Regulatory knowledge

To identify and estimate risks to a company, risk managers need to understand how the business works. They can’t say finance doesn’t matter because they’re in IT, or vice versa. Business understanding is a must — especially if the risk manager aspires to join the C-suite in the future.

Risk management is a complex and comprehensive process. It’s definitely not a soft skill — or, at least, not just one. There are many types of risk, including compliance, security, operational, financial and reputational risks. Risk managers require a combination of both hard and soft skills to successfully address all the various risks. For example, compliance is a…

Risk managers also need to be able to solve problems. While some risks might require passing the issue on to someone above a risk manager’s pay grade, others often will be left to the risk manager to solve. As a result, they need to like getting their hands dirty from a problem-solving standpoint.

All the problem-solving skills in the world are useless if managers can’t rouse the troops. Risk managers need good people management and leadership skills to inspire and incentivize staff members. In some cases, risk management might require upsetting the apple cart, and managers need the respect of their team through the inevitable challenges.

No sports team ever wins by only playing defense — and that applies here, too. If risk managers look at how things affect the business as a whole, they might come up with a better way for their organization to operate. Part of a risk manager’s job is to see the big picture — and…

Risk management requires constant education and keeping up with relevant news, trends and issues. Not so long ago, no one had heard of ransomware. Now, it’s one of the greatest cybersecurity threats that companies face. News sites and industry journals should be regular reading material for risk managers.