RISK MANAGEMENT Risk management consists of steps see figure 1.



Similar documents
ENTERPRISE RISK MANAGEMENT AND ECONOMIC CRISIS IN THE SLOVAK REPUBLIC

International Diploma in Risk Management Syllabus

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS

Accreditation Application Forms

Business Continuity Planning. Presentation and. Direction

Coping with a major business disruption. Some practical advice

KPMG Information Risk Management Business Continuity Management Peter McNally, KPMG Asia Pacific Leader for Business Continuity

Introduction to Business Continuity Planning

BUSINESS CONTINUITY PLANNING

How To Manage A Financial Institution

Business Continuity Management Systems. Protecting for tomorrow by building resilience today

Subject: National Preparedness

ESF-9 LAW ENFORCEMENT

Business Continuity & Disaster Recovery

PAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA

Information Security Policy. Chapter 11. Business Continuity

Business Continuity Policy. Version 1.0

Business Continuity and Disaster Recovery for Law Firms CAROLINE POYNTON

Section A: Introduction, Definitions and Principles of Infrastructure Resilience

A structured approach to Enterprise Risk Management (ERM) and the requirements of ISO 31000

Risk Management Guidelines

On the European experience in critical infrastructure protection

Assessment of natural hazards, man made hazards, technical and societal related risks and associated impact.

Emergency Response and Business Continuity Management Policy

Prepared by Rod Davis, ABCP, MCSA November, 2011

CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT

Joint Universities Computer Centre Limited ( JUCC ) Information Security Awareness Training- Session Three

M.S. in Emergency Management and Business Continuity

November 2007 Recommendations for Business Continuity Management (BCM)

Final Draft/Pre-Decisional/Do Not Cite. Forging a Common Understanding for Critical Infrastructure. Shared Narrative

Operational Risk Management Policy

The Economics of the UK-Iraq Conflict Keith Hartley Centre for Defence Economics University of York

BSO Board Director of Human Resources & Corporate Services Business Continuity Policy. 28 February 2012

FlyntGroup.com. Enterprise Risk Management and Business Impact Analysis: Understanding, Treating and Monitoring Risk

Council of the European Union Brussels, 21 September 2015 (OR. en)

Operational Risk, Scenario Analysis, and External Events: A Regulatory Perspective

BUSINESS CONTINUITY PLAN. Specific Issues for Public Health Emergencies. Guidelines for Air Carriers

EDUCATION IN THE AREA OF POPULATION PROTECTION IN HEALTH CARE

Introducing Catastrophe Risk man-made hazards*

Supplemental Tool: Executing A Critical Infrastructure Risk Management Approach

POL ENTERPRISE RISK MANAGEMENT SC51. Executive Services Department BUSINESS UNIT: Executive Support Services SERVICE UNIT:

RUSSIA TERRORISM RISK INSURANCE PROGRAMME

RWE aktiengesellschaft THE ENERGY TO LEAD AND SECURE STRENGTHS. Overview of Group Security.

Business Continuity Planning Instructions

APPENDIX 50. Enterprise risk management - Risk management overview

The Defence Strategy of the Slovak Republic

ENGINEERING COUNCIL. Guidance on Risk for the Engineering Profession.

ALASTAIR CLARK EXECUTIVE DIRECTOR, BANK OF ENGLAND

Project Resilience and Public Private Partnerships

Integrated Emergency Management and the Prior Notification of the Transportation of Radioactive Material

BUSINESS CONTINUITY MANAGEMENT IN THE PUBLIC SECTOR A ROUGH GUIDE

Table of Contents. 1. Organisation and Management (5 ECTS) 1.1. Management

CURRENT TRENDS AND DEVELOPMENT OF THE AUTOMOTIVE INDUSTRY IN THE SLOVAK REPUBLIC

FACTSHEET RECOGNITION CAM QUALIFICATIONS

How To Know How Many Major Transport Accidents In Norway

NHS Hardwick Clinical Commissioning Group. Business Continuity Policy

DISASTER RECOVERY PLANNING FOR CITY COMPUTER FACILITIES

Business Resiliency Business Continuity Management - January 14, 2014

Enterprise Security Risk Assessments What are we trying to protect and why?

A GUIDE TO CRIMINAL INJURIES COMPENSATION

Enhanced resilience for major emergencies Proven capability solutions to deliver the resilience you need

NHS 24 - Business Continuity Strategy

EXCESS EMPLOYERS LIABILITY. A Chubb liability insurance policy

CHUBB INSURANCE COMPANY OF EUROPE SE

GUIDANCE NOTE FOR DEPOSIT-TAKERS. Operational Risk Management. March 2012

Strategic Alliance. Business Continuity Policy

TEXAS HOMELAND SECURITY STRATEGIC PLAN : PRIORITY ACTIONS

8674/15 MC/pf 1 DGD 1B

Guideline on Business Continuity Management

Business Crisis and Continuity Management and Planning

Corporate risk register

Attachment N CPIC Vendor Resiliency Business Continuity Planning Questionnaire

Business Continuity and Disaster Recovery Planning

A Risk Management Standard

EBA Guidelines on Internal Governance

A GUIDE TO BUSINESS CONTINUITY PLANNING

External Supplier Control Requirements BCM

INFRASTRUCTURE MANAGEMENT AND SECURITY AREA OF STUDY Zachry Department of Civil Engineering Texas A&M University

Kuala Lumpur, Malaysia, May Report

Shankar Gawade VP IT INFRASTRUCTURE ENAM SECURITIES PVT. LTD.

General Assembly. United Nations A/69/723

Business continuity plan

UK Cloud Computing Interception - nothing new. Clive Gringras. Olswang LLP

How To Plan For A Derailment Of A Train Tanker

Essex Fire Authority

Managing risk, insurance and terrorism

RISK MANAGEMENT IN AIR TRANSPORT AND INSURANCE

How To Protect The Railway From Attack

Disaster Recovery. 1.1 Introduction. 1.2 Reasons for Disaster Recovery. EKAM Solutions Ltd Disaster Recovery

National Cyber Security Policy -2013

Business Continuity Management Governance. Frank Higgins Abu Dhabi March 2015

EU-U.S. DECLARATION ON COMBATING TERRORISM DROMOLAND CASTLE, 26 JUNE 2004

BUSINESS IMPACT ANALYSIS.5

BUSINESS CONTINUITY MANAGEMENT POLICY

London Business Interruption Association Technology new risks and opportunities for the Insurance industry

Guidance Note XGN XXX.1

How to Exercise a Business Continuity Plan (BCP)

Business Continuity Management Policy and Plan

Risk Management Systems of the Resona Group

CyberEdge. Desired Coverages. Application Form. Covers Required. Financial Information. Company or Trading Name: Address: Post Code: Telephone:

Transcription:

Mechanics ISSN 1312-3823 Transport issue 2, 2005 Communications article 0058 Academic journal http://www.mtc-aj.com RISK MANAGEMENT AND TRANSPORT INFRASTRUCTURE Jozef Klučka jozef.klucka@fsi.utc.sk University of Žilina, Faculty of Special Engineering, Dept. of Crisis Management, ul.1. mája 32010 26 Žilina, Slovak Republic Key words: risk, risk management, transport infrastructure, critical infrastructure Summary: Enterprise risk management is the integrated approach to deal with risks in a company. There are described in the paper steps, approaches and selected methods/techniques implemented in enterprise risk management. INTRODUCTION Characteristic of the current economic situation can be described: increase in the complexity of economic relations due to globalization and strengthening of mutual bonds of national and international economic relations, technological development generating pressure on innovation and shortening the product life cycle, acceleration of socio-economical and technological processes, which generate pressure on human resources (quality, mobility) as well as on flexibility of social systems. All of the above factors cause an ever-stronger pressure on company, its flexibility to react to changing conditions, external as well as internal. RISK All management decisions must take above mentioned factors into account. A crisis as the result of unresolved conflicts (internal, external) is a natural, unwanted part of company activities. The authors define risk as follows: Risk [4] is an inherent sign of every decision, whether good or bad. UK-3.1

Risk [10] is a qualitative and quantitative expression of hazard, the level or degree of hazard. It is the likelihood of the occurrence of negative event and its consequence. I will understand risk as the likelihood of the occurrence of a certain event, which has specific attributes/qualities. In common communication risk is associated with negative, undesirable behaviour of the system. in business practice approach to risk is as follows: risk is measurable (or there is an effort to identify and quantify it), linked to the expected risk return of an entrepreneur; the higher the exposure the higher the expected return of the entrepreneur, identification, analysis and presentation of potential sources of crisis events is a form by which the business sector minimizes the effects of risk factors on the company s activities; by applying the results of risk evaluation it is possible to analyze potential outcomes of identified risks and establish precautionary measures to lead the company out of crisis and measures for company s recovery, communication with all participants connected with management decisions and company activities shareholders, management, employees, state administration, the public, the business strategy optimizes the approach to risk management considering costs, the classical instrument for minimizing the effects of crisis is insurance. RISK MANAGEMENT Risk management consists of steps see figure 1. Risk Assessment - the content of this step consists of risk analysis and risk evaluation. As an enterprise operates within external and internal environment the role is to identify relevant risks, consequences and probabilities. The content and variety of applied tools depends on the approach, experience and type of business. Risk Treatment- is the approach to implement strategies e.g. risk avoidance, risk transfer, risk financing. The important in the risk treatment approach is the fact to evaluate benefits and costs. The result of the cost/benefit analysis gives ground, reasons to implement the appropriate, efficient risk strategy. Monitoring the change is immanent to the external and internal environment of an enterprise. Therefore one of the key objectives is to identify responsibilities, content of reports and the information flow within an enterprise in risk monitoring. In this paper I will apply the categories of enterprise risks [3]: Market risks, Credit risks, Operational risks. UK-3.2

The Organisations Strategic Objectives Risk Assessment Risk Analysis Risk Identification and Desription Risk Estimation Risk Evaluation Risk Reporting Threats and Opportunities Decision Risk Treatment Residual Risk Reporting Monitoring Fig. 1 Risk Management Framework [7] In relation to company crisis and risk management, company culture is a key phenomenon that will test the flexibility of management, the extent of employees identification with company objectives, adequacy of communication (its content and form) within and outside the company, the correctness of existing technology or technological methods. I see the position and relations of enterprise risk management as the part of business continuity management and an integral part of company strategy management. Enterprise Crisis Management and Business Continuity Management (BCM) Risk Risk Business Continuity Planning (BCP) Management, Enterprise Risk Management Planning Crisis and Recovery Before Crisis Crisis After Crisis Fig. 2 Hierarchy and relations among different categories in subjects Crisis management and Business continuity management UK-3.3

These are the most important conclusions for a company in applications and day-to- day risk management: permanent identification of mistakes and problems as possible sources of company risks, learning from mistakes, evaluation of mistakes and their carriers not for the purpose of identifying guilty persons, but as groundwork for proposal of optimization of company processes. Transport and critical infrastructure Transport infrastructure sector includes the following segments: aviation, the railways, maritime shipping, roads and highways, short-distance traffic. The role of each segment is important for business and non-business environment. The hazard, emergency with heavy impact on any of the segments can cause damages for all sectors and economy. Because of practical reasons (economical, operational, ) is not acceptable to implement unified preventive measures there is applied framework of critical infrastructure. Critical infrastructures consist of those physical and information technology facilities, networks, services and assets which, if disrupted or destroyed, would have a serious impact on the health, safety or economic well-being of citizens or effective functioning of governments in the Member States [8]. Transport infrastructure damage, threats, terrorist attacks or natural disasters reduce economic strength and undermine the economical and political stability of the country. Therefore the preventive measure must be implemented. In their implementation there must be applied following principles: the limited parts of transport segment can be included into critical infrastructure (the criteria scope, magnitude, effect of time for more details see [8] ), apply risk management principles in process of identification, measuring and controlling risks the transport network as well as Europe s critical infrastructure is highly connected and interdependent, the activities to defend transport infrastructure (critical transport infrastructure) should be coordinated between owners and operators, regulators and professional bodies, because of interdependence and connection national security measures should be coordinated within international community (for EU members within EU bodies). Conclusion Risk is part of all business activities. All management decisions must take into account risk and try to anticipate it. Besides its objective aspect, i.e. expression of probability, which determines the occurrence of event, the subjective approach to risk also, plays a significant role. Dealing with risk specific towards transport infrastructure (critical UK-3.4

transport infrastructure) means to apply risk management steps as was described in the paper. REFERENCES: [1] HILES, A.: Understanding Risk Management, Chartered Accountants in England and Wales, London 2002, [2] KOPECKÝ Z.: Enterprise position in civil emergency planning from the view of security risks of state, (orig. Postavení podniku v civilním nouzovém plánování z hlediska bezpečnostních rizik státu). In: 5. international conference, University of Žilina, Žiline, 2000. [3] LAM, J.: Enterprise Risk Management. New Jersey: Wiley Finance, New Jersey, 2003. [4] MIKOLAJ, J: Risk Management (orig. Rizikový manažment). Žilina: ŽU, 2001. [5] NOVÁK, L., ŠIMÁK,L.: General approaches to crisis planning (orig. Všeobecné prístupy ku krízovému plánovaniu v SR). Vítkovice v Krkonoších: In: Krizový management, 2004 [6] SHAW, G.L, HARRALD, J.R: Identification of the Core Competencies Required of Executive Level Business Crisis and Continuity Managers. Unpubl.., Washington, 2004, [7] A Risk Management Standard. London: irm, 2002, 17s. (www.theirm.org) [8] Critical Infrastructure Protection in the fight against terrorism, Commission of the EC, Brussels, 2004. [9] Implementing Turnbull a boardroom briefing. London: Chartered Accountants in England and Wales, 1999,34 s., (www.icaew.uk). [10] www.riskinstitut.org, 6.9.2005 UK-3.5

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information