What kind of special measures businesses should take in the era of unpredictability?
Published on May 15, 2020

Risk management experts and professionals thought they had it all covered. We have prepared our and our clients’ organizations to face risks we thought were most serious and probable to occur. Building cybersecurity armors to keep information safe, we might have underestimated good, old biology. Is it too late for businesses to prepare for this new world where a virus is disrupting… everything?

The outbreak of the coronavirus epidemic does not currently cause problems with the continuity of drug supplies in Europe but industry experts warn that this condition will almost certainly change — at the worst possible moment. Retail industry during the epidemic is struggling with a lack of people to work.
In Poland, entrepreneurs appeal to the president, prime minister and MPs to protect the food production and processing sector as a strategic part of the Polish economy. Transport and logistics must deal with suddenly restored border controls or imbalances in maritime transport. This is just the beginning.

But, of course it’s not too late. Risk management is a wide and mature area of management methodology built on extensive knowledge and experience. Now, more than ever, is the time to use it and let it be field tested.

Basic question

As huge in scale and unpredictable the pandemics is, it’s just a new set of risks.

How to design processes in companies to make sure that these risks will be mitigated not only on the organizations’ level, but in relation to subcontractors/vendors as well?

The short answer is: risk profiling.

Read further to get the long one.

One: Verification of control mechanisms

The COVID-19 virus outbreak and its current effects are extraordinary, but it is future implications of the pandemic that businesses should focus on at least to the same extent as on the present ones.

As the first step, I would advise company decision makers to verify all the mechanisms including control, compliance and risk management specifically in the context of disruptive effects of the pandemics.

Start with the basics — things necessary to ensure business continuity on the organizational level, like VPNs for remote work or backup laptops for workers grounded in their home offices.

Two: Aggregate risk profiles

Risk profiles provide management with an overall picture of risk at a specific organizational level. A risk profile is a kind of executive summary of the entire risk analysis and hence it is very often analyzed and used by supervisory boards for decision making. The board and its members usually do not conduct a detailed analysis of each risk that may occur at any level of the organization. That’s why the bigger picture is so important here.

New circumstances that may overturn the table, the pandemics require a fundamental update in companies’ risk management. Risk profiles have to change, so after you secure the basics, the second step should be stopping for a while, looking around and reviewing organization’s internal and external readiness regarding security management and business continuity.

Three: No one said audits and compliance are suspended during virus outbreak

A good practice of a well-managed organization is that risk profiles have to be reflected “on paper”, meaning they have to be auditable. Audits are still a thing, nobody has cancelled them!
But people are working from home, and this applies to everyone, including external audit consultants. The spring round of audits is be marked by additional risks and costs. And companies that are not prepared will feel the negative effects. Better think of new means to carry out audits independently, not relying on retainers.

That’s no joke. Compliance will become more important than ever, as governments are introducing new game rules for the time of the struggle to stop the epidemic.

It’s difficult to predict anything right now. The global market has never been so volatile, time will tell what direction will it go. But we can assume that after the current experience, governments may want to introduce orders and other forms of pressure to verify whether mechanisms of risk management and compliance are implemented effectively and updated as necessary?

Written by

Jacek Wróblewski

Go To Expert Spotlight Page

This Article Tags

All Tags

Our Customers Success Stories

How we boosted a COVID-19 vaccine production by digitally enhancing manufacturing operations

In response to an unprecedented global pandemic, our client – one of the pharma industry leaders- set out to develop, test, mass produce and organize the global distribution of a COVID-19 vaccine.

How to manage national resources to fight COVID-19 in the cloud?

Availability of ICUs is one of the key factors to keep the death toll as low as possible. ICU-M has been one of the reasons Germany has been managing the pandemic relatively well, keeping the number of deaths per 1M population at the low end compared with other EU states.

Bringing a global pharma company out of the dark via a Single Source of Truth (SSOT)

To get the full picture of the global market situation, companies use various sources of data. But to effectively control and steer business activity at all levels on global scale they need a centralized and trustworthy data source.

How to restore effective sales in animal pharma ensuring high quality and reliability of data

Our solutions cover all aspects of customer and sales transactions processing for life science industry companies carrying out their sales activity on many markets in cooperation with wholesalers, distributors and retailers.

Can proper data management help restart a shutdown pharma production plant?

Introducing rigorous quality assurance and management tools into data integration to enable the fastest possible resumption of a production plant’s functioning shut down due to issues with ERP system implementation.

How we helped Boehringer-Ingelheim stabilize their data ecosystem

Data governance, data management and data quality are the basis for the effective integration of IT systems, especially when the organization implements new solutions.

How we made the slow and inaccurate CEESA reporting in an animal pharma company much faster and much more accurate

Abundance of data can have enormous potential for business, but it can also be a source of problems. With large-scale operations – and this is where international animal pharma players operate – automation and advanced analytical methods become essential to building value from data insights.

Improving the workflow of Randstadt’s HR with an employee self-service solution

Low-code is the perfect tool for creating scalable solutions that ensure employee empowerment and self-service for simple activities and tasks. This can significantly relieve HR departments of the overload of administrative matters.

See how we used low-code to enable our pharma client to stay transparent and compliant with European legislation

End-to-end, flexible low-code based solution integrated with all the peripheral systems in company to meet rigorous transparency regulations for the pharma industry.

Replacing Excel sheets with AdaptiveGRC modules to improve internal audit

Emails and Excel sheets are passé. Digital audit needs improved flow of information, managing audit recommendations and enforcing their implementation clearly synchronized on a multi-level structure.

{
As huge in scale and unpredictable the pandemics is, it’s just a new set of risks.
That’s no joke. Compliance will become more important than ever, as governments are introducing new game rules for the time of the struggle to stop the epidemic.

Latest Articles

Let`s Talk About a Solution

Questions?We’re here to answer them.

Our engineers, top specialists, and consultants will help you discover solutions tailored to your business. From simple support to complex digital transformation operations – we help you do more.





    We will only use the collected data for the following purposes:

    The Controller of your personal data is C&F S.A. with its headquarters in Warsaw, ul. Domaniewska 50, 02-672 Warszawa, Poland. We ask for your consent to the processing of your personal data collected using the form above. We may also collect other data as specified in our Privacy Policy.