The risk mentality in organizations: an analysis of inserting risk management in ISO 9001 and ISO 14001: 2015 standards

Nascimento, Adelson Pereira do; Santos, Washington Romão dos; Oliveira, Marcos Paulo Valadares de

doi:10.1590/0104-530X4043-20

Acessibilidade / Reportar erro

Brasil

Español English

sumário « anterior atual seguinte »

Sumário

ORIGINAL ARTICLE • Gest. Prod. 27 (2) • 2020 • https://doi.org/10.1590/0104-530X4043-20 copy

The risk mentality in organizations: an analysis of inserting risk management in ISO 9001 and ISO 14001: 2015 standards

A mentalidade de riscos nas organizações: uma análise da inserção da gestão de riscos nas normas ISO 9001 e ISO 14001:2015

Authorship SCIMAGO INSTITUTIONS RANKINGS

Abstract:

Risk management is related to both the external and the internal environments of organizations. Thus, the risk mentality enables the identification and minimization of negative effects, maximizing the opportunities and potential of the business. The aim of this paper is identify how the insertion of risk management requirements in ISO 9001 and 14001standards may contribute to spreading the risk mentality in organizations. We interviewed 11 auditors and consultants, with experience and training in the area, who were working in certified companies in the brazilian state of Espírito Santo. To analyze the data, the technique of content analysis was used to identify thematic categories and to relate the data to the literature. The results indicate that the certified companies have undergone a process of incorporation of risk management requirements that can be catalyzed by environmental aspects: size and nature of the company, barriers to risk management, professionalization and standardization of processes and client influence. We conclude that for companies with more complex structure, dynamic and more subject to ruptures, the integration of risk management in the business strategy represented a value, and for smaller companies in stable markets represents a cost to meet the requirements of the standard.

Keywords:
ISO standards; Risk management; Content analysis

ID	Genre	Maximum Level of education	Function	Standard	Experience (years)		Type of interview
ID	Genre	Maximum Level of education	Function	Standard	9001	14001	Type of interview
E1	M	Specialization	Auditor	ISO 14001	14	14	E-mail
E2	M	Master	Auditor e Consultant	ISO 9001 e 14001	15	15	E-mail
E3	F	Specialization	Auditor	ISO 9001	12	12	Presential
E4	M	Specialization	Auditor	ISO 9001	10	10	Presential
E5	F	Specialization	Auditor e Consultant	ISO 9001 e 14001	12	12	Telephone
E6	M	Specialization	Auditor e Consultant	ISO 9001 e 14001	26	21	Skype
E7	F	Specialization	Auditor e Consultant	ISO 9001 e 14001	10	10	Presential
E8	M	Mestrado	Auditor e Consultant	ISO 9001	11	11	E-mail
E9	M	Specialization	Auditor	ISO 9001	14	14	Presential
E10	M	Bachelor	Auditor	ISO 9001	9	9	Presential
E11	M	MBA	Consultant	ISO 9001	16	16	Presential

Categories	Perception of value	Cost Perception
Size and nature of the company	Large companies subject to vulnerability already develop risk mapping and control tools, perceived as a critical factor to the business.	They emphasize only the cost to tailor processes and operations to the requirements for risk management.
Barriers to risk management	Benefits greater than costs with the implementation and monitoring of risk management.	Tendency to visualize the costs as superior to the benefits generated by the implementation of controls, standardization and formalization of processes.
Professional and standardization of processes	Greater standardization and formalization of processes, resulting in greater knowledge about the risks of the business.	Low standardization and formalization of processes, resulting in unawareness of the risks inherent in the business.
Influence of the institutional client	Adoption of risk management to make processes safer, increase product quality, reduce waste and keep customer.	Adequacy only on paper, without major structural changes. Just to meet the standard and certification.

Universidade Federal de São Carlos Departamento de Engenharia de Produção , Caixa Postal 676 , 13.565-905 São Carlos SP Brazil, Tel.: +55 16 3351 8471 - São Carlos - SP - Brazil
E-mail: gp@dep.ufscar.br

Acompanhe os números deste periódico no seu leitor de RSS

[1] E – interviewee; M - Male; F – Female. Source: The authors.