From Open Risk Manual
While in principle all risk realizations are "events", the term is informally used to denote realizations that manifest within a narrow interval of time (where narrowness is defined with respect e.g. to the Risk Horizon
- A unique Risk Event Identity (comprising of adequate information to isolate the specific event among a broader collection)
- The Legal Entity (or entities) involved in the event. The identification could be e.g. through the Legal Entity Identifier or some other mechanism that uniquely associates an individual or an organization with the risk events. Further information about the entity (not specific to the risk event) may be referenced via this identification
- The time of Occurrence or the temporal interval(s) of occurence for composite events that extend over periods of time
- A qualitative description of the event (human readable text that is meaningful in a particular Risk Management context), including possible an Event Timeline. The required detail of that description is open-ended and depends on the use case and context.
- A quantitative description of the impact (Loss, Severity), typically - but not necessarily - expressed in monetary terms (Economic Loss). The detail required is again open-ended.
- An optional categorization by Risk Type, possibly in the context of a Risk Taxonomy that aims to provide tags / categories for all possible events within a context
Issues and Challenges
- Poor identification of the entities involved, e.g., missing key actors
- Poor categorization of the event type due to complexity
- Poor description of the event