Norman Marks will share his principles for effective risk management. It’s not about avoiding harm (“doom management”), it’s about achieving success. It’s about understanding what might happen, determining whether that’s OK, and then acting as needed. To be successful, you need to be making informed and intelligent decisions. Those are where risks are taken. That is how you optimize the likelihood and extent of success: achieving objectives.
We should avoid techno-babble and use the language of the business. Risk management can be considered effective when leaders of the organization and decision-makers at all levels assert that it is helping them be successful. The periodic review of a list of risks is a small part of risk management. It’s about helping leaders understand the likelihood of achieving objectives, not the out-of-context size of risks. Risk management is effective management!