Home / Services / Objective Centric Risk Management

Objective Centric Risk Management

Re-focusing risk management from uncertainty to objectives. A better question leads to better outcomes.

The Problem

Most risk workshops start with the wrong question.

"What keeps you up at night?" "What could go wrong?" "What are your top risks?"

These are the questions that open most risk workshops. They feel natural. But they anchor every conversation in fear and negativity before a single risk has been identified.

As directors and executives, we invest heavily in building a positive risk culture because we know culture is a strong predictor of risk outcomes. Yet we then start every risk discussion in a negative state of mind.

Paul Slovic's research on risk perception, spanning from the late 1970s to today, consistently demonstrates that humans are not naturally good at assessing uncertainty. Our biases, emotions and group psychology skew the results. Workshops built on fear-based questions amplify these weaknesses rather than compensating for them.

"Risk perception is the subjective judgement that people make about the characteristics and severity of a risk." Paul Slovic, Understanding Perceived Risk: 1978 – 2015
Risk is "the effect of uncertainty on objectives." ISO 31000:2018, Risk Management

Notice the ISO definition does not mention fear, loss, or what could go wrong. It anchors risk directly to objectives.

The Shift

From "what could go wrong?" to "what must we get right?"

Objective Centric Risk Management starts from a fundamentally different position. Instead of asking people to imagine what they fear, it asks them to define what the organisation must achieve.

This is not a subtle rewording. It is a structural shift in how risk discussions are framed, facilitated and experienced by everyone around the table.

When boards and leadership teams start from objectives, three things happen:

The conversation becomes strategic. Risk discussions align directly with what the organisation is trying to achieve, rather than producing a disconnected list of things that might go wrong.

People engage differently. Defining what we must get right is a constructive, energising exercise. It plays to how humans naturally think and plan, rather than forcing them into an unnatural exercise of imagining failure.

Opportunities surface naturally. When you start from objectives, both threats and opportunities emerge as part of the same conversation. Traditional approaches have to bolt on "opportunity identification" as an afterthought.

Traditional approach

  • What could go wrong?
  • Fear-based framing
  • Bias-prone assessments
  • Compliance-driven
  • Negative risk culture
  • Opportunities as afterthought

Objective Centric

  • What must we get right?
  • Outcome-focused framing
  • Plays to human strengths
  • Strategy-aligned
  • Positive risk culture
  • Opportunities built in

Recommended by both ISO 31000:2018 and COSO ERM 2017

How It Works

A practical approach, not a theoretical framework.

1

Start with objectives

We work with your board or leadership team to clearly define the organisation's key objectives. These become the anchor for every risk discussion that follows.

2

Identify what must go right

For each objective, we explore what the organisation must get right to achieve it. This reframes risk as the gap between where you are and where you need to be.

3

Align controls and actions

Controls, mitigations and actions are mapped directly to objectives. Every risk response has a clear purpose, and nothing exists in the register without a reason.

Outcomes

What boards and councils are experiencing.

Risk discussions that drive strategy

When risk is anchored to objectives, it becomes a strategic tool rather than a compliance exercise.

Genuine engagement

Directors, executives and staff engage differently when the conversation starts from purpose rather than fear.

A risk culture people believe in

The shift in framing creates the positive risk culture that organisations have been trying to build for years.

Cleaner risk registers

Every item in the register is tied to an objective. No orphan risks, no legacy items that nobody owns.

"The first board workshop that got me excited about risk management and how we should be using it." Non-Executive Director, Peak Body

Who This Is For

Organisations ready to make risk management meaningful.

Objective Centric Risk Management works for boards, councils and leadership teams across every sector and size. I have facilitated this transition with organisations ranging from state government departments and local councils to peak bodies, not-for-profits, utilities and privately owned corporations.

The approach is particularly effective for organisations that:

Feel their risk management has become a compliance exercise rather than a strategic tool. The register exists, the reports go to the board, but nobody feels like it is genuinely helping the organisation make better decisions.

Want to shift their risk culture but have not found an approach that actually changes how people think and talk about risk in practice.

Are undertaking a strategic planning cycle and want risk to be genuinely integrated into strategy rather than bolted on afterwards.

Have new directors or council members and want to establish a shared, positive approach to risk governance from the outset.

Want to see how this works in practice?

Every organisation's journey to Objective Centric Risk Management looks different. Reach out for an obligation-free conversation about how it could work for yours.

Start a conversation