The author wrote the first holistic risk management book in the early 1990s. The book collected together a series of papers written and presented by the author during the preceding twenty years as an evolving concept to enable risk to be addressed proportionately and in relation to the corporate object and cost/benefit analysis.
NAME: New Risk Manager’s Handbook Number One Volume Two, Approaching Risk Management, People and legislation, Risk management for sites
CLASSIFICATION: Book Reviews
AUTHOR: Ian M Johnstone-Bryden
PUBLISHER: Nighthawk Publishing
BINDING: electronic PDF
GENRE: Non Fiction
SUBJECT: Risk, risk management, policies, processes, tasks, valuation, risk levels, analysis, planning, measurement, methodologies, people, legislation, politics, sites, areas, compounds, structures
DESCRIPTION: The author wrote the first holistic risk management book in the early 1990s. The book collected together a series of papers written and presented by the author during the preceding twenty years as an evolving concept to enable risk to be addressed proportionately and in relation to the corporate object and cost/benefit analysis.
Prior to this, risk was a concept primarily developed by insurance companies to enable them to profitably underwrite risk when preparing insurance policies. For other industries and for government organizations, security was the dominant concept, interpreted in terms of risk avoidance. As a result, those enterprises following the security route had enormous difficulties in acquiring cost effective electronic communications systems.
Having initially being published in the traditional manner, with a printed paper hard back book, that then went through two reprints to meet demand, the author moved to the then very new medium of electronic publishing which made updating books easy and provided considerable freedom in the choice of layout and use of colour illustrations. This was appropriate for what was also still a pioneering concept in the safe achievement of objectives.
Some four years after the author wrote his first risk management book, and participated in conferences, trust criteria development and worked on pioneering trusted communications and information technology, governments and large corporations began to move from security concepts to risk management concepts, greatly reducing the cost of systems and enjoying enhanced system functionality. Where the concepts were used in the form proposed by the author, the results were generally very beneficial. Unfortunately, the term, ‘risk management’, has been brought into some disrepute by those who failed to understand the concepts, or deliberately misused the terms to describe a return to risk avoidance.
During 2012, the author began a major revision of his work and this volume of Handbook Number One is one of four volumes, reviewing the approach to true holistic risk management. Handbook Number One in its four volumes is a foundation work that sets the basis for later handbooks addressing parts of risk management in greater detail and to assist those working in specific areas of risk management.
In Volume Two, the author considers the primary cause of risk, people. Behind almost every risk is human action, either in creating risk through error, or deliberate actions, or in modifying a naturally occurring risk through human actions and inactions. From that basic understanding of how people interact with risks, the author considers risk in a site which is a defined area created by an enterprise to enable it to resource and execute processes, intended to safely achieve the object set by the enterprise.
Although the author has set out to produce a comprehensive basis for understanding risk in four volumes, it is possible to take each volume as a stand-alone work covering one group of foundation risk subjects. However, Volume One is the critical volume because it sets the basis on which the remaining three volumes develop the concept and application of holistic risk management. Taking the four volumes together, there is sufficient information to enable a novice to embark successfully on risk management, building direct experiences.
In this latest major revision, the author has taken the opportunity to revise the format of the work to provide for the needs of those reading the work on portable devices such as smart phones and tablet computers, in addition to those reading the work on DVD readers and computer workstations. For the first time, a comprehensive collection of risk management information can be carried by those analysing risk and undertaking its management while on the move.
This is an extremely useful book that can be used for any size of enterprise from the individual to the largest corporation or government enterprise. In its new form, the Risk Manager’s Handbook is also very affordable, even for personal use. The publisher has contributed to the ease of ownership by making the four volumes available a PDF files that can be downloaded from the Internet, and by using an encrypted file format that requires the purchase of a Key Code to unlock the file on a PDF reader device. This provides fast access, and also introduces a known level of integrity because the file is sealed as it has been written and the reader is assured that no one has modified or damaged the file contents.
At the time of writing this review, the reviewer did not have full information on the additional Risk Manager’s Handbooks in the series, or their likely dates of publication. It must be assumed that these will include major revisions of previously published Handbooks by the same author, including the very detailed and effective Handbook Number Five that provided the first comprehensive approach to Communications and Information Risk, detailing the evolution of risk management technologies, methodologies and criteria. Advance information from the publisher suggests that a number of new and revised Handbooks will be published during 2013.