Presentation is loading. Please wait.

Presentation is loading. Please wait.

Rethinking Risk Black Swans, Tsunamis and Planning for the Unbelievable Bill Sewall, JD & CISSP (510) 275-4735 www.bsewall.com.

Published byWinifred Thomas Modified over 9 years ago

Similar presentations

Presentation on theme: "Rethinking Risk Black Swans, Tsunamis and Planning for the Unbelievable Bill Sewall, JD & CISSP (510) 275-4735 www.bsewall.com."— Presentation transcript:

1 Rethinking Risk Black Swans, Tsunamis and Planning for the Unbelievable Bill Sewall, JD & CISSP (510) 275-4735 www.bsewall.com

2 Bill Sewall, JD & CISSP Consultant Specialties - Information security, compliance, training and operational risk Experience Teacher Attorney & General Counsel CIO & COO Information Security Officer Operational Risk Officer 25 years with CitiGroup 2

3 Agenda What is a Black Swan event? How our emotions, instincts and personal experience cloud our perception of risk Golden Boy Syndrome An alternate proposal for looking at risk Black Swans and some suggested ways to approach them 3

4 4

5 5

6 1.It lies outside the realm of regular expectations 2.It carries an extreme impact 3.Human nature makes us concoct explanations for its occurrence after the fact, making it explainable and predictable. “The Black Swan” by Nassim Nicholas Taleb 6

7 "There's not a doubt in my mind that you will see a spate of municipal bond defaults," Whitney predicted. Asked how many is a "spate," Whitney said, "You could see 50 sizeable defaults. Fifty to 100 sizeable defaults. More. This will amount to hundreds of billions of dollars' worth of defaults." 7

8 8

9 Annual Loss Expectancy = Single Loss Expectancy  Annualized Rate of Occurrence Risk = Impact  Probability Probability = Vulnerability  Threat 9

10 10

11 Risk management should be a rational process. Instead, most of our daily risk decisions are based on emotion, our unique personal experiences and instinct. 11

12 12

13 What Parents Fear Most* 1.Kidnapping 2.School snipers 3.Terrorists 4.Dangerous strangers 5.Drugs *NPR: http://www.npr.org/blogs/health/2010/08/30/129531631/5-worries-parents-should-drop-and-5-they-should?sc=fb&cc=fp 13

14 What Parents Should Fear 14

15 15

16 “Golden Boy Syndrome” We continually seek out leaders and role models. And we are willing to support our heroes, give them our money and let them guide us, even when there is clear evidence that they are dead wrong. 16

17 “When the music stops, in terms of liquidity, things will be complicated. But as long as the music is playing, you've got to get up and dance. We're still dancing.” 17

18 18

19 19

20 Alan Greenspan is “no longer the Man Who Knows; he’s the man who … refused to do anything about subprime, insisted that derivatives made the financial system more stable, denied not only that there was a national housing bubble but that such a bubble was even possible.” – Paul Krugman, Nobel economist. 20

21 “There are known knowns; there are things we know we know. We also know there are known unknowns; that is to say we know there are some things we do not know. But there are also unknown unknowns – the ones we don't know we don't know.” Donald Rumsfeld 21

22 1.People exaggerate spectacular but rare risks and downplay common risks. 2.People have trouble estimating risks for anything not exactly like their normal situation. 3.Personified risks are perceived to be greater than anonymous risks. 4.People underestimate risks they willingly take and overestimate risks in situations they can't control. 5.Last, people overestimate risks that are being talked about and remain an object of public scrutiny. * “Beyond Fear”, Bruce Schneier http://www.schneier.com/essay-155.html 22

23 Most of our risk decisions are based on instinct, emotions and our unique experiences, not on a rational, objective methodology. In information security we are further hampered by the lack of: Consistent historical data that would support an actuarial risk assessment process; and A commonly agreed risk assessment methodology 23

24 24 You can’t calculate information security risk down to the decimal point.

25 Risk = Impact  Probability 25

26 Risk = Impact  (Vulnerability  Threat) 26

27 27

28 28

29 Type, Frequency, Duration & Loss 29

30 30

31 31

32 32

33 33

34 34

35 35

36 Impact Probability Risk 36

37 Impact Probability Risk 37

38 Probability 38

39 How can we prepare for the unknown? 39

40 Rule #1. Risk is in the details. Take care of the little things and the big things become far less likely. 40

41 41

42 Rule #2. Pay special attention to those Black Swans that you can control. Don’t waste your time on the uncontrollable unknowns. ControllableUncontrollable “Great Recession” Deepwater Horizon 9/11 Meteor Strike Magnitude 10 Earthquake Alien Invasion Japan Tsunami? 42

43 Rule #3. Pay special attention to those risks that are easily scalable. How much would have to go wrong before a $1,000 event becomes a $1 million event? 43

44 44

45 Rule #4. When dealing with Black Swan possibilities, make your assessment of the risk very carefully. Then throw it away and start again, because you likely made the decision based on emotions, gut instinct or personal experience. 45

46 46

47 Rule #5. When considering risks related to fraud, think like a criminal The problem is that we invest too much of our experiences and emotions into risk assessment Suggestion – Role play. Remove yourself from the process and think like the criminal. 47

48 Rule #6. Black Swans are becoming more prevalent. A highly industrialized, technologically advanced and interdependent global economy is more prone to catastrophic disruptions than a world dominated by a handful of independent industrialized countries. 48

49 49

50 Rule #7. There are no “Unknown Unknowns.” We know all the risks, it is just that we choose to ignore most Black Swans. They are often just too painful to deal with. Denial 50

51 “There are known knowns; there are things we know we know. We also know there are known unknowns; that is to say we know there are some things we do not know. But there are also unknown unknowns – the ones we don't know we don't know.” Donald Rumsfeld 51

Download ppt "Rethinking Risk Black Swans, Tsunamis and Planning for the Unbelievable Bill Sewall, JD & CISSP (510) 275-4735 www.bsewall.com."

Similar presentations

Bursting the Bubble: Analyzing the Real Estate Market.

Bursting the Bubble: Analyzing the Real Estate Market.
Understanding Motivation What is Motivation?. Student Motivation in the College Classroom What factors influence it? Sociocultural Context Classroom.

Understanding Motivation What is Motivation?. Student Motivation in the College Classroom What factors influence it? Sociocultural Context Classroom.
Draft lecture – FIN 352 Professor Dow CSU-Northridge March 2012.

Draft lecture – FIN 352 Professor Dow CSU-Northridge March 2012.
1 11 International Economics Lecture 12 Causes of the Great Recession, 2007-2009 Paul Deng Oct. 14, 2010 1.

1 11 International Economics Lecture 12 Causes of the Great Recession, Paul Deng Oct. 14,
S3 Useful Expressions.

S3 Useful Expressions.
HSA This is how you do it. You can Save 10-50% per month, per employee and still have the same or better coverage… Health Insurance Costs Too High? Health.

HSA This is how you do it. You can Save 10-50% per month, per employee and still have the same or better coverage… Health Insurance Costs Too High? Health.
Attentiveness vs. Distraction

Attentiveness vs. Distraction
Chapter 4 Return and Risks.

Chapter 4 Return and Risks.
15 things to Give up...  to be much happier.

15 things to "Give up..."  to be much happier.
RESPECT PRESENTED BY: MRS. REX. WHAT DO THEY HAVE IN COMMON?

RESPECT PRESENTED BY: MRS. REX. WHAT DO THEY HAVE IN COMMON?
Improving the Child’s Experience Alinda Shelley BS, CCLS Certified Child Life Specialist.

Improving the Child’s Experience Alinda Shelley BS, CCLS Certified Child Life Specialist.
Substance Abuse and Family Systems

Substance Abuse and Family Systems
Bond Basics. What is a bond? You've just loaned your neighbour $1,000 so that he can renovate his home. He's promised to pay you 6% interest each year.

Bond Basics. What is a bond? You've just loaned your neighbour $1,000 so that he can renovate his home. He's promised to pay you 6% interest each year.
The spec says… Examine the relationships between the degree of risk posed by a hazard and the probability of a hazard event occurring, the predicted losses.

The spec says… Examine the relationships between the degree of risk posed by a hazard and the probability of a hazard event occurring, the predicted losses.
Journal What is grief? How do you handle grief when it occurs in your life?

Journal What is grief? How do you handle grief when it occurs in your life?
CHOOSE THE RIGHT NANNY. KEY TO FIND THE BEST NANNY Be willing to keep looking until you find the person who will be the best fit for your family. You.

CHOOSE THE RIGHT NANNY. KEY TO FIND THE BEST NANNY Be willing to keep looking until you find the person who will be the best fit for your family. You.
The Financial Plan Chapter 2. Definitions You Need to Know Personal financial plan: specifying financial goals and describing in detail the spending,

The Financial Plan Chapter 2. Definitions You Need to Know Personal financial plan: specifying financial goals and describing in detail the spending,
Economics in the Crisis Paul Krugman Shar Clark. Who is Paul Krugman? B.A. from Yale in 1974 Ph.D. from MIT in 1977 Has taught at Yale, MIT, and Stanford.

Economics in the Crisis Paul Krugman Shar Clark. Who is Paul Krugman? B.A. from Yale in 1974 Ph.D. from MIT in 1977 Has taught at Yale, MIT, and Stanford.
Future Decisions/Choices How to make effective decisions? Written by Barbara Mackessy.

Future Decisions/Choices How to make effective decisions? Written by Barbara Mackessy.
Chapter 8 Hypothesis testing 1. ▪Along with estimation, hypothesis testing is one of the major fields of statistical inference ▪In estimation, we: –don’t.

Chapter 8 Hypothesis testing 1. ▪Along with estimation, hypothesis testing is one of the major fields of statistical inference ▪In estimation, we: –don’t.

Similar presentations

Ads by Google