the "effect of uncertainty on objectives," refraining from associating explicitly the phenomenon with either positive or negative aspects.

Risk management became widespread in businesses in the United States in the second half of the 20th century. Companies realized the need of risk management efforts following some wide-scale oil tanker accidents in the 1970s and a dramatic change in the banking sector since the 1980s. Globalization and dynamic processes in contemporary economy call for a holistic approach to risk management. For example, supply chains can cover thousands of miles and different countries, which pose a wide range of risks. Meanwhile, the strong interrelation between different risks does not allow the separate analysis and treatment of various threats.

Risks which threaten the viability of a product or service may include new rivals, adverse trends in commodity prices, currency rates, interest rates or economic growth. Risk management has also been expanded to include financial risks: interest rates, exchange rates and derivatives.

There are numerous informal methods of assessing risk. To adequately prevent risk, however, businesses should rely on formal approaches. One of the most common approaches to risk management in business is scenario analysis - a method which studies various possible future events. Other risk management approaches include operational risk management, financial risk management, credit risk management, currency risk management and project risk management.

Some methods define risk as a function of three variables - the probability of the occurrence of a threat; the probable availability of vulnerabilities; and the potential impact. Risk management rests on several stages - identification of risks, analysis, measures to reduce or eliminate exposure to loss.

Although risk management measures are to a larger extent available to big companies, small firms also need a risk management strategy. Small businesses are advised to get insurance against common types of losses - theft, fire, flood, employee injuries, product liability or environmental impairment. These losses can have a serious impact on the company's day-to-day operation.

Risk can emerge from both external and internal factors. External risks are related to competition, customer changes, contracts, relations with suppliers, regulation and culture. Internal risks are linked to intellectual capital, research and development and information systems. Some factors fall under the scope of both internal and external factors — supply chain, integration of mergers and acquisitions as well as products and services.

Apart from addressing identified risks, risk management has a positive effect on the company's overall business organization. It ensures the consistent and controlled operation of the company. Risk management techniques also improve decision-making, planning and prioritization. Furthermore, they contribute to the efficient use of capital and resources and protect and enhance assets.

The increasing importance of risk management in business has resulted in stronger awareness and demand for standardization of risk management practices at different organizations. Risk management in business is certified by standard ISO 31000, issued by the International Organization for Standardization (ISO). The standard seeks to provide risk management principles and measure their application in the corporate world. The ISO 31000 family includes ISO 31000:2009 Principles and Guidelines on Implementation, ISO/IEC 31010:2009 Risk Management — Risk-Assessment Techniques; and ISO Guide 73:2009 Risk Management - Vocabulary.

Risk Management in Business: Selected full-text books and articles

Fundamentals of Enterprise Risk Management: How Top Companies Assess Risk, Manage Exposures, and Seize Opportunities
John J. Hampton.
American Management Association, 2009
Risk Management in Turbulent Times
Gilles Bénéplanc; Jean-Charles Rochet.
Oxford University Press, 2011
The Risk Management Process: Business Strategy and Tactics
Christopher L. Culp.
John Wiley & Sons, 2001
Anticipating Correlations: A New Paradigm for Risk Management
Robert Engle.
Princeton University Press, 2009
Managing Risk in Organizations: A Guide for Managers
J. Davidson Frame.
Jossey-Bass, 2003
The Known, the Unknown, and the Unknowable in Financial Risk Management: Measurement and Theory Advancing Practice
Francis X. Diebold; Neil A. Doherty; Richard J. Herring.
Princeton University Press, 2010
The Economics of Risk
Donald J. Meyer.
W.E. Upjohn Institute for Employment Research, 2003
Plight of the Fortune Tellers: Why We Need to Manage Financial Risk Differently
Riccardo Rebonato.
Princeton University Press, 2007
Scenario-Driven Planning: Learning to Manage Strategic Uncertainty
Nicholas C. Georgantzas; William Acar.
Quorum Books, 1995
Selling to Newly Emerging Markets
Russell R. Miller.
Quorum Books, 1998
Librarian’s tip: Part II "Risk Management"
Failure in Risk Management
Kimball, Ralph C.
New England Economic Review, January 2000
Corporate Risk Management
Barrese, James; Scordis, Nicos.
Review of Business, Vol. 24, No. 3, Fall 2003
Peer-reviewed publications on Questia are publications containing articles which were subject to evaluation for accuracy and substance by professional peers of the article's author(s).
Is Your Business Prepared for the Worst? Advance Crisis Planning Can Help Minimize Losses
Gerber, Joseph A.; Feldman, Elliott R.
Journal of Accountancy, Vol. 193, No. 4, April 2002
Looking for a topic idea? Use Questia's Topic Generator


An unknown error has occurred. Please click the button below to reload the page. If the problem persists, please try again in a little while.