Businesses can leverage the recent experiences and basic risk management principles to develop proactive DRM strategies. The basic principles of
risk management can and should be applied for Disaster Risk Management (DRM) to:
- Identify and Predict risk
- Businesses with offices or assets in regions that are likely targets for high severity weather events should identify disasters as strategic
risks.
- Assess Risk
- Businesses need to incorporate disaster risk considerations into portfolio analytics, modeling assumptions and forecasting.
- Develop Risk Response and Control Plan:
- Businesses ought to define thresholds and triggers that exceed risk appetite and/or present unacceptable heightened risks. These metrics will
be incorporated into a risk management plan that outlines required response actions, stakeholders involved and desired mitigation outcomes.
- DRM Communication Plan:
- Organizations should apply an active communication plan for all stages of DRM. Communication approaches and methods should be defined from early
stages of event monitoring through to communication during incident response, including considerations for business resiliency tactics.
- Risk Monitoring and Analysis:
- Companies must implement processes for proactive monitoring of events that present heightened risk, including natural and man-made disasters.
Companies also need to implement tracking and reporting to evaluate mid-to-long term impacts that may be detected after risk events subside.