Resilience management - readiness and response
Resilience management is an approach that seeks to build and enhance an organization's ability to withstand and adapt to disruptions, whether they be internal or external. The big idea behind resilience management is to create an environment that enables organizations to quickly recover from unexpected events and continue to operate effectively, even in the face of adversity.
To achieve this goal, resilience management involves a wide range of strategies and practices, including risk assessment, contingency planning, crisis communication, and staff training. By implementing these measures, organizations can identify potential threats and develop the capacity to respond to them in a timely and effective manner.
While resilience management has many benefits, it also has its limitations. One of the main challenges is that it can be difficult to anticipate every possible threat or disruption that an organization may face, making it hard to prepare for all eventualities. Additionally, resilience management can be resource-intensive, requiring significant investments in training, technology, and personnel. Despite these challenges, the importance of resilience management cannot be overstated. In today's fast-paced and unpredictable business environment, organizations that are able to quickly adapt and recover from disruptions are much more likely to succeed. By adopting a resilience management approach, organizations can create a culture of preparedness that enables them to respond to unexpected events with confidence and agility, ultimately enhancing their ability to thrive in an increasingly complex and competitive marketplace.
Contents |
Big idea
State of the art
What is meant by resilience?
The current understanding of managing resilience within organizations emphasizes the importance of taking a holistic and proactive approach to build resilience at individual, team, and organizational levels. This includes creating a culture that supports resilience, investing in training and development programs, developing contingency plans and risk management strategies, and using data and feedback to continuously improve resilience management practices.
Several studies have shown that organizations that prioritize resilience management are more likely to be successful in adapting to change, achieving their goals, and maintaining high levels of employee engagement and well-being. However, implementing resilience management requires a long-term commitment and a willingness to adapt to changing circumstances. [1]
What is difference between risk and resilience?
In general risk refers to the likelihood and impact of potential future events that may affect the success of a program, project or portfolio. Risks can be identified, assessed, and managed through risk management processes and techniques. On the other hand, resilience refers to the ability to adapt and recover from unexpected challenges or disruptions. Resilience involves building the capacity to absorb and respond to shocks and stresses, while continuing to deliver expected outcomes. In other words, risk management is focused on mitigating the likelihood and impact of potential future events, while resilience is focused on building the ability to respond to events that have already occurred or could not be predicted. Both risk management and resilience are important components of effective product, program and portfolio management..[2]
What is relationship between risk and resilience?
Risk and resilience are related concepts but have distinct meanings in the context of a project program or portfolio management. There are two theories regarding the relationship of risk and resilience which will be discussed further:
Competing concept between risk and resilience: In this first approach says that risk is a permanent factor in program and portfolio management and thus, it is not possible to fully prepare for unexpected challenges. Here, resilience is seen as something, which needs to be created without reference to risk. Furthermore, risk analysis has been criticised for not being able to predict accidents and therefor, resilience is seen as a tool which is used where probabilistic risk analysis cannot provide answers to potential threats.[3]
Complementary concept: Here, risk analysis appears as a crucial part of resilience management which is used to exploit the risk analysis by the identification of threats and stress factors. Organisations can withstand certain types of stress factors better than other types of stressors. Thus, the complementary concept promotes the integration of risk analysis as part of resilience and therefore, resilience cannot function without risk analysis.[4]
What are the key elements of resilience management?
Resilience management is an approach that helps organizations prepare for and adapt to disruptions, whether they are caused by internal or external factors. This approach applies to project, program, and portfolio management in order to mitigate risks and ensure successful delivery. [5] The main aspects of resilience management include:
1. Risk identification and analysis: This involves identifying potential risks that could impact the project, program, or portfolio, and analyzing their potential impact on the organization.
2. Risk mitigation and management: After identifying the risks, mitigation strategies should be developed and implemented to minimize the impact of the identified risks. This includes contingency planning, crisis management, and business continuity planning.
3. Stakeholder engagement and communication: Effective communication is essential for raising awareness and building resilience. Stakeholders should be kept informed of potential risks and the organization's plans for mitigation.
4. Organizational culture and leadership: The organization's culture and leadership play a critical role in building resilience. Leaders should prioritize resilience management and create a culture that encourages employees to think proactively about identifying and mitigating risks.
Business Lifecycle of resiliemce:
Figure: xxx
Historical perspective
Resilience management has its origins in the field of disaster management, where it was developed as a way to help communities and organizations prepare for and recover from natural disasters and other crises. Over time, the concept of resilience has been applied to other domains, including business, finance, and cybersecurity, to help organizations better manage risks and disruptions. The increasing importance of resilience management in recent decades can be attributed to several underlying causes, including:
Increasing Frequency and Impact of Disasters: The frequency and impact of natural disasters, such as hurricanes, floods, and wildfires, have increased over time, leading to greater awareness of the need for resilience management.
Globalization and Interconnectedness: The increasing interconnectedness of the global economy and the rise of complex supply chains have increased the potential for disruptions to affect multiple organizations and stakeholders.
Technological Change and Cybersecurity Risks: The rapid pace of technological change has created new risks and vulnerabilities, such as cyber-attacks and data breaches, that require organizations to be more resilient.
Changing Regulatory and Legal Requirements: The changing regulatory and legal environment, including increased requirements for risk management and contingency planning, has made resilience management an essential aspect of compliance for many organizations. Recognition of the Benefits of Resilience: The growing recognition of the benefits of resilience, including increased innovation, agility, and long-term sustainability, has led many organizations to prioritize resilience management as a strategic priority. [6]
Application
Case analysis: BP and Deepwater Horizon
Main Causes
The Deepwater Horizon oil spill was a catastrophic oil spill that occurred on April 20, 2010, in the Gulf of Mexico. The spill was caused by an explosion and fire on the Deepwater Horizon oil rig, which was owned by Transocean and leased by BP. The explosion killed 11 people and injured 17 others, and it resulted in the largest marine oil spill in history. The main causes of the Deepwater Horizon oil spill were a combination of human error, technical failures, and organizational problems. BP had been drilling for oil in deepwater, which created new risks that were not entirely understood. The platform had not been in dry dock for repairs since 2001, and urgent repairs identified in a 2009 safety audit had not been completed. The drilling activity was complicated and challenging, and technicians often had to modify their plans because of the geological conditions thousands of meters below sea level. BP used less cement than was originally estimated and a cheaper grade of cement mixture than was normally used to avoid cost overruns. This caused huge complications in the work and contributed significantly to the accident. Furthermore, only six centralizers were used instead of the recommended twenty to increase the stability of the well casing. A negative pressure test was conducted to check for leaks in the drilling pipe, and signs of hydrocarbon gas were observed. However, the results were not entirely clear, and the decision was made to continue with the work. The combination of these factors led to the explosion and subsequent oil spill.
Analysis from a resilience management perspective
Several factors contributed to the Deepwater Horizon oil spill disaster. Firstly, BP had an inadequate safety culture and risk consciousness, and there was a lack of cooperation among the various actors. Organizational learning was also slow. These factors meant that warning signals were ignored, decision-makers lacked clarity on how to handle the complexity of the safety systems, and workers were not well-educated or trained. Secondly, BP and other actors did not follow the guiding principles of highly reliable organizations. The use of untested and cheaper technology to seal the well when they knew of the high gas pressure and the geological instability of the bedrock showed a lack of attention to technical and operational expertise. BP's top managers also lacked sufficient knowledge of the events/conditions on the platform and their associated risks. Thirdly, the fragmented offshore industry with its many service providers and independent agents contributed to the problem. These groups often had different goals, safety practices, experience levels, and training. Finally, BP prioritized short-term economic gains over high reliability and safety, which is common in the oil drilling industry with its strong R&D focus on exploration, drilling, and production technology that is often at the expense of safety. A more balanced approach was needed, where reliability and change capacity take relative precedence over efficiency. Overall, the BP disaster highlights the need for companies involved in such risky and complex operations to prioritize resilience management, develop a safety culture, and be organised as HROs where reliability and change capacity take precedence over efficiency. [7]
Possible prevention
There are several measures which were mentioned earlier that could have been taken to prevent or mitigate the incident:
Robust Risk Management: A resilient organization should have a strong risk management process in place to identify, assess, and manage potential hazards. In the case of BP, a more rigorous and proactive risk management approach could have identified the potential for a blowout and taken steps to prevent it. Robust Safety Culture: A resilient organization should also have a strong safety culture that promotes safe behavior and encourages employees to report potential hazards. BP's safety culture has been criticized for being too focused on meeting production targets rather than prioritizing safety. A culture that prioritizes safety and encourages reporting of near-misses could have led to earlier detection of potential problems. Improved Training and Competency: Resilience management requires that employees are trained and competent in their roles. In the case of the Deepwater Horizon incident, there were concerns about the competency of some of the key personnel involved in the operation of the rig. Improved training and competency assessments could have helped to prevent mistakes and improve response times. Improved Communication: Effective communication is critical in a resilient organization, especially during a crisis. In the case of the Deepwater Horizon incident, there were communication breakdowns between the rig crew and onshore personnel that delayed the response to the blowout. Improving communication protocols and training could have prevented these delays. [8]
Limitations
Measurements of resilience
Resilience can be measured within organizations using various methods. Some commonly used measures of resilience within organizations include:
Organizational Resilience Assessment (ORA) - ORA is a tool used to assess an organization's resilience to various threats, such as natural disasters, cyber-attacks, and financial crises. It helps organizations identify their strengths and weaknesses in terms of resilience and develop strategies to enhance their resilience.
!More methods and references will be added here!
Limiting factors
What are the limiting parameters of implementing resilient management structure within an organization?
References
- ↑ Lengnick-Hall, C. A., Beck, T. E., & Lengnick-Hall, M. L. (2011). Developing a capacity for organizational resilience through strategic human resource management. Human Resource Management Review, 21(3), 243-255.
- ↑ Hassenzahl, D. (n.d.). What do we Mean by Risk and Resilience? InTeGrate - Interdisciplinary Teaching about Earth for a sustainable Future. https://serc.carleton.edu/integrate/workshops/risk_resilience/what_is_rr.html.
- ↑ Ran Bhamra, Samir Dani & Kevin Burnard (2011) Resilience: the concept, a literature review and future directions, International Journal of Production Research, 49:18, 5375-5393, DOI: 10.1080/00207543.2011.563826 .
- ↑ Ran Bhamra, Samir Dani & Kevin Burnard (2011) Resilience: the concept, a literature review and future directions, International Journal of Production Research, 49:18, 5375-5393, DOI: 10.1080/00207543.2011.563826 .
- ↑ El-Tawil, S., & Svetinovic, D. (2014). Resilience management in networked infrastructure systems. In Resilience engineering in practice (pp. 109-126). Ashgate Publishing.
- ↑ Linnenluecke, M. K., Griffiths, A., & Winn, M. I. (2013). Extreme weather events and the critical importance of anticipatory adaptation and organizational resilience in responding to impacts. Business Strategy and the Environment, 22(4), 429-443.
- ↑ Stefan Tengblad, Margareta Oudhuis (2017). The Resilience Framework: Organizing for Sustained Viability. https://doi-org.proxy.findit.cvt.dk/10.1007/978-981-10-5314-6
- ↑ Turner, B. A. (2011). Deepwater Horizon: a systems analysis of the Macondo disaster. Journal of Loss Prevention in the Process Industries, 24(5), 615-624.