In Risk Management, students will learn to identify, assess, and prioritize the main categories of risk that affect modern organizations, i.e. strategic, operational, financial, compliance, cyber/technology, and reputational. The course focuses on moving from “risk as fear” to risk as decision support. Students will practice framing risks as uncertainties that impact objectives, defining risk appetite and tolerance, and translating qualitative concerns into structured risk statements, heatmaps, and key risk indicators (KRIs). They will work with real-world cases (including digital transformation, supply chain disruptions, and regulatory constraints) to understand how risk management links to governance, performance management, and strategy execution.

Practically, students will build and iterate a risk framework for an organization or a chosen business scenario: a risk register, an assessment methodology (likelihood/impact, scenarios, stress testing where relevant), mitigation plans, and monitoring routines. They will simulate decision-making under uncertainty (e.g., project go/no-go, vendor selection, product launch, technology adoption), design basic controls and escalation paths, and practice writing concise risk reports for executives and boards.

By the end, students should be able to propose a risk operating model (roles, processes, reporting), justify mitigation choices with cost-benefit logic, and communicate risk clearly, so it becomes actionable, not just a compliance exercise.