Professional Documents
Culture Documents
RMPAut14 Web
RMPAut14 Web
The official magazine of the Institute of Risk Management www.rmprofessional.com | Autumn 2014
Space race
Is the final frontier for
tourism a risk worth taking?
R E P U TAT I O N
R ADAR
The official magazine of the Institute of Risk Management www.rmprofessional.com | Autumn 2014
Space race
Is the final frontier for
tourism a risk worth taking?
IRM CHAIRMAN:
Richard Anderson FIRM
editorial
Naked
CHIEF EXECUTIVE OFFICER:
Jeremy Harrison FIRM
business development
director:
Sophie Williams MIRM
truth
head of marketing:
Fiona Duhig
fiona.duhig@theirm.org
Tel: +44 (0)20 7709 9808
A
managing editor:
Sush Amar
sush.amar@theirm.org nother week, another cyber breach, another batch of headlines. While the
Tel: +44 (0)20 7709 4114 hacking/stealing of celebrities’ intimate cameraphone images may generate
more ethical hand-wringing newspaper articles than your average corporate
editor: Phil Lattimore
phil.lattimore@ institution’s data loss, both reflect the ongoing issue of cyber security in an
rmprofessional.com ever more connected, data-reliant – yet sometimes cyber risk-unaware –
Tel: +44 (0)7802 870008 society. From the private to the professional, the loss of sensitive data can be
design and production: traumatic and damaging.
CPL (Cambridge Publishers Ltd) The variety and complexity of the cyber threat – and how risk professionals should address
275 Newmarket Road it – was discussed in detail by leading experts at IRM’s recent Cyber Risk Summit, held in London
Cambridge CB5 8JE over the summer. One of the key speakers at the event, chief information security officer of the
Tel: 01223 477411 Bank of England Don Randall MBE, delivers his views on the topic on pages 19-20 of this edition,
Web: www.cpl.co.uk while IRM’s comprehensive guidance for risk professionals in its report, Cyber risk: resources for
advertising manager: practitioners, remains an essential read for anyone looking to understand the issues and take
Michael Niskin practical steps to mitigate these risks.
Tel: +44 (0) 1223 273 535
michael.niskin@ Positives and negatives
rmprofessional.com
Of course, risk management is about positives, too. Risk managing for success is, perhaps,
Risk Management Professional is the undervalued by some outside the profession, but ensuring that your organisation is prepared for
official publication of the Institute of Risk surges in demand or unexpected growth can be critical for a business’ operations. We look at how
Management (IRM). ISSN 2042-4078
to navigate the risks involved and take full advantage of the opportunities on pages 16-18.
IRM is the world’s leading professional
body for risk management. We are
On the flip-side, a potentially negative situation – such as a product recall – doesn’t have to
independent, well-respected advocates of prove a disaster if risk management processes and plans are in place to manage the situation
the risk profession, owned by practising risk
professionals and operate internationally,
promptly and effectively. We explore recent examples of both successes and failures when things
with members and students in more than go wrong in our feature on pages 12-15.
100 countries.
Meanwhile, our cover story for this issue looks at the final frontier for extreme tourism – space
Institute of Risk Management travel – and how this out-of-this-world holidaymaking experience requires the ultimate in rigorous
2nd Floor, Sackville House, 142-149
Fenchurch Street, London EC3M 6BV risk management. You can read all about it on pages 29-32.
Tel: +44 (0)20 7709 9808
Fax +44(0)20 7709 0716
www.theirm.org
The right knowledge
enquiries@theirm.org Being prepared and having the right knowledge is crucial as the scope and importance of risk
Copyright © 2014 Institute of Risk functions in organisations grows. In this edition, we also include a special section on IRM’s
Management. All rights reserved.
Reproduction without written permission International Diploma in Risk Management, which has been revised and updated to reflect the
is strictly forbidden. The views of outside changes in knowledge and new challenges facing global business. You can find out all you need
contributors are not necessarily the views of
IRM, its editor or its staff. to know about the new qualifications on pages 21-28.
Enjoy the magazine.
Phil Lattimore
Cover image: Editor
Virgin Galactic
RMProfessional
12 29
4 | www.rmprofessional.com | Autumn 2014 |
Features
12 Total recalls 33 Handle with care
A badly-handled product recall can have a huge Recently published NHS data signal a warning
impact on both reputation and the bottom line. Yes, for the medical devices industry about the risks
So what lessons can risk professionals learn negative of inflated expectations from patients
from recent high-profile examples?
risks must 34 The case for risk leadership
16 Dream nightmare come first, Now is the time for a greater focus from risk
Would your organisation be adequately professionals on the softer behavioural aspects
prepared for a sudden surge in demand or but then of risk, argues David Hancock
popularity? We explore how risk professionals you should
should prepare for opportunities and over-
performance turn the
19 Banking on it
conversation
Among the experts presenting at IRM’s sell-out around
Cyber Risk Summit, RMProfessional caught
up with Don Randall MBE – chief information
security officer at the Bank of England – for
his views on the cyber threat
Page 16
29 To boldly go...
As Virgin Galactic prepares to take fare-paying
passengers into space, we explore how the risks
associated with space tourism are being managed
34 19
Gil C / shutterstock
The risk of having personal Grande and Victoria Justice. denied that its security was
data and images hacked Both Justice and Grande breached.
has been highlighted with have denied the images are Accounts can be
the release of naked images of them, but a spokesman accessed relatively easily
of high-profile Hollywood
celebrities on an image-
for Lawrence has confirmed
the authenticity of her
if a hacker can guess a
user’s password, or reset RBS hit
sharing forum.
Among those targeted
pictures. Legal action is
being taken, together with
the account password by
answering basic security
with £15m
by the unknown hacker an FBI investigation. questions. However, Apple fine over
s_bukley / shutterstock
posting on site 4chan
were Oscar-winning
The images – said
to come partly from
is now tightening iCloud
security, with additional
mortgage
actress Jennifer Lawrence celebrities’ phones – were measures to alert users if advice
(pictured), model Kate reportedly susceptible to data is restored to a new
Upton, and singers Ariana hacking, though Apple has device. Taxpayer-controlled
Royal Bank of Scotland
(RBS) has been hit
economic effects, which prices, and the need to in emerging-market including £390m for
have, in turn, hit British impose travel restrictions economies and global rigging the Libor rate,
businesses. Among these is on staff and visitors from financial markets, may and £8.75m for money-
laundering irregularities
British Airways, which has affected regions. have the potential by its Coutts subsidiary.
suspended flights to Sierra Further problems have The head of the to affect economic A further fine is
included: delays in shipping European Central conditions negatively,’ expected to be imposed
vital equipment and the Bank (ECB) has said said Draghi, after the by the FCA over the
failure of its computer
export of the finished the political crisis over ECB’s governing council
systems in 2012.
product; palm oil and Ukraine threatens to kept the benchmark rate The bank is also
rubber manufacture; and oil derail Europe’s ‘weak, at a record low level of currently under
and gas production. fragile and uneven’ 0.15 per cent. investigation in
Matt Robinson, senior recovery. Moscow’s decision to connection with alleged
collusion in the foreign
credit officer at credit ratings Mario Draghi has impose a full embargo exchange market.
View Apart / shutterstock
agency Moody’s, warned warned that tit-for- on food imports from The RBS fine means
that if an outbreak hit the tat sanctions between the EU, USA, Australia, the total in FCA penalties
Nigerian capital, Lagos, ‘the the EU and Russia are Canada and Norway was this year stands at
approximately £265m.
consequences for the West sharply increasing likely to have an impact
Last year, fines reached a
African oil and gas industry downside risks within on European exports, record £447m.
would be considerable’. the 18-nation eurozone. economists warned.
Tupungato / shutterstock
stood at £35.2bn, and The deficit levels since 2010, and was driven
are still a long way by a 20 per cent jump in the
from their record number of people entering
yearly high of £137bn into individual voluntary
in 2009-10, but could arrangements, to a record
still put the Chancellor high of 14,571, said the
George Osborne under Insolvency Service.
considerable pressure to Some experts claim Bev Budsworth, managing accountant HW Fisher &
meet his planned target the figures show creditors director of The Debt Advisor, Company, is also reported
of £95.5bn for the year. are more confident about in a Guardian report. ‘The acid as saying: ‘With as many
The figures come at recovering debts, but others test will be when the Bank as a quarter of mortgage
a particularly tough time insist it shows people are on of England starts to raise holders facing unaffordable
Peter Macdiarmid / getty
for him in the pre-election a financial knife-edge after its base rate and people’s payments, if interest rates
period, as it was hoped years of falling wages and mortgage payments follow rise to a more normal level
the full-year forecast government cuts. suit.’ of three per cent, a personal
could be met, allowing ‘It’s clear that people Brian Johnson, insolvency insolvency storm could be
him breathing space in are really struggling,’ said partner at chartered gathering.’
the run-up.
because of bank policies that hungry investors. With volatility having sunk
restrict sharp market movements Because banks and investors lower, VaR models are suggesting
and deter investors from hoarding include volatility in their internal there are very small chances of
funds. This, in turn, has led to risk management, there is now a sustaining large losses, meaning
concerns that larger investors chance that previously-suppressed more banks can take on more
have grown complacent following markets are amplifying more risk- risk, without breaching internal
years of dealing with one-way taking. Value at Risk (VaR) models standards for risk management.
and companies it owned, paid to several US states and pile on regulation in an effort to
purposely misrepresented the government agencies, as well demonstrate activity that could all
level of risk involved with loans as the Justice Department, with too easily act as a substitute for
that were used to back its US$7bn of the sum going to thinking through what is really
residential mortgage-backed customers seeking to pay off needed’.
securities (RMB). high loans.
TALKING POINTS
WHAT YOU HAVE BEEN SAYING ABOUT THE RISK PROFESSION
VIA SOCIAL MEDIA, email AND OTHER CORRESPONDENCE
Scrap the ‘R-word’ and external auditors. As the basis for many conflicts in Syria and Iraq; the Ukraine crisis;
I was recently told by another risk KPIs and KAIs, auditors play it safe and do stalling growth in the Eurozone and China;
management ‘student’ that ‘risks’ and not risk recommending something out of the uncertainty over the monetary tightening
‘opportunities’ are not the same and ordinary. Lack of transparency about what in the West; and the world’s largest Ebola
shouldn’t be managed as if they are. And these firms do creates a corresponding lack epidemic. Uncertainty is suddenly everywhere,
he’s not the only one. of transparency about the associated risks. but has not been reflected by similar growth
I disagree. We need to manage ourselves Shareholders are inevitably left unaware of in market volatility – a usual measure of ‘risk’.
and our organisations to anticipate all the risks these companies actually run. Uncertainty remains unchanged: the
possible futures, focusing on those with the Yet, aside from political risk, some of future is always uncertain. What changes –
highest probabilities. A future event carries the greatest share price falls have been as both Knight and Keynes argued – is our
a range of outcomes – favourable for some, triggered by environmental events. Given confidence in our expectations of the future,
adverse for others. Grant Purdy’s hurricane these can be among the largest share price and the speed and vectors of transmission
example is spot on – it destroys crops and influencers, are shareholders aware of the and amplification of risk. The challenge
homes but also creates new work for home actual environmental impacts or only of the is how risk managers respond to this loss
and road repairs. It is anticipation that’s key. compliance-related components? Shouldn’t of certainty and our understanding of risk
Proper anticipation can even allow firms the stock market already have taken this into propagation when the market indicators that
to improve their customer reputation and, account when evaluating the share price? If assess volatility are at seven-year lows.
thus, their competitive position. The now- they have, then why the volatility in the face Stress and scenario testing are increasingly
famous Johnson & Johnson response to the of an environmental event? Risk-averse but used by the financial services industries,
initial Tylenol tampering incident saw the profit-greedy shareholders? but, often, too narrowly. As the Financial
company actually increase its market share in As swathes of Africa open up to foreign Reporting Council urged, these tools must
the following year. Now that’s converting a investment in mining, this is an issue the make the leap to the mainstream of risk
downside event into an opportunity. industry needs to get to grips with, urgently. management in the corporate sector. They
The word ‘risk’ has been almost ADRIAN CLEMENTS FIRM, Mertesdorf, need to become central to the risk manager’s
completely transformed. In the 1920s, Frank Germany. toolkit. Not just for long- or fat-tail risks – but
Knight defined it as a measure of probable as the basis of a focus on risk and uncertainty
likelihoods and consequences. Picking up The new normal is now in setting strategies and understanding
the idea of risk management in the late Recent articles in RMProfessional raise an uncertainty in the strategic environment.
1950s, insurers – naturally – considered only interesting challenge to risk managers The move for risk managers in all sectors
downsides. Ask anyone today, and chances universally: the move from focusing on ‘risk’ from focusing on risk and volatility to
are they will define ‘risk’ as a bad event. to giving greater attention to uncertainty. uncertainty and flexibility is long overdue;
It’s time to scrap the word. It is totally In the wake of the financial crisis in 2011, few have accepted the challenge. It needs to
misleading. Use ‘uncertainty’ instead. Josef Ackerman – then-CEO of Deutsche become ‘the new normal’.
FELIX KLOMAN FIRM, Lyme, UK. Bank – said: ‘We should resign ourselves PETER BONISCH, London, UK.
to the fact that the “new normality” is
Playing it safe and missing characterised by volatility and uncertainty.’ We want your letters, comments
the point He has been both right and wrong. on articles, opinions and
The volatility of mining share prices this Despite significant stock market volatility in viewpoints. We don’t want
summer highlights a dual danger for 2011, it has since declined consistently. From promotions or bland sentiments!
environmental risk managers. When 2013, it has returned to pre-financial crisis Please send your letters, ideally
reviewing many risk reports filed on the stock levels, with the odd higher spike. In contrast, no more than 350 words, to Sush
market, it becomes clear that environmental uncertainty seems to be increasing. Amar at sush.amar@theirm.org.
risk reporting is driven by compliance – the RMProfessional stories bear this out: We reserve the right to edit letters
easiest risk to report. Yet, in too many reduced security of energy supply; the if necessary.
companies, compliance is pushed by internal perceived risk of Britain’s stance on the EU;
Brave new
world?
THE RISK PROFESSION IS EVOLVING TO MEET EVER MORE COMPLEX NEEDS, SO KNOWLEDGE
AND EXPERIENCE ARE CRUCIAL, SAYS INTERIM CHIEF EXECUTIVE JEREMY HARRISON FIRM
N
ovember will find me co-hosting a breakfast as journalism, banking and politics, is the renewed
discussion on why legislation is not the importance placed on standards and competence in
answer to bad behaviours. Given the boardrooms across the world.
increasingly entrenched positions of regulators No profession is, or should be, exempt from these
and regulatees, I suspect the conversation may be louder expectations – least of all ours. As a previous IRM
than I am used to at that time of the morning. chairman argues, in this issue of RMProfessional: ‘The
While legislation may not be universally viewed as time when we are treated like a profession is when we
A Good Thing, there’s no doubt it has been very good act like a profession.’
for our profession. The banking liquidity provisions in At IRM, we have spent an already exceptionally busy
Basel III, the ‘will they, won’t they’ speculation about the Those who summer further developing our professional standards,
introduction of EU insurance directive Solvency II, and drawing on best-practice examples from more than 30
the apparently endless revelations about bad behaviour
advise other competency frameworks from around the world.
in financial services are driving a significant increase others about These are currently under review by a panel of experts,
in risk management roles in that sector. One global risk hold the and we will publish our framework by the end of the
recruiter has put the increase at more than 20 per cent commercial year. We will expect graduates of our certificate and
in the past year. diploma to sign up to these standards, and to adhere to
However, insurance, retail and investment banking – and them throughout their risk-management careers.
while huge creators of risk management roles – form physical
just part of the picture. As our centrefold supplement safety of A new era for IRM
on the launch of IRM’s revised International Certificate This will be my last column as IRM’s interim CEO, as
millions of
and Diploma shows, a perfect storm of globalised supply I return to the role of deputy chair. I hand over the
chains, the impact of geopolitical risk, and the boom people in reins to our director of operations, Gail Easterbrook,
in energy extraction and infrastructure is creating new their hands who will be acting CEO until our new, permanent CEO
demand for skilled risk managers in all sectors. starts. During my seven months in the role, I have been
Unsurprisingly, competition for risk professionals is impressed by the knowledge of our IRM members, and
intense, with some industries and global regions forced your passion to communicate it.
into a merry-go-round of poaching. However, the You are a constant inspiration. You give up your
plum roles and greatest options continue to belong to time to drive our thought leadership forward, taking
the experienced and qualified. As one of our diploma topics – such as extended enterprise, which will be
interviewees points out: ‘A university degree is no longer published next month – to new levels of insight. You
enough for a risk-related career; you need to be able share emerging risks and practical solutions through our
to demonstrate you’ve got the right knowledge and network of special-interest and regional groups, and
qualifications.’ you help to build excellence in risk management in your
workplaces.
Standards and competence I would also like to extend my appreciation to
As risk management arguably becomes the world’s IRM’s staff, a much smaller team than I suspect many
newest profession, our industry cannot just be about members imagine. Their knowledge and commitment
qualifications passed, or time served. Those who advise has played a vital role in driving IRM’s growth.
others about risk hold the commercial and physical As we enter a new era of reach and influence, I look
safety of millions of people in their hands. Perhaps the forward to seeing the growing impact of IRM’s work in
most enduring legacy of both the lack of knowledge industries and organisations worldwide.
and ethics shown by some in professions as diverse n jeremy.harrison@theirm.org
H
complex when you consider that between 65 per cent
istory is littered with examples of companies and 90 per cent of the content of any given end-product
taking too long to recall a product is provided by suppliers, often on the other side of the
and seeing their reputation and brand suffer world. Manufacturing and product quality standards do
as a result. not always match those in developed markets.
In an increasingly global world, with complex ‘Some of the claims we’ve seen involve complex
supply chains and tightening regulatory oversight in supply chains, which means they can be extremely
many markets, it is easy to see why product liability is difficult to deal with in terms of understanding where
a growing concern for many companies. In a highly- some of the contamination has actually taken place,’ says
regulated environment, particularly in markets such as Ross Macdonald, team leader of casualty specialty lines at
the US and EU, a supplier’s faulty component can have Zurich Global Corporate UK. ‘It’s important to understand
a big impact. the level of due diligence that our customers are carrying
Take Toyota’s latest recall. This involves a supplier out on the suppliers they are contracting with, to make
A high-profile product
recall can result in a significant
financial loss to an organisation –
particularly if it is handled badly
W
hen white goods and floor-care specialist bought the deal, and the company had to shell out
Hoover was sitting on surplus stock in £12,500 on extra staff and distribution costs – while
1992, it struck upon a novel way to also losing around £3 per batch of cakes – thereby
get rid of it. Anyone purchasing more wiping out profits for the year.
than £100 worth of products would receive free airline
tickets. The company had gambled on the public being Success stories
put off by the small print – but it vastly underestimated There are numerous other
demand and the tenacity of consumers. similar stories: the Toys R Us
After 600,000 purchases, a consumer pressure group delivery delays of 1999, when
was formed to force the firm to honour the promotion. the company failed to fulfill a
After six years of legal wrangling, Hoover was left with large number of online orders;
a bill for £48m – and three senior executives were Sony’s struggles to manage
ushered out of the door. demand for its PlayStation 4 console; and a predicted
With many risk discussions focusing on negative crisis for the chocolate confectionery industry, brought
scenarios, this episode is a reminder of the risk of about by shortfalls in cocoa production. Other risks for
over-performance – unexpected surges in demand for businesses include unexpectedly high website traffic, or
a service, product or offer. an unpredictable event – such as a natural disaster –
Take, as another example, the Need A Cake bakery, that drives sudden demand.
Rob Hainer / Stefano Tinti / paul turner / shutterstock
based in Reading, in the UK. Eager to expand, the Such examples raise an intriguing question for risk
business owners advertised a 75 per cent discount on professionals: every organisation wants its product or
12 cupcakes through voucher site Groupon, hoping service to be in demand – but what happens when this
to attract some extra custom. However, 8,500 people demand exceeds supply or capability levels?
High-quality problem
Hans Læssøe, senior director,
Yes, negative risks should strategic risk management at The
LEGO Group, knows all about the
come first, but then you should challenges of a sell-out product.
The toy manufacturer consistently
turn the conversation around creates a buzz with new lines – be
it Harry Potter, Indiana Jones,
BANKING ON IT
New to RMProfessional, each issue we think. For example – who is the audience that needs to
interview an expert for their take on the know, when do they need to know, and what do they
need to know? Proportionality is important.
current debates in their industry. IRM’s
Let me illustrate. Take the Cross-sector Safety & Security
sell-out Cyber Risk Summit in June (CSSC) system, which the private sector created together
showcased cyber risk experts from a range with law enforcement agencies for the London 2012
of sectors. Sush Amar caught up with Olympics. CSSC has the ability to communicate with 8.5
one, Don Randall MBE – chief information million people, across 36 different business sectors, in
security officer at the Bank of England... just 20 minutes. And we can use it for any preventative
purpose. When the tragic helicopter crash happened last
Given the well-documented and year in Vauxhall, we were able to let everyone in the area
frequent ‘denial of service’ failures of know and reassure them that we were on the case.
banks, what are your views on UK banks’ Now, proportionality in that case was clear. It isn’t
approach to investing in their digital always so clear when it comes to cyber breach and attack,
and technological infrastructure? where we need to identify both methodology and purpose.
I don’t think the issue here is investment. More often, it’s a Perhaps what we need are sub-sets of communications.
consequence of organisations working too much in silos, We now have very strong public/private communications at
rather than in partnerships. It’s clearly not possible to set a regional level, and we’ll be rolling out CSSC
meaningful benchmarks and evaluate your organisation’s
resilience across the piste if you operate in isolation.
This silo issue that exists in some organisations is
compounded by the way the methodologies of cyber
attacks keep changing. For example, 20 years ago, the
UK law enforcement focus was on counter-terrorism. We
put in a lot of resources and achieved buildings that were
bomb resistant. And so the methodology of terrorist
attacks changed, too. Now, instead of buildings being
bombed, terrorists have changed their tactics, and we
have terrible events like Boston and Kenya.
It’s the same with cyber attacks – what lens do you
use to determine where and what the next attack
will be? In this fast-moving risk landscape, financial
institutions should work far more in partnership to
identify the new methodologies and the actual risks.
Better partnership-working between organisations and
– importantly – sharing details of attempted, as well
as actual, attacks would help build up organisational
knowledge among all participants.
Risk management is a
significant issue for all
businesses – taking many
forms, from cyber risk and
fraud to operational risk
Employers
appreciate the
value of professional
qualifications
A practical, introductory qualification, it can be taken as l n appreciation of current risk management thinking,
A
a stand-alone qualification, or form the first part of the standards and regulations across the world
International Diploma. It gives you:
l T he basis for advancement to the
l comprehensive introduction to the principles and
A International Diploma in Risk Management
practice of risk and risk management
Further information on course content for the
l n understanding of the multidisciplinary nature of risk
A International Certificate can be found at
management within any organisation www.theirm.org/qualifications.
Builds on the foundation of the International Certificate. l critical understanding of the influence of
A
It provides a deep understanding of the impact of organisational culture, attitudes and appetite
organisational culture, attitudes and appetite for risk, for risk
as well as the way risk is perceived and treated within
an organisation. l critical appreciation of the relationships between
A
risk management, governance, internal control,
The course will help you develop: and compliance
l T he competencies to design and implement risk l T he ability to make informed risk management decisions
management strategies for both current and emerging risks
l Proficiency in choosing and using the tools and l T he opportunity to analyse and appraise real-life case
techniques required to assess and treat risks studies from different sectors and countries
Enrolment is open between 1 October and 15 December 2014, and 1 February and 15
May 2015. The examination sessions take place in June or November, respectively.
T
Risk managers are under he expertise and professionalism of staff in the financial services sector
growing pressure to prove came under question in the economic crisis of the late noughties.
their competencies with Post-mortems showed not just wilful disregard of the rules by
employees, but plenty of examples of incompetence.
regulators and rating agencies, Since that crisis, legislators and supervisors have started to look a lot
write Amlin’s Alex Hindson and harder at the people, as well as the process. The EU Directive Solvency II,
Aviva’s Jose Morago for example, requires that personnel have the skills, knowledge and
expertise to fulfil their responsibilities. Those holding key functions – such
as in the risk management or actuarial teams – must meet ‘fit and proper’
criteria. After the Paul Flowers debacle at the UK’s Co-operative Bank in
2013, regulators’ antennae are also increasingly attuned to these attributes
in the banking sector. The Banking Standards Review Council is charged
with ensuring banks and building societies commit to a programme of
continuous improvement in culture, competence and outcomes.
While actuaries have the benefit of well-known professional
qualifications – requiring evidence of continual development – risk
Alex Hindson Jose Morago
management tends to be less formalised. Among those trying to change
that is the Institute of Risk Management (IRM).
Energy
From Iraq to Russia, the energy industry has proved particularly vulnerable to geopolitical
unrest this year. In Europe, reconciling the tensions between environmental, output and
security risks continues to be an intrinsic part of the risk role.
Across the world, the energy industry faces ongoing volatility in commodity pricing, making
long-term investment more problematic. As much of the world emerges from austerity – and
high-growth economies resume their development – it is inevitable that energy demand will
accelerate. Experienced risk professionals in this field are among the most highly sought-after
in the world.
Law
The trend continues towards global expansion of law firms to meet the growing needs of
international clients. International mergers and growth are creating increasingly large and
complex organisations, establishing new structural and management risks. From cultural
diversity, consistency of service and different regulatory regimes, to information security and
data privacy requirements, new opportunities and threats are developing from recent entrants
to the sector and evolving business models.
Firms are becoming more sophisticated in their risk management practices, particularly
when managing conflicts of law and practice across jurisdictions. The role of general counsel is
evermore critical, and effective enterprise-wide risk management more challenging.
Construction
The 2013 study by Global Construction Perspectives and Oxford Economics forecasts global
construction growth of more than 70 per cent, reaching US$15tn by 2025. While this growth
will be disproportionately concentrated in China, the US and India, the end of austerity in
Europe is already leading to increased demand for housing, particularly in the UK.
Europe’s ageing infrastructure urgently needs updating, while governments are recognising
the vital role that transport infrastructure plays in economic growth. Large infrastructure
projects – including high-speed rail in the UK and continental Europe, major construction
projects in the Middle East, and new building from foreign direct investment (FDI) in many
African industries – indicate that the need for skilled risk professionals in this sector is on the
verge of a global boom.
Regional snapshots
Africa
The ongoing geopolitical tensions in Nigeria, Kenya, Somalia and South Sudan are inevitably
affecting predictions for economic growth. There is corresponding demand for risk professionals
with expertise and experience in political risk, supply chain and business continuity.
However, the headlines obscure the fact that African businesses tend to avoid the leveraging
that brought many western institutions to the brink of collapse six years ago. FDI, particularly
from China, is meeting a strong culture of due diligence from domestic businesses ready to
expand. Large infrastructure projects in Kenya and Nigeria have recently been given the green
light. Mining, engineering and oil and gas are all set to expand across the continent, while
tourism in those countries with stable governance – such as South Africa – continues to be a
booming industry. While the domestic risk management profession in many African countries
is still in its infancy, the sheer diversity of regional industry is creating growing interest in risk
management as a profession.
Asia
Many countries in Asia are experiencing high levels of political risk. While Thailand is now
under military rule, India has its first majority government in 20 years, giving the ruling BJP the
freedom to make fundamental economic and social changes. While GDP growth in the region
has slowed in recent years, SMEs continue to grow. The liberalisation of Malaysia’s financial
services has brought in FDI, as foreign insurance companies make plans to enter these markets.
Telecoms, technology, financial services and manufacturing are thriving. The groundswell
of demand for improvements in the infrastructure and conditions of many factories has
added to the pressure on manufacturers to clean up their supply chains. Risk management is
moving up company agendas across the region, with demand outstripping the available pool
of risk professionals.
Europe
As Europe emerges from the 2008 financial crash, employment rates in most countries are
starting to climb, and consumers are buying again. The rise in online financial and retail
transactions has made cyber security a permanent priority, and governments and businesses are
joining forces to combat cyber crime.
The aftermath of the financial downturn has resulted in a slimmed-down financial services
sector in the UK, and an EU-wide focus on systemic risk. While EU regulations to strengthen
banks’ balance sheets have led to a slowdown in investment in SMEs, technology, services and
the professions are all resuming growth. However, sanctions against Russia are likely to slow
down economic recovery in the EU, as the impact on the cost and security of energy supply
becomes apparent during winter 2014/15.
Middle East
IRM’s conference in Dubai this year demonstrated the enormous appetite for risk management
in the region. From huge projects such as Dubai’s proposed Sheikh Zayed Road mall to Saudi
Arabia’s ambition to produce a third of its electricity from renewables by 2032, risk professionals
are in high demand. The rate of start-ups is also growing, offering greater opportunities for
those in the relatively early stages of their risk management careers. Qatar’s critical industries
are still oil and gas, but the 2022 World Cup has spurred further infrastructure development
and construction.
The chemicals, automotive, defence and maritime sectors are also experiencing an uplift, as
western economies emerge from austerity. States in the region are moving away from an
over-reliance on oil and gas, and increasingly diversifying to ensure continued economic growth.
MIND
THE
C
M
GAP
GET THERE FASTER.
Y
CM
MY
CY
GET RISK QUALIFIED WITH IRM.
CMY
I
magine – it is early 2015, and you and five fellow
passengers brace yourselves as the aircraft in which
you sit suddenly drops away from the mother
ship. As the sound of WhiteKnightTwo’s (WK2’s)
Pratt & Whitney jet engines fade, you feel the nose
of SpaceShipTwo (SS2) pitch upwards, and then the
gut-lurching fall is suddenly replaced by a massive
4G of pressure pushing you deep into your seat. The
vehicle shakes, and the sound of the rocket engine fills
the aircraft with a near-deafening roar. This is it. In 90
seconds’ time you will reach peak altitude and feel the
weightlessness of a sub-orbital space flight – officially
making you an astronaut.
This new space race has have been raised about the viability of the endeavour.
Supersonic, high-altitude test flights of SS2, in 2013
the potential to have a dramatic and 2014, resulted in reports – in newspapers and online
– about the original engine’s ability to achieve the desired
effect on the way people take peak altitude of 62 miles. In May 2014, Virgin Galactic
announced that it was changing the fuel type in SS2 in
holidays in the 21st century order to achieve the minimum guaranteed altitude of 50
miles. However, even this late change in technology has
done little to assuage the critics.
In addition, there have been reports that cracks have
been discovered in the wings of WK2. While these
Spaceport UK have been dismissed as ‘adhesive imperfections’ by
Virgin Galactic, it is yet another demonstration of the
In July, the British government announced that
risks associated with this cutting-edge, carbon-fibre
it intended to start developing a UK spaceport,
technology, and the close scrutiny of Virgin Galactic by
with the intention of sending space planes into
the world’s media.
sub-orbital flights. One potential vehicle for
use at this spaceport is being developed by UK
company Reaction Engines. Named ‘Skylon’, Risk appetite and regulatory control
this unpiloted space plane is designed to use The Virgin Galactic space plane is deemed to be an
the British-invented Synergetic Air-Breathing aircraft for much of its trip, so its flights within US
Rocket Engine (Sabre). This allows Skylon to airspace are regulated by the Federal Aviation Authority
take off like a conventional aircraft, then rocket (FAA). Appreciating the experimental nature of the
itself into a sub-orbital trajectory. However, space-plane approach, the FAA has taken a ‘hands-
unlike the Virgin Galactic up-and-down tourist off’ attitude to regulating the development of the
flights, Skylon would fly inter-continental routes, technology, allowing for a learning period. By law, the
VIRGIN GALACTIC
making it possible to travel from the UK to FAA cannot impose safety regulations on space-tourism
Australia in two hours. flights until October 2015 – with certain exceptions to
protect other airspace users – and all fliers are deemed
to be ‘participants’ rather than ‘passengers’, who fully
understand the risks involved.
wings, and – like a glider – returned to the runway in the However, the balance between the risk of space
Mojave Desert. flight and regulatory control is currently being hotly
Seeing the intrinsic safety advantages of the debated in Washington, at NASA, and in the wider
space-plane approach, Virgin Atlantic owner Sir aerospace community. In Rand Simberg’s contentious
Richard Branson teamed up with the owner of Scaled book Safe Is Not An Option, published in 2013, the
Composites, Burt Rutan, and Abu Dhabi’s Aabar author – an aerospace engineer – argues that NASA’s
Investments PJS, to form Virgin Galactic. obsession with ‘bringing everyone back alive’ has
In addition to the aircraft, Virgin Galactic promises to stifled space exploration for the past 40 years. The
deliver a unique experience, including astronaut training aforementioned five per cent loss of life is considered
at its purpose-built facility – designed by Sir Norman to be significantly less than might be expected for
Foster – at Space Port America, again in the Mojave such a boundary-pushing endeavour. He argues, while
Desert. To date, the group has invested approximately nobody wants to see astronauts killed, as with all forms
US$400m. While this may sound a lot, Branson points of transportation, it almost has to be expected. The big
out that it is equivalent to the cost of buying a new 747 difference with space travel is the very public way in
aircraft from Boeing. which disaster is likely to occur, as well as the political
fallout that inevitably follows.
Setbacks and detractors The reputational risk faced by Virgin Galactic is
Virgin Galactic optimistically announced that the first somewhat different from that experienced by NASA, and
fee-paying passengers would be flying by 2010, but the this has been recognised by the company from the outset.
venture hit a major setback in 2007. During a ground It has virtually to guarantee that all its passengers will stay
test of the equipment for the hybrid rocket engine, an alive; even one fatality at this early stage of development
explosion killed three Scaled Composites technicians, and could destroy the future of the business. In addition,
O
f the many complex risks human aspect to consider when procedure beyond reasonable levels
faced by the medical it comes to medical products. This – or a patient is led to expect the
devices industry, recent is particularly important to bear in worst – then they are more likely
NHS data show that mind if a manufacturer is sued by A patient’s to form a negative view of their
one problem may be impossible to a patient who considers that the condition. Claimant law firms are
eradicate: the expectation of patients medical device implanted in their reaction well placed to capitalise on such
that their new prosthesis will be as body is defective. may be reports, thus fanning the flames of
good as their original limb. The Proms data suggest that affected the ‘Daily Mail effect’.
People who undergo elective emotion will play a part if a dispute
hip- and knee-replacement arises over the performance of a
by media Response
surgery are asked to complete a medical product, and that some reports What should manufacturers, and
questionnaire before and after their patients may expect too much their insurers, do to cater for this
operation. These patient reported from orthopaedic devices that can human factor and media interest?
outcome measures (Proms) assess – at best – only attempt to restore Claims brought by patients
improvement in health as perceived functionality in a patient who against manufacturers should be
by the patient. Their subjective view may have other complex medical treated carefully. To determine
is collated – together with objective conditions. Allegations of failure may the merit of a claim, insurers and
data recorded by their doctors – to be based on pain, which is difficult lawyers should put claimants to
assess the functionality of medical to measure, or the discomfort of proof. Objective criteria can measure
devices after surgery. further medical intervention to whether a medical device has failed.
The latest Proms – published on replace a device that the patient For example, the Oxford Knee
14 August – reveal that there can simply feels has not worked – further Score assesses whether a prosthesis
be remarkable differences between underlining the fact that the cause Peter
has improved a patient’s ability to
Rudd-Clarke
a patient’s view of the performance of a patient’s disappointment may is a senior perform day-to-day tasks – such
of a medical device and their not be the device itself, but the associate at as using public transport or going
objective performance. patient’s co-morbidities. City law firm shopping. Expert medical opinion
Taking knee replacements as A patient’s reaction may also be RPC. Contact can review statements over the
peter.rudd-
an example, 45.6 per cent of affected by media reports criticising clarke@rpc.
alleged defectiveness of a device,
questionnaire respondents – when particular medical devices. If publicity co.uk which may be based purely – or in
comparing the state of their health raises expectations of a device or part – on a patient’s subjective or
before and after surgery – reported ‘gut’ feeling.
that they had not experienced any If a manufacturer faces more
increase in their general health. than a handful of isolated claims,
However, when the health of and is forced to deal with litigation
patients before and after surgery involving multiple claimants – as
was compared against objective and well as critical media coverage
established scoring criteria – the – well-timed statements using
Oxford Knee Score – the condition objective data to demonstrate the
wavebreakmedia / shutterstock
T
single number becomes 1/6. There is no debate or opinion
he general perception that through the application around this outcome and we accept it unconditionally.
of the risk management process we can somehow The second type – statistical probability – identifies
control the future is, in my opinion, one of the probability with relative frequency over a long series of
greatest misconceptions in our understanding of events, or the proportion of an event in a large population.
risk. However, we have made at least two advances in the In this case, we need to have observed enough relevant
Tribalium / shutterstock
right direction. Firstly, we can have a better understanding data to enable us to make predictions.
around the likelihood of unpleasant surprises and – more However, there is a third type, when there is no valid
importantly – we are learning how to pre-empt their basis of any kind for classifying instances; here, then, only
occurrence early and, subsequently, be better able to estimates can be made. In this final case, the use of any
manage the consequences should they occur. However, kind of statistical analysis would be meaningless. This
I feel that the time is right for risk management to move becomes increasingly relevant where we are dealing with
who understand that risk is more Tame, messes and wicked problems
One of the first areas to be investigated is whether our
of an art than a science current simple classification and use of risk is a correct
assumption. The general view, at present, appears to
treat the system under review as linear, deterministic and
so-called ‘Black Swan’ events that, by their very nature, lack predictable, in which a complex system or problem can be
the availability of a high level of statistically-relevant data. reduced into simple forms for the purpose of analysis. It
Most risk management practised today focuses is then believed that the analysis of those individual parts
predominantly on the first two types of probability: either will give an accurate insight into the working of the whole
that the outcomes are known definitively, or that there system, supporting the strongly-held feeling that science
is an underlying number or ‘truth’ that can be found will explain everything.
simply by further data analysis and interpolation. This type However, this type of problem – which can be termed
of uncertainty is termed ‘epistemic’. It is due to a lack ‘tame’ – appears to be only part of the story when it
of knowledge about the behaviour of the system. The comes to defining our risks. Tame problems are those that
epistemic uncertainty can – in principle – be eliminated have straightforward, simple linear causal relationships and
with sufficient study and, therefore, expert judgements can be solved by analytical methods – sometimes called
may be useful in its reduction. the cascade, or waterfall, method. Here, lessons can be
However, the third type of risk – that of ‘aleatoric’ learned from past events and behaviours and applied to
uncertainty – arises because of natural, unpredictable future problems, so that best practices and procedures can
variation in the performance of the system under study. be identified.
The knowledge of experts cannot here be expected to In contrast ‘messes’ have high levels of system
reduce this type of uncertainty, although their knowledge complexity and are clusters of interrelated or
may be useful in quantifying the uncertainty. This is the interdependent problems. Here, the elements of the
part that present risk practices tend to ignore or overlook system are normally simple, with the complexity lying in
with their concepts of Risk = Likelihood x Consequence the nature of the interaction of its elements. The principal
equations. These types of problems have already been characteristic of these is that they cannot be solved in
encountered in the worlds of science, mathematics, and isolation, but rather need to be considered holistically.
economics, creating a shift towards a more behavioural Using strategies for dealing with messes is fine, as long as
understanding – the so-called ‘new sciences’ – led by most of us share an overriding social theory or social ethic;
eminent scholars in the field, such as Einstein, Lorenz and if we don’t, we face ‘wickedness’.
‘Wicked’ problems are termed as ‘divergent’ – as
Boston Matrix opposed to ‘convergent’ – problems. Wicked problems
are characterised by high levels of behavioural complexity.
Here, uncertainty as a dominant factor is replaced by
re
tu
Resolution
Fu
t
is social/
m
High Wicked
ss
political/
se
en
mess
as
ethical/ moral/
e
ss
tiv
behavioural
ita
Ambiguity
as
al
e
iv
qu
Behavioural
on
tit
an
e
complexity
qu
lia
on
re
e
sin
nc
Solution is
lia
ea
scientific
cr
In
g
sin
Low High assumptions and values; people who think differently must
Dynamic systems complexity learn about and create a common reality, one which none
Uncertainty of them initially understands adequately.
Figure 1: Boston Matrix, showing the four problem types – adapted The main thrust to the resolution of these types of
from Roth and Senge problems is stakeholder participation and ‘satisficing’.
Opening up
Risk-based performance
the silos use of the three indicators make it clear that the only
management: integrating strategy way to achieve a targeted, strategic ‘sustainable (and
and risk management defendable) position – which enables the organisation
(Palgrave Macmillan) to achieve its objectives while operating within defined
By Andrew Smart and James Creelman risk appetite boundaries’ – is through integrating strategy
and risk management.
By looking at how to The authors include an ‘appetite and exposure
integrate strategy and alignment matrix’. This amalgamation of strategy and
risk management, risk management provides a simple way of showing
Smart and Creelman non-risk professionals how, together, risk management
have made a and strategy can deliver tangible value. They provide
significant contribution examples of firms using the matrix to save money,
towards helping where they are underexposed, by reducing risk controls,
risk and strategy or pursuing profitable opportunities due to their
professionals improve superior risk-management capabilities. These are strong
their organisations’ arguments for the as-yet-unconverted to bring together
performance by risk management and strategy.
strategically reducing
risk. The book is quite Integration
academic, with detailed Despite the strength of the authors’ case, I suspect it
analysis of risk and will be several more years before more firms take the
strategic concepts plunge and truly integrate the two disciplines. Many
and frameworks. organisations say they integrate strategy and risk
More robust editing – and integrated case studies management; some even make a big deal of this in
incorporating all of their recommendations – would their external communications. However, in practice,
have helped to make it an easier read but, that said, the these functions are usually managed by two separate
authors present some powerful tools that help move the teams, with distinct reporting lines to the executive
risk profession forward. management team and the board. Often, the closest
Where the book really comes into its own is in strategy and risk teams actually get to working together
discussing key risk, performance, and control indicators. is when the strategy team provides content to the
Particularly insightful is the analysis of the interplay risk section of the annual report, or when the risk
between the three indicators, and how they combine management team provides limited content to senior
to drive strategy execution and risk management to management strategy sessions.
achieve a set strategy. Examples of integrating the True integration is overdue for many. For those
forward-looking companies aiming to integrate risk
management and strategy, this book is a useful guide to
These are strong arguments for the bringing that date forward.
as-yet-unconverted to bring together risk Erik Johnson MIRM ACII is assistant vice-
management and strategy president, business development, at Allied
World Assurance Company (Europe).
GLOCAL HERO
IRM BOARD DIRECTOR NICOLA CRAWFORD FIRM REFLECTS ON ‘GLOCALISATION’
AND THE CHALLENGES IT PRESENTS TO RISK PROFESSIONALS
A
s the summer draws to an end, I am reviewing ranging from fluctuations in interest and exchange rates to
the menu in a Turkish resort, considering what IRM board supply chain piracy. As these risks become more strategic,
constitutes a ‘full English’ breakfast, costing £1. director Nicola they often involve greater levels of uncertainty that can
The Turks have adapted their services to Crawford hit capital investments. Firms, therefore, need a more
cater for UK tourists, even pricing food in sterling rather FIRM is comprehensive risk framework and the ability to analyse
than lira. Bacon is not included, replaced instead by a managing scenarios and model specific risks and costing options.
version of chicken ham – reflecting the availability of certain director of Regulatory obstacles – Fast-changing regulations and
meats driven by cultural differences. This is an example of i-Risk Europe, local policies can have a dramatic effect on the profitability
local services adapted to meet global needs. But does this and chair of of cross-border investments, heightening uncertainty in
happen in the other direction? And how are risks and their IRM’s regional rapid-growth markets. By adopting a global platform and
management affected by the concept of ‘glocalisation’? group in capability for managing the risk portfolio, greater visibility
Blending ‘local’ and ‘global’, the terms ‘glocal’ and Turkey can be gained into the procedures for overcoming regional
‘glocalisation’ have been adapted by the business world barriers – and for developing suitable contingency plans.
to refer to ‘global localisation’. The term was modelled on Cultural differences – Managing workforces when
the Japanese word ‘dochakuka’, which meant adapting operations are separated by distance, time zones, cultural
farming techniques to one’s own local condition. and religious differences can be a challenge. The central
Glocalisation of risk is, therefore, concerned with organisation must be able to refine its risk management
understanding and managing risks arising from local capability and create an infrastructure that both maintains
conditions that could have a global impact, and/or risks the diversity of international teams, and allows local delivery.
that are global in nature but have a specific local impact at Resource constraints – Increased competition for
an industry- or business-specific level. talent often results in skills shortages in key areas. This
creates demand for effective training and development of
Global localisation local resources in key risk management areas.
The 21st century has spun a worldwide web of IRM is well placed to support both global enterprises
interdependencies. People from practically all societies are and local companies to reach the capability required to
confronted with aspects of other cultures through tourism, manage risks arising from globalisation and glocalisation.
the media and consumer goods. This has led to significant However, like any other enterprise expanding globally,
benefits – including growth in incomes, education, there is a challenge in mastering the trade-off
innovation, and technology. But it has also created unease. between localisation to match local requirements and
What were once considered independent and unrelated standardisation to realise economies of scale.
risks are now interconnected, more complex and systemic. The customisation of IRM qualifications and services to a
The types of risk include: economic and financial; global region is called localisation, but glocalisation is the standard
pandemic; infrastructure; supply chain; food security; and to which the IRM should aspire. To this end, IRM’s regional
geo-political. They can affect local functioning of firms group structure allows cultural, linguistic, political, religious
operating worldwide, but can also be the source of local and ethnic affiliations to be simultaneously researched and
risks with a global impact. How can we manage them? integrated into one solution. In this manner, the intended
We have to acknowledge that we live in a world region and market is given a stake in the process, and not
characterised by multiplicity, uncertainty, ambiguity and just in the end result.
ambivalence. Accordingly, we have to learn to manage the
differing risk appetites that these factors bring.
Glocalisation may offer enterprises exciting opportunities What were previously considered
in emerging markets – but it can also introduce complex
challenges. These include: independent and unrelated risks are now
A shifting risk profile – The increased scale of interconnected, more complex and systemic
globalised operations is matched by the level of risk,
Training Focus:
The haves
and the
have-yachts
Christos Georghiou / shutterstock
risks
then develop a strategic risk register, undertake
key risk-mapping, risk scenarios and root
cause analyses. As with any exercise involving
With the move to tighten role play, students tend to end up inhabiting
competition law enforcement their role on the Moonray board with total
across Europe, IRM is working commitment.
with the UK Competition Practical Risk Appetite is a challenging
and Markets Authority to course. Both the volume and level of content
raise awareness of the risks are high, yet student feedback is consistently
of contravention. We will be of the ‘Eureka’ kind – even if the yachts must
A night to remember publishing our joint guidance remain forever imaginary.
From Australia to China, Turkey to Ghana, in the coming months. In the
the entries for IRM’s Global Risk Awards keep meantime, any IRM members n The next Practical Risk Appetite course takes
coming in. The 2015 Awards, held in London who would like to help by place in London on 7 October. Contact:
on 19 February, look likely to be the biggest
reviewing and commenting on training@theirm.org for more details. For
yet. Full details of categories and how to enter
are available on the website: www.theirm.org/ this guidance please contact information on all IRM short courses visit
events/global-risk-awards-2015/ Carolyn Williams at Carolyn. www.theirm.org/training/all-courses/
Williams@theirm.org
QQ7 / shutterstoCk
– again in Zurich – will explore safety risk seeking member priorities for the next year,
management in air traffic management and is open until the end of September. Give
‘the absurdity of root-cause analysis of risk your views at www.surveymonkey.com/s/
events’. See the website for more details at ERMinInsurance2014 Find out more about
www.theirm.org/events/regional-groups/ the group’s work at www.theirm.org/events/
switzerland/ special-interest-groups/erm-in-insurance/
Extended
2O14
2O14
Extended Extended
2O14
Enterprise
2O14
Enterprise Enterprise
Managing
Managing risk
volatility,
risk in
in the
the world
uncertainty,
world of
of ‘vuca’
‘vuca’
complexity and
Managing risk in the world of ‘vuca’ volatility,
Managinguncertainty, complexity
risk in the world and ambiguity
of ‘vuca’ ambiguity
volatility, uncertainty, complexity and ambiguity volatility, uncertainty, complexity and ambiguity
ALL
ALL WILLWILL BE BE REVEALED...
REVEALED...
IRM’s Global Risk Awards provide
provide the
the perfect
ALL
IRM’s WILL
Global BE
Risk AwardsREVEALED... perfect
showcase for excellence in risk management across
In association with
In association with
showcase for excellence in risk management across 11 day
day conference
conference
IRM’s
the Global
the world.
world. Riskan
With
With anAwards provide
intriguing
intriguing the perfect
masquerade
masquerade theme,
theme,
1 day
showcase conference
In association with
9
9 October
October 2014
2014
2015’s Awards look set to be the biggest yet.across
2015’s for
Awards excellence
look set in
to risk
be management
the biggest yet. 1 day conference
the9world.
October 2014
With an intriguing masquerade theme,
Submissions
Submissions
2015’s Awards look close
close seton
on 15
15the
to be September
September
biggest yet. 9
CassOctober
Cass Business School 2014
Business School
Executive
Executive Education
Education
so get
so Cass ready
get ready to tell
tell us why it should be
to School
Business
us why it should be you.
you. 200
CassAldersgate
200 Street
Business School
Aldersgate Street
Submissions close on 15 September
Executive Education London, EC1A 4HD
For award categories, and ExecutiveEC1A
London, Education
4HD
so 200
For get ready
award to tell
categories,
Aldersgate Street and further
us why further information
it should be you. on
information on 200 Aldersgate Street
how
how to
London,submit
EC1A an
to submit an entry visit:
4HDentry visit:
For award categories, and further information on
theirm.org/events/global-riskawards-2015
Book
London, now
Book EC1A
now4HD at
at
theirm.org/events/global-riskawards-2015 www.theirm.org/events/
howBook
email
email atnow
toussubmit
us at
anatentry visit:
events@theirm.org
events@theirm.org www.theirm.org/events/
Book now at
extended-enterprise-2014
call us on +
us on + 44
44 (0)20
(0)20 7709
7709 9808
theirm.org/events/global-riskawards-2015
callwww.theirm.org/events/ 9808 extended-enterprise-2014
email us at events@theirm.org www.theirm.org/events/
extended-enterprise-2014
call us on + 44 (0)20 7709 9808 extended-enterprise-2014
BOOK
BOOK BY
BY 26
26 SEPTEMBER
SEPTEMBER TO
TO SAVE
SAVE 15%
15%
BOOK BY 26 SEPTEMBER TO SAVE 15%
2014
at Board Level
Risk at Board Level
Practical Strategies for
&
The Insurance
The Risk
Risk Managers’
Managers’ Forum
Forum
Sky’s the
the limit
Risk at Board Level
limit
The Risk Managers’ Forum The Risk Managers’ Forum
Sky’s the limit
Tuesday
Tuesday 11
11 November
November 2014
2014 1-day
1-day conference
conference 27
27 November
November 2014
2014
1-day conference Inmarsat
Inmarsat Conference
Conference Centre,
27 November 2014
Centre, Cyber
1-dayRisk and
and Insurance
Insurance focuses on
on practical
Tuesday
99 11 November 2014 Cyber conference
Risk 27 November
focuses practical 2014
99 City
City Road,
Road, London,
London, EC3N EC3N 3AX
3AX guidance
guidance for insuring your organisation’s cyber
for insuring your organisation’s cyber
Cyber Risk and Insurance focuses
Inmarsat on practical
Conference Centre, for:
The
The 1 day
1Road, conference
day London,
conference for:
Cyber
risk. It Risk and
includes Insurance
a focuses
problem-solving on practical
roundtable
risk. It includes a problem-solving roundtable
guidance for insuring your99 organisation’s
City cyberEC3N 3AX
Chief Risk Officers, Heads of Risk and guidance
forum
forum andandfor insuring
aa panel
panel your organisation’s
discussion
discussion to
to enable cyber
enable you
you to
to fully
fully
Chief
risk. It includes a problem-solvingRisk Officers,
roundtable Heads of Risk and
The
anyone
anyone 1 day conference
responsible
responsible for
for risk
risk at
at for:
board
board level
level risk. It includes
participate and a problem-solving
get the answers toroundtable
your questions.
participate and get the answers to your questions.
forum and a panel discussion to enable you to fully
Chief Risk Officers,
With thanks to our sponsors: Heads of Risk and forum and a panel discussion to enable you to fully
participate and get the With
answers
thanks to to your questions.
our sponsors:
etc.venues, Dexter
anyone responsible for risk at board level participate
etc.venues,and get House,
Dexter 22 Royal
the answers
House, to Mint
Royal your House,
Mint questions.
House,
Industry partner
Industry partner London, EC3N
London, EC3N 4QN 4QN
etc.venues, Dexter House, 2 Royal Mint House,
With thanks to our sponsors:
etc.venues, Dexter House, 2 Royal Mint House,
London, EC3N 4QN For further info, please
London,
For EC3N
further please contact:
info,4QN contact:
Industry partner
IRM FOCUS
CAREERS
manage risks in their supply chain. Since then, I have away ordered in. M
‘Big Four’ advisory firms – and now head up the What are the best and worst aspects
risk consulting team at Schillings. of your role? CM
What does best-practice risk and worst parts of the role. Sometimes, keeping all CY
management look like? the plates spinning is a challenge, but – at the same
Earning the right to be in the big time – I am energised by the sheer excitement and CMY
conversations. Clients come to us because they profile of the things that I am working on. K
MIND
THE
C
M
GAP
GET THERE FASTER.
Y
CM
MY
CY
GET RISK QUALIFIED WITH IRM.
CMY
Monika Narula
A self-confessed tea inventor with a shelf of awards and a passion for books
Why risk management? stepping stone. Sharpen up your soft skills and never,
Because it’s a role where you get to talk directly to every ever, stop being a student. Business acumen is a must
level of stakeholder – from staff to senior management, as you move forward in your career, and this helps you
vendors to customers and board members to regulators. anticipate risks ahead of the competition.
There’s no better way to both learn about every aspect The risk profession involves finding gaps and telling
of business and get a take on where the world’s going business owners about them. And that’s not easy! So
next. Risk professionals don’t – or shouldn’t – sit in learn the art of communicating not-so-good news
ivory towers. The volume of interactions we have without hampering relationship with stakeholders.
every day is a sure-fire path to growing both The art of writing – especially emails – is often
professionally and personally. overlooked, but I’ve found it’s a must.
Plus, in this situation, you have And – perhaps most importantly
the opportunity to innovate – join a professional forum that
continuously, which is exciting. can keep you updated on different
And – on a practical career domains in risk management,
note – when the rest of the world help you connect to experienced
is shedding staff and economists professionals, and keep bringing
pore over unemployment figures, opportunities to you. A word of
risk management professionals caution though: don’t expect
stay in demand, as we’ve seen to be spoon-fed; you need to
with the recent global recession. keep yourself open and flexible
to absorb new ideas and exploit
What are your passions opportunities fully.
outside work?
I love to explore new places Who or what inspires you?
and read about people who I’m deeply inspired by real-life stories
have made it in life. Knowing of people who have dared to take
about different cultures across a different path in life, made it to
the world, meeting people with the top and changed the world in
different backgrounds, thrills me. some way.
These things can totally challenge Sir Richard Branson is someone
and change the perspective I admire for his guts on taking
you’ve been carrying all your life. risks in business and doing things
Keynote and Letters by JRD no-one had previously imagined. He
Tata are my all-time favourite started so much from scratch. There
reads. He urges people to ‘live life a little dangerously’! are a lot of lessons there.
I’m also fascinated by Greek mythology. It’s not just He’s written a number of inspiring books, using his
interesting in its own right, but I think it also quite subtly tells real-life experiences, that are all worth reading. Above
you about the realities of life and how to deal with them. all, he is in continuous touch with society as a whole for
New places and good books are important to me, but philanthropic reasons, which seems responsible.
I can’t beat catching up with my parents and brothers and Monika
sisters, as I live in a different city from them. Narula is an Tell us something surprising about
operational yourself
What’s the most important advice you risk manager I am a tea inventor. I’ve experimented and created more
would give young risk managers starting with RBS, than 50 flavours of tea. What could be a better stress-
out on their careers? India buster for a busy risk professional than an aromatic
First, view every small opportunity and assignment as a cuppa?
TO ADVERTISE HERE, CALL MICHAEL NISKIN ON +44(0)1223 273 535 OR EMAIL michael.niskin@rmprofessional.com