Risk Management Solutions

⛈️ 𝐂𝐥𝐢𝐦𝐚𝐭𝐞 𝐑𝐢𝐬𝐤 𝐌𝐞𝐭𝐡𝐨𝐝𝐨𝐥𝐨𝐠𝐲 𝐁𝐚𝐬𝐞𝐝 𝐨𝐧 𝐎𝐩𝐞𝐧-𝐀𝐜𝐜𝐞𝐬𝐬 𝐓𝐨𝐨𝐥𝐬 🗺️ Over the past months, I shared lists of open-access climate and nature risk assessment tools. They sparked quite some interest. Here’s how I thought I might provide additional value: ➡️ A practical Excel methodology for assessing climate risk based on open-access geospatial tools. For every risk category required by the EU Taxonomy, the Excel links to the best assessment tool. 🔥🌡️ This initial release focuses on temperature-related physical risks like heat stress and wildfires. Updates on additional risk categories are forthcoming. 𝐖𝐡𝐚𝐭’𝐬 𝐢𝐧𝐬𝐢𝐝𝐞: 🗺️ Open-access geospatial tools for assessing each temperature-related risk 📊 A conclusive methodology to assess company sites and supply chains 📝 Additional guidance for smooth assessment and reporting in line with EU Taxonomy and CSRD, including descriptions and instructions for each tool 📈 Based on the latest climate models and data by organizations like the IPCC. I hope this will save ESG teams substantial time and money in their search for adequate data and methods. 𝐈𝐧𝐭𝐞𝐫𝐞𝐬𝐭𝐞𝐝 𝐢𝐧 𝐭𝐡𝐞 𝐫𝐞𝐬𝐨𝐮𝐫𝐜𝐞? Comment below, and I’ll send it your way. (Please connect so I can message you directly.)

One bad AI architecture choice can cost your enterprise $2M a year. Most teams make three. They build AI like old systems with a chatbot on top. In probabilistic systems, you are not just designing what it does. You are designing how it behaves when reality pushes back. Miss that, and you get: ⚠ Silent failures no one notices until a customer calls ⚠ Models drifting off course in weeks ⚠ Costs spiking without warning I have seen it happen. An agent launched with no eval loop, no fallback, and no memory. It looked perfect in the demo, unusable in production within a week. Failure Mode → Architecture Fixs: ⚠ Model drift goes unnoticed 💥 $2M+ wasted output ✅ Continuous evaluation loop and drift detection ⚠ Compliance breach from unsafe outputs 💥 Regulatory fines + brand damage ✅ Risk gates and human-in-the-loop review ⚠ Cost blowouts from LLM overuse 💥 30–50% unplanned cloud spend ✅ Cost control overlay and rate limiting These failures are not isolated. They are symptoms of missing architecture. Without a blueprint that embeds evaluation, risk controls, and cost visibility from day one, you rely on luck to keep systems reliable in production. This is the Enterprise AI System Architecture Blueprint I use to prevent those failures before they happen: 🔸 Interface Layer - Chat UIs, APIs, Web Clients, App Integrations 🔸 Agent Orchestration – Task planning, tool use, reflection, memory, retries 🔸 Retrieval & Memory – RAG pipelines, vector DBs, memory stores, grounding context 🔸 Evaluation & Logging – Human-in-the-loop review, eval pipelines, observability, score tracking 🔸 Infrastructure Layer – Cloud, CI/CD, security gateways, cost control, monitoring, audit logs Enterprise Overlays – Data Governance, Risk Gates & Guardrails, Observability, Compliance Alignment, Access Control, Cost Management These overlays are not extras. They are what separate a reactive setup from an adaptive one. The more deeply they are embedded, the higher your maturity. Maturity Levels - help teams self-assess how well your AI architecture handles change, risk, and scale: 🔴 Reactive – No eval loops, manual fixes after failures 🟠 Basic – Some fallback logic, limited observability 🟢 Proactive – Continuous eval, cost controls, governance in place 🔵 Adaptive – Self-healing agents, real-time drift correction In one retailer, it caught a $2M/year drift issue before launch. In a top 5 bank, it cut fraud false positives by 41%, saving $8M/year. That is why the AI Architect is not just a system designer. They are the custodian of behavior, risk, and reliability in production. Their decisions directly shape trust, cost, and compliance exposure. Where does your AI architecture sit on this maturity scale? If you had to close one gap this quarter, which would it be? 📌 Next week: 7-post spotlight on the AI Delivery Manager/Lead ⚡ The role that turns architecture like this into real, reliable delivery 🎯 What it is, why it matters, and how to grow into it

👉 Are we using the wrong tools to assess climate risk? A new expert-led assessment, drawing on the judgment of 60+ climate scientists, says that #climatechange introduces forms of risk that exceed the design assumptions of existing economic and financial frameworks. Here’s what that means in practice ⬇️ 🔹 Climate damages are structural, they reshape economies: where people live, what can be produced, how infrastructure functions, and which regions remain viable. 🔹 Extremes drive real-world risk: what actually destabilises societies and markets are heatwaves, floods, droughts, grid failures, food shocks. It’s the tails of the distribution that matter. 🔹 GDP misses mortality, inequality, displacement, ecosystem loss, and can even rise after disasters due to reconstruction. This creates a dangerous illusion of resilience. 🔹 Repeated shocks erode recovery capacity and propagate across supply chains, finance, migration, and geopolitics. 🔹 Beyond ~2°C, uncertainty widens sharply. Confidence in precise damage estimates falls even as consequences grow. 🔹 Tipping points expose the limits of economic modelling: At higher warming levels, model outputs can appear precise while resting on assumptions that no longer hold. At the same time, many models also underestimate positive tipping points in clean energy and innovation. The goal is to build resilience under deep uncertainty. For treasuries, central banks, regulators, and long-horizon investors, this means recalibrating governance toward: ➡️ precaution ➡️ robustness ➡️ transparency Because avoiding irreversible outcomes is always cheaper than trying to price them after the fact. read the report "Recalibrating Climate Risk" here 👇 https://lnkd.in/dx8wmRZ4 Green Futures Solutions (University of Exeter) Carbon Tracker @aurora trust

𝗜𝗻𝘀𝘂𝗿𝗮𝗻𝗰𝗲 𝘄𝗶𝗹𝗹 𝗯𝗲 𝘁𝗵𝗲 𝗳𝗶𝗿𝘀𝘁 𝘀𝘆𝘀𝘁𝗲𝗺 𝘁𝗼 𝗰𝗿𝗮𝗰𝗸 𝘂𝗻𝗱𝗲𝗿 𝗰𝗹𝗶𝗺𝗮𝘁𝗲 𝗿𝗶𝘀𝗸 — 𝗮𝗻𝗱 𝗶𝘁 𝘀𝗵𝗼𝘂𝗹𝗱 𝗰𝗼𝗻𝗰𝗲𝗿𝗻 𝘂𝘀 𝗮𝗹𝗹. Natural disasters caused $𝟯𝟲𝟴 𝗯𝗶𝗹𝗹𝗶𝗼𝗻 in global economic losses last year, according to Aon — the ninth year in a row losses topped $300 billion. Only 𝟰𝟬% of those losses were insured. The protection gap is widening. As insurers retreat from high-risk regions, public safety nets — often overstretched — are stepping in. More households, businesses, and governments are being left to absorb risks they cannot afford. This isn’t just about insurance anymore. When insurance breaks down, so does credit. When credit dries up, property values fall, costs rise, and resilience weakens — just when it’s needed most. @Günther Thallinger 𝗳𝗿𝗼𝗺 𝗔𝗹𝗹𝗶𝗮𝗻𝘇 put it starkly: “𝘛𝘩𝘦𝘳𝘦 𝘪𝘴 𝘯𝘰 𝘤𝘢𝘱𝘪𝘵𝘢𝘭𝘪𝘴𝘮 𝘸𝘪𝘵𝘩𝘰𝘶𝘵 𝘧𝘶𝘯𝘤𝘵𝘪𝘰𝘯𝘪𝘯𝘨 𝘧𝘪𝘯𝘢𝘯𝘤𝘪𝘢𝘭 𝘴𝘦𝘳𝘷𝘪𝘤𝘦𝘴. 𝘈𝘯𝘥 𝘵𝘩𝘦𝘳𝘦 𝘢𝘳𝘦 𝘯𝘰 𝘧𝘪𝘯𝘢𝘯𝘤𝘪𝘢𝘭 𝘴𝘦𝘳𝘷𝘪𝘤𝘦𝘴 𝘸𝘪𝘵𝘩𝘰𝘶𝘵 𝘵𝘩𝘦 𝘢𝘣𝘪𝘭𝘪𝘵𝘺 𝘵𝘰 𝘱𝘳𝘪𝘤𝘦 𝘢𝘯𝘥 𝘮𝘢𝘯𝘢𝘨𝘦 𝘤𝘭𝘪𝘮𝘢𝘵𝘦 𝘳𝘪𝘴𝘬.” The Institute and Faculty of Actuaries (IFoA) project a 𝟱𝟬% 𝗰𝗼𝗹𝗹𝗮𝗽𝘀𝗲 𝗶𝗻 𝗴𝗹𝗼𝗯𝗮𝗹 𝗚𝗗𝗣 𝘄𝗶𝘁𝗵𝗶𝗻 𝗱𝗲𝗰𝗮𝗱𝗲𝘀 if climate risk is not properly managed. Climate risk is no longer a future scenario. It is here. It is compounding. And it is reshaping our economy in real time. There are positive signs: ➤ Hannover Re and Swiss Re are restricting fossil fuel underwriting. ➤ Parametric insurance models are speeding up disaster recovery. ➤ EIOPA and the European Central Bank are pushing for public-private risk sharing. These are encouraging — but early signs. 𝗠𝘆 𝘁𝗮𝗸𝗲: Climate risk is already disrupting the systems we rely on: insurance, credit, asset valuation, and public finances. Systems change is needed. The insurance sector holds a unique vantage point — but leadership now demands rethinking long-held assumptions about risk, resilience, and responsibility. The sector has an opportunity to lead: ➤ Embed forward-looking climate risk into underwriting ➤ Signal future exposures more transparently ➤ Drive transition finance to accelerate decarbonisation ➤ Redirect investment into adaptation ➤ Co-design shared risk pools and resilience bonds Collaboration between insurers, financiers, and governments is no longer optional — it is the foundation for economic stability in a climate-disrupted world. The sooner we align risk pricing with physical reality, the stronger our chances of building a more resilient economy for the future. #climaterisk #insurance #resilience #finance #sustainability #systemicrisk #adaptation –––––––––– For updates on sustainability, climate, and innovation, follow me on LinkedIn: @Scott Kelly

🔍 Hydrogen Sulfide (H₂S) ☢️ in Oil & Gas Operations 🔍 Hydrogen sulfide (H₂S) is not just a toxic gas — it is one of the most technically challenging and high-risk elements in upstream and downstream operations. From drilling sour wells to processing hydrocarbons, H₂S impacts safety, materials selection, reservoir economics, and facility design. In sour environments, engineering decisions are directly influenced by H₂S concentration, pressure, and temperature conditions. 📌 Key technical highlights about H₂S: ✅ Toxicity levels: 10 ppm is the occupational exposure limit in many standards, 100 ppm is immediately dangerous to life and health (IDLH), and concentrations above 700 ppm can cause rapid collapse ✅ Density: H₂S is heavier than air, allowing it to accumulate in cellars, pits, confined spaces, and low elevations ✅ Corrosion mechanism: Causes sulfide stress cracking (SSC), hydrogen embrittlement, and accelerates equipment failure in carbon steels ✅ Reservoir classification: Wells are classified as “sour” when H₂S exceeds specific partial pressure limits (per NACE / ISO standards) ✅ Flaring & processing: H₂S must be converted to elemental sulfur using processes such as the Claus process in gas plants 💡 Did you know? The presence of H₂S can significantly increase CAPEX and OPEX due to the need for corrosion-resistant alloys (CRA), special elastomers, continuous monitoring systems, and enhanced safety protocols. 📌 H₂S risk management strategies in the field: • Continuous fixed and portable gas detection systems • H₂S contingency planning and emergency drills • SCBA (Self-Contained Breathing Apparatus) training • Sour service material selection (NACE MR0175 / ISO 15156 compliance • Proper mud weight and well control strategies in sour drilling • Chemical scavengers for temporary mitigation In drilling operations, encountering unexpected H₂S can immediately shift the operation from routine to critical. That is why pre-job hazard assessment and real-time monitoring are essential — especially in high-pressure high-temperature (HPHT) sour wells. H₂S is not only a safety issue. It is a reservoir management, integrity, and economic challenge.☣️ 📌 Copyright information: Based on industry standards including NACE MR0175 / ISO 15156 and standard oil & gas H₂S safety guidelines. Video copyrights © Landman series ________________________________________ 🟧✨"If you found this content valuable, I encourage you to share it with your network and contribute your thoughts in the comments. Your engagement not only fosters insightful discussions but also helps expand our collective knowledge. #PetroleumEngineering #OilAndGas #Energy #OilIndustry #GasIndustry #Sonatrach #DrillingEngineering #UpstreamOilAndGas #DownstreamOilAndGas #EnergySector #OilFiel

Is Process Management the Key to Strong Risk and Compliance Management? So many organizations struggle with Risk and Compliance management! A quick scan of the headlines and you'll see another organization getting in trouble with the regulators. I was a consultant in the banking industry for over 25 years and have seen the struggle first hand. In my opinion, the root cause of failure is the lack of a semantic structure (a framework that defines and organizes data in a meaningful way) which exhaustively identifies every process the organization performs to provide consistent business context. According to ISO 31000, risk is defined as the effect of uncertainty on an organization's objectives. How are objectives accomplished? Through Process, of course. Organizations that must manage risk have a risk repository, many times a GRC platform, which stores their risk data such as regulatory obligations, controls, etc. The core challenge is that they typically have a size fit all process taxonomy (such as APQC) for business context which doesn't capture the nuances of their business. The result is that risk data is built on interpretations and assumptions which makes it unreliable, risk reporting for executives is inaccurate, and there is massive confusion for everyone that has a role in risk management. To address this, organizations need to create and maintain an inventory of every process they perform in each organizational unit. This approach leads to Business Integrated Risk Management, where risk management is performed through a common business-oriented lens. The Benefits include: -      Clean risk data by aligning all risk types to a common language of "What" processes the organization performs across all risk types. -      Operational efficiency by defining processes in the 1st line (risk owners), 2nd line (risk oversight), and 3rd line (risk assurance) in a standardized way. -      Enhanced decision-making through accurate risk reporting, allowing stakeholders and the customer they serve to make informed decisions. -      Accurate risk reporting to leadership so they can make accurate risk mitigation decisions. This also sets up organizations to leverage the power of AI through Digital Twins and AI agents to continuously scan the environment and perform automated risk assessment which could eliminate many risk management challenges. This is such a common sense approach, why has this simple solution evaded many organizations? To learn more about this approach, check out my book Digital Transformation Success https://a.co/d/2QSq8qf

6-Step Methodology for Climate Risk Assessment 🌎 Addressing climate-related risks is increasingly essential as extreme weather events, resource scarcity, and ecosystem disruptions become more frequent and severe. Effective Climate Risk Management (CRM) equips governments, organizations, and communities with the tools to anticipate, prepare for, and mitigate these impacts. A structured approach to climate risk assessment not only identifies vulnerabilities but also informs proactive measures that protect lives, livelihoods, and essential infrastructure. The GP L&D’s 6-step methodology offers a practical, systematic framework for understanding and addressing climate risks, integrating these insights into public policies and investment decisions to build resilience and promote sustainable development. The first step in this methodology is to analyze the current status to determine information needs and set specific objectives. Establishing a clear baseline of vulnerabilities helps ensure that the entire process remains aligned with the climate resilience goals set out from the start. From here, a hotspot and capacity analysis is conducted, identifying regions and systems most exposed to climate risks—such as droughts or floods—and evaluating the local capacity to respond. This targeted analysis allows for efficient resource allocation by pinpointing areas of highest priority. The methodology then adapts to local contexts by developing a tailored approach that reflects unique socio-economic and environmental factors. This customization enhances the relevance and accuracy of the risk assessment, making it more actionable and specific to each setting. Following this, a comprehensive risk assessment is conducted, using both qualitative and quantitative measures to capture the full range of potential impacts. This dual assessment provides a complete understanding of direct impacts, such as infrastructure damage, and indirect consequences, like disruptions to livelihoods. An evaluation of risk tolerance follows, defining acceptable levels of risk and helping prioritize the most urgent interventions. This clarity on risk thresholds ensures that resources are directed to where they are most needed. Finally, the methodology identifies feasible, cost-effective measures to mitigate, adapt to, or prevent potential losses and damages. This step aligns recommended actions with budget and policy constraints, ensuring that interventions are practical and impactful. By adopting this structured approach, decision-makers can better manage climate risks, develop adaptive strategies, and enhance resilience tailored to local needs and resources. Source: Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) #sustainability #sustainable #business #esg #climatechange #climateaction

INSURANCE HAS HIT A BRICK WALL The insurance industry, a cornerstone of our financial system, has hit a wall. For decades, it relied on a simple idea: the past could predict the future. But it has now been thrown into a world of massive uncertainty, where the climate is no longer steady, and yesterday’s models are no longer enough. This isn't a temporary crisis; it's the beginning of planetary insolvency, a situation where rising costs of climate-related damages consistently surpass our global ability to cover them. The fundamental principles of insurance—diversification and historical data—are being undermined by the increasing burden of interconnected, systemic risks that develop faster than a slowly adapting industry can respond. We see the first cracks in the foundation as homeowners' insurance becomes unavailable in states across the US. But the contagion is spreading. Soon, we will realize that much of the corporate world owns infrastructure that is becoming uninsurable. This isn't just an insurance problem; it's a systemic threat. Banks depend on insurance. Trillions of dollars in private credit are backed by physical assets—collateral that is now dangerously mispriced because its climate risk has been ignored. As David Howden, CEO of the Howden Group, warned, “the iceberg is looming.” Insurability is no longer just about protection; it is about access to capital. The only way forward is a fundamental shift. The industry must move from solely transferring risk after a disaster to actively reducing it before it happens. This involves embracing adaptation. We see pioneers already doing this—from Iberostar Hotels restoring mangroves to protect its properties, to renewable energy companies redesigning solar panels to endure severe hail. They understand that resilience is now the key. But to make these adaptation decisions effectively, we must let go of the old mindset. Radical uncertainty calls for a new approach—one that moves from Newton’s predictable world to a quantum realm of probabilities. We need to adopt stochastic thinking and new tools that can model a non-stationary future. The ability to quantify this risk, assess the cost-benefit of adaptation, and guide vital investments is no longer just theoretical; it is now visible and accessible. It demands fresh strategic thinking from leadership at all levels, along with a commitment to see the world as it truly is, not as it once was. Leaders who embrace this new reality will not only navigate the crisis but also shape the resilient economy of the future. So, where can we find modelling that is truly stochastic and captures the complete probabilistic nature of our climate future? What does it look like? How can we experiment with it? How does it complement the CAT models we are familiar with? Try RiskThinking.ai’s ClimateEarthDigitalTwin™, the only true stochastic climate modelling platform available. #climaterisk #insurance #adaptation #stochastic

🇸🇬 [AI SECURITY] Singapore takes the lead in AI governance again! The Cyber Security Agency of Singapore (CSA) released AI security guidelines that EVERYONE developing or deploying AI should know: 1️⃣ Take a lifecycle approach "As with good cybersecurity practice, CSA recommends that system owners take a lifecycle approach to consider security risks. Hardening only the AI model is insufficient to ensure a holistic defence against AI related threats. All stakeholders involved across the lifecycle of an AI system should seek to better understand the security threats and their potential impact on the desired outcomes of the AI system, and what decisions or trade-offs will need to be made. The AI lifecycle represents the iterative process of designing an AI solution to meet a business or operational need. As such, system owners will likely revisit the planning and design, development, and deployment steps in the lifecycle many times in the delivery of an AI solution." 2️⃣ Start with risk assessment "Given the diversity of AI use cases, there is no one-size-fits-all solution to implementing security. As such, effective cybersecurity starts with conducting a risk assessment. This will enable organisations to identify potential risks, priorities, and subsequently, the appropriate risk management strategies. A fundamental difference between AI and traditional software is that while traditional software relies on static rules and explicit programming, AI uses machine learning and neural networks to autonomously learn and make decisions without the need for detailed instructions for each task. As such, organisations should consider conducting risk assessments more frequently than for conventional systems, even if they generally base their risk assessment approach on existing governance and policies. These assessments may also be supplemented by continuous monitoring and a strong feedback loop." 3️⃣ Guidelines for securing AI systems ⮕ "Planning and design → Raise awareness and competency on security risks  → Conduct security risk assessments ⮕ Development → Secure the supply chain  → Consider security benefits and trade-offs when selecting the appropriate model to use → Identify, track and protect AI-related assets → Secure the AI development environment ⮕ Deployment → Secure the deployment infrastructure and environment of AI systems → Establish incident management procedures → Release AI systems responsibly ⮕ Operations and Maintenance → Monitor AI system inputs → Monitor AI system outputs and behaviour → Adopt a secure-by-design approach to updates and continuous learning → Establish a vulnerability disclosure process ⮕ End of Life → Ensure proper data and model disposal" ➡️ Read the full report below (download the companion guide too). 🏛️ STAY UP TO DATE. AI governance is moving fast: join 36,700+ people who subscribe to my newsletter on AI policy, compliance & regulation (link below). #AI #AISecurity #AIGovernance #AIRisks

"this toolkit shows you how to identify, monitor and mitigate the ‘hidden’ behavioural and organisational risks associated with AI roll-outs. These are the unintended consequences that can arise from how well-intentioned people, teams and organisations interact with AI solutions. Who is this toolkit for? This toolkit is designed for individuals and teams responsible for implementing AI tools and services within organisations and those involved in AI governance. It is intended to be used once you have identified a clear business need for an AI tool and want to ensure that your tool is set up for success. If an AI solution has already been implemented within your organisation, you can use this toolkit to assess risks posed and design a holistic risk management approach. You can use the Mitigating Hidden AI Risks Toolkit to: • Assess the barriers your target users and organisation may experience to using your tool safely and responsibly • Pre-empt the behavioural and organisational risks that could emerge from scaling your AI tools • Develop robust risk management approaches and mitigation strategies to support users, teams and organisations to use your tool safely and responsibly • Design effective AI safety training programmes for your users • Monitor and evaluate the effectiveness of your risk mitigations to ensure you not only minimise risk, but maximise the positive impact of your tool for your organisation" A very practical guide to behavioural considerations in managing risk by Dr Moira Nicolson and others at the UK Cabinet Office, which builds on the MIT AI Risk Repository.