Risk Assessments; high level breakdown

Posted on Posted in Asset Protection, Business Continuity, Consultation, Crime Prevention Through Environmental Design (CPTED), Critical Infrastructure Physical Security, Critical Infrastructure Protection, Disaster Recovery, Emergency Preparedness, Emergency Response Plans, Enterprise Risk Management, Exercise, Fire Safety Plans, Loss Prevention, Loss Reduction, Physical Security, Project Management, Risk, Risk Analysis, Risk Assessment, Risk Management, Risk Mitigation, Safety, Security Management, Threat Risk Assessment

Many of our clients ask us to complete risk assessments of their operations, their physical site and even future projects. As complicated as some risk assessments can be we thought we’d take the time to break them down to their basic components.

do i know you

Recognize – more commonly stated as Identify the hazards or risks. Before you really can do that, you need to know and understand the difference between what a hazard is and what a risk is. A hazard is “something” with the potential to cause you, your business, your employees, your reputation harm. A risk that “likelihood” of that harm actually happening.

 

 

 

Impact – more commonly known as deciding who is going to be harmed and how. Who’s going to feel it, how is it going to happen? Almost like trying to figure out whether or not it is the butler in the den with the candlestick …for those who appreciate a good game of Clue.

speed bump

Bump – So you’ve recognized the hazards and risks and you’ve figured out where the impact is going to be. Now what? Now you have to protect it or at least put some form of management or control piece in to either slow it down or stop it completely from happening and affecting you.

 

Note it – Write it down, digitally record it, take pictures, tell a few people. Do what you need to, to record it. Why…because you want to monitor your success. You want to know that the bump you’ve put in place is working or needs to be re-recognized because the impact may have changed. It’s also due diligence. You can show that you know that there is or was something that raised whatever level of concern, you thought about it, did something about it and continue to watch it.

have we met before

Recognize it again – As I’ve said many times in the past and continue to…Plan the Work Work the Plan. Once you’ve done the assessment you need to do it again. You need to understand what is working, what has changed, what is new and what are you doing about it.

 

 

 

This article is to serve as a high level awareness tool. Unfortunately it doesn’t remove the complexities of your operation or the complexities of the risk assessment. But boiling it down to it’s barest components allows you to understand the varying phased or steps that are taken during a risk assessment. It’s important to note and understand that each of these components can be expanded and contracted as necessary to have a myriad of steps or components within each of them.

Nevertheless it all falls back to these high level principal components.

Plan the Work. Work the Plan

 

Leave a Reply

Your email address will not be published. Required fields are marked *