A Black Swan is an event that diverges beyond what is normally expected and is extremely difficult to predict. Recent history with the global economic crisis has brought this term into the lime light and as a result risk management efforts have been honed on addressing Black Swans in addition to traditional threats. In this article, we examine two common mistakes made by executives and managers in addressing Black Swans.
Risk Management is a Cost
Benjamin Franklin said, "A penny saved is a penny earned." In football (soccer for our readers from the States), when our favorite team beats a league rival, we call it a "six-pointer." This outlook should be applied to risk management efforts within the organization. Often times, risk management efforts are viewed strictly as a cost, and in some cases avoided as a result. Organizations that focus on profitability in the traditional since, and fail to implement risk management principles to protect the revenue, often fall the furthest following a Black Swan event.
This idea suggests a paradigm shift for most organizations that risk management efforts should be viewed as profit-generating activities. In conversations, we have heard of the difficulties risk managers have in convincing executives for more resources. This is followed nine times out of ten with the statement, "If they only realized how much it is going to cost without a risk management program."
Attempt to Predict Black Swans
Black Swans by definition are extremely difficult to predict. In predicting Black Swans executives and managers take the focus away from more frequent, less damaging threats. By focusing on predicting Black Swans and implementing controls that are meant to prevent the occurrence (albeit a predicted occurrence), organizations are exposing themselves and as a result become more vulnerable to common events and threats. Black Swans diverge from the norm and are unexpected. As such, statistical analysis and past events cannot serve as predictors for the occurrence of a Black Swan, which are unprecedented events.
It serves an organization more to focus on the results and consequences of a Black Swan and develop a business continuity and recovery plan, as opposed to attempting to predict its occurrence. By understanding the potential impact and vulnerabilities of the organization to a Black Swan and utilizing this information to develop a business continuity and recovery plan, an organization is better equipped to address a Black Swan when it occurs.
The concept of Black Swans and risk management go far beyond this article. Are hope is that this article is a starting point in examining your organization's approach to risk management and assess if it falls prey to these two common mistakes.