The Risk Appetite of an Organization
Essay by maidakhalid • March 1, 2016 • Research Paper • 1,196 Words (5 Pages) • 1,262 Views
Assignment no: 01
RISK ATTITUDE
[pic 1]
Submitted by: Maida Khalid
MSPM-1A
Dated: 3rd December 2015
Project risk is an uncertain event or condition that, if it occurs, has a positive or negative effect on one or more project objectives such as scope, schedule, cost, and quality. From the above definition, we can conclude that a risk can either be an opportunity or a threat: An opportunity has some positive effect on project objectives, while a threat brings some negative impact. The objective of risk management is to increase the probability of positive risks, and reduce the probability of negative risks (or reduce the impact). Every individual has specific behaviour towards risks; some people may want to accept the risk and others may want to avoid it. This behaviour depends on the risk attitude of the individual, and for a proper risk management plan, you must find the risk attitude of your stakeholders. There are many factors that determine the risk attitude. These factors can be broadly divided into three categories:
- Risk Appetite
- Risk Tolerance
- Risk Threshold
Risk Appetite:
It be defined as 'the amount and type of risk that an organisation is willing to take in order to meet their strategic objectives.[1] As per the 5th edition of the PMBOK Guide, risk appetite is the degree of uncertainty an entity is willing to take on in anticipation of a reward.
The risk appetite of an organization shows how much an organization is willing to take a risk in order to grow itself. It is the amount of risk that an organization is willing to accept to attain its business objective. Some organizations might be willing to take a high risk if the reward is high; others may want to play safe or go conservatively. If the organization is willing to take a risk, you will say that its risk appetite is high, and the organization that plays conservatively has a low risk appetite.
Risk Tolerance:
As per the 5th edition of the PMBOK Guide, risk tolerance is the degree, amount, or volume of the risk that an organization or individual will withstand. Risk tolerance tells you how sensitive the organization or people are to risks. High tolerance means people are willing to take a high risk, and low tolerance means people are not willing to take much risk. It is the willingness of a group of people or organization to accept or avoid risk. It shows the risk attitude of stakeholders or an organization in measurable units.
There are many factors which affects the risk tolerance. If the project is critical, the organization will be willing to take more risk; however, if the project is not very important, the organization may not be willing to take much risk. For example, your organization may allow schedule slippage by 5–10% or cost slippage by 3–5%. This is known as the risk tolerance of the organization. Since the terms “risk appetite” and “risk tolerance” often are used interchangeably, this tends to add confusion.
Risk Threshold
As per the 5th edition of the PMBOK Guide, risk threshold is the level of impact at which a stakeholder may have a specific interest. Below the risk threshold, the organization will accept the risk, and above the risk threshold, the organization will not tolerate the risk.
The risk threshold is a further step in the risk tolerance; you can say that it quantifies the risk tolerance with a more precise figure. In risk tolerance you have limits, but in risk threshold you have a clear figure. The risk threshold is the limit beyond which your organization will not tolerate the risk. Let’s consider a real world example.
You are planning to bid a contract. You think that the value for this contract will be approximately $100,000 USD. You are in the process of applying for this bid, and your organization has told you that due to some financial problems they cannot allow you to go beyond $10,000 USD, apart from the $100,000 USD. In this case, your threshold for this project is 10,000 USD
Summary: To determine the risk threshold, you will hold interviews and conduct meetings with stakeholders to find their risk appetite, then you will analyze their risk tolerance, and lastly you will define the risk threshold
...
...