Grant Purdy helped write the guide on threat administration – actually. He co-authored ISO 31000, the worldwide normal everybody follows. After 50 years within the discipline, he’s saying one thing uncomfortable: we obtained it flawed.
Right here’s what he means. Stroll into most firms and also you’ll discover threat registers no person reads, warmth maps that annoy everybody, and processes that measure every thing besides what truly issues for enterprise selections. The entire system was supposed to assist folks make higher selections when issues are unsure. As a substitute, it turned a compliance monster that eats money and time whereas creating faux confidence.
How we ended up right here
It occurred slowly. Each new regulation and “greatest follow” piled on high of what got here earlier than. We stored inventing options to repair issues our earlier options created. Purdy watched it occur from the within – helpful instruments was paperwork necessities, choice assist turned regulatory theater. What we promised and what we truly delivered drifted additional aside.
The core downside is straightforward: there are two utterly completely different video games being performed. One is about creating paperwork to fulfill exterior necessities. The opposite is about truly serving to folks talk about uncertainty when making actual enterprise selections. These serve completely different masters – regulators versus the individuals who truly run issues. Most firms obtained caught within the first sport and forgot in regards to the second.
Ask RAW@AI about this publish or simply speak about threat administration
Why this issues
Not many individuals can have a look at their life’s work and say “we have been flawed.” That’s what makes Purdy’s message hit onerous. He’s not some outdoors critic – he’s the man who constructed the home and is now saying some partitions want to return down.
His repair is simple however requires a mindset shift. Cease saying “threat administration” and begin saying “choice assist.” As a substitute of threat registers for reporting, assist folks make particular selections – what to launch, what to delay, the place so as to add security margins, what to spend cash on.
What this implies for you
First, you may cease pretending a stack of paperwork equals managing uncertainty. Second, carry conversations again to precise selections – what are our choices, what assumptions are we making, what breaks if the world doesn’t behave like we count on? Third, make instruments that folks truly wish to use – fast choice notes as a substitute of infinite registers, “what if” situations as a substitute of colourful warmth maps, easy response guidelines as a substitute of thick methodology manuals.
The toughest half is breaking previous habits. However there’s freedom in stopping the performative busy work and specializing in what truly modifications outcomes. That’s the reward in Purdy’s honesty – permission to give up enjoying “correct threat administration” and do what we got down to do within the first place: assist folks make higher selections when dealing with uncertainty.
Admitting we obtained issues flawed isn’t defeat – it’s a recent begin. Threat administration can lastly do what it all the time promised: not create faux management, however assist folks select higher.
Grant Purdy’s session “We Acquired It All Mistaken” is at RAW 2025, October 13-17. Full program at https://2025.riskawarenessweek.com
RISK-ACADEMY provides on-line programs
+ Add to Cart
Knowledgeable Threat Taking
Be taught 15 sensible steps on integrating threat administration into choice making, enterprise processes, organizational tradition and different actions!
$149,99$29,99
+ Add to Cart
Superior Threat Governance
This course offers steerage, motivation, crucial data, and sensible case research to maneuver past conventional threat governance, serving to guarantee threat administration just isn’t a stand-alone course of however a change driver for enterprise.
$795