Abstract
Context: The digital transformation has led to higher market competitiveness, allowing organisations to have competitive advantages over prominent installed players. However, it led to a greater exposure of organisations to new threats, which reinforces the need for integrated monitoring of risk. This approach has particular significance when the Quality Management System (QMS) implementation of the ISO 9001:2015 standard requires integrating Risk Management (RM) into the organisation’s business processes. This article explores and analyses how this approach is rooted in the Portuguese business fabric. The paper presents the Model of the Integrated Risk Monitoring (MMIR), a model developed according to ISO 31000 standard of RM, having an alert mechanism in the face of risk situations in organisations.
Methodology: A systematic literature review was conducted on a descriptive and content analysis of scientific articles published from the B-on database (www.b-on.pt). An online survey, based on questionnaires, was implemented to get insights into the organisation’s perception of risk. The questionnaire was sent, by email, to 3599 organisations certified in Portugal under the ISO 9001:2015 standard.
Results: The response rate of the online survey (6.4%) allowed to emphasise the importance of the organisation implementing a formal RM process and applying risk techniques to QMS (ISO 9001:2015). The idea of using the RM model should not be limited to specific departments or business sectors. MMIR provides an agnostic approach to the market activity in which the organisation operates, integrating the RM process with different RM techniques (strategic and operational) and considering a set of reference Key Risk Indicators (KRI) for QMS. This document helps remind organisations to use integrated risk monitoring processes in business planning and operations.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Bao, C., Li, J., Wu, D.: A fuzzy mapping framework for risk aggregation based on risk matrices. J. Risk Res. (2016)
Bao, C., Wu, D., Wan, J., Li, J., Chen, J.: Comparison of different methods to design risk matrices from the perspective of applicability. Procedia Comput. Sci. 122, 455–462 (2017)
Coleman, L.,: Risk strategies: dialling up optimum firm risk (2009)
COSO: Enterprise Risk Management. Applying enterprise risk management to environmental, social and governance-related risks (2018). https://www.coso.org
FERMA (2020). https://www.ferma.eu/
Fraser, J., Simkins, B.J.: The challenges of and solutions for implementing enterprise risk management. Bus. Horiz. 1317 (2016)
INE: National Institute of Statistics (2020). https://www.ine.pt
IPAC: Institute Portuguese of Accreditation (2020). http://www.ipac.pt/
ISO: ISO Guide 73. Risk management – Vocabulary and guidelines for the use in standards (2009)
ISO: ISO 9001:2015. Quality Management Systems – Requirements. ISO (2015)
Kaya, G.K., Ward, J., Clarkson, J.: A review of risk matrices used in acute hospitals in england. Risk Anal. (2018)
Li, J., Bao, C., Wu, D.: How to design rating schemes of risk matrices: a sequential updating approach. Risk Anal. (2018)
Rampini, G., Takia, H., Berssaneti, F.: Critical success factors of risk management with the advent of ISO 31000:2018 - descriptive and content analyses. Procedia Manuf. 39, 894–903 (2019)
Scarlat, E., Chirita, N., Bradea, I.: Indicators and metrics used in the enterprise risk management (ERM). Econ. Comput. Econ. Cybern. Stud. Res. (4) (2012)
Young, J.: The use of key risk indicators by banks as an operational risk management tool: a South African perspective. In: International Conference on Improving Financial institutions: The Proper Balance Between Regulation and Governance (2012)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2022 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Silvério, J., Pestana, G.F. (2022). Integrated Risk Monitoring in the Quality Management System. In: Rocha, A., Adeli, H., Dzemyda, G., Moreira, F. (eds) Information Systems and Technologies. WorldCIST 2022. Lecture Notes in Networks and Systems, vol 470. Springer, Cham. https://doi.org/10.1007/978-3-031-04829-6_1
Download citation
DOI: https://doi.org/10.1007/978-3-031-04829-6_1
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-04828-9
Online ISBN: 978-3-031-04829-6
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)