1

DEVELOPMENT RISK MANAGEMENT STRATEGIES (ISO 31000-2009)

Author : Setiono Winardi,SH.,MBA

E.winardi@updi-int.com (http://www.updi-int.com)

https://youtu.be/fpjAsBLAbB0

Mobile +62-813-1542-1509

Introduction

Risk Management Science is an applied science that can undergo expansion, like other

management sciences, where risk management as applied in ISO 31000, was originally intended

to provide an understanding of the needs of the risks inherent in the business is run.

Development the science of risk management will occur when changing times and technological

developments may affect the business, especially when the business is run has a strategic goal in

the form of continuous growth.

Overview

ISO 31000-2009 in business, providing the principles and general guidelines on risk

management, which can be used by the public, the company (organization), association, group or

individual, and not addressed to a particular industry or sector, because it can be applied to

throughout the life of the organization, a variety of activities, including the strategies

implemented and the decision to determine the risk, operations, business processes, functions,

projects, products, services and assets that can be applied to all types of risk, regardless of the

nature or kind, including the consequences of positive or negative.

Risk Management as outlined in the terms "ISO 31000-2009" which only provide general

guidance, and are not aimed at a common ground to manage risk in institutions, yet provide the

design to implement the plan in risk management framework, including taking into account the

needs of the organization, vision, mission, objectivity, structure, operations, processes, functions,

projects, products, services, or assets and used in practice.

With the rapid development of technology, thus affecting the business run, then the provisions of

ISO 31000 - 2009, concerning the risk management needs to get its development, so it can serve

as a guide to the business that has strategic goals such as growth and provide assurance on the

quality of service.

Understanding

The development of the science of risk management as stated in the provisions of ISO 31000 -

2009, there will be development towards a wider, not only as a general guideline to create the

ability to analyze the risks, but also create quality of service and improve the quality that can

provide benefits to the government, environmental health, companies, organizations, employees

and creates internal competence and external auditors, in carrying out all the provisions of ISO.

2

Development of the provisions of ISO 31000 - 2009, on risk management will give effect to the

company, auditors, government and the environment, so as to collaborate with other ISO

regulations, in order to create sustainable business growth.

Objective

1. The in-depth understanding of risk management to be implemented to meet the greater needs

in multi-national organizations

2. The benefits of risk management for the government

3. As a tool for decision making in analyzing risks in life

4. As a strategy for the creation of quality effectively and efficiently

5. Tools to develop the health and pharmaceutical industry

6. Creating added value to the business run as provide support in the framework of SWOT

Analysis

7. Define competency requirements that must be met for the internal / external auditors

8. Improving the function of the business enterprise resources management

Scope Development

1. General

1.1. Definition of Risk Management (ISO 31000 - 2009)

1.2. The scope of Risk Management (ISO 31000-2009)

1.3. Derivative needs ISO 31000 - 2009 in the quality management system standard

1.4. Modification of risk management techniques to meet the needs of large multi-national

organizations

2. Risk Management for Government

2.1. Risk management in government

2.2. Risk management in state-owned enterprises

2.3. Public sector and enterprise risk management

3. Decision Analysis as a risk management perspective

3.1. Value management, risk management and risk opposite

3.2. Decision analysis as a tool

3.3. Framework for making decisions

4. Elements of life in risk management

4.1. Humans and culture

4.2. The specialty of the human factor and culture

5. Strategies approach to support ISO 31000 quality effectively and efficiently

5.1. Reason needs the development of the quality management system

5.2. A framework for making the concept of quality of health

5.3. Risk management as an effective element in health QMS

3

5.4. Feedback globally for regulators and governments

5.5. Aligning the provision to perform guidance

6. ISO 31000 as a health development strategy

6.1. Regulation as support risk management

6.2. Risk management in research and development in the pharmaceutical industry in a

country

6.3. ISO 31000 as a destination for an approach that focuses

6.4. Benefits, challenges and follow-up plan

7. ISO 31000 as an added value to the business is run

7.1. ISO 31000 as a guideline increase business value

7.2. The added value created in ISO 31000

7.3. As a guideline to negotiate

7.4. When appropriate use of ISO 31000

7.5. External auditor functions in business

7.6. Function and role of Information Technology (ISO 27005-2011)

8. SWOT analysis as a function of ISO 31000

8.1. For faith describes negligence as a concept

8.2. Internal auditors in carrying out the functions government, Risk and Compliance

8.3. As a risk management role for government to provide a guarantee

8.4. Compliance aspects as control

9. Competence Assessor

9.1. Assessor basic competence in risk management

9.2. Environments that present a risk

9.3. Opinion assessor on risk management can create added value

9.4. Can provide an increased ability to manage risk in the business

9.5. Can create efficiency and cost effectiveness in business

10. Enterprise Resources Management

10.1. Can be implemented on ISO 27005 and 22301

10.2. Integrated report as quality assurance

Reference

1. Hubbard, Douglas (2009). The Failure of Risk Management: Why It's Broken and How to

Fix It. John Wiley & Sons. p. 46.

2. Antunes, Ricardo; Gonzalez, Vicente (3 March 2015). "A Production Model for

Construction: A Theoretical Framework". Buildings 5 (1): 209–228.

doi:10.3390/buildings5010209.

3. ISO/IEC Guide 73:2009 (2009). Risk management — Vocabulary. International

Organization for Standardization.

4

4. ISO/DIS 31000 (2009). Risk management — Principles and guidelines on implementation.

International Organization for Standardization.

5. Trevisani, Daniele (2007). Regie di Cambiamento (Translated Title: The Directions of

Change), Franco Angeli Publisher, Milan, ISBN 9788846483775

6. Bent Flyvbjerg and Alexander Budzier, 2011, "Why Your IT Project May Be Riskier Than

You Think", Harvard Business Review, vol. 89, no. 9, pp. 601-603

7. CMU/SEI-93-TR-6 Taxonomy-based risk identification in software industry. Sei.cmu.edu.

Retrieved on 2012-04-17.

8. Common Vulnerability and Exposures list. Cve.mitre.org. Retrieved on 2012-04-17.

9. Crockford, Neil (1986). An Introduction to Risk Management (2 ed.). Cambridge, UK:

Woodhead-Faulkner. p. 18. ISBN 0-85941-332-2.

10. Dorfman, Mark S. (2007). Introduction to Risk Management and Insurance (9 ed.).

Englewood Cliffs, N.J: Prentice Hall. ISBN 0-13-224227-3.

11. McGivern, Gerry; Fischer, Michael D. (1 February 2012). "Reactivity and reactions to

regulatory transparency in medicine, psychotherapy and counseling". Social Science &

Medicine 74 (3): 289–296. doi:10.1016/j.socscimed.2011.09.035. PMID 22104085.

12. IADC HSE Case Guidelines for MODUs 3.2, section 4.7

13. Roehrig, P (2006). "Bet On Governance To Manage Outsourcing Risk". Business Trends

Quarterly.

14. Lev Virine and Michael Trumper. Project Decisions: The Art and Science. (2007).

Management Concepts. Vienna. VA. ISBN 978-1-56726-217-9

15. Lev Virine and Michael Trumper. ProjectThink: Why Good Managers Make Poor Project

Choices. Gower Pub Co. ISBN 978-1409454984

16. Peter Simon and David Hillson, Practical Risk Management: The ATOM Methodology

(2012). Management Concepts. Vienna, VA. ISBN 978-1567263664

17. Flyvbjerg, Bent (2003). Megaprojects and Risk: An Anatomy of Ambition. Cambridge

University Press. ISBN 0521804205.

18. Oxford BT Centre for Major Programme Management

19. Craig Taylor and Erik VanMarcke, ed. (2002). Acceptable Risk Processes: Lifelines and

Natural Hazards. Reston, VA: ASCE, TCLEE. ISBN 9780784406236.

20. Cortada, James W. (2003-12-04). The Digital Hand: How Computers Changed the Work of

American Manufacturing, Transportation, and Retail Industries. USA: Oxford University

Press. p. 512. ISBN 0-19-516588-8.

21. Cortada, James W. (2005-11-03). The Digital Hand: Volume II: How Computers Changed

the Work of American Financial, Telecommunications, Media, and Entertainment Industries.

USA: Oxford University Press. ISBN 978-0-19-516587-6.

22. Cortada, James W. (2007-11-06). The Digital Hand, Vol 3: How Computers Changed the

Work of American Public Sector Industries. USA: Oxford University Press. p. 496. ISBN

978-0-19-516586-9.

23. BowtieXP. Retrieved on 2014-03-04.

24. Saghee M, Sandle T, Tidswell E (editors) (2011). Microbiology and Sterility Assurance in

Pharmaceuticals and Medical Devices (1st ed.). Business Horizons. ISBN 978-8190646741.

25. Navy and Marine Corps Public Health Center, A Risk Communication Primer—Tools and

Techniques

5

26. U.S. Department of Homeland Security, Understanding Risk Communication Theory: A

Guide for Emergency Managers and Communicators Report to Human Factors/Behavioral

Sciences Division, Science and Technology Directorate, May 2012

27. Mudrak, T., Wagenberg, A.V. and Wubben, E. (2004), "Assessing the innovative ability of

FM teams: a review", Facilities, Vol. 22 Nos 11/12, pp. 290–5.

28. David Cotts; Kathy Roper; Richard Payant (2010). The Facility Management Handbook -

Organizing the Department. New York: AMACOM. p. Chapter 2.

29. Brian Atkins; Adrian Brooks (2009). Total Facilities Management (3rd ed.). Chichester UK:

Wiley Blackwell. p. 119 to 130.

30. Gorden, Robert (2008). Start and Run a Successful Cleaning Business. Oxford: How to

Books. p. 74. ISBN 9781845282844.

31. Atkins, Stan. "Mr,". FM Magazine. Integrated Identity Media.

32. Booty, Frank (2010). Facilities Management. Amsterdam: Elsevier. p. 295.

33. New, Paul. "Head in the Cloud: Lease Management in the Modern Era". FM Innovations.

Retrieved 21 July 2015.

34. Alexi Marmot, Joanna Eley; "Office space planning: designing for tomorrow's workplace"

McGraw Hill P91