RECMGMT-L Archives

Records Management

RECMGMT-L@LISTSERV.IGGURU.US
Options: Use Forum View

Use Monospaced Font
Show Text Part by Default
Condense Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Content-Transfer-Encoding:
8bit
Sender:
Records Management Program <[log in to unmask]>
Subject:
Re: Definition of records-based risk
From:
"Jones, Virginia" <[log in to unmask]>
Date:
Fri, 12 May 2006 10:49:47 -0400
Content-Type:
text/plain; charset="us-ascii"
MIME-Version:
1.0
Reply-To:
Records Management Program <[log in to unmask]>
Parts/Attachments:
text/plain (91 lines) 
In addition to specific definitions of "risk" as it relates to records,
you might consider including the following which I teach as part of
establishing vital records programs:

Organizational Records Impact Analysis
Involves analyzing the critical business functions identified in the
business impact analysis and determining the maximum acceptable loss of
records and information beyond which the negative impact would be too
great.

This is based on doing risk management procedures and business impact
analyses.  In my mind, whatever definition of records-related risk you
use, you still need to determine what the effect and/or impact of loss
will be on the organization.  ORIA (as defined above) is a sort of
balancing act. If you try to protect/recover/save every piece of
information and every record, the cost to do so would be too great, if
you do not protect the critical records and information, the cost of the
loss will be too great.


Ginny Jones
(Virginia A. Jones, CRM, FAI)
Records Manager
Information Technology Division
Newport News Dept. of Public Utilities
Newport News, VA
[log in to unmask]

-----Original Message-----
From: Records Management Program [mailto:[log in to unmask]] On
Behalf Of Richard Davis
Sent: Friday, May 12, 2006 10:14 AM
To: [log in to unmask]
Subject: [RM] Definition of records-based risk

I have been asked by our enterprise-wide Records Management Committee
(made up
of high-level directors from finance, legal, IT, Records Management,
Archives,
etc.) to help come up with a good definition of risk associated with
record
keeping.  They would like a definition that could be applied over the
entire
organization (departments dealing with finance, HR, legal, IT,
publications,
real estate, investments, etc.)  They will then define a criteria for
assessing
risk and then begin to apply this criteria to all record groups.  This
is an
effort by the committee to help us as an organization focus our
energies,
prioritize our efforts, and deal with records that have the most risk to
the
organization first.  I've got some ideas but would like to see what some
of the
RM community thinks.
 
Does anyone have a good definition of risk.  Can a definition be applied
globally or are there different types of risk?
 
Thanks for any insight.
 
 
 
 
Richard H. Davis
Manager, Records and Information Management
Church History Department
801-240-3673
[log in to unmask]

------------------------------------------------------------------------
------

 
NOTICE: This email message is for the sole use of the
 intended recipient(s) and may contain confidential and
 privileged information. Any unauthorized review, use,
 disclosure or distribution is prohibited. If you are not the
 intended recipient, please contact the sender by reply email
 and destroy all copies of the original message.

------------------------------------------------------------------------
------

List archives at http://lists.ufl.edu/archives/recmgmt-l.html
Contact [log in to unmask] for assistance

List archives at http://lists.ufl.edu/archives/recmgmt-l.html
Contact [log in to unmask] for assistance

ATOM RSS1 RSS2