Risk Assessment - Actuarial Notes Wiki

[[Wiki]] / [[Actuarial Methods]] / ==Risk Assessment== > **Risk Assessment** is a systematic process to comprehend the nature of [[risk]], express and evaluate risk, with the available knowledge. > - [SRA](https://www.sra.org/wp-content/uploads/2020/04/SRA-Glossary-FINAL.pdf), 2018 ## Quantitative vs. Qualitative Methods There are two general **categories of risk assessment methods**. Historically, quantitative and qualitative methods have been at odds with each other, however in practice both types are often used together for different purposes. | Risk Assessment Method | Description | | ---------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | **Quantitative** | Analyzes data about past events with statistics, models, and visualizations to inform calculated expectations about future events, such as [[Regression Analysis]]. | | **Qualitative** | Analyzes past events narratively with words. Like quantitative methods, qualitative methods often involve models or systems, such as the [[Cynefin Framework]] | ## Risk Assessment Process A **Risk Assessment** is comprised of 3 steps: 1. **Risk Identification** - Find and describe risks that might help or hinder your objectives. 2. **Risk Analysis** - Understand the nature of the risk in terms of uncertainties, sources, consequences, likelihood, events, scenarios, and controls. 3. **Risk Evaluation** - Compare the results of the Risk Analysis with [[Risk Criteria]] to determine if action is needed. The next step in the ISO [[Risk Management]] Process after Risk Assessment is [[Risk Treatment]]. ### 1. Risk Identification > **Risk Identification** is the process of seeing, naming, and categorizing a risk. | Risk Identification | Description | | --------------------------------------------- | ----------------------------------------------------------------------------------------------- | | [[Cynefin Framework]] | Process to make sense of a situation with uncertainty. | | [[Cindynic Approach]] | Identify value-aligned actions towards goals and purposes. | | [[Risk Management Policy]] | Specify how your organization responds to and controls risk. | | [[Risk Appetite\|Risk Appetite Statement]] | Specify "Do and Don'ts": how much risk the organization is willing to take. | | [[Risk Taxonomy]] | Give each risk a name and classification according to its characteristics. | | [[Scenario Analysis]] | Explore future events by analyzing alternative possible outcomes. | | [[Structured What-If Technique (SWIFT)]] | Structured brainstorming with prompts. | | [[Failure Modes and Effects Analysis (FMEA)]] | Review all system components to identify potential failure modes, and their causes and effects. | | [[Risk Register]] | Documents risks in a register with owners and controls. | ### 2. Risk Analysis > Risk Analysis is the systematic process to comprehend the nature of risk by seeking new knowledge.^[[[Society for Risk Analysis Glossary]]] | Technique | Description | | -------------------------------------- | -------------------------------------------------------------------- | | [[Scientific Method]] | Establish facts through experimentation and observation. | | [[MECE Principle]] | Break down a problem into its component parts. | | [[Bayesian Analysis]] | Update the probability of hypotheses by evaluating facts. | | [[Bow-Tie Analysis]] | Visualize causes and consequences of risk in a diagram. | | [[Exploratory Data Analysis (EDA)]] | Explore the structure and nature of your data. | | [[Markov Analysis]] | Predicts future system states using probabilities of current states. | | [[Simulation\|Monte-Carlo Simulation]] | Generate simulated outcomes using random variables. | #### Risk Measurement > Risk measurement is the process of assigning a number to an event. A **risk measure** is a mapping from a set of random variables to the real numbers.^[[Wikipedia - Risk Measures](https://en.wikipedia.org/wiki/Risk_measure)] $ \rho : \mathcal{L} \to \mathbb{R} \cup \{ +\infty \} $ | Risk Measure | Description | | --------------------------------- | ----------------------------------------------------------------------------------- | | [[Variance]] / Standard Deviation | The dispersion of data points around the average. | | [[Beta Coefficient]] | Systemic risk in a financial portfolio relative to the market. | | [[Sharpe Ratio]] | Risk-adjusted return, calculated as the excess return per unit of risk. | | [[Loss Frequency]] | The chance of an event occurring, often expressed as a percentage or probability. | | [[Loss Severity]] | The extent of damage or impact an event might cause. | | [[Expected Loss (EL)]] | The average loss, calculated as Probability x Impact | | [[Value at Risk (VaR)]] | The maximum expected loss over a specified time period at a given confidence level. | | [[Tail Value at Risk (TVaR)]] | The expected loss beyond the VaR threshold, focusing on tail risk. | | [[Key Risk Indicator]] | Operational metrics used to monitor risk levels and provide early warning signals. | ### 3. Risk Evaluation > **Risk Evaluation** is the process of comparing the result of risk analysis against risk and benefit criteria to determine the significance and acceptability of the risk. > - [SRA Glossary (PDF)](https://www.sra.org/wp-content/uploads/2020/04/SRA-Glossary-FINAL.pdf) (SRA, 2018)