The impact of a risk varies according to what happens to who and when. When considering risks, it can be extremely helpful to separate them into broad categories (layers) in order to properly prioritize their solutions. When evaluating risk, we can see five distinct layers which range from what affects everyone (including customers) all the way to the processes performed by each individual.
Layer 1: Concerns external risks that can close a business both directly and indirectly (i.e. flooding, hurricanes, etc.). This type of risk usually disrupts customers, suppliers, and employees.
Layer 2: Examines risks to the local facility involving everything at the site. This can include how offices were constructed, hazardous material spills, electrical power, etc.
Layer 3: Deals solely with data systems organization. Operational issues and legal issues can arise from loss of data and can put an organization in a world of hurt.
Layer 4: Deals with the individual departments and is a main driver of a plan. This layer involves the periodic crises confronting functions to perform, production goals and weekly assignments – and the specific tools needed to do so.
Layer 5: Personal desk or work area. This is the level that affects an individual. If you can’t do your job in a timely manner, it may not stop the company from shipping and selling products but it can add unnecessary stress.