Process risk

Last updated

Process Risk is considered to be a sub-component of operational risk. It exists when the process that supports a business activity lacks both efficiency and effectiveness, which may then lead to financial, customer, and reputational loss. This form of risk may be present within any stage of a business transaction. For instance, an error in pricing may be seen as loss in sales revenue, while a disruption in the fulfillment process may cause financial losses in terms of production quality and customer relationships. [1] The majority of operational risk events occur due to losses from ineffective processing of business transactions or process management, and from inadequate relations with trade counter parties and vendors. [2]

Contents

Definition

Process risk is a loss in revenue as a result of ineffective and/or inefficient processes. Ineffective processes hamper the achievement of the organization's objectives, whereas the processes that are inefficient, may be successful in achieving objectives, yet fail to consider high costs incurred. [1]

Forms

In fulfillment

In documentations

Mitigation

It is difficult to eliminate all process risk due to the high dependency on complex environments and the high input of human resources. Certain business practices applied to its processes, such as standardization, is an example of how to minimize operational risk. Furthermore, information systems aid in gathering information about process risk events.

Event logs is one approach to mitigate process risk. The use of events logs can help risk managers oversee and evaluate a consolidated database with all associated process risk. This approach does not completely eliminate process risk, yet it is a tool for the evaluation of the overall risk exposure so that the company may be able track and manage the risk linked to the overall business processes. [5]

Another possible approach would be to implement a collaborative approach within the operational processes of a business. In other words, the process risk in the supply chain may be mitigated through collaboration. For example, the use of this approach is said to help establish a strong communication channel throughout the supply chain. The objective is to reduce process risk by directly working with suppliers. The desired outcome would be to improve quality and communication between all parties involved in the supply chain, which then reduces the risk of losing customers. [3]

In addition, the establishment of a measurement framework may be used to improve the management of process risk. The framework should function as the means to identify and control process risk. These measures include, and are not limited to, adding internal processing controls on all business transactions, and increasing training and development to improve quality control. [1]

Related Research Articles

<span class="mw-page-title-main">Risk management</span> Identification, evaluation and control of risks

Risk management is the identification, evaluation, and prioritization of risks, followed by the minimization, monitoring, and control of the impact or probability of those risks occurring.

<span class="mw-page-title-main">Supply chain management</span> Management of the flow of goods and services

In commerce, supply chain management (SCM) deals with a system of procurement, operations management, logistics and marketing channels, through which raw materials can be developed into finished products and delivered to their end customers. A more narrow definition of supply chain management is the "design, planning, execution, control, and monitoring of supply chain activities with the objective of creating net value, building a competitive infrastructure, leveraging worldwide logistics, synchronising supply with demand and measuring performance globally". This can include the movement and storage of raw materials, work-in-process inventory, finished goods, and end to end order fulfilment from the point of origin to the point of consumption. Interconnected, interrelated or interlinked networks, channels and node businesses combine in the provision of products and services required by end customers in a supply chain.

The ISO 9000 family is a set of five quality management systems (QMS) standards by the International Organization for Standardization (ISO) which help organizations ensure that they meet customer and other stakeholder needs within the statutory and regulatory requirements related to a product or service. The ISO refers to the set of standards as a "family", bringing together the standard for quality management systems and a set of "supporting standards", and their presentation as a family facilitates their integrated application within an organisation. ISO 9000 deals with the fundamentals and vocabulary of QMS, including the seven quality management principles that underlie the family of standards. ISO 9001 deals with the requirements that organizations wishing to meet the standard must fulfill. A companion document, ISO/TS 9002, provides guidelines for the application of ISO 9001. ISO 9004 gives guidance on achieving sustained organizational success.

The ISO 14000 family of standards by the International Organization for Standardization (ISO) relate to environmental management that exists to help organizations (a) minimize how their operations negatively affect the environment ; (b) comply with applicable laws, regulations, and other environmentally oriented requirements; and (c) continually improve in the above.

<span class="mw-page-title-main">Performance indicator</span> Measurement that evaluates the success of an organization

A performance indicator or key performance indicator (KPI) is a type of performance measurement. KPIs evaluate the success of an organization or of a particular activity in which it engages. KPIs provide a focus for strategic and operational improvement, create an analytical basis for decision making and help focus attention on what matters most.

Financial risk is any of various types of risk associated with financing, including financial transactions that include company loans in risk of default. Often it is understood to include only downside risk, meaning the potential for financial loss and uncertainty about its extent.

Project portfolio management (PPM) is the centralized management of the processes, methods, and technologies used by project managers and project management offices (PMOs) to analyze and collectively manage current or proposed projects based on numerous key characteristics. The objectives of PPM are to determine the optimal resource mix for delivery and to schedule activities to best achieve an organization's operational and financial goals, while honouring constraints imposed by customers, strategic objectives, or external real-world factors. Standards for Portfolio Management include Project Management Institute's framework for project portfolio management, Management of Portfolios by Office of Government Commerce and the PfM² Portfolio Management Methodology by the PM² Foundation.

Supplier relationship management (SRM) is the systematic, enterprise-wide assessment of suppliers' strengths, performance and capabilities with respect to overall business strategy, determination of what activities to engage in with different suppliers, and planning and execution of all interactions with suppliers, in a coordinated fashion across the relationship life cycle, to maximize the value realized through those interactions. The focus of supplier relationship management is the development of two-way, mutually beneficial relationships with strategic supply partners to deliver greater levels of innovation and competitive advantage than could be achieved by operating independently or through a traditional, transactional purchasing arrangement. Underpinning disciplines which support effective SRM include supplier information management, compliance, risk management and performance management.

Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization's operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control and governance processes. Internal auditing might achieve this goal by providing insight and recommendations based on analyses and assessments of data and business processes. With commitment to integrity and accountability, internal auditing provides value to governing bodies and senior management as an objective source of independent advice. Professionals called internal auditors are employed by organizations to perform the internal auditing activity.

IATF 16949:2016 is a technical specification aimed at the development of a quality management system which provides for continual improvement, emphasizing defect prevention and the reduction of variation and waste in the automotive industry supply chain and assembly process. It is based on the ISO 9001 standard and the first edition was published in June 1999 as ISO/TS 16949:1999. IATF 16949:2016 replaced ISO/TS 16949 in October 2016.

Industrial market segmentation is a scheme for categorizing industrial and business customers to guide strategic and tactical decision-making. Government agencies and industry associations use standardized segmentation schemes for statistical surveys. Most businesses create their own segmentation scheme to meet their particular needs. Industrial market segmentation is important in sales and marketing.

Supplier evaluation and supplier appraisal are terms used in business and refer to the process of evaluating and approving potential suppliers by quantitative assessment. The aim of the process is to ensure a portfolio of best-in-class suppliers is available for use. Supplier evaluation can also be applied to current suppliers in order to measure and monitor their performance for the purposes of ensuring contract compliance, reducing costs, mitigating risk and driving continuous improvement.

<span class="mw-page-title-main">Supply chain risk management</span> Preventing failures in logistics

Supply chain risk management (SCRM) is "the implementation of strategies to manage both everyday and exceptional risks along the supply chain based on continuous risk assessment with the objective of reducing vulnerability and ensuring continuity".

Supplier risk management (SRM) is an evolving discipline in operations management for manufacturers, retailers, financial services companies and government agencies where an organization is dependent on suppliers to achieve business objectives.

Operational responsiveness is a quality of a business process or supporting IT solution, which indicates its ability to respond to changing conditions and customer interactions as they occur.

Total Security Management (TSM) is the business practice of developing and implementing comprehensive risk management and security practices for a firm’s entire value chain. This business process improvement strategy seeks to create added value for companies by managing security and resilience requirements as core business functions rather than as reactionary expenditures. TSM implementation involves a thorough evaluation of key internal and external stakeholders, distribution channels, and policies and procedures in terms of a firm’s level of preparedness for a variety of disruptive events.

<span class="mw-page-title-main">IT risk management</span>

IT risk management is the application of risk management methods to information technology in order to manage IT risk. Various methodologies exist to manage IT risks, each involving specific processes and steps.

Digital transformation (DT) is the process of adoption and implementation of digital technology by an organization in order to create new or modify existing products, services and operations by the means of translating business processes into a digital format.

In supply chain management, supply chain collaboration is defined as two or more autonomous firms working jointly to plan and execute supply chain operations. It can deliver substantial benefits and advantages to collaborators. It is known as a cooperative strategy when one or more companies or business units work together to create mutual benefits. There are two main types of supply chain collaboration: vertical collaboration and horizontal collaboration. Vertical collaboration is the collaboration when two or more organizations from different levels or stages in supply chain share their responsibilities, resources, and performance information to serve relatively similar end customers; while horizontal collaboration is an inter-organizational systemrelationship between two or more companies at the same level or stage in the supply chain in order to allow greater ease of work and cooperation towards achieving a common objective.

ISO 22300:2021, Security and resilience – Vocabulary, is an international standard developed by ISO/TC 292 Security and resilience. This document defines terms used in security and resilience standards and includes 360 terms and definitions. This edition was published in the beginning of 2021 and replaces the second edition from 2018.

References

  1. 1 2 3 Lam, James (2014-02-10). Enterprise Risk Management. CiteSeerX   10.1.1.137.3001 . doi:10.1002/9781118836477. ISBN   978-1-118-83647-7.
  2. Girling, Philippa (2013-10-02). Operational Risk Management. doi:10.1002/9781118755754. ISBN   978-1-118-75575-4.
  3. 1 2 Chen, Jie; Sohal, Amrik S.; Prajogo, Daniel I. (April 2013). "Supply chain operational risk mitigation: a collaborative approach" (PDF). International Journal of Production Research. 51 (7): 2186–2199. doi:10.1080/00207543.2012.727490. ISSN   0020-7543. S2CID   110019482.
  4. The Hong Kong Institute of Bankers (2018-01-16). Bank Asset and Liability Management. doi:10.1002/9781119444497. ISBN   978-1-119-44449-7.
  5. Pika, A.; van der Aalst, W.M.P.; Wynn, M.T.; Fidge, C.J.; ter Hofstede, A.H.M. (July 2016). "Evaluating and predicting overall process risk using event logs" (PDF). Information Sciences. 352–353: 98–120. doi:10.1016/j.ins.2016.03.003. ISSN   0020-0255.