Risk Control vs. Risk Management

An error occurred trying to load this video.

Try refreshing the page, or contact customer support.

Coming up next: International Business Expansion Methods

You're on a roll. Keep up the good work!

Take Quiz Watch Next Lesson
Your next lesson will play in 10 seconds
  • 0:04 Prehistoric Risk Management
  • 0:34 Risk Management
  • 3:41 Risk Control
  • 5:56 Lesson Summary
Save Save Save

Want to watch this again later?

Log in or sign up to add this lesson to a Custom Course.

Log in or Sign up

Speed Speed

Recommended Lessons and Courses for You

Lesson Transcript
Instructor: James Blackburn

James has an MBA and a MA in Humanities. He writes on leadership, business strategy and finance.

In this lesson, we'll clarify the difference between risk management and risk control. We'll also describe a five step process commonly used in risk management, and then highlight four basic categories of risk controls.

Prehistoric Risk Management

What came first, risk control or risk management? Built into our DNA is the ability to avoid risk. In prehistoric times, we would avoid locations known to populated by dangerous predator animals, like saber-toothed tigers or other beasts. When we did enter these areas, we approached with caution - and a hand full of rocks. As the human race matured, we developed rules to help us navigate dangerous environments. Reactions gave way to precautions. As a result, the first risk management plan was created.

Risk Management

Today, risk management is different. It's a planned process designed to identify, mitigate, and evaluate our exposure to risk. Risk control is a stage of risk management. Controls are specific activities undertaken to reduce exposure to risk.

GM Fined

As the graphic illustrates, today's risks most often have financial impacts. In business, in order to avoid a situation like GM faced, management identifies and assesses the risks that can lead to financial loss. Next, they select and implement controls to reduce these risks. Finally, they evaluate the effectiveness of their controls on reducing risks.

Let's check these out one at a time:

Step 1: Identify

The first stage of the risk management process is to identify the risks in the environment. Risks could include fire in a workplace, theft in a retail store, or the failure of a new product in the marketplace. Each of these risks has a different probability of occurrence dependent on the environment. In this step, the organization will identify many risks relevant to the environment.

Step 2: Assess

The next stage of the process is to determine the probability of a negative outcome for each risk. Each organization must rank the risks based on the probability of occurrence and financial impact from high to low. For example, in a manufacturing setting, the risk of fire is moderate. However, the risk of personal injury is much higher. Therefore, the company ranks personal injury higher than fire in their assessment.

Step 3: Select

Now that the risks have been ordered from high to low, the leaders of the organization identify the types of activities that will be undertaken to reduce the probability of a negative outcome. These activities are called risk controls. The purpose of a risk control is to avoid, prevent, reduce, or transfer the risk.

Step 4: Implement

The next stage of risk management is to implement the controls selected. When implementing a control, it's best to ensure each control is well thought out, structured, and communicated to the organization. Control failures can result from a lack of understanding, lack of communication, lack of structure, and poor design. Establishing controls using the SMART format is recommended. In case you have yet to learn them or have forgotten, SMART controls are specific, measurable, attainable, realistic, and time-based.

Step 5: Evaluate

SMART controls are easy to measure. In the final stage of risk management, the organization will evaluate the effectiveness of the controls. An evaluation structure should be designed prior to the implementation of the control. It should also be implemented at the same time as the implementation of the control. Doing so will improve the success rate of the control.

The early stages of the evaluation of the control should focus on its adoption. Since most control failures occur when people fail to understand the control activities or adopt the control, this early evaluation improves the adoption rate. In the later stages of evaluation, the focus should move to the intended outcomes of the goal, risk mitigation. If the control is found to be ineffective, corrective actions should be undertaken, including the replacement of the control. Now, let's look at these controls.

Risk Control

Risk controls are the activities implemented to mitigate risks. Controls can attempt to avoid the risk in its entirety. Or, the control may be designed to prevent the risk from occurring. In many cases, the risk may attempt to reduce the losses associated with an activity. Alternatively, the organization may choose to transfer the risk to another party in part or entirely. Let's explore each of these types of controls in greater detail.

To unlock this lesson you must be a Member.
Create your account

Register to view this lesson

Are you a student or a teacher?

Unlock Your Education

See for yourself why 30 million people use

Become a member and start learning now.
Become a Member  Back
What teachers are saying about
Try it risk-free for 30 days

Earning College Credit

Did you know… We have over 200 college courses that prepare you to earn credit by exam that is accepted by over 1,500 colleges and universities. You can test out of the first two years of college and save thousands off your degree. Anyone can earn credit-by-exam regardless of age or education level.

To learn more, visit our Earning Credit Page

Transferring credit to the school of your choice

Not sure what college you want to attend yet? has thousands of articles about every imaginable degree, area of study and career path that can help you find the school that's right for you.

Create an account to start this course today
Try it risk-free for 30 days!
Create an account