Strategic thinking

After preparing the ranked list of risks, a risk manager then needs to lead the process of planning how to manage them. That could include accepting risks that are deemed reasonable based on an organization’s agreed-upon risk appetite and risk tolerance or adopting strategies to mitigate risks so they pose less of a business threat. In other…

All the problem-solving skills in the world are useless if managers can’t rouse the troops. Risk managers need good people management and leadership skills to inspire and incentivize staff members. In some cases, risk management might require upsetting the apple cart, and managers need the respect of their team through the inevitable challenges.

Risk managers need analytical skills to collect data, analyze risks and make sound decisions based on the results. They also need to be able to spot holes and weaknesses that others may have missed in IT systems and infrastructure, business processes, financial practices and other areas.

Risk management is a complex and comprehensive process. It’s definitely not a soft skill — or, at least, not just one. There are many types of risk, including compliance, security, operational, financial and reputational risks. Risk managers require a combination of both hard and soft skills to successfully address all the various risks. For example, compliance is a…

This goes hand in hand with the leadership skills. Risk managers must be able to build relationships — and not just with their immediate subordinates. They should also be able to do so with their superiors, as well as other corporate executives and department heads.

To identify and estimate risks to a company, risk managers need to understand how the business works. They can’t say finance doesn’t matter because they’re in IT, or vice versa. Business understanding is a must — especially if the risk manager aspires to join the C-suite in the future.