The risk management plan should involve representatives from various functions as a committee. In case such committee is not experienced in risk management, It should hiring a consultant to work in the committee is appropriated. The committee has a duty to plan how to manage the risk, starting by developing a model to manage risk in the organization. This requires the processes to review, analyze, make a decision, and to evaluate organization’s risk as outlined below.

1. Determine the proficiency indicator

2. Arrange the training for the representatives to make them realize the impact of risk

3. Arrangement the questionnaire

4. Conduct an interview session

5. Review the documents in each department by focusing on the risk issue

6. Arrangement a series of workshop

7. Develop a risk model

8. Examine and follow up all the department

9. Make an analysis based on evaluated information

1. Able to clearly identify the organizational risk

2. Able to prioritize and evaluate those risks

3. Able to develop a clearly main risk management plan

4. Able to report risk issues to the executive

5. Able to prioritize risk management plans according to their importance as an operation plan

1. Exploring risk in the organization. The process involves exploring the risk in the organization, using the information obtained from questionnaires and interviews to get the information that might be the cause of organizational risk and write them down as the table shown below.

2. Evaluating risk in the organization. The committee has duties to collect all information from related departments and prioritize them. Those related parties might be invited in the process.

3. Developing the operation plan. The team will have to choose the highest risk issue such as corruption and cost fluctuation as the first priority.

4. Summarizing the risk report to further develop the risk management plan by focusing on the emergency issue first.

A systematic risk management required supports from every department in the organization. The executive must establish a communication to make everyone realize that this activity involves everyone in the company, making them realize the impact of risks, so everyone will have to regularly and systematically involve.

A systematic risk management required supports from every department in the organization. The executive must establish a communication to make everyone realize that this activity involves everyone in the company, making them realize the impact of risks, so everyone will have to regularly and systematically involve.

1. Strategic planning

2. Risk analysis

3. Risk control

In risk mitigation, each department will support in evaluating and prioritizing the risks to see what are the impacts of such risks to manage them in an orderly manner. A consideration of the risk control factors will let the team see the current risk management practices in the organization. The final step is to develop a risk management plan that can be used in the organization.