Incorporation of international risk management standards into federal regulations

The issue of risk management has gained attention in the field of administration due to the dissemination of international frameworks. In Brazilian federal public administration, risk management is a recent and expanding practice. This research analyzes how international corporate risk management frameworks have been adopted by the federal government through regulations and guidelines. The study adopts the concepts of coercive, normative, and mimetic forces from the neo-institutional theory, and examines the presence of international norms in the Brazilian regulations. Through a qualitative approach, content analysis in documents, norms, interviews, and seminars was used to identify traits of the COSO ERM and ISO 31000/2009 frameworks, which were chosen based on relevance. Results identify important actors pushing for the use of international frameworks, such as international organizations, professional associations, and public agencies, especially those related to government audits. Despite the strong international influence, the Brazilian norms are adapted to the organizations’ context and allowing the maintenance of national autonomy.

Enterprise Risk Management Applications at Bist-Istanbul Non-Financial Companies

Turkey has made great strides towards increasing international competitiveness and aims to adapt to the international risk management platforms to further its national economic policy. Risk management would serve to the corporates to run their business in optimum level, to reduce the chance of the hazards, to protect the resources and to improve the image. The purpose of this study is to investigate the inherent risks plaguing non-financial companies in Turkey and the risk management behavior and insurance approach undertaken in order to combat these important risks. The analysis consists of survey questions generated via appropriate risk management literature and reports from the Federation of European Risk Management Associations and Risk & Insurance Management Society. The sample consisted of 59 high level Risk Managers from publicly available non-financial firms on BIST, 20 of which were included under top 100 of ISO 500 by 2017.

The Risk Management Profession in Australia

This study aimed to identify to what extent Australian organizations have any plans to manage business continuity threats, and the nature and content of these plans. Sixty-four respondents who were risk management professionals were surveyed to explore the Business Continuity Practices within their organizations. The ANOVA analysis showed 39 per cent of the organizations had developed an enterprise-wide plan of which just over half stated that the plan was tested. However, 36 per cent of respondents had no plan, an “informal plan,” were developing a plan, or did not know whether they had a plan. Standardized guidelines for a process to manage risks have been developed across many spheres and countries and are brought together in the international risk management standard ISO31000 (ISO, 2009), which presents a process applicable to all organizations and all risks. Human resource practices that promote consistent communication and an organizational culture that allows business continuity plan values, attitudes and beliefs to become embedded and to move across traditional organizational boundaries are therefore important for gaining the cooperation needed to implement plans in an organization's operational areas pertaining to business continuity.

The Risk Management Profession in Australia

This study aimed to identify to what extent Australian organizations have any plans to manage business continuity threats, and the nature and content of these plans. Sixty-four respondents who were risk management professionals were surveyed to explore the Business Continuity Practices within their organizations. The ANOVA analysis showed 39 per cent of the organizations had developed an enterprise-wide plan of which just over half stated that the plan was tested. However, 36 per cent of respondents had no plan, an “informal plan,” were developing a plan, or did not know whether they had a plan. Standardized guidelines for a process to manage risks have been developed across many spheres and countries and are brought together in the international risk management standard ISO31000 (ISO, 2009), which presents a process applicable to all organizations and all risks. Human resource practices that promote consistent communication and an organizational culture that allows business continuity plan values, attitudes and beliefs to become embedded and to move across traditional organizational boundaries are therefore important for gaining the cooperation needed to implement plans in an organization's operational areas pertaining to business continuity.