Risk Management

Part I is the book’s operating manual for thinking about risk without getting lost in jargon. Chapter 1 gives you the roadmap—start with strategy, define the control objectives, identify and assess the risks, and then put controls in place; Chapter 2 slows down to ask what risk actually is, treating it as a mix of possible loss, how much that loss matters, and how uncertain it is; Chapter 3 turns that into practice by showing how to spot the real causes of trouble and map risks by probability and impact. Then Chapter 4 moves into response mode, explaining how controls can prevent, detect, or soften risks without pretending they can eliminate them entirely; Chapter 5 adds the important warning that controls live inside a larger system, so a “fix” can easily create new problems somewhere else; and Chapter 6 closes the loop by showing that risk management is never done, because organizations change, processes age, and yesterday’s smart solution can become tomorrow’s blind spot. 

Part II shifts the spotlight from abstract organizational risk to the beautifully messy reality of people. Chapter 7 lays the groundwork with agency theory, showing why employees and organizations do not always want the same things; Chapter 8 explores the obvious lever—money—through salaries, bonuses, commissions, and other financial rewards; and Chapter 9 makes the story more human by showing that recognition, status, belonging, purpose, and intrinsic enjoyment can motivate just as much as pay. Chapter 10 then argues that motivation alone is not enough, because employees also need clarity, capability, and the right priorities to channel their effort well; and Chapter 11 zooms out to show how decision rights, information, performance evaluation, and rewards have to be lined up so people are empowered to make smart decisions instead of just busy ones. 

Part III is where the book really gets into the delicate art of paying for performance without creating a mess. Chapter 12 introduces the central tension—stronger incentives can motivate harder work, but they also push more risk onto employees; Chapter 13 shows why measuring performance is much trickier than it looks, because objective metrics can distort behavior as easily as they can improve it; Chapter 14 turns to target setting and explains why goals can energize people, but also tempt them to game the system or hold back when they expect the bar to keep moving; and Chapter 15 closes by showing how supervisor discretion can fix some of the flaws of rigid metrics while introducing a whole new set of problems around bias, fairness, and credibility.