Authors :
Ibrahim Salim
Volume/Issue :
Volume 6 - 2021, Issue 11 - November
Google Scholar :
http://bitly.ws/gu88
Scribd :
https://bit.ly/3r8NG4O
Abstract :
Risk Management according to the ISO
31000:2018 standard makes the company's strategic goal
in implementing risk management to create and protect
value, one of which can be done through the
implementation of a risk-aware culture. The IRM Risk
Culture Model offers a risk-aware culture model that is
reduced to 4 main themes, namely Tone of the Top,
Governance, Competency and Decision Making. This
study aims to make the IRM Risk Culture Model a model
that can be used for the preparation of program proposals
and roadmaps for developing a risk-aware culture and its
relationship with the ISO 31000:2018 standard used by
companies as guidelines for implementing enterprise risk
management (Enterprise Risk Management). The results
show that the company already has a risk-aware culture
policy as outlined in the guidelines for implementing risk
management, but it has not been supported by a riskaware culture development program, so the researcher
proposes a risk-aware culture development program
based on the results of mapping between policies and
documents that are already owned by the company.
companies with aspects of the IRM Risk Culture Model so
that the results of the proposed risk-aware culture
development program can be compiled into a proposed
development roadmap with the ISO 31000:2018 approach,
namely cultural development, cultural deployment,
cultural improvement with risk culture influencers
grouped according to 4 themes from the IRM Risk Culture
Model above, besides that this development roadmap also
requires enablers that are prepared based on commitment,
communication, measurement and reporting as well as a
reward program.
Keywords :
Risk Awareness Culture, Risk Management, Enterprise Risk Management (ERM), ISO 31000:2018, IRM Risk Culture Model
Risk Management according to the ISO
31000:2018 standard makes the company's strategic goal
in implementing risk management to create and protect
value, one of which can be done through the
implementation of a risk-aware culture. The IRM Risk
Culture Model offers a risk-aware culture model that is
reduced to 4 main themes, namely Tone of the Top,
Governance, Competency and Decision Making. This
study aims to make the IRM Risk Culture Model a model
that can be used for the preparation of program proposals
and roadmaps for developing a risk-aware culture and its
relationship with the ISO 31000:2018 standard used by
companies as guidelines for implementing enterprise risk
management (Enterprise Risk Management). The results
show that the company already has a risk-aware culture
policy as outlined in the guidelines for implementing risk
management, but it has not been supported by a riskaware culture development program, so the researcher
proposes a risk-aware culture development program
based on the results of mapping between policies and
documents that are already owned by the company.
companies with aspects of the IRM Risk Culture Model so
that the results of the proposed risk-aware culture
development program can be compiled into a proposed
development roadmap with the ISO 31000:2018 approach,
namely cultural development, cultural deployment,
cultural improvement with risk culture influencers
grouped according to 4 themes from the IRM Risk Culture
Model above, besides that this development roadmap also
requires enablers that are prepared based on commitment,
communication, measurement and reporting as well as a
reward program.
Keywords :
Risk Awareness Culture, Risk Management, Enterprise Risk Management (ERM), ISO 31000:2018, IRM Risk Culture Model
