Guest Post by Geary Sikich (first posted on CERM ® RISK INSIGHTS – reposted here with permission)
We hear a lot about things that are being called “Black Swans” today thanks to Nassim Taleb and his extremely successful book, “The Black Swan: The Impact of the Highly Improbable,” now in its second edition. I have written several articles centering on the “Black Swan” phenomenon; defending, clarifying and analyzing the nature of “Black Swan” events. And, I am finding that wildly improbable events are becoming perfectly routine events.
What this means is that businesses and governments need to be even more vigilant in their prosecution of enterprise risk management initiatives. Private and Public Sector operations are complex and becoming more complex as more entrants to the global marketplace compete for fewer and fewer available resources at an ever quickening pace.
So, is society, as we know it, on the verge of collapse, destruction, another stone-age? Seems that you cannot turn on a television, radio or the plethora of personal communication devices available without headlines screaming at you about people with Molotov cocktails, car bombs, murders, floods, fires, car crashes, riots and, celebrities gone wrong. Sovereign nations are going bankrupt, sabers are being rattled; how you might ask, is it all going to end?
Question # 1: How much would you be willing to pay to eliminate a 1/2,500 chance of immediate death?
I ask this question as a simple way to get an understanding of where your perception of risk is coming from. Is it logical and rational or is it emotional and intuitive? Ponder the question as you read the rest of this piece.
What exactly are all these swans and what do they mean?
Nassim Taleb provides the answer for one of the Swans in his book “The Black Swan: The Impact of the Highly Improbable.” He states that a Black Swan Event is:
A black swan is a highly improbable event with three principal characteristics: it is unpredictable; it carries a massive impact; and, after the fact, we concoct an explanation that makes it appear less random, and more predictable, than it was.
Taleb continues by recognizing what he terms the problem –
“Lack of knowledge when it comes to rare events with serious consequences.”
The above definition and the recognized problem are cornerstones to the argument for a serious concern regarding how risk management is currently practiced. However, before we go too far in our discussion, let us define what the other two swans look like.
A grey swan is a highly probable event with three principal characteristics: it is predictable; it carries an impact that can easily cascade; and, after the fact, we concoct an explanation that recognizes the probability of occurrence, but shifts the focus to errors in judgment or some other human form of causation.
I suggest that we tend to phrase the problem thus –
“Lack of judgment when it comes to high probability events that have the potential to cascade.”
A white swan is a highly certain event with three principal characteristics: it is certain; it carries an impact that can easily be estimated; and, after the fact, we concoct an explanation that recognizes the certainty of occurrence, but again, shifts the focus to errors in judgment or some other human form of causation.
I suggest that we tend to phrase the problem thus –
“Ineptness and incompetence when it comes to certainty events and their effects.”
The table below sums up the categorization of the three swan events.
Taleb uses the example of the recent financial crash as a “White Swan” event. In a video about risk and robustness, Taleb talks with James Surowiecki of the New Yorker, about the causes of the 2008 financial crisis and the future of the U.S. and by default the global economy. A link to the video follows: http://link.brightcove.com/services/player/bcpid1827871374?bctid=90038921001
More “White Swans” does not mean full speed ahead
Risk is complex. When risk is being explained, we often have difficulty listening and comprehending the words used in the explanation. Why? The rather simple explanation is: compelling stories are most often told with dramatic graphics! Molotov Cocktails, RPG-7’s and riots are interesting stuff to watch; no matter that the event has occurred elsewhere and may be totally meaningless to you. Is this pure drama or are these events that we should be concerned about? Or are they so unusual and rare that we fail to comprehend the message about the risks that we face?
Communication and how we communicate is a key factor. Words by themselves are about 7% effective as a communication tool. Words, when coupled with voice tonality raise effectiveness to about 38%. However, the most effective way to communicate is via physiology, which gets us to about 55% effective. Well, the next best thing to being there is being able to see what is there. Hence the effectiveness of graphics that evoke drama, physiology and raise emotions in communicating your message! The quote that a picture is worth a thousand words has never been so true as it is today.
Ideas get distorted in the transmission process. We typically remember:
- 10% what we hear
- 35% what we see
- 65% what we see & hear
Taleb uses the example of the recent financial crash as a “White Swan” event. In a video about risk and robustness, Taleb talks with James Surowiecki of the New Yorker, about the causes of the 2008 financial crisis and the future of the U.S. and by default the global economy. A link to the video follows: http://link.brightcove.com/services/player/bcpid1827871374?bctid=90038921001
Risk, Risk Perception, Risk Reality
When we see cooling towers, our frame of reference generally will go to nuclear power plants. More specifically, to Three Mile Island, where America experienced its closest scare as a result of a series of errors and misjudgments. As you can see a cooling tower is nothing more than a large vent that is designed to remove heat from water (what is termed “non-contact water) used to generate steam.
We worry about cooling towers spewing forth radioactive plumes that will cause us death – when, in fact, this cannot happen. Yet we regularly board commercial airliners and entrust our lives to some of the most complex machinery man has created!
Our perceptions of risk are influenced by several factors. Peter Sandman, Paul Slovic and others have identified many factors that influence how we perceive risk. For example:
People perceive risks differently; people do not believe that all risks are of the same type, size or importance. These influencing factors affect how we identify, analyze and communicate risk. Why is it so important to effectively communicate risk information? Here are a few vivid examples of how poor communication/no communication turned risk realization into brand disasters:
- Firestone Tire Recall – Destroys a 100 year relationship with Ford
- Exxon Valdez Oil Spill – Still getting press coverage after 20 years
- Coke Belgium Contamination – Loss of trust
- BP Deepwater Horizon – Enterprise Risk Management (ERM) restructured?
Many years ago, I attended a conference on risk and risk communication in Chicago in the aftermath of the Bhopol disaster in India. Peter Sandman was one of the speakers and he left an indelible imprint on my brain that has stood the test of time and the test of validation. He drew the following equation:
RISK = HAZARD + OUTRAGE
Sandman, explained his equation as follows:
“Public perception of risk may not bear much resemblance to Risk Assessment. However, when it comes to their accepting risk one thing is certain; perception is reality.”
Sandman concluded his presentation with the following advice regarding the six interrogatories:
- WHO: Identify internal/external audiences
- WHAT: Determine the degree of complexity
- WHY: Work on solutions – not on finger pointing
- WHEN: Timing is critical
- WHERE: Choose your ground – know your turf
- HOW: Manner, method, effectiveness
In the 20+ years since that speech in Chicago much has changed. Social Media has, will, might; transform our lives – take your choice. While I agree that the Internet has transformed the lives of millions; I am not convinced that it has yet displaced the traditional media sources for our news.
One issue that is yet to be resolved is “how trustworthy the source.” For example, the following story appeared on the Internet:
US Orders Blackout Over North Korean Torpedoing Of Gulf Of Mexico Oil Rig
Source: EU TIMES – Posted on 1 May 2010
A grim report circulating in the Kremlin today written by Russia’s Northern Fleet is reporting that the United States has ordered a complete media blackout over North Korea’s torpedoing of the giant Deepwater Horizon oil platform owned by the World’s largest offshore drilling contractor Transocean that was built and financed by South Korea’s Hyundai Heavy Industries Co. Ltd., that has caused great loss of life, untold billions in economic damage to the South Korean economy, and an environmental catastrophe to the United States.
To the reason for North Korea attacking the Deepwater Horizon, these reports say, was to present US President Obama with an “impossible dilemma” prior to the opening of the United Nations Review Conference of the Parties to the Treat on the Non-Proliferation of Nuclear Weapons (NPT) set to begin May 3rd in New York.
For the complete story see the EU Times article.
Twittering fingers want to know! Could the story above be true? The posting received 245 comments and a rating of 3.9 on a scale of 5 based on 204 votes. Assuming a rating of 5 equals totally believable, the rating of 3.9 indicates that the story was believed by many – thank you social media!
Information, especially information found via social networking, social media, etc., requires significant insight and analysis. Beyond that, confirmation of the source is critical. Can you imagine the above story making its way into the legal proceedings under discovery?
Now in its second year, the Digital Influence Index created by the public relations firm, Fleishman-Hillard Inc. covers roughly 48% of the global online population, spanning France, Germany, the United Kingdom, Canada, China, Japan, and the United States. With less than 50% coverage (62% of the global online population is not reflected in the Digital Influence Index) they would have you believe that the index is a valid indicator of the ways in which the Internet is impacting the lives of consumers.
While BP has been an easy target for the media, it is far from clear that BP’s handling of the Deepwater Horizon event has been as bad as portrayed. Many years ago I was provided with some insight as I developed a crisis communications program for another major oil company. While attending a presentation on crisis communications eight guiding principles were offered. I think that they are still very valid today:
Accept accountability | Think in terms of broad defense |
Look like you care and mean it | Rely on research |
Don’t worry about being sued | Beware of experts |
Do the right thing | There is no magic bullet
|
So, what, hypothetically, does BP’s Scorecard look like? Is it balanced, askew, Misaligned, or just much maligned? On a scale of 1 – 10, with 1 being dreadful and 5 being Excellent Let’s take a look at how BP has done thus far:
Management is never put more strongly to the test than in a crisis situation. The objectives are immediate and so are the results. A crisis is an event requiring rapid decisions involving the media that, if handled incorrectly, could damage your company’s credibility and reputation.
Risk perception will influence your ERM program. Management simply must devote sufficient resources to recognizing and understanding how operations are being viewed from a risk perspective. With routine incidents being treated as front‑page news by the media, you must be prepared to deal with public perception, as well as reality.
Disruptive (Unsettling) by Design (with Purpose, Plan, Intent)
How can you get better at anticipating what will happen? That is the million dollar question. What do you need to do to create an ERM program that leverages forward and creates global awareness within your organization? You must learn to create a mosaic from diverse sources of information and diverse elements within your enterprise. You must learn how to respond to change, disruption and uncertainty; and how to use disruption and uncertainty to your advantage to create a business continuity plan that is truly resilient. Disruption is transforming the way smart organizations make decisions, keeping their business in business when faced with disruptive events. For example, here might be a typical sequence of events:
A risk materializes or is realized (event occurs). Someone, who is perceived to have good information and/or insight into the event or problem, makes a decision. Others observing the first person’s decision avoid further analysis/discovery and copy the earlier decision. The more people that copy the earlier decision, the less likely any new discovery or analysis will occur. If the earliest decision was correct, everything works out. If it was not, the error is compounded, literally cascading throughout the organization.
Modern communications systems allow information to cascade rapidly; exacerbating the effect of a wrong or inadequate decision. Disruption happens. Natural disasters, technology disasters, manmade disasters happen. How would a technology breakthrough, a shift in consumer demand or a rise, or fall, in a critical market affect the continuity of your business? Any of these can rewrite the future of a company – or a whole industry. If you haven’t faced this moment, you may soon. It’s time to change the way you think about continuity and the way you run your business.
How you decide to respond is what separates the leaders from the left behind. Today’s smartest executives know that disruption is constant and inevitable. They’ve learned to absorb the shockwaves that change brings and can use that energy to transform their companies and their careers
Imagine that your ERM program has been implemented as it was designed. You and your organization carried out ERM implementation following every detail contained in the policy, planning documents and applicable protocols. Your ERM program has failed. That is all you know. Your ERM program failed.
Now your challenge and that of your ERM team is to explain why they think that the ERM program failed. You must determine how much contrary evidence (information) was explained away based on the theory that the ERM program you developed will succeed if you implement the steps required to identify and respond to risks to your business operations.
The goal of this type of exercise is to break the emotional attachment to the success of the ERM program. When we create an ERM program we become emotionally attached to its success. By showing the likely sources of breakdown that will impede and/or negate the ERM program (failure), we utilize a methodology that allows us to conduct a validation of the ERM program by determining the potential failure points that are not readily apparent in typical exercise processes.
ERM programs are based on a set of background assumptions that are made consciously and unconsciously. Risk materializes and seemingly without warning, quickly destroys those assumptions. The ERM program is viewed as not good and in need of complete overhaul. The collapse of assumptions is not the only factor or prominent feature that defines failure point exercise methodology; but it is without doubt, one of the most important.
Decision scenarios allow us to describe forces that are operating to enable the use of judgment by the participants. The Failure Point Methodology, developed by Logical Management Systems, Corp., allows you to identify, define and assess the dependencies and assumptions that were made in developing the ERM program. This methodology facilitates a non-biased and critical analysis of the ERM program that allows planners and the ERM Team to better understand the limitations that they may face when implementing and maintaining the program.
Developing the exercise scenario for the Failure Point Methodology is predicated on coherence, completeness, plausibility and consistency. It is recognized at the beginning of the scenario that the ERM program has failed. It is therefore not really necessary to create an elaborate scenario describing catastrophic events in great detail. The participants can identify trigger points that could create a reason for the ERM program to fail. This methodology allows for maximizing the creativity of the ERM Team in listing why the program has failed and how to overcome the failure points that have been identified.
This also is a good secondary method for ensuring that the ERM Team is trained on how the program works and that they have read and digested the information contained in the program documentation.
As it is often the case that the developers are not the primary and/or secondary decision makers within the program; and that the primary decision makers within the program often have limited input during the creation of the program (time limited interviews, response to questionnaires, etc.).
This type of exercise immerses the participants in creative thought generation as to why the ERM program failed. It also provides emphasis for ownership and greater participation in developing the ERM program. Senior management and boards can benefit from periodically participating in Failure Point exercises; one output being the creation of and discussion about thematic risk maps. As a result of globalization, there is no such thing as a “typical” failure or a “typical” success. The benefits of Failure Point exercises should be readily apparent. You can use the exercise process to identify the unlikely but potentially most devastating risks your organization faces. You can build a monitoring and assessment capability to determine if these risks are materializing. You can also build buffers that prevent these risks from materializing and/or minimize their impact should the risk materialize.
Bio:
Geary Sikich – Entrepreneur, consultant, author and business lecturer
Contact Information: E-mail: G.Sikich@att.net or gsikich@logicalmanagement.com. Telephone: 1- 219-922-7718.
Geary Sikich is a seasoned risk management professional who advises private and public sector executives to develop risk buffering strategies to protect their asset base. With a M.Ed. in Counseling and Guidance, Geary’s focus is human capital: what people think, who they are, what they need and how they communicate. With over 25 years in management consulting as a trusted advisor, crisis manager, senior executive and educator, Geary brings unprecedented value to clients worldwide.
Geary is well-versed in contingency planning, risk management, human resource development, “war gaming,” as well as competitive intelligence, issues analysis, global strategy and identification of transparent vulnerabilities. Geary began his career as an officer in the U.S. Army after completing his BS in Criminology. As a thought leader, Geary leverages his skills in client attraction and the tools of LinkedIn, social media and publishing to help executives in decision analysis, strategy development and risk buffering. A well-known author, his books and articles are readily available on Amazon, Barnes & Noble and the Internet.
Greg Hutchins says
Much appreciate the kind words. The virus has jumbled all conventional norms. The challenge will be determining the new norms.