Main Page

From RiskWiki

Revision as of 12:47, 22 December 2010 by Bishopj (Talk | contribs)
(diff) ←Older revision | Current revision (diff) | Newer revision→ (diff)
Jump to: navigation, search

The BPC RiskWiki



Quick Index

Introduction to the RiskWiki

This wiki is sponsored by Bishop Phillips Consulting ( for the education, use and enjoyment of our clients, educators, the public and professionals involved in management consulting and risk advisory, compliance, internal audit, insurance claims management, safety, governance and risk analysis industries. It provides reference articles on management, risk and risk related functions including: Risk Management, Internal Audit, Governance, Compliance, and Process Reengineering, etc.

The RiskWiki is based on the articles, methods, manuals and papers of primarily three firms: Bishop Phillips Consulting P/L, Stanton Consulting Partners and Bishop Finance P/L. These firms are contributing a large body of work amassed over many years experience with hundreds of clients. The project to convert and upload much of our BPC software help & manuals, extended body of consulting, risk and internal audit methods and models, and education and research materials is a large and time consuming project so the RiskWiki content changes frequently and will do so for the foreseeable future.

With the exception of all software documentation, and those additional documents marked otherwise, all written material on this site may be used freely by readers for any purpose including reproduction, subject only to the retention of moral rights by the authors. Some articles may include images for which additional permission may be reuired prior to reproduction. Software documentation may be duplicated in hard-copy for internal use by registered users of the systems with current maintenance agreements. Other uses of software systems documentation will be considered on written request.

Things to See in The RiskWiki

BPC RiskManager

  • Are you looking for BPC RiskManager Documentation or to learn more about the software?
link=BPC RiskManager Software Suite
Bishop Phillips supplies the BPC RiskManagement suite of governance software that provides a complete governance solution across risk management, controls management, compliance management, insurance management, claims management, incident & hazard management, audit risk management, governance document management and survey generation and management. The system can be installed in configurations ranging from single-user to very large scale enterprise configurations.

The system is particularly suited to managing and reporting on the risk and compliance management tasks of government agencies, whole of government, special project, not-for-profits, insurance providers, service industries, utilities, and tertiary education sectors. You will find an extensive body of information covering technical, administration and user level tasks here.

If you have questions they may be answered in our frequently asked questions.

Frequently asked Questions About BPC RiskManger

What is the best client version - the browser or non browser Risk Manager client?


This is a tricky issue. Generally we would recommend the windows non-browser version, unless you have a large number of users and want to be able to distribute the client component in an ‘on-demand’ manner.

Why? - Simply because there is one less 'moving part' and resizing of the application can be applied to the base (main) window, but an alternate argument is that where there are multiple databases, the browser client offers an advantage because you can easilly list the various connections on the hosting web page, and specifically secure access to the web page as part of your access model. Further the web page offers a simple "single point of publication" distribution system which instantly delivers the latest version to all users.

Like we said - there are really good arguments for both versions. Most larger lients use both versions, with the majority of users using the web browser version. Smaller clients tand to use the windows version.

On the face of ..→Read More..

Featured Article...

Risk Management - Introduction

What Is Risk Management?

Risks, Causes & Consequences

Risks to your operations and assets are a permanent and inescapable aspect of existence. Put simply if you have an objective, the central possibility exists that your objective may not be achieved. That possibility is risk.

Inputs required for your objective may not be available when required, or the cost of the same may make the objective inviable, or the social or technical assumptions may be invalidated, etc. These are threats, or causes of objective failure, and therefore causes of risk. Threats exist - some latent and some active, but all are potential causes of the failure to achieve your objective (with varying likelihoods).

Further, it may be that failure to achieve the objective, or preserve the asset may have impacts far beyond the loss of the expected benefit to be derived, or value of the asset lost. Those impacts are the consequences. For example, at the individual business level, failure to achieve a strategic objective may result in failure of the business, while on the international stage, failure to achieve a diplomatic objective may impact the society detrimentally for generations to come, and failure to protect a critical military or hazardous materials technology may result in extensive loss of life.

Lastly, a risk may not be a bad thing - it might be a good thing, or more commonly known as "an opportunity". Likewise, in impact may not just be "nothing to really bad" but also "really good to nothing to really bad". In its fullest extent risk management covers both opportunties and exposures. Most of the following discussion will consider risk management in its more common guise as managing exposures, but when we consider "Competitive risk Management" we will once again expand the definition.

Risk Appetite

The degree to which these undesired outcomes are more or less certain will effect your degree of concern about them. At the extreme ends, everybody may have pretty much the same response: an undesired outcome that is virtually certain to occur will probably be judged as unacceptable, while an undesired outcome that is virtually certain not to occur, will probably be judged as acceptable. Between these extremes each individual, organisation, and society will have differing determinations of acceptability. This determination is also likely to vary with the nature of the undesired outcome (for example the 50% chance of a loss of thousands of lives is generally considered less acceptable than the 50% chance of the loss of ten dollars). This variance in judgement as the risk appetite - literally your or your organisation's willingness to passively accept the possibility of a particular type of undesired outcome.

Risk Response, Mitigation and Control

The reactive leader, when faced with changed circumstances will rapidly form a response. These responses are designed to minimise the consequences of the threat event and are risk mitigation actions, or risk treatments. Of course, some responses (like avoidance or insurance) are by this time out of the question - as the threat has materialised. Faced with too many or too big a change in circumstances, even the most responsive leader can be overwhelmed, and the process fails with the objective not achieved.

A wise leader then (at least) learns from experience, and establishes processes to minimise the likelihood of similar threat events occurring (prevention), to detect when they occur (detection) and immediately respond and mitigate the consequences when they occur regardless (correction). These preplanned and pre-established processes of prevention, detection and correction are controls.

Rating a Risk

All controls have a cost - whether measure in money, time, tactical advantage, etc. Too much control may make the achievement of the object inviable. The leader may judge that some threats experienced are unlikely to occur again (for ..→ Read More..

BPC SurveyManager

  • Are you looking for BPC SurveyManager Documentation or to learn more about the software?
link=BPC SurveyManager - Overview
Bundled with the BPC RiskManager suite and also supplied in both hosted and installed forms, the BPC SurveyManager software solution is an outstandingly versatile interactive web page generation engine using a survey model as the design and data storage paradigm. While being outstanding at survey creation and management the software is powerful enough to build build conventional data-input web pages. The full technical and SM language programming documentation is available from here.

Research into Virtual Worlds in Business & Education

  • Are you looking for our virtual Learning research papers?
link=Virtual Learning Systems
Through our Virtual Worlds research group - "Waisman Learning Systems", we do extensive work in the development of virtual learning and business spaces in SecondLife, and undertake considerable formal research into the application of Virtual Worlds to learning. You will find technical and text book material in our Virtual World Learning Systems pages. There is an extensive overview of the literature, and history of virtual worlds, a very large bibliography, details of our in-world networked lecture theatre control systems and lecture delivery systems, and a complete documentation of an extensive academic study undertaken by our WLS team into the effectiveness at achieving learning outcomes of different approaches in delivering course material in 3D virtual worlds.

You will find an extensive reading list and bibliography of works covering virtual worlds and virtual reality concepts, history, ideas, related technologies, and application in learning as well as relevant papers on learning taxonomies and teaching concepts relevant to virtual world learning systems here.

Internal Audit and Management Science

  • Are you heading up an Internal Audit Team or learning internal audit methods?
link=Internal Audit
If yes, you will find complete enterprise level internal audit methods and manuals on this site cross linked to our other management papers. The internal audit manuals cover everything from managing the audit team through planning the audit program to the detail of designing the audit, conducting interviews and undertaking the controls analysis; to reporting the results. Everything you are likely to need to manage and train an internal audit team is here.

  • Are you a manager, management consultant or student of Management Science?
link=Category:Management Science
You will find articles covering topics of general management and process management methods in the RiskWiki including the detailed theory and practice of plannning, process re-engineering, control theory and our proven theories in stakeholder network organisation modelling. The work here is generally unique to this site. All methods have been used extensively and effectively in practice. Start here with process engineering.

  • Are you managing a merger or an acquisition?

link=Managing Risk in Mergers & Acquisitions
Take a look here first and learn about the risks in mergers and acquisitions and successful strategies for managing them from our team who have been through it successfully from both sides or the equation multiple times.

Take A Random Look At The RiskWiki

From the Vault of the BPC RiskWiki...




Internal audit reports communicate audit findings to management in order to assist it in monitoring the efficiency, economy and effectiveness of the organisations operations, to improve the control framework and to ensure compliance with established policies, plans and procedures. The report should supply the manager with the information necessary to take or to initiate corrective action on any deficiencies reported. Effective monitoring of the control process depends on the flow of timely, accurate, concise and relevant information to managers, set out so that matters requiring attention can be easily seen and acted upon.

A further aspect of reporting is the updating of the Strategic Audit Program in accordance with Section 4.5 of the manual, that is the preparation of the SAP Update work paper.

RIAM Reporting Process


CopyRight Bishop Phillips Consulting Pty Ltd 1997-2012 ( Main Page )
Personal tools