michael horn

Volkswagen – The Cost of Deception

Volkswagen, a long-trusted and highly respected brand, will be dealing with the fallout of its emission scandal for quite some time. It's clear to everyone that their massive deception is inexcusable, but we'd do well to remember that the hugest transgressions happen one failure in decision making at a time. Volkswagen's was likely born out of panic.

wooden toy

Risk Has a Shape

Managing risk effectively requires first an understanding of the risk that needs managing. It sounds so elementary, but there's often a great deal of uncertainty about what an organization's risks actually look like. It's no wonder why risk management programs fail. Fortunately, there are a host of ERM tools that can help to bridge this gap.


HR’s Newest Policy: Duty of Loyalty and Why Employees are Accountable

The good folks at On Call International have shared with the CCI community before about "duty of care," a company's responsibility for keeping its employees safe as they travel on business. This piece explores the other side of the issue: the employee's responsibility. Planning and crisis management only go so far if employees are willfully engaging in ...


A Value-Based Approach to Risk Management

When it comes to building enterprise value, the status quo doesn’t even have a place in the conversation. Value creation goes hand-in-hand with risk, but the risk management function doesn't have to stand in the way of innovation. Jim DeLoach suggests there are two ways of thinking about risk management within this context...

risk management

How COSO Destroyed Risk Management

COSO's Enterprise Risk Management Integrated Framework has become something it was never intended to be; as a risk management standard, it fails for at once being too broad (robust risk management programs would be far more effective) and too narrow (in its focus on internal controls as the primary risk management tool). It's time to adopt a multidisciplinary ...


Lessons Learned from the Nepal Crisis

When employees are traveling on business, some risks are inevitable. However, every organization should have a fully realized plan in case the worst occurs. The best way for employers to avoid danger is by being proactive in case an emergency strikes, being aware of risk, training employees, understanding the capability on the ground and crowdsourcing intelligence.


Adversity – Lessons of a Tulip

The tulip was the source of what's widely believed to have been the first speculative bubble, and like all bubbles, it eventually burst. That crisis was not unlike the collapse of the dot-com bubble -- rational behavior was replaced by "irrational exuberance." Effective risk management means being wary of an overvalued market and accounting for human emotion ...

risks ahead

Risk Management – Looking Forward 30 Years

Will we be riskier tomorrow than we are today? Risk-minded executives should be asking themselves that question. In this follow-up piece to his "Lessons from the Last 30 Years," Jim DeLoach makes predictions about what the coming 30 years will bring for the field of risk management. Spoiler alert: the landscape is likely to look quite ...

space shuttle

Risk Management – Lessons from the Last 30 Years

Lots of change has taken place in risk management over the past three decades. The kinds of risks organizations are exposed to, the speed at which they must respond, the very way we approach enterprise risk management -- all look entirely different than they did in 1985. Jim DeLoach outlines where we've failed and what we can ...