How to be a good team player
A team player is an individual who will unify others for a purpose by exchanging information and ideas and empower them and have trust in them. Teamwork is the potential to work together for a common vision. A good team player assists his team by using his strengths, and clearly understanding his task. He must […]
An Overview on Negotiation – Meaning, Skills and its Elements
Let us first go through a real life situation to understand negotiation better. Your friends want you to come for a late night movie with them. However you very well know that your parents will never appreciate your staying away from house at late nights and you don’t even want to miss the movie as […]
Approaches to Risk Management
There is a common misconception about risk management that the goal of risk management is to completely eliminate the risk from a business. This is not really true because the elimination of risk is practically impossible. Instead, the goal of risk management is to first ensure that the organization has a clear picture of the […]
Organizational Diversity – Fostering an Inclusive Environment
The question that is uppermost on business leaders’ mind is how to foster an inclusive environment as the current environment in the business world is about not tolerating harassment and discrimination. For instance, in recent years, there has been some high profile cases involving senior management figures in the US and in India in matters […]
Importance of Culture in Business Decisions and Its Implications for All
Increasing Importance of Culture in Corporate Decision Making The Indian Information Technology (IT) bellwether and the market leader in software services, Infosys, announced that it was appointing Salil Parekh as the CEO or the Chief Executive Officer following the resignation of Vishal Sikka, a few months ago. When the announcement was made, the company emphasized […]
The Basel guidelines are the gold standard when it comes to identifying and managing operational risks. This is the reason why every organization tries to align its risk management practices with those recommended by the Bank of International Settlements. The guidelines provided are quite exhaustive.
The Bank of International Settlements has recommended that every operational risk can be classified into one of the seven categories.
In this article, we will have a closer look at those seven categories as well as how this categorization helps in better risk management.
For instance, an internal party may intentionally want to misappropriate property owned by the company. In other cases, they can simply be taking more risks by trying to circumvent the systems which have been built.
Instead, they may intend to defraud the company by swindling money from them or by getting the company to break the law. In such cases, there are no internal parties involved in the fraudulent activity.
The company may not have condoned the behavior of its erring employee. However, it will be held responsible and may have to pay monetary damages.
Companies may also have operational risks arising from non-compliance with policies regarding the health and safety of workers.
As a result, they may have to pay damages to the injured or otherwise aggrieved personnel.
For instance, consulting companies like Arthur Andersen were penalized for fraud when their employees were found to be in cahoots with the perpetrators of the Enron fraud.
Similarly, a company may have to face operational risk because of non-compliance with its duties towards the client.
Investment banks have been penalized for wrongfully advising their clients to buy certain securities when they were themselves in the process of selling out those securities.
Companies manufacturing products may also face lawsuits if they sell defective products which do not work as intended.
However, these assets may get destroyed in riots, terrorist attacks, or even acts of God.
Since building these assets requires a significant capital outlay, the losses may also be significant. This is the reason why effective operational risk management is necessary in such cases.
It is important to note that physical information technology assets such as servers and computers are also included in this category even though there is a separate category for physical assets.
If a company faces any outage or data theft that arises because of the improper functioning of its business systems, it could face severe losses. These losses could be related to lost business revenue. However, they could also be related to lawsuits that may arise because of the data which has been compromised.
For instance, a company may be under obligation to manufacture and deliver a certain quantity of goods.
However, it may not be able to follow through on its promise because of the inability to procure raw material because of a labor strike.
Alternatively, it may have wrongly estimated the time required to complete the task and may have overcommitted. This too can lead to losses in the form of fines, penalties, demurrages, and lost reputation. It is for this reason that these scenarios should also be included in the list of operational risks and attempts should be made to avoid them or mitigate them if they do arise.
This framework is extremely useful for companies trying to identify their operational risks. Since all risks can be classified in these seven buckets, they serve as the topic for brainstorming.
Also, this makes the risk identification process standardized across companies.
Your email address will not be published. Required fields are marked *
