Scott Randall says, “Not everyone is convinced that application of a systematic process of risk management makes that much of a difference in sales, profits, quality, reputation, etc. Until we as risk managers can empirically make this link (not theoretically, nor in a sort of ex post way without proving causality) risk management will be relegated to a control function-somewhere between corporate audit and legal on the corporate totem pole.”

While I agree that we need to be somewhat cautious in predicting the future prospects of risk management, I think Scott is being a bit overly pessimistic. Being an inveterate cynic at heart, I am quite prepared to say that the two great motivators we see in business are greed and fear. Historically the balance has generally weighed on the side of greed, with fear only being dominant for brief intervals.

Being a pseudo-academic, I take the arguments for balancing risk and reward seriously. Indeed, I think the most important argument for sound risk management is that stock prices respond not only to the market’s expected rate of earnings growth but to the discount rate it applies to those expected earnings. That, in turn, is related to the volatility of earnings. This makes an unexpected drop in earnings doubly dangerous, since it can both lower expected future earnings growth and raise the market rate of discount applied to such earnings.

That said I am realistic enough to know that harsh experience trumps elegant theory every time. Starting in the mid-1980s, a string of major losses created recurring headlines and widespread embarrassment (as well as financial damage) to the senior mangers of many well established financial firms. This run of fairly frequent headline losses persisted into the mid-1990s. Such losses continue to happen but tend to be viewed as intermittent exceptions rather than continuation of a frequently recurring pattern.

I believe it was this pattern of large publicly visible losses that engendered the creation of internal risk management organizations as we know them today. One dark side of this history is that it tended to associate risk management with the risk police in many people’s minds. While that role is inevitably part of the mandate, and while some risk managers fail to see beyond that role, effective risk management is increasingly recognized as encompassing a much broader mandate.

One thing that will contribute to a significant increase in risk management’s importance and impact is the slow but steady progress toward more effective data consolidation within large financial enterprises. This consolidation is often driven by risk assessment considerations that recognize the crucial importance of portfolio context in accurate risk assessments. It also can serve broader purposes, however, such as customer profitability analysis and improved customer service. Providing relationship staff with consolidated customer information across products and locations is one of the essential tools for large institutions to compete more effectively by offering personalized customer contact similar to that available from smaller institutions.

Such data also can be crucial in designing business initiatives such as solicitation of new credit card holders. Leveraging centralized date for purposes of business strategy and execution, in addition to risk analysis, can strengthen the role of risk management and make it a more integral part of senor management decisions.

In brief, I hesitate to trumpet Beaumont Vance’s triumphalist projection of the importance of risk management. After all, the rise of the internet has been compared to the industrial revolution, and that is a pretty high standard of comparison! As Scott Randall says in concluding his comment, “The key is to first make the goal of risk management the achievement of sustained competitive advantage, then to use it to deliver.” I think there are forces promoting a broader role for risk management if those of us in the field will raise our sights and grasp the opportunities. If not, we will find that, “We have met the enemy and they are us.”