Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
businesses must approach risk. As the economy becomes more service driven
and globally oriented, businesses cannot afford to let new, unforeseen areas of
risk remain unidentified. Currency fluctuations, human resources in foreign
countries, evaporating distribution channels, corporate governance, and
unprecedented dependence on technology are just a few of the new risks
businesses must assess.
Jim Gunther
Home Page
Proactive Career Management - Prospective Client Information
About Harvard Aimes Group - Articles and Links
Essentials - Mistakes - Rules 101
TOP OF PAGE
Jim Gunther
General
1. An organization's risk management program must be tailored to its overall
objectives and should change when those objectives change.
6. Have clearly defined objectives that are consistent with corporate objectives.
8. For any significant loss exposure, neither loss control nor loss financing alone
is enough; control and financing must be combined right proportion.
TOP OF PAGE
10. Use flow charts to identify sole source suppliers or other contingent business
interruption exposures.
11. To more fully identify and assess risks, you must visit the plants and relate to
operational people.
13. Accurate and timely risk information reduces risk, in and of itself.
14. The risk manager should be involved in the purchase or design of any new
operation to assure that there are no built-in risk management problems.
15. Be certain environmental risks are evaluated in mergers, acquisitions and
joint ventures.
16. Select hazardous waste contractors on their risk control measures and their
financial stability or insurance protection.
17. Look for incidental involvement in critical risk areas (i.e., aircraft and nuclear
products, medical malpractice, engineering design, etc.). RISK CONTROL
18. Risk Control works. It is cost effective and helps control local operating costs.
19. The first (and incontrovertible) reason for risk control is preservation of life.
21. Be mindful that key plants and sole source suppliers may need protection
above and beyond normal H.P.R. requirements.
22. Use the risk control services of your broker and carrier as an extension of
your corporate program. Don't let them go off on a tangent.
23. Quality control should NOT be a substitute for a full product liability control
program. Quality control only assures the product is made according to
specifications, whether good or bad.
25. Duplicate and separately store valuable papers and back-up data processing
media.
TOP OF PAGE
Risk Financing
27. Risk Management should focus on two separate zones of risk relative to the
maximum dollar loss the company can survive from a single occurrence:
28. An entity with an unlimited budget can benefit from adopting all risk
management measures that have benefits to the entity with an expected present
value greater than the expected present value of cost of those measures to that
entity.
29. When, for budgetary or practical reasons, an entity must chose between
mutually exclusive risk management measures, the entity should chose that
measure which offers it the greater excess of benefits over costs, when both
benefits and costs are expressed as expected present values.
32. Retrospective rating plans of more than one year hamper flexibility.
TOP OF PAGE
Claims Management
35. The risk manager should be notified immediately (within 24 hours) of any
major loss or potential loss.
36. Major liability claims should be reviewed for adequacy of investigation and
accuracy of the reserve.
37. Be careful of local plant involvement in property and liability claims. Local
personnel may be too defensive to properly review a major claim.
38. Request early advance payments on large Property and Business Interruption
losses.
41. A claim and disability management program directed toward getting the
employee back to work as soon as possible can save money even though the
employee cannot do all phases of the job.
TOP OF PAGE
Employee Benefits
44. The provisions and costs of Employee Benefit programs should be clearly and
frequently communicated to employees.
45. When installing a new benefit plan, it is harder to reduce benefits than to
improve them later on.
46. A poor employee benefit program can generate more employee relations
problems than no plan at all.
47. Employee contributions, even small ones, can help you assess the real
popularity of a benefit plan.
48. Know the benefit plans of the companies with whom you compete for labor.
49. Benefit consultants and brokers are not efficient replacements for in-house
staff functions.
51. Legislation and regulation are intensifying in the employee benefit field. Make
your company's opinions known to the government BEFORE legislation in
enacted.
TOP OF PAGE
PENSIONS
52. The ultimate cost of any pension plan is equal to the benefits paid, plus the
cost of administration, less any investment earnings of the fund.
53. For the most part, different actuarial methods and/or assumptions may alter
the incidence of cost, but seldom alter the ultimate level of cost.
54. Clearly identify your corporate objectives with respect to your Retirement
program. Recognize that Retirement plans are long-term obligations that will
span many political, economic, and social environments.
55. Recognize that retirement plans are long-term obligations that will span many
political, economic and social environments.
56. Identify the nature and extent of pension liability prior to any acquisition or
divestiture.
57. Establish formal investment objectives with respect to your pension funds
that define risk, diversification, and absolute performance parameters.
58. Monitor the performance of your pension fund in the context of your
investment objectives.
TOP OF PAGE
International
60. Multinational organizations should step up to their international risk
management responsibilities.
61. Establish a worldwide risk and insurance management program; don't rely
totally on a Difference in Conditions approach.
TOP OF PAGE
Administrative
66. Establish a level of authority via a management policy statement.
68. Set up realistic annual objectives with your brokers, underwriters and vendors
and measure their accomplishments and results.
TOP OF PAGE
Technical
76. Insurance policy provisions should be uniform as to named insured, notice
and cancellation clauses, territory, etc.
77. The "notice" provision in all insurance policies should be modified to mean
notice to a specific individual.
78. Primary policies with annual aggregates should have policy periods that
coincide with excess policies.
79. Joint loss agreements should be obtained from Fire and Boiler & Machinery
insurers.
80. Add "drive other car" protection to your corporate auto insurance.
82. Know the implications of and differences between "claims made" and "pay on
behalf of" liability contracts.
83. Risks accepted under contracts are not necessarily covered under contractual
liability contracts.
TOP OF PAGE
Communication
85. All communication providing or requesting information should be expressed in
clear, objective language, leaving no room for individual interpretation.
88. Don't TELL senior management anything-ask them, counsel them, and inform
them.
93. In competitive bidding situations, advise each competitor that the first bid is
the only bid and stick to it.
94. Risk Managers should meet with underwriters rather than relying totally on
others for market communications.
TOP OF PAGE
Philosophical
95. The Risk Manager (and his corporation) should avoid developing the
reputation of a "shopper" or "market burner". This reputation can be detrimental
to the corporation's best interests and the Risk Manager's credibility.
96. Determine your personal level of risk aversion and temper intuitive judgments
up or down accordingly.
101. Common sense is still the single most important ingredient in risk
management!
TOP OF PAGE
Public domain...
To the best of my knowledge this material is in the public domain and, as such,
may be freely distributed.
As I went to a fair amount of effort to transcribe and format this material, I would
appreciate an acknowledgment should you post it on your Web site.
Thanks,
Not all risk managers succeed at their jobs of identifying and addressing
organizational risks. The external environment is a minefield of risks waiting to
ensnare the vigilant and unwary alike. Departments get downsized; risk
managers must do more with less. In addition, most risk managers occupy staff
positions, making them vulnerable to changes in the prevailing corporate winds
and whimsy. Top executives and even middle management may wonder just what
a risk manager does all day. And when belts are being tightened, the risk
management role appears to be one that could easily be consolidated with the
functions of the CFO, vice president of Finance, Controller, or Assistant Treasurer.
This means that today's risk managers must be quick, adept, and efficient.
Management isn't as forgiving as in years past. Mistakes by an errant risk
manager can spell the end of the department. This article examines common
mistakes made by risk managers and ways to avoid them.
Often, a firm's loss control program does not receive the attention it needs and
deserves. Perhaps one reason is that it is not as glamorous as some of the other
realms of risk management. With its emphasis on sprinkler heads, lifting belts,
and materials, loss control may suffer from the perception that it is very
pedestrian and mundane, like the boiler room in the bowels of a luxury cruise
liner. Somehow the allure of risk financing techniques-cash flow management,
retention levels, captives-seem ever so much more highbrow, analytical, and akin
to what business schools teach.
In addition, many risk managers come from either the brokerage or finance side
of the insurance business, not from safety or engineering. This may explain the
preoccupation with risk financing, giving safety and loss control shorter shrift. The
latter is somehow not quite as glamorous as flying to the Cayman Islands to
explore that rent-a-captive! Could it be that loss control is just, well, not as sexy
as the risk financing side of risk management? Maybe, but many organizations
would be better off with the mundane and boring in lieu of the excitement of
accidents, crises, and fire drills.
Examine your daily agenda and activity calendar. Does it reflect a clear
commitment to loss control? Many folks talk the talk when it comes to loss
control, but only their daily calendars and to-do lists show whether they walk the
walk. In fact, it could be argued that the more risk managers invest in loss
control, the less time and money they will need to devote to risk financing. The
best way to manage risk is to prevent a loss so that risk-financing issues become
moot! Risk managers should spend at least half their time on loss control and
safety. It is truly a sound investment of time and resources.
TOP OF PAGE
This is not to say that risk managers should continuously shop around their
business or service needs. It does, however, imply that risk managers should
periodically "stir the pot" regarding outside vendors, evaluating each on the
criteria of (1) results, (2) service, and (3) cost.
Step back and objectively look at the service providers used. Ask, "Is my
organization deriving full value from the gamut of service providers we use?" The
answer may be, "Yes." You may feel like you are receiving adequate or even
superior service from your broker, safety engineer, actuary, or risk management
consultant. But without staging ritualistic beauty contests, without testing the
market periodically, how do you really know? Newer, more innovative service
providers may be able to do the job better and cheaper.
TOP OF PAGE
Also, off-the-shelf risk identification products are not customized to the needs of
your organization, which can lead to overlooked exposures. These tools represent
a starting point-not a terminus-for any hazard identification process. Risk
managers must develop their own methods for continuously monitoring changes
in the organization and its environment to quickly identify new exposures or
increases in the levels of existing exposures.
TOP OF PAGE
Not all post-loss consequences are immediately apparent. For example, the cost
of a claim-even one covered by insurance-can be extraordinary. Aside from
retained claim costs via deductibles or self-insured retentions, there is the cost of
management time that could otherwise go toward making products or delivering
services. The hidden costs of a claim also involve the time wasted by
management in communicating with legal counsel, collecting documents,
answering interrogatories, preparing for and giving depositions, dealing with the
insurer, preparing for and attending trial, etc.
If you calculate the value of management time per hour and multiply it by the
number of hours a company may spend defending (or pursuing) a lawsuit, you
might find that these costs exceed the amount at issue. This calculation places
the wisdom of settling or perpetuating litigation in a different light. Such hidden
costs-in management productivity and fruitless downtime-are uninsurable, but
risk managers must assess and track them nonetheless. Failure to do so may
spell short-term success in litigation, but long-run failure in business.
TOP OF PAGE
For example, when Eli Lilly, the pharmaceutical giant, began having lawsuits
involving Prozac: many patients also sued the doctors who prescribed the
medication. To prove, that it stood behind its product and behind its physicians,
Lilly took the unprecedented step of offering to defend any doctor named in a
lawsuit as a result of prescribing Prozac. Although few physicians actually took
the manufacturers up on the offer, the goodwill engendered by this gesture paid
dividends by physicians who saw that the company stood behind the product. In
this case, the bigger business picture-retaining market share and
customer/physician goodwill-overrode the risk and liability concerns.
A narrow risk management perspective would have argued against this course of
action. Why embrace defense of the doctors and expand the company's liability?
But avoiding the risk is not managing the risk, and the ongoing popularity of
Prozac reiterates the soundness of this risk management decision.
TOP OF PAGE
According to Jim Gunther of the Harvard Aimes Group, what gets most risk
managers in trouble is their unwillingness to learn to speak the language of their
boss and the language of the greater enterprise. Further, many risk managers
insist on speaking "insurance-ese," posturing behind the jargon of their craft.
CFOs don't compliment risk managers on their elegantly crafted manuscript
policy, but rest assured, they will condemn the risk manager who is unable to
explain basic concepts to front-line and middle managers (and, for that matter,
top management) in language they can understand. Many risk managers might
derive more benefit from Toastmasters or a Dale Carnegie course than a CPCU
designation. This is not to suggest that technical competency isn't important; just
don't expect a lot of recognition for these accomplishments.
TOP OF PAGE
This does not mean that risk managers need programmer-level skills or be able to
dissect and reassemble a computer's internal circuitry. However, today's risk
manager should know the difference between Apple and IBM-compatibles, DOS
versus Windows, and realize a Pentium is not a Satanic symbol. In his book,
Empires of the Mind (William Morrow & Company, 1995), author Denis Waitley
says that in the 1990s, "You are either on-line or you are in a bread line." While
that may be overblown, the core idea has merit. Risk managers who are "too
busy" for computer training had better consider another line of work.
TOP OF PAGE
Look at the annual "Risk Manager of the Year" Award given by Business
Insurance. The issue profiling the winners typically has at least one article and
photo of the entire risk management staff, large or small. The message here is
that while only one person's face is on the cover, winning the recognition as "Risk
Manager of the Year" requires an effective team effort. Players win MVP awards.
Teams win Super Bowls.
Successful risk managers continually build "good karma" with other people and
departments. This implies generating a steady stream of non-self-promotional
communication to others about the activities, initiatives, and challenges of risk
management. This has many implications for how risk managers conduct
themselves on a daily basis. The following are some interaction suggestions.
In most organizations, risk management is a staff, not a line, function. The risk
manager does not make the goods or services on which the organization depends
for profit and existence. It is the risk manager's job to serve those who make the
products and services. When the risk manager becomes more of a hindrance than
a help toward the corporate mission, the pink slip may be forthcoming. No risk
manager is an island. The most technically brilliant risk manager with six
specialty designations after his or her name will be an abject failure unless he or
she can relate to other people as people.
TOP OF PAGE
Superman/Woman Syndrome
This common risk management mistake involves trying to do it all yourself.
Effective risk managers must learn to delegate, a tall order admittedly at a time
when downsizing is rampant. A risk management career is more like a 26.2 mile
marathon than a 1 00-yard sprint. Even the most talented and hardworking risk
manager will burn out if he or she tries to do it all himself or herself.
• Learn to delegate
• Achieve a sense of balance and perspective
• Possess a realistic view of their talents and
limitations
• Periodically "sharpen the saw" by getting away from
the job and engaging in activities that provide a sense of
self-renewal
As Clint Eastwood's movie character Inspector "Dirty Harry" Callahan said, "A
man has to know his limitations." This holds true for risk managers. Don't try to
do it all yourself, and no matter how much you enjoy the job, get completely
away from it for 2 weeks a year. You will return with a completely new
perspective.
TOP OF PAGE
Failure To Document
One precept of medical malpractice risk management is to document everything;
as the saying goes, "if it was not charted, it did not happen." This axiom applies
to non-medical settings as well. Risk managers need to remember that failure to
document may get them into a bind from which they cannot recover. American
coins may say, "In God we trust," but for all other settings, get it in writing! This
can include situations involving a side-deal or understanding with an insurer
regarding claims-handling prerogatives, an understanding with the broker
regarding annual compensation, and proof in an E&O dispute that a particular
coverage or endorsement was requested.
It is always better to have this documentation and not need it than to need it and
not have it. Insurance is no longer done on a handshake. When a loss strikes, the
broker or underwriter may be long gone, transferred to some faraway branch
office or with another company altogether. If you have any side-deals or
understandings with your broker or underwriter regarding coverage, get them in
writing! Better still, explore having them incorporated as manuscript
endorsements to the insurance policy or at least incorporated by reference.
Discarding old insurance policies in the belief that they will never be needed again
is another common documentation-related mistake. Companies should keep their
insurance policies forever (especially liability policies), and the risk manager
should keep track of them. This is true for companies acquired by your firm as
well.
TOP OF PAGE
Lack of Creativity
Highly effective risk managers must "think outside the box" occasionally. This
means considering noninsurance, nontraditional options for treating risk
exposures. Today's risk manager must reach into every corner of the
organization, seeking ways to improve safety, efficiency, and profitability. Risk
managers work with legal, human resources, contracts, facilities, customer
service, safety, security, workers compensation, accounting, finance, information
systems, and senior management. The job is limited only by the risk manager's
appetite.
Nancy Chambers is the risk and insurance manager at the University of Guelph in
Ontario, Canada. For a campus open house, the student Outdoor Club wanted to
rappel down a building. After hearing that it was too dangerous and could not be
done, students showed up with ropes and pulleys to prove how it could be done
safely. University engineers inspected the building, the participants' equipment,
and their qualifications. The result is that every year there has been a rappelling
demonstration at the open house. Creativity has its limits, though. Other student-
proposed events that were considered and rejected include fire walking and riding
large ice-blocks down grassy hills!
TOP OF PAGE
Risk managers err by thinking that they are too busy to pursue continuing
professional education. Life is a classroom. Effective risk managers are always
learning, continually supplementing their intellectual storehouse of knowledge,
skills, and ideas. Continuing education is the risk manager's own personal
research and development program. Like any business, it takes ongoing R&D to
avoid failure. Risk managers must find concrete ways to apply the knowledge
they glean from these continuing education efforts.
Yesterday's skill levels do not guarantee tomorrow's success for risk managers. In
fact, today's skills do not guarantee tomorrow's success. The learning process for
risk managers never ends. Highly effective risk managers are like sharks: if they
do not keep moving, they will-at least professionally-stagnate and die. Effective
risk managers keep studying and finding ways to apply what they learn. For
today's state-of-the-art risk manager, class is always in session.
TOP OF PAGE
Conclusion
The 12 common mistakes discussed above are admittedly incomplete and
subjective. To avoid most of these mistakes, risk managers must ask themselves
each day, "What am I doing right now to add value to this
organization/department/project or work team?" The list of career-killing
minefields is daunting; Figure 1 provides a list of other common risk manager
mistakes. Today's risk manager has a tough job indeed!
As the philosopher George Santayana said, "Those who ignore the past are
condemned to repeat it." Examine risk manager mistakes, not out of voyeurism,
morbid curiosity, or smug satisfaction over "the other guys" who blunder. Learn
from these mistakes, if only to avoid them. The challenges of risk management
have never been greater. Fortunately, though, never have the rewards been as
promising.
TOP OF PAGE
Figure 1
TOP OF PAGE
Mr. Quinley is senior vice president of Risk Services for MEDMARC and Hamilton
Resources Corp. in Fairfax. Virginia. He has written over 250 published articles
and five books on claims and risk management, including Litigation Management,
published by IRMI. He teaches classes in commercial risk management and
insurance for The CPCU Society. Mr. Quinley received his B.A. degree from Wake
Forest University and his master's degree from the College of William and Mary.
We graciously acknowledge the cooperation of, the author, Mr. Quinley and Jack
Gibson of International Risk Management Institute, Inc., the publisher.
Permission has been granted by the copyright owner to Harvard Aimes Group to
post this article. No further permission to post or re-transmit this item is given or
implied by Harvard Aimes Group as such permission can only be given (in writing)
by the Copyright holder.
Have a plan - A plan puts you in charge of your energies and activities.
Choose your own associates - Surround yourself with people that you know
and can trust.
To fill a key spot, pull out all the stops - Don't let normal constraints get in
the way.
Establish authority - Know the extent of your authority and practice it.
Insist on absolutes - Teach the right way, insist on the right way, be an
example of the right way to do business.
Handle corruption immediately - Gather facts, then act. Don't put it off. Get it
over with and move on.
Don't sugarcoat - Let your associates know exactly what lies ahead for them.
Don't over commit. Don't promise what you cannot deliver. Be honest and
realistic.
Get away from it all - Take your vacations. Real ones in which you get away
from work.
TOP OF PAGE
Field test your staff - Give them specific tasks, and then let them go do them.
Practice good public relations - Tell your story and that of the company's well
and timely.
Get good logistical support - Don't get trapped into handling small details. Be
free to do the things that only you can do and count the most.
Learn a little humility - Don't fall into the trap of arrogance. Not only is it
unseemly, it is bad business.
Share the glory - Praise those who work for you. Do it publicly. Give credit
where it is due.
Say "thanks" - In business and in life, it is impossible to say "thank you" too
many times.
Stay in touch with real people - They are your customers and employees.
Cut your losses - Don't let pride or stubbornness keep you in a market, product
or alliance that is not going to work out.
Beware of sycophants (yes men) - You need to be the kind of leader who
appreciates and rewards those who will tell you the truth no matter how
distasteful that truth might be. An executive is only as good as the information he
has - good and bad.
TOP OF PAGE
Be a servant - The surest way to success for a business executive is to put his
employees and customers first-in effect, to become a servant to them and
meeting their needs.
Be a fruit inspector - Every good tree bears good fruit, but a bad tree bears bad
fruit. When hiring, look long and hard at the results the person has produced.
Avoid grandstand plays - Business people are often tempted by the grandstand
play, usually to inflate an already oversized ego.
Take care of the children - Create a climate of balance where employees are
encouraged to spend quality time with their children.
Pay your taxes - Don't pay any more than you have to. But pay all that you
owe. Get the best tax advice available.
Let your results speak for you - Tell what you have done, not what you think
of yourself. Let your record speak for you.
TOP OF PAGE
Don't try to serve two masters - No one is happy. The job is done poorly - if at
all.
Remain calm in the storm - Regardless of the crisis, recognize the need for
calm and try to plan for tough times. Being calm does not mean being detached.
You can be calm and still be fully engaged and actively involved.
Evaluate constantly - Make sure those working for you understand both the
company's goals and the methods to reach those goals. Do this by asking
questions and constantly evaluating.
Take the narrow path - Success in business almost always comes from
differentiating what you make or what you do from your competitors. Find ways
to set yourself apart in positive ways from other employees.
Serve families - Genuinely care about the lives of your employees outside the
company.
Prepare for tough times - In business, it is necessary to prepare for both the
general tough times and the specific periods of crisis that are likely to come. Both
a crisis plan and general damage control plan need to be in place.
Stand up for your employees - When you stand up for your people, you are
building loyalty and camaraderie while also defending yourself.
Prepare for your successors - Recognize that you will, sooner or later, move
on. Have a plan in place to deal with it.
The 1990s: The Decade
of Risk Management
(Part 1 of 3)
In April 1989, several areas came forward for study, and teams were formed to
undertake an investigation. One area was how the risk management function is
performed and how it is perceived, particularly by senior management in the
business environment.
The "new risk team" proceeded to look at the genesis of risk management, its
present reality and where its future lies. Research undertaken by team members
was synthesized into what follows: a blueprint for the future which aims to
broaden the individual risk manager's role in order to contribute far greater than
now to Corporate America's need to manage a myriad of risks cohesively.
The paper is the opinion of the "new risk team" members; it is their hope that
others will offer views and reviews and thereby create a dialogue for change in
the status quo.
Risk managers are in the business of managing the future. In the next decade,
risk managers will create their own individual career opportunities by
fundamentally changing the traditional risk management function. Risk
management will emerge as an essential business discipline and the risk
management position will be elevated to the corporate officer level. The 1990s
will be "The Decade of Risk Management."
TOP OF PAGE
Should the preservation of assets and the continuity of earning power be claimed
as the risk management mission statement? Clearly it should not! This mission
can be claimed by the CEO, the treasurer, and the legal department and the
lobby security guard. It is absurd to suggest that a risk manager would propose
that assets not be preserved or that earnings should cease. Corporate assets will
be protected and earnings will continue. This basic mission was satisfied long
before there were risk managers.
While the logic is pristine and appealing, the traditional process fails to
adequately describe the practice of risk management within the business
organization. It is severely flawed in at least three areas:
The traditional five steps imply an isolated technician, working outside the
mainstream of management, who spontaneously identifies risks previously
overlooked by well-meaning, but basically Risk-illiterate, superiors. In fact, more
credit needs to be given to the intuitive risk recognition abilities of top
management, and risk managers need to acknowledge that risk identification is
often done for them by others.
The traditional mission and process have led risk managers into an over-reliance
on insurance. While effective insurance management calls for mega-dollar
decisions relative to risk retentions, limits, coverages and deductibles, the close
association with the insurance buying function has been detrimental to risk
managers for the following reasons:
• Insurance deals with painful or unpleasant
alternatives. It is a Bad news business. Many risk managers,
like Greek messengers, have lost their heads mismanaging
the inevitable bad news inherent to the functioning of
insurance mechanisms.
• Corporate America has a clear bias against insurance
(or insurance-related mechanisms) arising out of unrealistic
business expectations, a basic lack of understanding of
insurance cycles and prior, unsuccessful attempts to
establish long-term business relationships with insurance
companies. Additionally, the influence of bad experiences
with Personal insurance's cannot be underestimated.
• Insurance mechanisms deliver an inordinate number
of financial surprises, giving a false impression that the
managers of risk are less competent than, say, legal or tax
department managers. As long as planning and
predictability are top management's ~ measurements of
choice, risk managers will finish last in the image race.
The traditional definitions are limiting and no longer support risk management in
practice. Emphasis needs to be placed on the mission rather than the process.
The new combination of mission and process will emphasize the unique
contributions of risk management rather than show it is dunes An entirely new
platform must be constructed, universally adopted by the risk management
community and carefully promoted to Corporate America.
The platform must build its foundation on the risk manager's unique experience in
managing interdisciplinary skills. It must be flexible enough to allow for the
significant variations that exist among and between diverse business
organizations, independent departments and numerous layers of management. It
must be creatively drafted and promoted to avoid criticism from competing
disciplines.
The new mission and process are designed to help overcome built-in corporate
barriers to effective risk management. It is the unique ability to coordinate
interdisciplinary skills that is today's risk manager's strongest suit!
TOP OF PAGE
It is important to note that all reference to the word unmanaged has been
avoided. This has been done for several reasons. Manage is the most overused
and abused word in the business vocabulary. Second, the word strongly implies
traditional authority/responsibility exchanges. The mission statement requires the
application of skills possessed by other managers. It is political folly to suggest
that a risk manager direct (i.e., manage) an attorney in matters of law or a
treasurer's financial activities. Finally, the omission of manage is liberating It
permits a risk manager to turn the reporting pyramid upside down in order to tap
the unique skills of the best and the brightest within the organization, irrespective
of rank or structure.
TOP OF PAGE
The common usage definitions are only a starting point. Each risk manager must
apply his own unique interpretation to the descriptors, in light of the new mission
statement and the task at hand. The advantages of descriptors may be
summarized as follows:
New Opportunities
As a practical matter, the new risk position will become a repository of corporate
related risk functions - functions which demand the intense coordination of
interdisciplinary skills.
New Tools
Risk managers should strive to develop "receptors" within their organizations.
Receptors are individuals for whom specific risk management information will
have particular value and who will ultimately serve to fulfill the risk management
mission statement. Additionally, the risk manager can anticipate special action
from a given receptor.
Once the fabric of the receptor network is established, the risk manager can
patch individuals in and out of the matrix to serve a specific risk management
goal. A receptor may supply information, help the risk manager investigate,
influence others, integrate risk management principles, or interpret issues within
his/her area of expertise - all within an established matrix constructed by the risk
manager.
TOP OF PAGE
Creating Opportunities By Changing Corporate
Perceptions
Titles, first impressions and buzzwords are the rule in our fast paced business
world. Whether driven by business-like expediency or by human psychology,
people like to sort, categorize and group the abstract into familiar constructions.
It is convenient to group related functions under one or two-word titles.
because the traditional function has failed to take root in the consciousness of
Corporate America. The function must be upgraded to match the growing
acceptance of the title. By this process, risk managers will be evaluated within
the business organization.
With the exception of Officer, there are few powerful mental images projected
within the typical business organization. Risk managers are presently placed at or
near the bottom of the corporate hierarchy. The paradox is striking when one
considers that risk management routinely deals with issues affecting the virtual
survival of the corporation.
The problems associated with the title of risk manager were created, in part, by
the fact that an overused business title (manager) is used in conjunction with an
abstract term (risk). Other business titles developed out of a small group of
traditional staff functions, including legal, tax, personnel, treasury, marketing and
field operations. Titles associated with these disciplines are tightly defined, easily
recognized and universally accepted.
While it is quite common to find a risk management position reporting to the CFO
or general counsel, the reverse is never true, even though a risk manager may be
a financial expert or an attorney. With the number of unrelated disciplines now
claiming the "risk" title, it is conceivable that the title (perhaps without its current
group of practitioners) may leapfrog the traditional hierarchy of corporate
functions. The term "risk management" has become so popular, a synthesis of
risk related functions may congeal into a quasi-risk management title that could
be assumed by the individual who formerly held the title of, say, general counsel.
Perhaps, the CEO (chief speculative executive officer) would require an alter ego,
the CRO (chief risk officer). The concept conveys an appealing symmetry and a
democratic sense of checks and balances. The concept is not without precedent:
Energy firms have appointed environmentalists to their boards of directors;
nuclear utilities have created risk management committees with authority over
operating officers; and other business organizations are adopting titles like chief
information officer. Some "risk professionals" now report to the office of the
president.
TOP OF PAGE
Creating Opportunities By Changing the Function
Risk managers manage risk; but what does that mean to Corporate America? The
question has been complicated by a plethora of newcomers, each claiming the
risk management title as their own. From interest rate hedges to personal health
care maintenance, it appears the name is associated with every aspect of day-to-
day life.
It is thus very difficult to discern the function from the title risk manager. Yet,
there is no better title. Risk managers must learn to tolerate the high level of
public misconception that currently exists. After all, if the principles of risk
management can be as broadly applied as the new mission statement seems to
indicate, then it is reasonable to expect that different Brands of risk management
will germinate in unlikely places. The process is healthy and should be
encouraged. It enhances, rather than dilutes, the corporate risk management
function.
Since 1984, I've earned my living helping companies find good people to manage
their Risk Management programs. I consciously chose to operate in a very narrow
niche. I believe we are the ONLY Executive Search firm in the world that accepts
assignment ONLY in the area of CORPORATE risk management (including the sub-
specialties of Safety and Claims management). We do not accept assignments
Brokers, Carriers, or Vendors to the buyer community. And we work ONLY on an
Employer-retained basis.
TOP OF PAGE
TOP OF PAGE
Pre-Loss Considerations
The Five-Year Chunk Outlook
I've long advocated that folks look at their career in five-year "chunks". Beyond
your first couple job assignments (which should be looked at as post-graduate
education), the middle manager needs to form a mindset in which a job is
undertaken on the basis of a Five-Year option.
The investment in your own human capital will benefit your present employer
making you more valuable to them.
Should, however, you find your, then current, assignment less than stimulating
you may consider to exercising your "option" elsewhere. Certainly, the angst
often associated with making a change should be somewhat reduced because it
was - "part of the plan".
TOP OF PAGE
or
While it does not teach you how to be a Risk Manager, it does give a nice
overview. You might actually learn something.
It will separate you from more than 60% of the folks you may compete with in
the job market; especially at the near-entry level.
PRIORITIES
When considering the pantheon of professional educational opportunities, many
(Risk) Managers would be better served by the Dale Carnegie or Toastmasters
regimen than by the 10 CPCU classes.
TARGETED NETWORKING
There are only so many hours in the day. Few employers relish the thought of
their managers participating in every possible industry group.
Choose Wisely!
RIMS
I've always been an advocate of professional involvement with RIMS. For most
practitioners, it's the only opportunity to network with peers on a regular basis.
It's accessible. The ability to pick up the phone and "brainstorm" with a colleague
you've met through RIMS, who doesn't have an ax to grind, is incalculable. All
things considered, if you're depending exclusively on your broker for risk
management advice and counsel you run a serious "lack of perspective" risk.
INDUSTRY SPECIFIC RISK MANAGEMENT GROUPS
Most industries have formal or informal focus groups. While one needs to be
somewhat circumspect regarding anti-trust issues, these can be some of the most
worthwhile organizations to be involved with. The likes of the National Restaurant
Association, the Food Marketing Institute and the American Bankers Association
do a fine and focused job with their risk management sub-groups.
From my conversations over the years with top executives, I can report that
involvement with MAPI has enormous currency in the corporate hierarchy.
Because your boss and his/her boss have been exposed to MAPI, they know that
when you go to a MAPI meeting that you're going to work and you're going to
learn. That is not always the perception held of the annual RIMS conference.
TOP OF PAGE
The common thread was a failure to execute the technical fundamentals of the
job.
In the last 15 years I've often been cast in the role of the Undertaker (NOT the
executioner). I can't recall one case where the incumbent has been ousted solely
because of shortcomings in the technical aspects of one's Insurance/Excess
Insurance program. People DON'T get fired because of they are not good
insurance technicians.
I've yet to hear of a CFO comparing manuscript policies with his peers or
competitors resulting in anyone's demise. Similarly, I've never heard of a Risk
Manager being fired because his loss conversion factor was a point above a
similar company down the block. It just doesn't happen!
Does this mean that you don't have to watch the details? Of course not - That's
your job! Just don't expect a lot of appreciation for the nuance of your craft. You
are expected demonstrate "seamless competence" in the routine execution of
your job.
TOP OF PAGE