Management of Risk (M_o_R®) Courses
Book your next training course through IT Governance and let our outstanding training service team take care of you from start to finish.
Booking couldn’t be easier: chose your training course by selecting a date on the grid below.
Please note all courses are subject to availability at the time of booking.
Management of Risk (M_o_R®) Courses
M_o_R: How it works.
Almost every organisational decision has an upside and a downside involving some degree of risk. Aimed at everyone who has ever made an important decision, M_o_R® is a robust yet flexible framework that allows organisations to assess risk accurately time and time again.
What can M_o_R deliver?
Effective risk management can bring far-reaching benefits to all organisations, whether large and small, public or private sector. These benefits include:
- better basis for strategy setting;
- improved service delivery;
- greater competitive advantage;
- less time spent fire fighting and fewer unwelcome surprises;
- increased likelihood of change initiatives being achieved;
- closer internal focus on doing the right things properly;
- more efficient use of resources;
- reduced waste and fraud, and better value for money;
- improved innovation;
- better management of contingent and maintenance activities.
Effective risk management structure supports better decision-making through a good understanding of risks and their likely impact. Ensuring that an organisation makes cost effective use of risk management first involves creating an approach built up of well-defined steps and then embedding them.
How M_o_R works
M_o_R is a route map for risk management, bringing together principles, an approach, a set of interrelated processes, and pointers to more detailed sources of advice on risk management techniques and specialisms. It also provides advice on how this approach and these principles and processes should be embedded, reviewed and applied differently depending on the nature of the objectives at risk.
The M_o_R framework is based on four core concepts:
These are essential for the development of good risk management practice. All are derived from corporate governance principles in recognition that risk management is a subset of any organisation's internal controls.
These principles need to be adapted to suit each individual organisation. Accordingly, an organisation's approach to these principles needs to be agreed and defined within a Risk Management Policy, Process Guide and Plans, and supported by the use of Risk Registers and Issue Logs.
The six process steps describe the inputs, outputs and activities involved in ensuring that risks are identified, assessed and controlled.
Embedding and Reviewing M_o_R
Having put the principles, approach and processes in place, an organisation needs to ensure that they are consistently applied across the organisation for them to be effective, and that their application undergoes continual improvement.
M_o_R shows how risks can be:
Only in recent years have organisations begun to recognise that risk management in its broadest sense can be applied to both negative threats and positive opportunities. In each case, a proactive approach is required that seeks to reduce the size of the possible threat or increase the size of the possible opportunity.
While it may be tempting to consider these as separate activities, opportunities and threats are seldom independent in practice. The flexibility of M_o_R ensures its approach applies to all levels of decision-making.
Strategic decisions are primarily concerned with long-term goals. These set the context for decisions at other levels of the organisation and the associated risks may not become apparent until well into the future.
Medium-term goals are usually addressed through programmes and projects to bring about business change. Decisions relating to medium-term goals are narrower in scope than strategic ones, particularly in terms of timeframe and financial responsibilities.
At the operational level, the emphasis is on short-term goals to ensure the ongoing continuity of business services. However, decisions about risk at this level must also support the achievement of long- and medium-term goals.
M_o_R will guide organisations through the systematic application of principles, approach and processes towards the tasks of identifying, estimating and evaluating risks, and then planning and implementing risk responses. This provides a disciplined environment for proactive decision-making.
Who uses M_o_R?
Equally applicable to large and small organisations in the public and private sectors, M_o_R has been adopted by hundreds of organisations worldwide, including:
- British Telecom
- Ministry of Defence
The key resource for anyone using M_o_R is the new, 2010, edition of Management of Risk: Guidance for Practitioners (which is available in softcover, downloadable pdf and annual online subscription formats).
Speak to an expert
Please contact us to discover how we can meet your Risk Management needs.