Risk Culture

From Risk to Resilience: Find (& Overcome) Your Company’s Weakest Link

resilient bud

Don’t fall through the cracks — grow through them.

In an interconnected, volatile, global economy, supply chains have become increasingly vulnerable. Disruptions — even minor shipment delays — can cause significant financial losses for companies and substantially impact shareholder value. Globalization has made anticipating disruptions and managing them when they do occur more challenging. The potential risks of disruptions are often hidden, and the potential impacts may not be understood, which often results in black swan events – events that can only be fully understood after the fact.

Over the last seven years, researchers at The Ohio State University have been exploring the concept of enterprise resilience, i.e. how companies can prosper in the face of turbulent change by being able to recognize, understand, and compensate for vulnerabilities.

The result is the SCRAM (supply chain resilience assessment and management) framework, which enables a business to identify and prioritize the supply chain vulnerabilities it faces, as well as the capabilities it should strengthen to offset those vulnerabilities.

Six Vulnerabilities You Need to Know About

Every business has its vulnerabilities, and most of the time those vulnerabilities are inherent to the business and difficult to avoid, but by recognizing them, you’ll be better equipped to deal with disruptions as they happen.

1. Turbulence

Definition: Environment characterized by frequent changes in external factors beyond the company’s control

Examples: Unpredictability in demand, fluctuations in currencies and prices, geopolitical disruptions, natural disasters, technology failures, pandemics

2. Deliberate threats

Definition: Intentional attacks aimed at disrupting operations or causing human or financial harm

Examples: Terrorism and sabotage, piracy and theft, labor disputes, special interest groups, industrial espionage, product liability

3. External pressures

Definition: Influences, not specifically targeting the company, that create business constraints or barriers

Examples: Competitive innovation, government regulations, price pressures, corporate responsibility, social/cultural issues, environmental, health and safety concerns

4. Resource limits

Definition: Constraints on output based upon availability of the factors of production

Examples: Raw material availability, utilities availability, human resources, natural resources

5. Sensitivity

Definition: Importance of carefully controlled conditions for product and process integrity

Examples: Restricted Materials, supply purity, stringency of manufacturing, fragility of handling, complexity of operations, reliability of equipment, safety hazards, visibility of disruption to stakeholders, symbolic profile of brand, customer requirements for quality

6. Connectivity

Definition: Degree of interdependence and reliance on outside entities

Examples: Scale and extent of supply network, import/export channels, reliance on specialty sources, reliance on information flow, degree of outsourcing

So in the face of all these disruptions, what’s the answer?

Answer: resilience.

Resilience is the capacity of an enterprise to survive, adapt and grow in the face of turbulent change.

Resilience means improving the adaptability of global supply chains, collaborating with stakeholders and leveraging information technology to assure continuity, even in the face of catastrophic disruptions.

Resilience goes beyond mitigating risk; it enables a business to gain competitive advantage by learning how to deal with disruptions more effectively than its competitors and possibly even using those disruptions to its advantage.

Resilient systems don’t fail in the face of disturbances; rather, they adapt.

 

Article adapted from “From Risk to Resilience: Learning to Deal with Disruption,” by Joseph Fiksel, Mikaella Polyviou, Keely L. Croxton, and Timothy J. Pettit.

The Risk Institute at The Ohio State University’s Fisher College of Business exists to bridge the gap between academia and corporate America. By combining the latest research with the real-world expertise of America’s most forward-thinking companies, the Risk Institute isn’t just reporting risk management’s current trends — it’s creating tomorrow’s best practices.

Risk Culture Plays a Critical Role in the Financial Services Industry

Risk Institute Portraits Fisher Hall - Third Floor Feb-02-2016 Photo by Jay LaPrete ©2016 Jay LaPrete

By  Philip S. Renaud II, MS, CPCU
Executive Director, The Risk Institute
The Ohio State University Fisher College of Business

 

The Risk Institute at The Ohio State University held the first in a series of breakfast sessions that focused on Risk Culture in the Financial Services Industry.

The session was moderated by The Risk Institute Academic Director Dr. Isil Erel who guided the discussion of the four-person panel of experts comprised of:

The session concentrated on how the financial crisis has elevated regulatory risk to a more central point in the discussion of risk management. The panel focused on how an organization’s culture is measured. Measurement can include the more traditional standard, regulatory approach with the evaluation of policies and/or process breaches to the softer side of culture that measures the “tone at the top.” The softer actions can include “raising your hand” when a process, policy and/or an ethical challenge is observed.

Panel Risk Culture Financial Institutions 3.2016

Helga Houston, Kevin Allard, Steve Chenenko, Rick Wilson

The panel went into an in-depth discourse for session attendees on how three levels of defense need to be present in an institution to evaluate the proper culture within. Those include:

  1. Business Unit oversight
  2. Risk Management oversight
  3. Auditor and/or Regulatory oversight

It is vital for all three oversights to be integrated in an organization’s risk culture. Furthermore, it is important to consistently gauge the organizational culture to evaluate if associates are doing the right thing, and whether they believe in the organization and what it stands for or if they are acting simply because they are instructed to do so.

The session proved thought-provoking and demonstrated The Risk Institute’s unique role in uniting industry thought leaders, academics and highly respected practitioners in an ongoing dialog to advance the understanding and evolution of risk management. The Risk Institute’s conversation about risk management is open and collaborative with its relevance across all industries and its potential as a tool for competitiveness and growth.

For more information about upcoming events, our students, partners or research, visit our website: fisher.osu.edu/centers/risk.