An approach for problem area elaboration and usage of organization’s strategic decisions risks

E.P. Ilina, O.А. Slabospitskaya

Abstract


A Conceptual Model is proposed for Problem Area of Strategic Decisions’ Risks within Organizational Management Systems (OS) being a result of selection, addition and interpretation operations caused by the proper Risk Object specifics and applied to the elements of regular conceptual basis for risk treatment within the other domains. The Model includes such the Concepts: Decision, Consequences for both Decision and OS; Source, Factor, Aspect and Event of Risk, Vulnerability, Hazard, Affected Property and their interrelations. Based on the Model proposed for Strategic Decision life cycle and integration of well-known Strategic Management practices the System of Strategic Decisions Risks Management Measures is considered being represented as actions with hazards, threats, vulnerabilities, risk objects and consequences. The Usage of Conceptual Model proposed is demonstrated for the Method elaboration of knowledge ambiguity- caused Risks Assessment for the decisions of Expertise using different business groups and «Value Tree» model. The Method is based on the model, where the set of knowledge ambiguity-caused Risk Factors is formalized.  The Factors’ Sources are the elements of expert problem statement. Factors‘ types are the types of non-coherent knowledge interrelations, Vulnerabilities relate to experts activity nature, Hazards are caused by the systems of expert estimates in use producing Risk Events during the process of decision life cycle. Each Risk Aspect is specialized with decision Properties being Risk targets due to Risk Events. The Method produces Risk estimates to conclude about expertise satisfactoriness and to enable selection the least risky form of its process organization.

Enhancing and using of Conceptual Model proposed for Strategic Decisions Risks is advantageous for tools elaboration to support Defense Planning processes with the mechanisms of ontology based experience operation concerning with Problem Situations and Anti-crisis Measures.

Problems in programming 2019; 4: 75-91


Keywords


expert decision making; strategic decision; anti-crisis program; risk management; risk analysis conceptual basis; ambiguity risk; value tree; defense planning under uncertainty

References


Blenko M.W. The Decision-Driven Organization - M.W.Blenko, M.Mankins, P.Rogers / Harvard Business Review. - 2010. - Is. 6. [Electronic resourse]. Mode of access: https://hbr.org/2010/06/the-decision-driven-organization.

Renn O. Coping with complexity, uncertainty and ambiguity. The risk governance approach / O.Renn - NSF-DFG Joint Risk Meeting, Washington, D.C., Oct. 3-5, 2012. - 33 p.

Pisano G.P. Creating an R&D Strategy / G.P. Pisano - 2012. [Electronic resourse]. Mode of access: http:www.hbs.edu/facultyPublication %20Files// 12-095_fb1bdf97-e0ec-4a82-b7c0-42279dd4d00e.pdf.

ISO 31000:2018 Risk management - Guidelines. - 16p.

Analysis Support Guide for Risk-Based Stra-tegic Planning. / Technical Report STO-TR-SAS-093-Part-I - 2018, STO/NATO. - 156 p.

Lempert R.J. Defense Resource Planning Under Uncertainty. An Application of Robust Decision Making to Munitions Mix Planning / R.J. Lempert, D.Warren, R.Henry et al. - RAND Corporation, 2016. - 109 p.

https://doi.org/10.7249/RR1112

Johnson S. New challenges, new tools for defense decisionmaking / S.Johnson, M.Libicki, G.F. Treverton - MR-1576, RAND Corporation, 2003. - 408 p.

ISO Guide 73:2009 Risk management Vocabulary. - 15p.

ISO 27000:2018 Information technology - Security techniques - Information security management systems - Overview and vocabulary - 34 p.

Enterprise Risk Management - Integrating with Strategy and Performance. Executive Summary. - COSO, 2017. - 16 p. [Electronic resourse]. Mode of access: https://www.coso.org/Documents/2017-COSO-ERM-Integrating-with-Strategy-and-Performance-Executive-Summary.pdf.

FERMA Risk Management standard - FERMA, 2002. - 16 p. [Electronic resourse]. Mode of access: // http://www.ferma.eu/.

Australia/New Zealand AS/NZS 4360:2004 Risk management /Standards Australia.- 65 p.

Celona J. Value-Driven ERM: Making ERM an Engine for Simultaneous Value Creation and Value Protection / J.Celona, E.Hall, J.Driver // J. of healthcare risk management: the journal of the American Society for Healthcare Risk Management - 2011 - N 30(4) - P.15-33. CrossRef

Torben J.A. Managing Risk and Opportunity. The Governance of Strategic Risk-Taking / J.A. Torben M.Garvey, O.Roggi - Oxford University Press, 2014. - 204 p.

Practice Standard for Project Risk Management / Project Mnagement Institute, Inc., 2009. - 128 p.

Alberts С. Executive Overview of SEI MOSAIC: Managing for Success Using a Risk-Based Approach / C.Alberts, A. Dorofee, L.Marino - Technical Note CMU/SEI-2007-TN-008, 2007. - 33 p. CrossRef

Hillson D.A. Practical project risk management: The ATOM Methodology (2nd ed.) / D.A.Hillson, P.W.Simon - Vienna, US: Management Concepts, 2012 - 410 p.

Virine L. Project Risk Analysis Made Ridiculously Simple / L.Virine, M.Trumper - World Scientific Publishing Co. Pte. Ltd., 2017. - 283 p.

ISO 27005:2018 Information technology - Security techniques - Information security risk management.. - 56 p. [Electronic resourse]. Mode of access: https://www.iso.org/standard/75281.html.

Freund J. Measuring and Managing Information Risk. A FAIR Approach / J.Freund, J. Jones - Elsevier, 2015. - 391 p.

Офіційний сайт NIST CyberSecurity Framework. [Electronic resourse]. Mode of accesshttps://www.nist.gov/cyberframework.

Grouhy M. The Essentials od Risk Management / M.Grouhy, D.Galai, R.Mark - McGraw-Hill Education, 2014. - 669 p.

ISO/IEC PDTR 33015.3:2019 Information technology - Process assessment - Guide to process risk determination. - 41 p.

ISO/IEC 16085:2006 Systems and software engineering - Life cycle processes - Risk management. - 34 p.

Sherer S.A. Information Systems Risks and Risks Factors, are they Mostly about Information Systems? / S.A.Sherer, S.Alter // Communications of AIS 2004. - V.14. - N 1. - P. 29-64. CrossRef

GAIT for IT General Control Deficiency Assessment / The Institute of Internal Auditors. [Electronic resourse]. Mode of access: https://www.iiacolombia.com/resource/guias/GAIT_GeneralControl.pdf

COBIT'2019 Framework. Governance and Management Objectives - ISACA, 2018. - 302 p.

Gerstein D.M. et al. Developing a Risk Assessment Methodology for the National Aeronautic and Space Administration / D.M.Gerstein et al. - RAND Corporation, 2016. - 113 p. CrossRef

Kendall F. Department of Defense Risk, Issue, and Opportunity Management Guide for Defense Acquisition Programs /F.Kendall - Washington, DC 20301-3030, 2017. - 96 p. [Electronic resourse]. Mode of access: https://www.acq.osd.mil/se/docs/2017-rio.pdf.

NATO Standard AJP-5. Allied Joint Doctrine for the Planning of Operations. Ed. A V.2 / NATO Standardization Office, 2019. - 134 p.

Ilina E.P. Models and methods for automated analytic support of the organization decisions field/ E.P.Ilina, I.P.Sinitsyn / Problems in Programming - 2017. - N 3 - P. 93-107.

Ilina E.P. Methods and models of the expert analytic knowledge using for the decision support in organization. Part 1. Decisions models / E.P.Ilina // Problems in Programming. - 2016. - N 1. - P. 89-101.

Ilyina E. Program Management of Fundamental Scientific Research Decision Making Au-tomated Support with Expert Methodology. / E.Ilyina, O.Slabospitskaya, I.Sinitsyn, T.Yablokova. - Draft of Software Systems Institute of NAS of Ukraine, 2011. - Кiev, 2011. - 94 p.




DOI: https://doi.org/10.15407/pp2019.04.075

Refbacks

  • There are currently no refbacks.