My approach to risk analysis starts with the following concept: If I was a gremlin, who did not want to get caught or be seen, but could stick my fingers in to every aspect of the business, what would I do to sabotage a particular business. Fortunately for the gremlin, many businesses don’t need sabotage at all. Once I uncover the top couple problem areas, it often makes more sense to focus on addressing these issues, rather than focusing on addressing all the other problems.
That, however, does nothing for measurement of risk mitigation. The problem of measurement is what I have been trying to wrap my brain around. Doug Hubbard gave me some suggestions for a specific business. Now it is a matter of trying those suggestions out and seeing if a more generic model can be developed. But as of right now, the universal measurement for Exposure Mitigation still escapes me.
0 responses so far ↓
There are no comments yet...Kick things off by filling out the form below.
Leave a Comment