Estimated Reading Time: 5 minutes
By Dennis M. Kirschbaum, ARM
During the last century, a handful of historians and academicians debated the question of who was the first risk manager. In his new book, The Polar Bear Strategy, author John Ross traces back the history of risk management to a seventeenth-century Monk named Blaise Pascal, who suggested that it was less risky to believe in God than to be a nonbeliever. His line of reasoning went like this.
If you believe in God and it turns out there is no God, you will be none the worse for having believed. However, if you do not believe in God and there is a God, you may be punished for eternity for your stubbornness. In other words, it is less risky to believe in God–just in case.
Ross makes a compelling case that Pascal’s application of the laws of probability for predicting the likelihood of unwanted consequences led to the development of risk management. That may be true, however, I believe that Brother Pascal was more likely the first actuary. In fact, the first risk manager lived at least 2,300 years earlier.
I am thinking of the Old Testament prophet Jonah. Although he is best known for his sojourn in the belly of a big fish, the Book of Jonah is really about effective risk control.
Let’s review the facts as presented. Jonah gets a call to go and preach to the people of Nineveh that God will destroy them to punish them for their evil ways. Destruction is almost certain unless Jonah can convince them to repent. In making his case to the people of Nineveh, Jonah used the basic three-step approach to risk management. He asked the following questions:
Jonah was not the first person of his day to predict doom and gloom. But there is an important difference between Jonah and most of the other prophets of the Hebrew Bible — the people actually listened to him! They repented and the awful things didn’t happen. But this presented a problem for Jonah. How could he prove that his predictions would have come true if people had not changed their behaviors? At the end of the book Jonah is found moping. He is concerned that his reputation as a prophet will be damaged because the things he predicted did not come true.
Of course, just knowing the right questions to ask doesn’t make one a good risk manager. Jonah also had the right skill set to put an effective risk management plan into place.
Fast forward 2,500 years. By now everyone knows that the Y2K computer bug was a big snooze. The predictions of widespread power outages, loss of phone service, and the collapse of worldwide financial markets simply didn’t occur. Instead, a handful of IS guys and gals stood guard, largely bored, over our nation’s computer servers while the rest of world stayed home to watch ABC’s coverage of various New Year’s festivities on TV.
But while people are cursing the pundits and wondering what they are going to do with 100 cases of k-rations and a thousand gallons of cooking fuel, is anyone stopping to ponder what would have happened without the prophets of doom and gloom?”
What happened? How could all the doom and gloom prophets of the final years of the ‘90s have been so wrong? Like Jonah, they have become despised in their own land when their prophesies of global meltdown and destruction failed to materialize. But while people are cursing the pundits and wondering what they are going to do with 100 cases of k-rations and a thousand gallons of cooking fuel, is anyone stopping to ponder what would have happened without the prophets of doom and gloom?
Perhaps the world really would have come to an end. Thanks to all those squeaky wheels the Y2K problem got lots of grease. Grease, and, by some estimates, about 400 billion dollars. Yet no one will ever be able to quantify the losses that didn’t occur.
Isn’t this a fundamental challenge of risk management? How does one quantify the losses that didn’t occur? The Y2K pundits took the lessons of Jonah to heart and tragedy was averted. And therein is revealed an approach that can work in any organization that wants to prevent everything from small problems to big disasters.
I first heard about the Y2K computer bug in the mid-90s, but there were actually folks who were sounding alarms as far back as the 70s. It can take lots of effort and wind before a message sinks in. Don’t give up. If you are convinced that there are issues that need to be addressed, keep raising them. Sooner or later, someone will listen.
Fear is good. Franklin D. Roosevelt said, “We have nothing to fear, but fear itself.” I’m not certain what he meant, but I do know that fear can be a strong motivator. The threat of a lawsuit can motivate people to take action and address problems.
Show your people why it is in their best interest to buy into risk management. No one wants to be injured and most people don’t want to injure others. Demonstrate how risk management reduces the likelihood of unwanted consequences and creates an environment where more risk taking is possible.
When he had finished his task, Jonah settled on a perch on the outskirts of the town to watch and see what would happen. Of course, with risk management, the job is never completed. There is an ongoing process of evaluating your risk management strategy and making constant adjustments.
Implementing such a strategy will go a long way toward the realization of not only your risk management goals but also your organization’s mission. And like Jonah, don’t forget to prepare for the worst while you hope for the best. Because the night is always darkest right before the whale spits you out on the beach.
Dennis Kirschbaum is Manager of Information Technology at the Nonprofit Risk Management Center. He can be reached at (202) 785-3891 or via e-mail.
© 2003 Nonprofit Risk Management Center
“First let me congratulate you on a conference well done. I had a great time at the Nonprofit Employee Benefits Conference and walked away with some valuable tools and questions that we’ll need to be addressing in both the short and long term. Thanks to you and your staff for all you do to provide us with quality resources in support of our missions.”
“BBYO’s engagement of the Center to conduct a risk assessment was one of the most valuable processes undertaken over the past five years. Numerous programmatic and procedural changes were recommended and have since been implemented. Additionally, dozens (literally) of insurance coverage gaps were identified that would never have been without the work of the Center. This assessment led to a broker bidding process that resulted in BBYO’s selection of a new broker that we have been extremely satisfied with. I unconditionally recommend the Center for their consultative services.
“Melanie Herman has provided expert, insightful, timely and well resourced information to our Executive Team and Board of Directors. Our corporation recently experienced massive growth through merger and the Board has been working to better integrate their expanded set of roles and responsibilities. Melanie presented at our Annual Board of Director’s Retreat and captured the interest of our Board members. As a result of her excellent presentation the Board has engaged in focused review which is having immediate effects on governance.”
“The Nonprofit Risk Management Center has been an outstanding partner for us. They are attentive to our needs, and work hard to successfully meet our requests for information. Being an Affiliate member gave us access to so many time- and money-saving resources that it easily paid for itself! Nonprofit Risk Management Center is truly a valued partner of The Community Foundation of Elkhart County and we are continuously able to optimize staff time with the support given by their team.”
“The board and staff of the Prince George’s Child Resource Center are extremely pleased with the results of the risk assessment conducted by the Nonprofit Risk Management Center. A thorough scan revealed that while we are a well run organization, we had risks that we never imagined. We are grateful to know that we have now minimized our organizational risks and we recommend the Center to other nonprofits.”
Great American Insurance Group’s Specialty Human Services is committed to protecting those who improve your communities. The Center team has committed to delivering dynamic risk management solutions tailored to nonprofit organizations. These organizations have many and varied risk issues, hence the need for specialized coverage and expert knowledge for their protection. We’ve had Melanie speak on several occasions to employees and our agents. She is always on point and delivers such great value. Thank you for the terrific partnership and allowing our nonprofits to focus on their mission!