Reflect on Risks to your Strategy or the Lack of Risks in your Strategy

Reflect on Risks to your Strategy or the Lack of Risks in your Strategy

We recently assisted an organization review its program risks for regular reporting purposes, but also with an eye toward enhancing their risk management methodology and, potentially, their risk posture. At the same time, we’re working with the same organization on a refresh of their multi-year strategy based on new technology developments and, as always, changing requirements.

As we reviewed their existing set of known programmatic risks, we also questioned whether we had also correctly aligned their strategic initiatives to best address their risks. In the end, we did this because we incorporated a Strengths, Weaknesses, Opportunities, and Threats (SWOT) analysis into the strategic planning process. Until that point, however, I had not consciously checked the strategy with the organization’s risks in mind.

Risk management includes avoiding, mitigating, or transferring risks. Each approach requires some determination on risk priority and then an organizational decision, initiative, or allocation of resources. They should be traceable to elements in an organization’s strategy.  Here are a few examples:

  • If an organization relies on cooperation with a number of external organizations to accomplish its own objectives, the organization may have a corresponding risk of those external organizations later choosing not to cooperate. If this is the case, then an organization’s strategy should include resources dedicated to stakeholder outreach and strategic communications
  • If an organization relies on certain technology channels to deliver key messages, the organization may have a corresponding risk from disruptive consumer technologies that, if widely adopted, obviate existing channels while strengthening a new channel that the organization is not using. If that is a risk, then an organization’s strategy might include resources dedicated to identifying emerging technologies with an initiative to establish criteria for determining which technologies are on a consumer adoption horizon. In fact, there’s a large body of knowledge available for this type of evaluation, and a corresponding initiative could be undertaken relatively inexpensively

Conversely, if an organization identifies a risk that cannot be addressed through a strategic initiative, it is also possible that the risk itself is invalid. Rather than assuming that all risks should be traced and managed in the context of an organizational strategy, I suggest using risk management practices as a litmus test for organizational strategy, and vice versa.

If the outcomes of each process complement the other, then both risk management and strategic activities are on the right track.

Blog Risk Management Technology

Contributors

* Arc Aspicio |

Arc Aspicio enhances the future of our nation by creating bold ideas and bringing them to life. A consulting and solutions company, Arc Aspicio solves problems by applying our integrated capabilities in strategy, design, data, human capital, behavioral science, and technology. The company passionately pursues our vision to be the hub of creativity where people take action to change the world. To do this, employees collaborate with clients and partners to create solutions using a human-centered approach. Innovation is not possible without action. The company focuses on strategy first, then takes a hands-on approach implementing ideas to achieve results. Join Arc Aspicio and our Strategy Innovation Lab (SILab) by creating and sharing ideas to inspire people to change the world. Follow us on Twitter @ArcAspicio @SILabDC and, #welovedogs!

Reinventing Strategy

Reinventing Strategy

Since the GPRA Modernization Act in 2010, agencies across the Federal Government have raced to establish new Strategic Plans in response to incoming Presidential Administrations and agency leaders. Developing a new Strategic Plan is incredibly exciting for an agency. Leaders can redefine priorities, frontline managers can improve mission performance, and employees can better engage with the mission. Strategy, however, is so much more than just a Strategic Plan.

Running IT Like a Business: How Technology Business Management is Shaping the Future of Federal Agencies

Running IT Like a Business: How Technology Business Management is Shaping the Future of Federal Agencies

As the Government continually looks for ways to increase efficiency and encourage innovation, Information Technology (IT) is emerging as a solution to these needs. Recent Federal guidance mandates all agencies to adopt a new framework for better understanding IT costs. Technology Business Management (TBM) is a framework that incorporates IT departments into the overall business network, shifting away from treating IT as an independent unit. This provides a clear way to evaluate and manage IT, running IT as a business and communicating the value of new IT investments.

Behavioral Science – Using Behavioral Science to Effect Action

Behavioral Science – Using Behavioral Science to Effect Action

How do organizations encourage behavior change in their customers? Increasingly, they focus on customer experience, and as a consequence employ behavioral science methodologies. At the heart of behavioral science is the consideration of how an organization can make small investments that generate incremental savings/returns while considering both customers and organizational benefits. One example is Transportation Security Administration’s (TSA) Pre✓® and U.C. Customs and Border Protection’s Global Entry programs.

Launching into #Action Through Strategy

Launching into #Action Through Strategy

As a new employee, your first company-wide meeting can make you nervous. This was how I felt.

Arc Aspicio’s recent Strategy Launch Day was so well planned and it involved participants so that I learned that I had nothing to worry about! The company treats each employee equally and equips even the newest joiners with the information and skills they need to have a meaningful experience

What Being a Consultant Means to Me

What Being a Consultant Means to Me

As a Consulting Associate at Arc Aspicio, I provide expertise and insight to help clients solve difficult problems. To be successful, a consultant does not need only to be a subject matter expert on their client’s industry and needs - though this often ends up happening over time.

Captivate Your Audience Through Design+Data

Captivate Your Audience Through Design+Data

So often, senior leaders must communicate their strategic and simple vision in a world of growing complexity. They must make decisions – and frequently explain them – based on an enterprise view of their data. It’s getting easier to do this these days through data visualizations and infographics that speak to specific employee and stakeholder audiences. Design+Data is what we call it at Arc Aspicio.

Chief Data Officers: Six Steps to Manage Data as an Enterprise Asset

Chief Data Officers: Six Steps to Manage Data as an Enterprise Asset

With an exponential increase in the types and quantities of data, organizations need defined strategies and techniques to manage data as an enterprise asset. To create enterprise-wide use of data, a Chief Data Officer (CDO) needs a clear data agenda for leadership and the whole organization to address current and future needs. CDOs should follow this six-part data plan to achieve short term capability gains and plot a path to greater enterprise data maturity.

Securing Cyberspace: Agile Strategy to Counter Changing Threats

Securing Cyberspace: Agile Strategy to Counter Changing Threats

Cybersecurity, managing and protecting computer systems from attacks, is evolving just as quickly as the techniques hackers use to cause damage. Historically, the public and private sectors believed that stronger technology and more advanced computer systems alone were enough to prevent attacks. As new trends emerge and the technologies used to both conduct and prevent hackings improve, cybersecurity strategies must remain agile, trying new tactics to counter changing threats.

Hacking Back – Do the Benefits Outweigh the Risks?

Hacking Back – Do the Benefits Outweigh the Risks?

With the increased frequency and sophistication of cyber-attacks worldwide, companies and executives are becoming frustrated with a traditional focus on defensive tactics. As a result, some private sector actors are taking a more active role in cybersecurity by “hacking back” – hacking against the very groups that are attacking their systems in retaliation or to retrieve stolen data. As hacking back rises in popularity, it is important to consider a number of political and legal issues and the risks to counter-terrorism efforts.