Paladin’s Ten Year Anniversary
I am celebrating 10 years of Paladin Risk Management Services. In this podcast I reflect on how risk management has developed over those 10 years and some of the challenges still facing organisations. I’m looking forward to the next ten.
RIP ISO 31000??
In 2009, the ISO 31000 Risk Management Principles and Guidelines was released with much fanfare. It was hoped that the introduction of an international standard would provide legitimacy to risk management and standardise approaches across the world. There was an opportunity for those conducting the review of ISO 31000 (draft released in March 2017) to […]
Risk Tip #6 – Managing Shared Risk
I have often been asked to provide insight into the management of shared risks, particularly by those working in Commonwealth Government Departments. Element 7 of the Commonwealth Risk Management Policy states that: each entity must implement arrangements to understand and contribute to the management of shared risks. It goes onto to define shared risks as: […]
Risk Tip #5 – Hungry to understand risk appetite?
I have watched with significant interest and with quiet amusement over the last few years, at the rise and rise of risk appetite. The emphasis on risk appetite in on-line risk forums would lead you to believe that without risk appetite being defined, it is impossible to manage risk. Most guidelines and standards for risk […]
Risk Tip #4 – Communication and Consultation
The fourth in my risk tip series addresses communication and consultation for an individual risk amongst stakeholders. Stakeholders aiming for or in business for a common cause, will talk about communication, but just how many actually fathom the breadth of the stakeholder community for an individual risk? It is certainly part of the risk management […]
Risk Tip #3 – Developing a Consequence Matrix
The third in my risk tip series is one that has arisen from my observations of consequence matrices over the last few years. This blog isn’t about how to assess consequence, but more importantly, what to assess it against. In Risk Tip #1 I addressed the issue of likelihood and how difficult, if not impossible, […]
Risk Tip #2 – how do we measure control effectiveness?
Measuring control effectiveness is difficult for many organisations (if not most). What worries me is how often I come across the ‘guess work’ that goes into measuring control effectiveness when what’s actually needed is evidence to prove the controls in place are right for the resources, budget and risk. What I find fascinating is that […]
Risk Tip – how likely is likely?
Assessing the level of likelihood for risk is something I have been questioning for some considerable time. I have followed the conventional wisdom up until this point and used the ‘traditional’ criteria to express likelihood. You may have criteria similar to the following: Likelihood score Descriptor Frequency How often might it/does it happen 1 Rare […]
Census 2016 – a study in the “management” of risk
This year’s Census is not off to a great start. Privacy concerns, an inability to cope with the mass volume of phone calls from people requesting paper copies of the Census and a chance that the forms may not arrive prior to Census day on August 9, has led me to question the level of […]
What a load of rubbish
Hear my interview on Canberra’s 2CC about business continuity. The ACT garbage truck dispute is causing a bit of a stink. But the real issue is not necessarily about the industrial dispute itself, it’s more about the ACT Government’s response to the disrupted service that’s the more interesting aspect to this smelly saga. One thing […]
