Skip to main content

SRM: Strategic Risk Management



 What is SRM / Strategic Risk Management?

Strategic risk management (SRM) is best described as the process of identifying, assessing, and managing any risk that affects organization's strategy, strategic objectives, and strategy execution. Does your organization have a such process? If you answered yes!, great. Your organization is ahead of many by having a strategic risk management. That’s great! Because that means you have overcome the challenges I talk about in my 5-part video series on Linking ERM to Strategy.


The best and simplest way to describe the strategic risk management process is to say that it requires managing key input variables (internal and external environments) and key output factors (mission, objectives, strategy, and policies).


These factors influence how strategy formulation, implementation, and evaluation and control are related, and how a change in any one factor (e.g., corporate objectives) affects other factors (e.g., strategies, policies, programs, budgets, procedures, evaluation and control techniques).


If you have a good strategic risk management processes, are you wondering how the strategic plan can be integrated with organization's operational risk management (ORM)? Linking SRM with ORM can create significant difference in your organization's ability to achieve its strategic objectives. Incorporating the insights from the strategic risk management activities through the process of risk identification, and addressing them as part of the business plans will ensure your success.


SRM also delves into ORM by promoting activities that reduce some of the identified strategic risks. Those activities will hopefully become a part of their regular operations and processes. We help organizations in creating SRM Action Plan that not only integrates with their ORM but also results in effective control mechanism to sustain future gains.





If your ERM program is stuck in neutral and needs a boost to get moving again, contact me to discuss how you can get a tailored action plan to achieve your ERM goals.


Do you want to help ensure your organization achieves its strategic objectives but are unsure how to proceed?   Are you struggling to get your risk management initiative off the ground or back on track? Contact me to discuss your program today for more insights into ERM.

 
Labels:

Comments

Post a Comment

Popular posts from this blog

How to benefit from a Fishbone or Ishikawa Diagram for Root Cause Analysis

    What is root cause analysis? Root cause analysis is a structured process that helps healthcare, manufacturing and service sector managers and leaders in identifying contributing factors or causes of an accident, error, problem, event or occurrence. An accident, error, problem, event or occurrence are usually a result of a system rather than an individual mistakes. Understanding the system itself and contributing factors or causes of a system failure can help in preventing recurrences. Actions that are taken to address system failure helps in sustaining the improvements or corrective actions.   What is a fishbone or ishikawa diagram? Each and every outcome or effect is an end result of actions taken/omitted or in general causes/ A cause and effect diagram representing this relationship between cause and effect is called a called a fishbone or ishikawa diagram. A fishbone diagram is a visual way to represent cause and effect. It is a more structu...
Post a Comment
Read more

New Legislation Brings Additional Compliance Requirements For Helathcare Organizations in Ontario

The Ministry of Health and Long-Term Care released its statement indicating that the new legislation will strengthen privacy, accountability and transparency in the Health Care System. The Act introduces new measures that put patients first by improving privacy, accountability and transparency in the health care system. The changes introduced to HIPA ensures that Ontario remains the leader in health information and privacy protection across Canada. The Act will amend existing legislation: Making it mandatory to report privacy breaches  to the Information and  Privacy Commissioner  and, in certain circumstances, to relevant  regulatory colleges. Strengthening the process to  prosecute offences under the Personal Health Information Protection Act  by removing the requirement that prosecutions must be commenced within six months of when the alleged offence occurred. Doubling  the maximum  fines  for privacy offences from  $50,000 ...
Post a Comment
Read more