ISLAMABAD: Securities and Exchange Commission of Pakistan (SECP) Chairman Aamir Khan said that risk taking was an essential ingredient of success, but a compromise on risk management protocols, could turn an opportunity into a loss situation.
“No amount of urgency should detract from following the risk management protocols,” he added.
He was delivering keynote address at First National Risk Management Conference held here.
The conference was organized by Mari Petroleum Company Limited. President of Pakistan, Dr. Arif-ur-Rahman Alvi was the chief guest.
Aamir said that risk-taking was integral to the growth and development of any organization, whether in the private or public sectors.
“It lies at the heart of progress, and companies that do not take a measured approach to risk-taking on an ongoing basis, invariably fail to grow,” he added.
He advised that business that adequate risk management controls protected the company against market, liquidity, operational, and reputational risks. They also safeguard against non-market related losses such as misappropriation and fraud, he added.
The SECP Chairman pointed out that international fame companies i.e., Kodak, Nokia and Xerox were once industry leaders, but their inability to take risks and try new ideas ended their supremacy, rather unceremoniously.
Taking calculated risk differentiates leaders from laggards. Risk-taking is by no means a blind leap into darkness, but a careful calculation of the potential outcomes and putting “what-if” strategies in place, Khan advises companies.
While talking about innovation, Aamir mentioned that technology-driven companies like Tesla, Uber, Google, and Amazon re-writing history of corporate success.
In all these companies, Risk-taking was at the cornerstone of their business strategy, he added and said that these companies refused to follow conventional strategies, and put into play ‘out-of-box’ thinking.
While private sector history was repleted with success stories arising out of risk-taking, Aamir said, adding in the domain of Public sector companies that we saw limited-to-no appetite.
This is primarily due to their peculiar work culture, where people prefer to follow the laid down procedures, while getting support for a new idea is always an uphill task. A well designed risk management process should evaluate, control and monitor all risks to which an organization may be exposed.
In this regard, he mentioned SECP administered Public Sector Companies (Corporate Governance) Rules, 2013 that required Board of Directors to determine the level of risk tolerance by establishing risk management policies, as well as Risk Management Committees.
He said that the existence of an Enterprise Risk Management (ERM) framework sends strong signals to the market, and helps improve investor confidence in the company’s management. International investors in particular, assess how companies have taken appropriate measures to improve their risk management governance systems.
In the digital age, he said, organizations faced emerging risks that had traditionally not received a lot of focus.
The use of online data requires risk managers to pay close attention to the ever-changing business models. With the advent of technologies like Artificial Intelligence, Machine Learning and Internet of Things (IoT), machines are able to share and analyze data without human intervention. Such digital footprint, undoubtedly provides a competitive edge, but at the same time raises concerns with respect to data security.
To counter risks related to digitalization, it is paramount to create broad-organizational awareness and to implement risk-based architecture for the employees, vendors, customers as well as other stakeholders. Accordingly, organizations should remain vigilant with regards to the use and impact of technological developments.