Pub Date : 2019-07-15DOI: 10.1504/IJRAM.2019.101287
Martin Lundgren, Erik Bergström
In this paper, the formal processes so often assumed in information security risk management and its activities are investigated. For instance, information classification, risk analysis, and security controls are often presented in a predominantly instrumental progression. This approach, however, has received scholarly criticism, as it omits social and organisational aspects, creating a gap between formal and actual processes. This study argues that there is an incomplete understanding of how the activities within these processes actually interplay in practice. For this study, senior information security managers from four major Swedish government agencies were interviewed. As a result, 12 characteristics are presented that reflect an interplay between activities and that have implications for research, as well as for developers of standards and guidelines. The study's conclusions suggest that the information security risk management process should be seen more as an emerging process, where each activity interplays dynamically in response to new requirements and organisational and social challenges.
{"title":"Dynamic interplay in the information security risk management process","authors":"Martin Lundgren, Erik Bergström","doi":"10.1504/IJRAM.2019.101287","DOIUrl":"https://doi.org/10.1504/IJRAM.2019.101287","url":null,"abstract":"In this paper, the formal processes so often assumed in information security risk management and its activities are investigated. For instance, information classification, risk analysis, and security controls are often presented in a predominantly instrumental progression. This approach, however, has received scholarly criticism, as it omits social and organisational aspects, creating a gap between formal and actual processes. This study argues that there is an incomplete understanding of how the activities within these processes actually interplay in practice. For this study, senior information security managers from four major Swedish government agencies were interviewed. As a result, 12 characteristics are presented that reflect an interplay between activities and that have implications for research, as well as for developers of standards and guidelines. The study's conclusions suggest that the information security risk management process should be seen more as an emerging process, where each activity interplays dynamically in response to new requirements and organisational and social challenges.","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":" ","pages":""},"PeriodicalIF":0.0,"publicationDate":"2019-07-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1504/IJRAM.2019.101287","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"47014536","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2018-12-10DOI: 10.1504/IJRAM.2018.10017036
Kyoo‐Man Ha
This study examined how the role of research and development (R&D) can be improved in the field of disaster management in Korea by comparing self-assertion and multi-fusion approaches. Literature review was the major methodology utilised. Using five variables, namely public institutions, the industry or the business sector, college laboratories, mass media, and international R&D, the two approaches were analysed, and in the process, the pentagon model was established. The study's key position is that Korea has to transform its current self-assertion approach to a multi-fusion approach in the near future by understanding and improving its R&D culture, and thus, integrate expert knowledge into the R&D system.
{"title":"Self-assertion vs. multi-fusion in the field of disaster management R&D: the case of Korea","authors":"Kyoo‐Man Ha","doi":"10.1504/IJRAM.2018.10017036","DOIUrl":"https://doi.org/10.1504/IJRAM.2018.10017036","url":null,"abstract":"This study examined how the role of research and development (R&D) can be improved in the field of disaster management in Korea by comparing self-assertion and multi-fusion approaches. Literature review was the major methodology utilised. Using five variables, namely public institutions, the industry or the business sector, college laboratories, mass media, and international R&D, the two approaches were analysed, and in the process, the pentagon model was established. The study's key position is that Korea has to transform its current self-assertion approach to a multi-fusion approach in the near future by understanding and improving its R&D culture, and thus, integrate expert knowledge into the R&D system.","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":"22 1","pages":"1"},"PeriodicalIF":0.0,"publicationDate":"2018-12-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"42197872","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2018-12-10DOI: 10.1504/IJRAM.2018.10017040
Bahaa Elboshy, Mona Gamaleldin, H. Ayad
Natural hazards are likely to increase in frequency and magnitude owing to climate change and urbanisation. Therefore, disaster risk management (DRM) and related issues have recently come to the fore and become an essential need. The Hyogo framework for action (HFA) noted the importance of ensuring that the disaster risk reduction (DRR) is considered a national and local priority as well through the assessment and monitoring of the DRM. This paper aims at presenting an adequate method to evaluate the DRM system to form a comprehensive view of its strengths and weaknesses. In this regard, a framework is presented to assess the national DRM through a quantitative method for evaluating its efficiency criteria. In order to do that, a set of indicators is established to evaluate these criteria. Egyptian DRM is evaluated using the proposed framework to identify the weaknesses associated with the current system and the challenges facing it.
{"title":"An evaluation framework for disaster risk management in Egypt","authors":"Bahaa Elboshy, Mona Gamaleldin, H. Ayad","doi":"10.1504/IJRAM.2018.10017040","DOIUrl":"https://doi.org/10.1504/IJRAM.2018.10017040","url":null,"abstract":"Natural hazards are likely to increase in frequency and magnitude owing to climate change and urbanisation. Therefore, disaster risk management (DRM) and related issues have recently come to the fore and become an essential need. The Hyogo framework for action (HFA) noted the importance of ensuring that the disaster risk reduction (DRR) is considered a national and local priority as well through the assessment and monitoring of the DRM. This paper aims at presenting an adequate method to evaluate the DRM system to form a comprehensive view of its strengths and weaknesses. In this regard, a framework is presented to assess the national DRM through a quantitative method for evaluating its efficiency criteria. In order to do that, a set of indicators is established to evaluate these criteria. Egyptian DRM is evaluated using the proposed framework to identify the weaknesses associated with the current system and the challenges facing it.","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":"22 1","pages":"63"},"PeriodicalIF":0.0,"publicationDate":"2018-12-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"45305280","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2018-12-10DOI: 10.1504/IJRAM.2018.096688
E. Cha, B. Ellingwood
Risk cannot be avoided completely in modern society. As a society develops, public concerns on reducing risks are elevated, resulting in legislation and executive orders to create agencies that regulate such risks. However, it has been noted that the cost efficiencies of federal regulations are not consistent either within or across regulatory agencies, suggesting a need to establish a solid framework to advance regulatory decision-making in the public interest. In this paper, we utilise cumulative prospect theory (CPT) to investigate risk acceptance reflected in several US federal regulatory policies, specifically in their proposed regulations that address public safety and health issues. Attitudes toward risk are reflected in perceptions of likelihoods and consequences of hazardous events or exposure to hazardous materials. Twenty-two regulations proposed are analysed. The relative standing of risk acceptance reflected in each regulation sheds light on the differences in risk acceptance attitudes.
{"title":"The relation between cost-benefit analysis and risk acceptance in regulatory decision-making","authors":"E. Cha, B. Ellingwood","doi":"10.1504/IJRAM.2018.096688","DOIUrl":"https://doi.org/10.1504/IJRAM.2018.096688","url":null,"abstract":"Risk cannot be avoided completely in modern society. As a society develops, public concerns on reducing risks are elevated, resulting in legislation and executive orders to create agencies that regulate such risks. However, it has been noted that the cost efficiencies of federal regulations are not consistent either within or across regulatory agencies, suggesting a need to establish a solid framework to advance regulatory decision-making in the public interest. In this paper, we utilise cumulative prospect theory (CPT) to investigate risk acceptance reflected in several US federal regulatory policies, specifically in their proposed regulations that address public safety and health issues. Attitudes toward risk are reflected in perceptions of likelihoods and consequences of hazardous events or exposure to hazardous materials. Twenty-two regulations proposed are analysed. The relative standing of risk acceptance reflected in each regulation sheds light on the differences in risk acceptance attitudes.","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":"1 1","pages":""},"PeriodicalIF":0.0,"publicationDate":"2018-12-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1504/IJRAM.2018.096688","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"45837604","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2018-10-25DOI: 10.1504/IJRAM.2018.10016898
Muthaffar Nazmi Ahmad Mansour, Ayham A. M. Jaaron
The insurance sector, being one of the most prosperous sectors in developing countries, has been immersed in continuous changes to adapt to the new global economic environments and business safety requirements. However, there seems to be scarcity in the current literature of empirical studies to investigate the prerequisites of a healthy risk management model for insurance organisations in developing countries. This paper is an attempt to develop a risk management model for insurance organisations operating in the context of the developing country of Palestine. An exploratory qualitative study using semi-structured interviews, archival documents and observations were adopted in this research inquiry. Data were analysed using thematic analysis approach. Although data analysis show that Palestinian insurance organisations' managerial practices are relatively in regulatory compliance with risk management practices, the results highlight the necessity of providing a supportive organisational culture and capacity building functions to provide highly qualified insurance professionals as a corner stone for insurance companies' competitiveness in developing countries. The developed managerial model is important as it identifies the determinants of a successful enterprise risk management realisation that will help the insurance companies in developing countries context to improve their strengths and maintain a sustainable growth.
{"title":"Developing enterprise risk management model: the case of the Palestinian insurance sector","authors":"Muthaffar Nazmi Ahmad Mansour, Ayham A. M. Jaaron","doi":"10.1504/IJRAM.2018.10016898","DOIUrl":"https://doi.org/10.1504/IJRAM.2018.10016898","url":null,"abstract":"The insurance sector, being one of the most prosperous sectors in developing countries, has been immersed in continuous changes to adapt to the new global economic environments and business safety requirements. However, there seems to be scarcity in the current literature of empirical studies to investigate the prerequisites of a healthy risk management model for insurance organisations in developing countries. This paper is an attempt to develop a risk management model for insurance organisations operating in the context of the developing country of Palestine. An exploratory qualitative study using semi-structured interviews, archival documents and observations were adopted in this research inquiry. Data were analysed using thematic analysis approach. Although data analysis show that Palestinian insurance organisations' managerial practices are relatively in regulatory compliance with risk management practices, the results highlight the necessity of providing a supportive organisational culture and capacity building functions to provide highly qualified insurance professionals as a corner stone for insurance companies' competitiveness in developing countries. The developed managerial model is important as it identifies the determinants of a successful enterprise risk management realisation that will help the insurance companies in developing countries context to improve their strengths and maintain a sustainable growth.","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":"21 1","pages":"283"},"PeriodicalIF":0.0,"publicationDate":"2018-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"42921072","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2018-10-25DOI: 10.1504/IJRAM.2018.10016899
L. Turnbull, Abubaker Haddud
The purpose of this research was to determine if global organisations adopt formal risk management strategies to minimise risks and liabilities associated with international trade, and if a relationship exists between adopting a risk management strategy, and the number of countries global organisations do business with. Adopting effective risk management strategies minimises misunderstandings with customers and suppliers and may strengthen customer relationships by providing knowledge management support in these areas. The primary data was collected from 108 logistics and purchasing professionals using an online survey. The results identified that organisations use formal risk management strategies when dealing with partners in several countries. Thus, it is recommended that organisations develop a formal risk management strategy that includes contracts of sale, appropriate use of Incoterms for containerised shipments, application of cargo insurance and selection of governing body of law to minimise risks and liabilities in international trade. The results from this study provide valuable insights for organisations working in global business markets about how to effectively manage risks.
{"title":"Exploring risk management strategies in global business environments","authors":"L. Turnbull, Abubaker Haddud","doi":"10.1504/IJRAM.2018.10016899","DOIUrl":"https://doi.org/10.1504/IJRAM.2018.10016899","url":null,"abstract":"The purpose of this research was to determine if global organisations adopt formal risk management strategies to minimise risks and liabilities associated with international trade, and if a relationship exists between adopting a risk management strategy, and the number of countries global organisations do business with. Adopting effective risk management strategies minimises misunderstandings with customers and suppliers and may strengthen customer relationships by providing knowledge management support in these areas. The primary data was collected from 108 logistics and purchasing professionals using an online survey. The results identified that organisations use formal risk management strategies when dealing with partners in several countries. Thus, it is recommended that organisations develop a formal risk management strategy that includes contracts of sale, appropriate use of Incoterms for containerised shipments, application of cargo insurance and selection of governing body of law to minimise risks and liabilities in international trade. The results from this study provide valuable insights for organisations working in global business markets about how to effectively manage risks.","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":"21 1","pages":"302"},"PeriodicalIF":0.0,"publicationDate":"2018-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"43496449","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2018-10-25DOI: 10.1504/IJRAM.2018.10016900
H. Singh, Pradeep Singh Siwach
Vulnerability of cities largely depends upon rising population, its unchecked constructional growth and failure in lifeline infrastructure. Shimla city lying in the lapse of Western Himalayas was founded by the British in the early 19th century. The region is seismically active and lies in Zone IV of India with modified Mercalli (MM) intensity scale of VIII and peak ground acceleration (PGA) of 4.0 metres per second squared. The objective of this conceptual and empirical research paper is to evaluate Shimla city's earthquake vulnerability with regard to past and present scenario of infrastructures within it, supported by local residents' perspective. This study sought out the awareness of seismicity among the residents of Shimla, their opinion and knowledge, related to earthquake resistant houses, lifeline structures, earthquake measures and trust in city authorities. The comparison between primary data and available secondary data is indicative of the high seismic vulnerability levels and concludes with suggestions, for both authorities and residents of Shimla city.
{"title":"Earthquake and resultant apocalypse of Shimla city","authors":"H. Singh, Pradeep Singh Siwach","doi":"10.1504/IJRAM.2018.10016900","DOIUrl":"https://doi.org/10.1504/IJRAM.2018.10016900","url":null,"abstract":"Vulnerability of cities largely depends upon rising population, its unchecked constructional growth and failure in lifeline infrastructure. Shimla city lying in the lapse of Western Himalayas was founded by the British in the early 19th century. The region is seismically active and lies in Zone IV of India with modified Mercalli (MM) intensity scale of VIII and peak ground acceleration (PGA) of 4.0 metres per second squared. The objective of this conceptual and empirical research paper is to evaluate Shimla city's earthquake vulnerability with regard to past and present scenario of infrastructures within it, supported by local residents' perspective. This study sought out the awareness of seismicity among the residents of Shimla, their opinion and knowledge, related to earthquake resistant houses, lifeline structures, earthquake measures and trust in city authorities. The comparison between primary data and available secondary data is indicative of the high seismic vulnerability levels and concludes with suggestions, for both authorities and residents of Shimla city.","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":"21 1","pages":"332"},"PeriodicalIF":0.0,"publicationDate":"2018-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"66700948","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2018-10-25DOI: 10.1504/IJRAM.2018.10016901
K. Singh, Debasish Sur
The present paper attempts to analyse the company-specific components of business risk, such as liquidity risk, cost structure risk and capital productivity risk of the selected Indian manufacturing sector during the period 1994-1995 to 2013-2014. The sample size of the study consists of one hundred companies which have been selected by taking the top five companies from each of the 20 selected industries. The business risk and its company specific components associated with the selected companies have been measured by using Gini's coefficient of concentration. Principal component analysis has been applied in designing the 'business risk index' (BRI) by taking into account the three company-specific components of business risk. Simple regression model has been adopted to investigate the effect of BRI on the return measured in terms of return on capital employed of the selected industries.
{"title":"Analysing company-specific components of business risk in selected manufacturing firms in Indian corporate sector","authors":"K. Singh, Debasish Sur","doi":"10.1504/IJRAM.2018.10016901","DOIUrl":"https://doi.org/10.1504/IJRAM.2018.10016901","url":null,"abstract":"The present paper attempts to analyse the company-specific components of business risk, such as liquidity risk, cost structure risk and capital productivity risk of the selected Indian manufacturing sector during the period 1994-1995 to 2013-2014. The sample size of the study consists of one hundred companies which have been selected by taking the top five companies from each of the 20 selected industries. The business risk and its company specific components associated with the selected companies have been measured by using Gini's coefficient of concentration. Principal component analysis has been applied in designing the 'business risk index' (BRI) by taking into account the three company-specific components of business risk. Simple regression model has been adopted to investigate the effect of BRI on the return measured in terms of return on capital employed of the selected industries.","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":"21 1","pages":"359"},"PeriodicalIF":0.0,"publicationDate":"2018-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"46890151","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2018-10-25DOI: 10.1504/IJRAM.2018.10016896
A. Tembhurkar, Radhika Deshpande
It is preeminent to develop a safe, secure and sustainable collection and transportation system for infectious medical waste (IMW). Risk assessment of infectious medical waste collection and transportation (IMWCT) system is the need of the hour for recognising threats, hazards and vulnerabilities in the area of IMWCT. Planned and optimised routes considering the risk aspect would provide secure collection and transportation for IMWCT. Few endeavours are found towards appraisal of hazard amid collection and transportation of IMW particularly in India. The present paper initiates the scenario-based risk assessment approach along with optimisation of collection and transportation routes for IMW.
{"title":"Scenario-based risk assessment model for infectious medical waste collection and transportation system","authors":"A. Tembhurkar, Radhika Deshpande","doi":"10.1504/IJRAM.2018.10016896","DOIUrl":"https://doi.org/10.1504/IJRAM.2018.10016896","url":null,"abstract":"It is preeminent to develop a safe, secure and sustainable collection and transportation system for infectious medical waste (IMW). Risk assessment of infectious medical waste collection and transportation (IMWCT) system is the need of the hour for recognising threats, hazards and vulnerabilities in the area of IMWCT. Planned and optimised routes considering the risk aspect would provide secure collection and transportation for IMWCT. Few endeavours are found towards appraisal of hazard amid collection and transportation of IMW particularly in India. The present paper initiates the scenario-based risk assessment approach along with optimisation of collection and transportation routes for IMW.","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":"21 1","pages":"271"},"PeriodicalIF":0.0,"publicationDate":"2018-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"44500137","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2018-10-25DOI: 10.1504/IJRAM.2018.10016903
R. Laryea, K. Carling, Catia Cialani, Roger G. Nyberg
A sensitivity analysis to vary the weights of an accurate predictive classification model to produce a mixed model for ranking countries on the risk of food price volatility is carried out in this ...
{"title":"Sensitivity analysis of a risk classification model for food price volatility","authors":"R. Laryea, K. Carling, Catia Cialani, Roger G. Nyberg","doi":"10.1504/IJRAM.2018.10016903","DOIUrl":"https://doi.org/10.1504/IJRAM.2018.10016903","url":null,"abstract":"A sensitivity analysis to vary the weights of an accurate predictive classification model to produce a mixed model for ranking countries on the risk of food price volatility is carried out in this ...","PeriodicalId":35420,"journal":{"name":"International Journal of Risk Assessment and Management","volume":"21 1","pages":"374-382"},"PeriodicalIF":0.0,"publicationDate":"2018-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"47770062","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
京公网安备 11010802042870号
京ICP备2023020795号-1
扫码关注我们
求助内容:
应助结果提醒方式: