Scribd
Upload
51 views

Risk Management: Presented by Verda Khan

Risk management involves identifying, assessing, and prioritizing risks, then minimizing their impact through coordinated resources. Risks can come from uncertainties in markets, projects, legal issues, and natural disasters. There are two types of events - risks which are negative and opportunities which are positive. Common strategies to manage threats include avoiding, reducing, transferring, or retaining risks. The risk management process consists of identifying risks, assessing vulnerabilities, determining risk levels, and identifying solutions to reduce risks. It aims to create value by mitigating risks at a cost less than the consequences of inaction.

Uploaded by

Naveed Iqbal
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
51 views

Risk Management: Presented by Verda Khan

Risk management involves identifying, assessing, and prioritizing risks, then minimizing their impact through coordinated resources. Risks can come from uncertainties in markets, projects, legal issues, and natural disasters. There are two types of events - risks which are negative and opportunities which are positive. Common strategies to manage threats include avoiding, reducing, transferring, or retaining risks. The risk management process consists of identifying risks, assessing vulnerabilities, determining risk levels, and identifying solutions to reduce risks. It aims to create value by mitigating risks at a cost less than the consequences of inaction.

Uploaded by

Naveed Iqbal
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 9

RISK MANAGEMENT

PRESENTED BY
VERDA KHAN
Risk management
Risk management is the
identification,
assessment, and
prioritization of risks followed by coordinated and economical
application of resources to minimize, monitor, and control the
probability or impact of unfortunate events
SOURCES OF RISKS
Risks can come from various sources including
 uncertainty in financial markets,
 threats from project failures
 legal liabilities,
 credit risk,
 accidents,
 natural causes and disasters,
 deliberate attack from an adversary, or events of uncertain or
unpredictable root-cause
TYPES OF EVENTS
There are two types of events i.e.
 negative events can be classified as risks
 positive events are classified as opportunities
STRATEGIES TO MANAGE THREATS
Strategies to manage threats (uncertainties with negative
consequences) typically include
 avoiding the threat,
 reducing the negative effect or probability of the threat,
 transferring all or part of the threat to another party,
 and even retaining some or all of the potential or actual
consequences of a particular threat, and the opposites for
opportunities
METHOD
Method
For the most part, these methods consist of the following elements, performed, more or
less, in the following order.

 identify, characterize threats


 assess the vulnerability of critical assets to specific threats
 determine the risk (i.e. the expected likelihood and consequences of specific types of
attacks on specific assets)
 identify ways to reduce those risks
 prioritize risk reduction measures
PRINCIPLES
The International Organization for Standardization (ISO) identifies the following principles of risk management:[6]

Risk management should:

 create value – resources expended to mitigate risk should be less than the consequence of inaction
 be an integral part of organizational processes
 be part of decision making process
 explicitly address uncertainty and assumptions
 be a systematic and structured process
 be based on the best available information
 be tailorable
 take human factors into account
 be transparent and inclusive
 be dynamic, iterative and responsive to change
 be capable of continual improvement and enhancement
 be continually or periodically re-assessed
PROCESS
Establishing the context
This involves:

 identification of risk in a selected domain of interest


 planning the remainder of the process
 mapping out the following:
 the social scope of risk management
 the identity and objectives of stakeholders
 the basis upon which risks will be evaluated, constraints.
 defining a framework for the activity and an agenda for identification
 developing an analysis of risks involved in the process
 mitigation or solution of risks using available technological, human and organizational resource

You might also like