1. Defining the Landscape of Emerging Risks
Today’s global volatility makes identifying emerging risks essential, not optional. Known risks rely on historical modelling, but real resilience depends on seeing “the edges of current thinking.” To keep up, we must scan beyond the obvious and spot unrecognised shifts that fall outside traditional frameworks.
We use the International Actuarial Association (IAA) definition: emerging risks are developing or known, marked by extreme uncertainty and ambiguity. These often undermine current risk management, as traditional methods struggle to measure these risks, lacking explicit historical data.
James Lam identifies four drivers that complicate risk management and weaken legacy strategies:
- Globalisation: The deep interdependency of global economies means siloed risk assessments are now obsolete. A localised disruption can escalate into a global systemic crisis with a velocity that traditional models cannot capture.
- Fast-changing technology brings new ways of doing business. These changes create work dependencies that older systems can’t track, leading to hidden problems.
- As rules change and industries become more open, business competition changes quickly, often faster than companies can update their safety checks. This results in ongoing challenges to keep up with new rules and risks.
- Regular mergers, company buyouts, and hiring outside help create hidden risks when different company cultures mix, making the whole organisation less able to handle them.
To address these drivers, organisations must shift from reactive observation to systematic risk analysis using diagnostic frameworks and taxonomies. Tactical Identification Toolkit: Frameworks and Taxonomies
Organisations strengthen risk detection by transitioning from ad-hoc approaches to structured, systematic categorisation. Turning unclear signals into strategic data enables informed, proactive decisions.
Comparative Scope: SWOT vs. PESTELI
The following table contrasts the two primary tools used to define the boundaries of the risk environment:
| Tool | Focus | Scope of Analysis |
| SWOT Analysis | Internal & External | Evaluates Strengths/Weaknesses (Internal) against Opportunities/Threats (External) to align strategy with environmental reality. |
| PESTELI Prompt List | External/Environmental | A macro-scan across Political, Economic, Social, Technological, Environmental, Legal, and Industry categories. |
The Risk Hierarchy: From Categorisation to Early Warning
We must move through a logical progression of detail to ensure comprehensive coverage:
1. Risk Taxonomy: A main list that groups and explains all possible risks. It is the main map of risks we could face.
2. Risk Checklist: A tool built on past experience or records. It is used to check for specific risks, not to find new ones.
3. Risk Trigger Questions: Precision-targeted questions derived from specific areas where risks have previously emerged, acting as the organisation’s immediate early-warning system.
Identifying Failure Points and Connective Tissue
Beyond static lists, Process Analysis and Case Studies reveal the mechanics of risk. By constructing flow charts for every organisational process, we can pinpoint exact failure points and the dependencies between processes. Complementing this, Case Studies provide the “connective tissue,” showing the context in which risks develop and revealing how seemingly unrelated risks are linked.
Frameworks create structure but rely on dynamic, collaborative human input for effectiveness.
3. Advanced Collaborative Techniques for Risk Discovery
Having people from many backgrounds is important to find risks. We need ideas from new staff, experienced leaders, and outside partners.
The Brainstorming Critique
While brainstorming allows free discussion, it is often flawed. Getting everyone together in one place is a logistical challenge. Sessions also suffer when some people do not participate. More importantly, brainstorming leads people to be influenced by the first ideas shared. If no skilled facilitator stops early judgments, important ideas may be missed.
Independent Group Analysis: Neutralising the “Loudest Voice”
To ensure objectivity, we utilise Independent Group Analysis. This method follows a rigorous protocol:
- Silent Ideation: Everyone writes down risks on their own, so no one else’s ideas affect them.
- Aggregation: A group leader gathers all the ideas, presents them to the group, and clarifies them.
- Mathematical Ranking: Each person privately and independently ranks the risks. Combining these ranks yields a fair list, so no single voice dominates the group.
Surveys and Gap Analysis
Surveys enable broad organisational participation but can be biased by the design of questions. We apply Gap Analysis to identify the difference between senior management’s desired risk levels and junior employees’ reported risk exposure. This gap often reveals vulnerabilities that leadership might otherwise miss.
These outputs provide essential data for horizon scanning.
4. Horizon Scanning and the Delphi Method: Leveraging Expert Foresight
Horizon scanning systematically seeks long-term developments outside current thinking. It requires external scientific and economic experts who understand drivers of change beyond internal knowledge.
The Delphi Technique
The Delphi Technique uses expert knowledge in an iterative, anonymous process. Experts answer several rounds of questionnaires. Each round is refined with feedback from the prior one. This continues until consensus is reached or a stalemate occurs, yielding a high-level assessment of the nature and importance of emerging threats.
Source Credibility Guide
In a time of misinformation, we must judge evidence by how useful it is for our work:
- Academic Journals & Specialised Research: High-credibility sources that provide the rigorous analysis necessary for decision-making.
- Alarmist Media Reports: These are less trustworthy and should only prompt us to look deeper, not serve as our main proof.
The Future Landscape and the “Duty of Care”
Strategic foresight must address emerging factors such as nanotechnology, genetically modified foods, mobile phone use, and advances in longevity, such as a cancer cure, that disrupt annuity models. insurers, these factors add uncertainty around future legal approaches and liabilities.
Even though spotting risks early might seem to create more responsibility, the truth is it helps companies prepare and lowers the chance they will be caught by surprise and blamed later.
Foresight only adds value when integrated into formal risk documentation.
5. Operationalising Insights: The Risk Register and Assessment
Risk identification must lead to codification in a living Risk Register, constantly updated as the environment evolves.
Management Paths: Quantifiable vs. Unquantifiable
Once a risk is registered, it follows a distinct management path:
- Quantifiable Risks: These are sent to expert groups for in-depth analysis.
- Unquantifiable Risks: These stay with the group that found them so important details aren’t lost. They are discussed, not measured.
Non-linear Dependencies: The Quebec Blackout Warning
Reject isolated risk views. The 1989 Quebec Blackout showed how a 90-second solar storm—an emerging threat—triggered a 12-hour province-wide outage. The storm’s radiation disabled electrical and computer systems. Such events reveal how new drivers can turn familiar risks into crises.
Conclusion: Proactively identifying emerging risks is a strategic opportunity, not a defensive burden. By anticipating shifts such as pandemics or technological disruptions, organisations prepare rather than react. Scanning for new risks enables product development and long-term profitability. In a volatile world, managing the future means spotting it before it arrives.
Authored by:
Dr Sonjai Kumar
PhD in Enterprise Risk Management
Certified Fellow of the Institute of Risk Management, London
