Against a competitive economic background, risk control is one of the foundation stones for sound business management.
Risk mapping is a precondition to setting up a risk control policy.
The CNPP assists companies in producing the map.
The initiative is based on the following steps :
- A complete diagnostic of the company in order to draw up the list of risks it has to face: Fire, malicious acts, OSH, Environment, etc.
- A vulnerability analysis in order to assess the criticality of exposure of an organisation to one or more types of threats, as well as identify and quantify the consequences of these risks should they occur. Each risk is noted according to its probability and its severity. Their assessment criteria are initially defined with the customer
- Producing the risk map in accordance with the formalism required by the company (Rosette, Radar, Curve, Histogram, etc.)
- The risk vulnerability reduction action plan in order to diminish them to a degree of vulnerability that is acceptable for the company. The actions can involve prevention (reducing their probability of occurrence) or protection (reducing their severity should they occur). Their impact on the risk level is assessed and a budget estimate is produced.
The Risk Manager can then advisedly choose the optimal solution for the company in terms of cost-efficiency.