SHRM-CP Functional Area 12: Risk Management

0.0(0)
Studied by 0 people
call kaiCall Kai
Locked
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/54

encourage image

There's no tags or description

Looks like no tags are added yet.

Last updated 4:46 AM on 7/2/26
Name
Mastery
Learn
Test
Matching
Spaced
Call with Kai
Chat

No analytics yet

Send a link to your students to track their progress

55 Terms

1
New cards

What is the SHRM BASK definition of Risk Management?

  • “Risk Management is the identification, assessment, and prioritization of risks, and the application of resources to minimize, monitor, and control the probability and impact of those risks accordingly.”

2
New cards

What does risk management explore?

  • How technology can help manage the liability that comes with operating an employment organization

3
New cards

What does risk management address?

  • Issues related to employees, customers, clients, the public, and vendors/suppliers

4
New cards

What is risk management?

  • The process of managing liabilities related to populations the organization impacts in ways that will protect the employer organization and not be so heavy-handed that the organization can’t function well in performing its mission

5
New cards

What is risk?

  • The effect of uncertainty on objectives

  • The potential for what could happen, either losing or gaining something of value

6
New cards

What is planning for risk management based on?

  • The ability to identify anticpated risks

7
New cards

What is the Jahari Window?

  • A model of disclosing relationships by identifying what you know and what you do not know

8
New cards

What are the three categories of risk?

  • Preventable Risks

  • Strategic Risks

  • External Risks

9
New cards

What are preventable risks?

  • Internal risks that are controllable and should be eliminated or avoided

  • Includes illegal, unethical, or inappropriate actions and breakdowns in operational processes

  • Manageable through rule-based compliance approaches

  • Best controls involve active prevention such as monitoring operational processes and guiding people’s behaviors and decisions toward desirable norms via policies and training

10
New cards

What are strategic risks?

  • Identified and accepted in the process of strategic planning

  • Cannot be managed through a rule-based control model

  • Necessary to reduce the probability that the assumed risks actually materialize and to improve the employer’s ability to manage or contain the risk events should they occur

11
New cards

What are external risks?

  • Generally cannot be prevented from happening

  • Organizations should forecast what those risks might be and develop ways in which their impact can be minimized

12
New cards

What perspective leads to the best performance of risk management?

  • Enterprise perspective, as looking at risks solely within a department or division won’ot reveal the importance of those risks to the entire organization

13
New cards

What is the International Organization for Standardization (ISO)?

  • Based in Geneva, Switzerland

  • The world’s largest developer and publisher of international standards

14
New cards

What are the key variables the Department of Homeland Security (DHS) says should be considered?

  • Goals and objectives

  • Policies and standards

  • Scope and criticality of the decision

  • Decision-makers and stakeholders

  • Decision time frame

  • Risk management capabilities and resources

  • Risk tolerance

  • Availability and quality of information

15
New cards

What are risk criteria?

  • Terms of reference

  • Used to evaluate the significance or importance of an organization’s risks

  • Used to determine whether a specified level of risk is acceptable or tolerable

  • Should reflect the organization’s values, policies, and objectives

  • Should be based on its external and internal context

  • Should consider the views of stakeholders

  • Should be derived from standards, laws, policies, and other requirements

16
New cards

What is a moral hazard?

  • A situation in which one party gets involved in a risky event knowing that it is protected against the risk and the other party will incur the cost

17
New cards

What is the principal-agent problem?

  • The problem of motivating one party (the agent) to act on behalf of another (the principal)

18
New cards

What is a conflict of interest?

  • A conflict between private interests and the official responsibilities of a person in a position of trust

19
New cards

What is risk identification?

  • The process of recognizing and defining risks

20
New cards

What is risk analysis?

  • The systematic process to comprehend the nature of the risk and to determine the level of risk

21
New cards

What does risk assessment involve?

  • Evaluating and comparing the level of risk against predetermined standards, target risk levels, or other criteria

22
New cards

What are some tools and techniques for risk identification?

  • Brainstorming

  • Delphi Technique

  • Interviewing

  • Root-Cause Analysis

  • Checklist Analysis

  • Assumption Analysis

  • Diagramming Techniques

  • SWOT Analysis

  • Expert Judgement

23
New cards

What is the Delphi Technique?

  • A facilitator distributes a questionnaire to experts and responses are summarized anonymously and circulated among the experts for comments

  • Used to achieve a consensus of experts and helps to receive unbiased data, ensuring that no one person will have undue influence on the outcome → helps avoid “group think”

24
New cards

What is SWOT Analysis?

  • A structured planning method that evaluates the strengths, weaknesses, opportunities, and threats involved in a project or business venture

25
New cards

What are some popular risk analysis tools?

  • Risk Scorecard

  • Risk Matrix

26
New cards

What is a risk scorecard?

  • Uses eight critical areas to evaluate a given program’s reliability progress

  • Each element within a category can be given a risk rating of high, medium, or low (red, yellow, or green) or not evaluated (gray)

  • The scorecard weights the elements, normalizes the scores to a 100-point scale, and calculates an overall program risk score and eight risk scores

27
New cards

What are the eight critical areas evaluated in a risk scorecard?

  • Reliability requirements and planning

  • Training and development

  • Reliability analysis

  • Reliability testing

  • Supply chain management

  • Failure tracking and reporting

  • Verification and validiation

  • Reliability improvements

28
New cards

What is a risk matrix?

  • Classifies risks using likelihood and impact on a scale as low, moderate, high, or extreme

  • Likelihood: Rare, Unlikely, Possible, Certain

  • Impact: Negligible, Marginal, Critical, Catastrophic

29
New cards

What is a risk evaluation system?

  • A combination of practices, tools, and methodologies within a risk management system used to measure the potential impacts of risk events on the performance metrics of an organization

30
New cards

What is a Key Risk Indicator (KRI)?

  • A measure that indicates how risky an activity is

  • Indicates the possibility of a future adverse impact

  • Metrics used to monitor identified risk exposures over time

31
New cards

What is a risk register?

  • Acts as a central repository for all risks identified by the organization and, for each risk, includes information such as source, nature, treatment option, existing countermeasures, recommended countermeasures, and so on

  • A record of information about identified risks

32
New cards

What are upside risks?

  • When there is uncertainty about a desirable outcome

33
New cards

What are downside risks?

  • When there are possible adverse outcomes

34
New cards

How can risk be managed?

  • If the uncertainty is eliminated, making it a certainty

35
New cards

What are the two possible ways of redefining ownership of the problem to reduce risk expoure?

  • Sharing the risk

  • Transferring the risk

36
New cards

What is sharing the risk?

  • Can be done, for example, by entering into a joint-employer relationship with an employment leasing agency, doubling the resources available to combat whatever risk may exist because of having an employee workforce

37
New cards

What is transferring the risk?

  • Done by purchasing insurance policies

    • Can lower the potential for financial loss when employees are found to have engaged in inappropriate behaviors

38
New cards

How do you decrease the effect of risk?

  • One way is to have employee training programs that can limit the damage or effect/impact of risks

39
New cards

What are the two options that come with deciding to “take no action” on a risk?

  • Accept → wait to see how things develop and put out “orange cones” or warnings to identify the risk and make people aware

  • Ignore → there is no credence given to the level of risk or the certainty of loss

40
New cards

What is a risk management plan?

  • Results from analysis of the circumstances that forsees risks, estiamtes impact, and defines responses to issues

41
New cards

What are tailgate meetings?

  • Meetings that typically only last 5 or 10 minutes, usually discussing safety topics

42
New cards

What are the steps of having an emergency response plan?

  1. Conduct a risk assessment for the work location

  2. Answer hypothetical questions regarding potentially dangerous and hazardous situations

  3. Engage key personnel in the development process

  4. List the responses that should happen for each emergency you listed

  5. Develop a plan

  6. Make sure everyone in the workspace knows about the plan and what to do if an emergency happens

43
New cards

What is HR’s involvement in safety risks?

  • Develop safety plans

  • Routine workplace inspections

  • Corrective action oversight

  • Employee training

  • Insurance company interface

44
New cards

What is HR’s involvement in equipment risks?

  • Inclusion in safety plans

  • Production line procedures when failure occurs

  • Inclusion of protection failure issues in safety plans

45
New cards

What is HR’s involvement in facility risks?

  • Provision for action plans in the event of system failures

  • Anticipation of security issues

  • Preventative measures

46
New cards

What is HR’s involvement in employment risks?

  • Establish criteria for screening new hires’ background/behavior issues

  • Prepare procedures for handling behavior problems and termination procedures

  • Discuss with executives about scenario involving loss of key personnel

47
New cards

What is HR’s involvement in employee-as-agent risks?

  • Discuss with or train all managers in the legal agent-relationship definition and how they can represent the organization in community groups

48
New cards

What is HR’s involvement in business risks?

  • Ensure essential records backup, including employee, payroll, medical, investigation, and complaint records

  • Work with finance and sales/marketing to cover preservation of financial and customer records/orders

  • Create a plan to preserve HR records when government agencies audit the organization

49
New cards

What is HR’s involvement in natural distaster risks?

  • Develop procedures for reacting to natural disasters with differences based on the type of disaster

50
New cards

What is HR’s involvement in international risks?

  • Identify the differences in legal response requirements by country

  • Identify the expectations of each country’s customs during disaster responses

51
New cards

What is a key element of disaster recovery?

  • Practicing the contingent plan to see whether it will actually work

52
New cards

What is debriefing?

  • The process of meeting to discuss what happened during the practice exercise

  • Should gather input from individuals as well as the collective input of managers and employees

  • An opportunity to be sure all of the communication channels are open and working accurately

53
New cards

How often should formal risk management plans be reviewed (and adjusted, if necessary)?

  • At least once per year

54
New cards

Who (or what team) commonly assume the role of risk management oversight?

  • The board of directors

55
New cards

What is the idea behind the concept of “continuous improvement” or “kaizen”?

  • To strive each day for a little better quality, quantity, and effort