Next Article in Journal
Montenegrin Stock Exchange Market on a Short-Term Perspective
Next Article in Special Issue
Risk and Bankruptcy Research: Mapping the State of the Art
Previous Article in Journal
Global Anti-Money Laundering and Combating Terrorism Financing Regulatory Framework: A Critique
 
 
Search for Articles:
Title / Keyword
Author / Affiliation / Email
Journal
Article Type
 
 
Advanced Search
 
Section
Special Issue
Volume
Issue
Number
Page
 
Journals
JRFM
Volume 16
Issue 7
10.3390/jrfm16070314
jrfm-logo
Submit to this Journal Review for this Journal Propose a Special Issue
Article Menu

Article Menu

share Share announcement Help format_quote Cite question_answer Discuss in SciProfiles thumb_up
...
Endorse textsms
...
Comment
first_page
settings
Order Article Reprints
Font Type:
Arial Georgia Verdana
Font Size:
Aa Aa Aa
Line Spacing:
Column Width:
Background:
Article

Risk Planning and Management in Portuguese Companies—A Statistical Approach

by
Fernando Oliveira Tavares
1,2,*,
Eulália Santos
3,
Vasco Capela Tavares
4 and
Vanessa Ratten
5
1
Research on Economics, Management and Information Technologies, Department of Economics and Management, Universidade Portucalense, 4200-027 Porto, Portugal
2
Instituto Superior Miguel Torga, Largo da Cruz de Celas nº 1, 3000-132 Coimbra, Portugal
3
Higher School of Education and Social Sciences, CI&DEI, Polytechnic of Leiria, Campus 1, Rua Dr. João Soares, Apartado 4045, 2411-901 Leiria, Portugal
4
ISEG-UL—Lisbon School of Economics and Management, University of Lisbon, Rua do Quelhas, 6, 1200-781 Lisbon, Portugal
5
Department of Management, La Trobe Business School, La Trobe University, Melbourne, VIC 3086, Australia
*
Author to whom correspondence should be addressed.
J. Risk Financial Manag. 2023, 16(7), 314; https://doi.org/10.3390/jrfm16070314
Submission received: 1 May 2023 / Revised: 26 June 2023 / Accepted: 26 June 2023 / Published: 28 June 2023
(This article belongs to the Special Issue Risk Planning and Management in Companies)
Browse Figures
Versions Notes

Abstract

:
The purpose of this article is to study risk management planning and risk management in Portuguese companies. The methodology used is of a quantitative nature, based on a questionnaire survey that analyzes the risk management planning and risk management of 1647 Portuguese companies from different sectors of activity. The results allow us to conclude that the aspects that most manifest themselves in the perceptions of risk management planning are having a management plan that includes the relationship with customers, suppliers, and employees, as well as an updated security plan. This study intends to contribute to academic knowledge and for companies to know and master the concepts of risk management planning and risk management in its different aspects, helping the adoption of strategies to better plan risk management. The results make it possible to understand the differences in planning and risk management between larger and smaller companies, between older and younger companies, and between family and non-family companies. These results can contribute to increasing corporate sustainability and improving performance in planning and managing corporate risks.

1. Introduction

Risk management planning and risk management are inherent to business activity, being a consequence of business demands, the market, changes in companies, and the environment that surrounds them, which is characterized by planning and managing a set of variables or events with business relevance. The importance of the issue of risks has increased, and with globalization, the importance of risk management in supply chains has also increased (Hristov et al. 2022). External risk factors may arise from economic changes, financial market development, policies followed in countries, changes in laws, the technological environment, and demography (Hristov et al. 2022; Kalina et al. 2022). An economic–financial crisis, in general, significantly changes the views of risk management in companies, trying to eliminate the negative impacts of different types of risk on the company’s economic results (Dvorsky et al. 2021). On the other hand, internal risks include human error, fraud, system failure, and production interruptions, among other risks (Hristov et al. 2022; Kalina et al. 2022).
For Alviniussen and Jankensgard (2009), in principle, a company’s capacity to respond to risk increases with (1) an increase in the number of liquid assets (e.g., cash and equivalents), (2) the possibility of increasing indebtedness, and (3) hedging positions. Given this view, the lower the risk capacity of the company, the greater the possibility that the company will incur negative consequences due to its low cash flow. Although there is a perception of risk on the part of the chief executive officers (CEOs) of companies, when there are technological changes, they understand that the perceived utility is greater, as there is a reduction in costs and greater flexibility (Ferri et al. 2021). In particular, technical risks and organizational risks have a greater impact than most other risks.
According to Tavares et al. (2016), in Portugal, there are a large number of companies that believe in risk management and planning, and risk is understood as an intrinsic characteristic of business activity. On the other hand, Zwikael and Ahn (2011) found a higher level of risk management planning in cultures with higher levels of uncertainty avoidance (e.g., New Zealand) and in industries with higher levels of project maturity (e.g., engineering). Tavares et al. (2016) believe that although there is a greater tendency towards the downside of risk, Portuguese small and medium-sized enterprises (SMEs) have a modern view of risk, being able to interpret it as a window of opportunities. Thus, the authors consider that risk management is a process of planning, organizing, directing, and controlling resources to achieve the desired objectives, in a context in which unforeseen events (in a positive or negative sense) may occur. Mikes (2009) notes that in the financial services sector, enterprise risk management (ERM) is thought to comprise a set of risk practices that encompass such a wide range of techniques as the value of risk, economic capital models, and qualitative methods for non-financial risks. For all its potential benefits, Alviniussen and Jankensgard (2009), understand that ERM may not capture some aspects related to the company’s total risk—that is, the risk that the company does not meet important objectives, such as the implementation of its investment plan, the need to take precautions with customer debt clauses, or maintaining high levels of credit granted. Fraser and Simkins (2016) believe that in any organization that has successfully implemented ERM, the management team will consider it essential for the continued smooth functioning of management and security. Dey et al. (2013) observed that the main factors for the implementation of enterprise resource planning (ERP) are the commitment of the company’s management, the selection of adequate systems, and the adequate selection of their integration with the existing information systems. Dittfeld et al. (2020) believe that managers need to know their business environment, to be able to adjust the sales and operations planning (S&OP) for the needs of the organization and keep the focus on their risk. Also, according to the same authors, organizations must customize themselves to work in different ways to manage risk, in addition to analyzing scenarios.
There are multiple studies on business risks and their management; however, there are still gaps in the knowledge. Therefore, the studies are not unanimous regarding the differences in risk management between larger and smaller companies, between older and more recent companies, and even between family and non-family businesses. This work aims to study risk management planning and risk management in Portuguese companies and is structured into five sections. After this introduction, the literature review follows, where the topics of risk management and the impacts of crises and disasters on risk management are reviewed. Subsequently, the methodology section is presented, followed by the presentation of the results and their discussion. Finally, the conclusions are presented.

2. Literature Review

2.1. Risk Management

Risk can be understood as uncertainty, either regarding the probability of the occurrence of certain facts that may directly or indirectly affect the company, or regarding the moment when such facts may manifest themselves (Verbano and Venturini 2013). Zwikael and Ahn (2011) found that risk management practices moderate the effect of project risk, and this has an impact on project success and multiple possible project scenarios. Although risk levels reduce project performance, planning management moderates this relationship. However, risk can also mean challenge, and it is in this sense that risk can be understood more as a choice than a fatality, a fate, or a destiny. SMEs need fewer bureaucratic project management models and different versions of project risk management, in order to facilitate their implementation (Lima et al. 2021).
For Tavares et al. (2021), strategic planning is essential for the company. The company must present a competitive strategic formulation, combining the company’s efficiency with the exploitation of the environment in which it operates. In this way, by exploiting competitive advantages, companies succeed, and it is necessary to have a clear vision of the changes at an economic, social, and political level, which are taking place in the ecosystem where they are inserted.
Bhuiyan et al. (2021) concluded that an autonomous risk management body in companies not only reduces the taking of corporate risks but also increases the value of the company.
Mehrjerdi (2010) stated that the best management of a system is related to the full knowledge of the technologies implemented in the system under consideration, providing sufficient resources for the company’s resource planning. Enterprise risk management (ERM) provides the methods and processes that are used by companies to manage all risks to take advantage of opportunities to achieve their goals (Hristov et al. 2022).
According to Zwikael and Ahn (2011), sometimes there are high-risk projects that are completed more successfully than projects with a low level of perceived risk. Zwikael and Ahn (2011) also found that the environmental context determines the project’s perceived risk level. Thus, Zwikael and Ahn (2011) concluded that the level of perceived risk and, therefore, risk management planning, is lower in countries characterized by low levels of uncertainty (e.g., Japan), low levels of cultural diversity, and in industries with immature project management practices.
The study by Dey et al. (2013) showed that process management in ERP, together with information technology management and organizational transformation management, makes the implementation of ERP projects more successful. For Dey et al. (2013), the success of ERP implementation is partially related to the fact that stakeholders understand and effectively carry out their ongoing responsibilities in the project.
Van Wyk et al. (2004) understand that risk management requires the identification of specific risks and their adverse impacts on different businesses. For Van Wyk et al. (2004), the uncertainties of many sectors challenge managers to control the specific risks of industries and companies more effectively.
Alviniussen and Jankensgard (2009) are of the opinion that, in enterprise risk management (ERM), the company undertakes to carry out a comprehensive mapping of its risk exposures and aggregate them into a corporate-level risk portfolio. In the authors’ opinion, this breaks with the closed and traditional forms of risk management, in which each risk category is managed in a departmental way—that is, independently of other risks in the company. Fraser and Simkins (2016) concluded that numerous works show that the successful implementation of ERM is achieved with committed company management and following the advice of regulators. According to Alviniussen and Jankensgard (2009), for the company to frame the total risk, the company needs to frame and define the concepts and quantify its risk capacity—that is, define a level that allows the company to survive in case there are worst-case events and scenarios.
Wu et al. (2014) concluded that business intelligence models are being applied in risk management contexts around the world and have proven to be effective for more than half a century. Historically, risk management was viewed very narrowly and treated separately (Fraser and Simkins 2016). Risk management in companies should be seen in an integrated way, and owners must improve the management of strategic risk in their businesses (Krüger and Meyer 2021).
Baz and Ruel (2021) concluded that companies need to develop good practices of supply chain risk management (SCRM) to improve their robustness and the level of the supply chain (SC) and its resiliency. However, in the understanding of Baz and Ruel (2021), looking at the impacts of COVID-19 on the performance of companies and their financial capacities, not all may have the resources and capacities to do so. Norrman and Wieland (2020) noted that Ericsson has developed its own SCRM practices, first formulating and improving its processes and tools for the function (knowledge-based techniques and capabilities) within the sourcing, supply, and security functions, but also matching inter-functionality. For Norris et al. (2021), the adoption of a rational view changes the origin of a company’s value creation, emphasizing supply chains. Norrman and Wieland (2020) noted that processes were formalized over time and reinforced by corporate governance, in which projects are aligned with existing ones, which allows the development of SCRM.
For Bogodistov and Wohlgemuth (2017), the inclusion of risk management at both the strategic and operational levels makes the concept more dynamic and more precise. According to Mikes (2009), innovations in ERM techniques (in the financial sector) are increasingly grouped into four themes: risk quantification, risk aggregation, performance based on risk measurement, and non-quantifiable risk management.
According to Bogodistov and Wohlgemuth (2017), the concept of dynamic ERM capability, in addition to incorporating dozens of years of experience with a very recent holistic perspective, adds insights based on resources, providing professionals with a clear view of properties for the implementation of the ERM. Mikes (2009), in his work on the financial sector, found that in relation to the two banks studied, each one had a specific risk management mix for itself. For Bogodistov and Wohlgemuth (2017), managers should keep in mind that not all risks can be predicted or managed.

2.2. Impacts of Crises and Disasters on Risk Management

For Louw and Wyk (2011), it is generally accepted that disasters are having an increasing impact on our lives, whether of a pandemic nature, on people’s assets, or on the environment, infrastructure, and economic and social activities. The literature on management in times of crisis is general in nature and lacks a specific perspective on international business (Santos et al. 2020; Tavares et al. 2020). Louw and Wyk (2011) understand that, after a disaster, it is difficult to quickly determine the exact nature of the impacts and what will be needed to restore the situation or, preferably, to improve the situation, reducing the vulnerability to possible future impacts. It is still important to intervene proactively, before disasters occur, to influence the process by which disaster and operational risks develop due to increased vulnerability, resulting in a diminished capacity to face new challenges (Santos et al. 2022). Xia et al. (2018) therefore suggested that researchers and professionals should be aware of and find approaches so that there is an integrated connection of stakeholder risk management, rather than just isolated management of one of the parties. For Dvorsky et al. (2021), in times of crisis and post-crisis, there are changes in the prioritization of business risks by entrepreneurs, losing some meaning in the way of resolving past risks.
The results of disasters, according to Louw and Wyk (2011), include human suffering and damage to infrastructure resources, on which human survival depends, as well as their quality of life. Dvorsky et al. (2021) identified a positive effect of corporate risk management and entrepreneurs’ attitudes concerning the threat of business failure on the company’s perception of future business. Grondys et al. (2021) noted that, due to the pandemic, the SME sector was hit by increased business risk—especially the risk of default and the inability to pay bondholders. According to the authors, larger entities deal better with risk management, although the size of the entity does not affect the assessment of individual risk intensity. According to Dvorsky et al. (2021), companies are aware of the need for better risk management in the extreme conditions of the crisis and post-crisis period. Corporate governance affects financial performance, as investment efficiency is higher in companies with higher quality of corporate governance. On the other hand, companies with higher risk of financial information disclosure have a lower quality of corporate governance (Tavares et al. 2021). Small and medium-sized enterprises lack planning and risk management standards (Syrová and Špička 2022). While they recognize the importance of risk identification, these companies fail to systematize risk planning and management. The level of risk management implementation increases with the size of the company (Syrová and Špička 2022). Krüger and Meyer (2021) stated that small and medium-sized enterprises tend to plan their risk management only in the short term and neglect the long term.
For Grondys et al. (2021), companies should take steps to plan and prevent or eliminate risks in the event of an economic downturn. According to the explained literature review, the following research hypotheses were formulated:
H1. 
Larger companies present risk management planning, while smaller companies do not.
H2. 
Larger companies have a greater perception of risk management than smaller companies.

2.3. Risk Management Planning

Traditional efforts to improve stakeholder risk management are often undertaken in silos (Xia et al. 2018). Despite this, Xia et al. (2018) proposed integrated risk management planning, intending to create and analyze different alternatives and new ideas to improve the risk management effectiveness of stakeholders. Using a construction industry database, Xia et al. (2018) found four modes of stakeholder engagement: (1) risk management based on stakeholder identification, (2) stakeholder responsibility and skill in the risk management process, (3) management of stakeholder differences in relation to risk and, (4) interrelationship between risk management and its effect on project performance.
Dittfeld et al. (2020) concluded that organizations proactively design their sales and operations planning (S&OP) based on their primary focus of the risk arising from the overall planning environment. So, Dittfeld et al. (2020) understand that the S&OP project allows organizations to proactively carry out risk identification, assessment, treatment, and execution of S&OP; as such, there is a predominant view that planning carried out through scenarios is the only treatment strategy of risk taken into account during the execution of the S&OP.
Kraus et al. (2006) analyzed the impact on the performance of various aspects of strategic planning in SMEs and found that a greater degree of formalization is related to a greater degree of performance and, therefore, the creation of a business. Thus, planning helps to identify risks and opportunities in the market and to take action promptly. Younger companies are more flexible and are led by managers with theoretical knowledge of modern management practices at the risk management level. On the other hand, older companies emphasize traditional management methods, where the concern for risk management is low (Syrová and Špička 2022).
Mihaylov and Zurbruegg (2021) studied succession planning in Australian agribusiness companies, and the results suggest that the use of succession planning is positive and is associated with the use of business plans (i.e., risk management, practices risk management), but that this is true for family businesses with written succession processes. Shen (2018) concluded that when family businesses face succession, diversification can be the solution to lessen family conflicts and preserve the family’s socio-emotional health in the long term. For Mihaylov and Zurbruegg (2021), the adoption of risk management practices is not only sensitive to the type of succession plan, but also, in combination with a formal written plan, associated with superior performance. Gómez-Mejía et al. (2007) concluded that family firms can be both risk-seeking and risk-averse, depending on the context. The authors, using behavioral theory, observed that family firms are willing to take risks to protect their socio-emotional wealth but avoid risky decisions that could exacerbate this risk.
For Norris et al. (2021), in order to add value to the customer, the company must act as a mediator to overcome asymmetric information and different perceptions of value between itself, its suppliers, and its customers. Accordingly, to capture the financial value of the offer, stakeholders in the value chain must create and engage in different profit-sharing mechanisms based on the relative contribution of each to value creation, leading to the creation of profit. The results of the study by Gottardo and Moisello (2017) confirm that family firms have a higher survival probability than non-family firms, due to their greater emphasis on achieving both financial and non-financial goals. Naldi et al. (2007) observed that family firms take risks when engaging in entrepreneurial activities, but they do so to a lesser extent than non-family firms. According to Cressy (2006), risk management planning is more commonly implemented in older companies, primarily due to their possession of more talented human capital.
Mihaylov and Zurbruegg (2021) advised that family SMEs develop formal and written succession plans, as companies with greater acceptance of professional risk management techniques seem less likely to take risks when using succession plans. On the other hand, companies with informal or non-existent succession arrangements may lose some of the benefits of professional performance, even before going through the succession process.
Taking into account what was exposed in the literature review throughout this section, and according to the objectives under study, the following hypotheses were formulated:
H3. 
Older companies attach greater importance to risk management planning than younger companies.
H4. 
Older companies attribute greater importance to risk management than younger companies.
H5. 
There are differences in risk management planning between family and non-family businesses in Portugal.
H6. 
There are differences in risk management between family and non-family businesses in Portugal.

3. Materials and Methods

3.1. Population and Sample

In the present research work, a quantitative methodology was used, based on the application of a questionnaire survey, with the target population being Portuguese companies from different sectors of activity. After eliminating some questionnaires that were not fully completed, the sample was made up of 1647 individual companies.
In data collection, the non-probabilistic method of convenience sampling was used, since the companies were selected for having characteristics that are integrated with the research objectives, for their immediate availability.
The ages of the respondents were between 20 and 82 years old, with an average of approximately 47 years old (SD = 10.52) and a median of 46 years old, which means that 50% of the respondents were 46 years old or younger. Table 1 shows that for 56.2% (n = 925) of the surveyed companies, men answered the questionnaire. Most responses were obtained from the companies’ administrators or managers (55.3%, n = 910). Concerning the size of the organization in terms of the number of employees, 33.1% (n = 545) had less than 10 employees, 50.8% (n = 837) had 10 to 49, 12.6% (n = 207) had 50 to 249, and 3.5% (n = 58) had 250 or more employees. Regarding the sector or area of activity, 26.9% (n = 443) were from the commerce sector, 24.5% (n = 404) from the services sector, 19.4% (n = 320) from the construction sector, 18.6% (n = 306) from the industrial sector, 5.3% (n = 87) from the tourism sector, 3.2% (n = 52) from the transport sector, and 2.1% (n = 35) from the agricultural sector. From the year the companies were founded, a new variable was obtained, consisting of 35.7% (n = 588) companies with less than 15 years in the market, 30.5% (n = 502) companies with 15 to 25 years in the market, and 33.8% (n = 557) with more than 25 years in the market.

3.2. Measuring Instruments

The instrument used in the present investigation consisted of four parts: characterization of the representatives of the companies that answered the questionnaire (age, gender, and function they perform in the company), characterization of the responding companies (number of employees, sector of activity, and year of foundation of the company), perception of risk management planning, and risk management.
To assess the perception of risk management planning, seven items were used, which are described in detail in Table 1. The items used were adapted from the works of Mehrjerdi (2010), Zwikael and Ahn (2011), and Tavares et al. (2021). In order to study the perception of risk management, five items were used, which are described in detail in Table 2, from the works of Van Wyk et al. (2004) and Fraser and Simkins (2016). To measure the items of the perception of risk management planning and perception of risk management, a 5-point Likert agreement scale was used, where 1 = “I totally disagree” and 5 = “I totally agree”.

3.3. Data Collection and Ethical Procedures

From the literature review carried out, a questionnaire was constructed and subjected to a pre-test, to understand whether all of the questions were perceptible. Five individuals who work in a business context in the area of risk management responded to this pre-test. After this phase, the suggestions proposed by the individuals belonging to the pre-test sample were considered. For the construction of the questionnaire, the Google Forms tool was used, which generated a link that was sent to 44,867 Portuguese companies, through their emails, which were obtained from the SABI (System of Analysis of Iberian Balance Sheets) database. Each email sent began by requesting the company’s participation. Then, it contained a short text defining the objectives of the study and guaranteeing the anonymity and confidentiality of the information provided. Finally, the link was presented, allowing access to the questionnaire, and thanks were given in advance for participating in the study. This data collection process took place between October and December 2020.

3.4. Data Analysis Procedures

After obtaining the answers from the representatives of the companies, a database was built, and in the statistical treatment of the data, the software IBM SPSS Statistics 28 was used. In the initial analysis, the existence of missing cases and outliers was verified. After this analysis, descriptive statistics techniques were used to characterize the respondents and their companies.
The sensitivity of the items was assessed using the coefficients of asymmetry (|Sk| ≤ 3) and flatness (|Ku| ≤ 7), according to indications by Kline (2016). To verify the adequacy of the application of exploratory factor analysis (EFA) to the sample under study, the KMO (Kaiser–Meyer–Olkin) sample adequacy index and Bartlett’s test (p < 0.05) of sphericity (Pestana and Gageiro 2014) were used, with KMO values greater than 0.7 revealing reasonable adequacy of the sample. In the EFA, to extract the factors, the principal components method was used (factor loads with values above 0.50 were considered satisfactory), and to check the minimum number of factors to retain, the Kaiser criterion was used (eigenvalues greater than 1). The reliabilities of the factors were evaluated using the calculation of Cronbach‘s alpha, where values greater than 0.7 were considered acceptable (Hair et al. 2014).
Student’s and Welch’s t-tests were used. In the event that two independent samples were to be compared, Student’s t-test was used, and in the event that more than two independent samples were to be compared, ANOVA or Welch’s test was used in case of violation of the assumption of homogeneity of variances (Marôco 2018).

4. Results and Discussion

4.1. Exploratory Factor Analysis

In Table 2, it can be seen that the seven items related to the perception of risk management planning do not show severe violations of normality (|Sk| ≤ 3 and |Ku| ≤ 7 according to Kline (2016)). For these items, Bartlett’s sphericity test and the KMO index (χ2(21) = 4792.05, p < 0.001, KMO = 0.829) showed good suitability of the sample for the application of EFA (Pestana and Gageiro 2014). The one-dimensional variable relating to the perception of risk management planning explains 51.05% of the total variance and has a Cronbach‘s alpha value of 0.82, which is an indicator of good reliability (Hair et al. 2014). Through the analysis of Cronbach’s alphas, if the item is eliminated, it is verified that all items are important for the perception of risk management planning, since if we delete any of the items it does not improve the reliability classification. Having a management plan that includes the relationship with customers, suppliers, and employees (medium and long term), along with an updated safety plan, are the aspects that most manifest themselves in the perception of risk management planning (higher values of loadings). Still, on the items of the perception of risk management planning, in general terms, it can be stated that, on a scale of 1 to 5, the average levels are above 3.5 points, which allows us to observe that Portuguese companies present a very positive perception of risk management planning. It should be noted that companies consider it very important to have an updated security plan (M = 4.26, SD = 0.62) and to have a customer relationship management plan (M = 4.18, SD = 0.61). These results are in line with the findings of Mehrjerdi (2010), Zwikael and Ahn (2011), Tavares et al. (2021).
Table 3 shows that the items related to the perception of risk management do not show severe violations of normality (|Sk| ≤ 3 and |Ku| ≤ 7 according to Kline (2016)). Given the analysis carried out using Bartlett’s sphericity test and the KMO index (χ2 (10) = 2350.02, p < 0.001, KMO = 0.784), the adequacy of the application of the EFA was verified (Pestana and Gageiro 2014). The variable perception of risk management is unidimensional; it explains 54.62% of the total variance, and the Cronbach’s alpha value relative to its five items is 0.78, which is an indicator of adequate reliability (Hair et al. 2014). Cronbach’s alphas, if the item is deleted, show that all items are important for the variable perception of risk management, because if we delete any of the items it does not improve the reliability rating. The risk management perception items, in general terms, show that, on a scale of 1 to 5, the average levels are above 3.5 points, which allows us to observe that Portuguese companies have a very positive perception of risk management. It should be noted that the item “all activities, areas and departments of the company must be considered in risk management” not only registers the highest average level but also manifests itself more (i.e., higher loading value) in risk management. These results are in agreement with the findings of Van Wyk et al. (2004) and Fraser and Simkins (2016).

4.2. Test Hypothesis

In Table 4, we can observe the existence of statistically significant differences in all risk management planning items, and the larger the company, the greater the perception of risk management planning.
By analyzing Table 5, it appears that there are no statistically significant differences (p > 0.05) in any of the risk management items. Item RM4, which refers to the involvement of all company employees in risk management, shows higher average levels of risk management in smaller companies. In the remaining items, the perception of risk management is greater in larger companies.
In short, through the application of Welch’s test, it can be concluded that there are statistically significant differences in risk management planning (F = 16.75, p < 0.001), which empirically supports Hypothesis 1. Through the application of the Games–Howell multiple comparisons test, we found significant differences in risk management planning between the following groups: less than 10 employees and from 50 to 249 employees (p = 0.000 < 0.001), less than 10 employees and more than 250 employees (p = 0.006 < 0.01), from 10 to 49 employees and from 50 to 249 employees (p = 0.000 < 0.001), and from 10 to 49 employees and more than 250 employees (p = 0.019 < 0.05). As can be seen in the graph in Figure 1, the larger the organization, the greater the importance given to risk management planning. Regarding risk management, there is no statistical evidence to affirm the existence of significant differences between the different dimensions of the organization (F = 1.52, p > 0.05), so Hypothesis 2 is not empirically supported. This observation is in line with the findings of Mihaylov and Zurbruegg (2021).
In Table 6, in relation to risk management planning, we can observe the existence of statistically significant differences only in items RMP3 (F = 3.81, p < 0.05) and RMP5 (F = 3.54, p < 0.05). Thus, younger companies (less than 15 years old) and older companies (over 25 years old) show a greater interest in having an up-to-date security plan and in having a supplier relationship management plan compared to middle-aged companies (from 15 to 25 years old).
Regarding risk management, in Table 7, it can be observed that there are only statistically significant differences in item RM3 (F = 4.89, p < 0.05). Younger companies (less than 15 years old) and older companies (over 25 years old) attach greater importance to considering risks as events with a potential positive impact compared to middle-aged companies (from 15 to 25 years old).
In short, the application of Welch’s test showed that there are statistically significant differences in risk management planning (F = 3.82, p < 0.05), which empirically supports Hypothesis 3. Through the application of the Games–Howell multiple comparison test, we found significant differences in risk management planning between the 15–25 and over 25 age groups (p = 0.016 < 0.05). Concerning risk management, there is no statistical evidence to affirm the existence of significant differences between the various age groups of organizations (F = 0.53, p > 0.05), so Hypothesis 4 is not empirically supported. Analyzing the graph in Figure 2, it can be seen that younger companies (less than 15 years old) and older companies (over 25 years old) have higher average levels of perception of risk management planning and management of risk. The results complement the previous studies of Grondys et al. (2021) and Dvorsky et al. (2021).
In Table 8, it can be seen that there were no statistically significant differences in risk management planning between family and non-family businesses (t = 1.87, p > 0.05), so Hypothesis 5 is not empirically supported. However, there are significant differences only in items relative to having an up-to-date security plan (t = 2.24, p < 0.05) when comparing family and non-family businesses, with non-family businesses being the ones that attach greater importance to having an up-to-date security plan. In fact, Mihaylov and Zurbruegg (2021) also found that good risk management practices are associated with a combination of a formal and written plan, which together lead to superior performance.
Table 9 shows that Hypothesis 6 is not empirically supported, as there is not enough statistical evidence to affirm the existence of significant differences in risk management between family and non-family businesses (p > 0.05). However, when comparing family and non-family businesses, in terms of the sample, non-family businesses attached greater importance to all risk management items. These results complement previous studies by Xia et al. (2018), Dittfeld et al. (2020), Norris et al. (2021).

5. Conclusions

This work aimed to study risk management planning and risk management in Portuguese companies. We concluded that having a management plan that includes the relationship with customers, suppliers, and employees (in both the medium and long term), along with an up-to-date security plan, are the aspects that most manifest themselves in the perception of risk management planning.
The items of the perception of risk management planning and risk management, in general terms, demonstrated high average levels (above 3.5 points on a scale of 1 to 5), which allows us to conclude that Portuguese companies present a very positive perception of risk management planning and risk management.
In risk management, all activities, areas, and departments of the company must be considered. It is a risk management item that registers the highest average level, and this is most manifested in risk management.
In relation to risk management planning, there are statistically significant differences, and the larger the organization, the greater the importance given to risk management planning. Concerning risk management, it was concluded that there were no significant differences between the different dimensions of the organization.
There are statistically significant differences in risk management planning between the various age groups of companies, with younger companies (less than 15 years old) and older companies (over 25 years old) presenting higher average levels of perception of risk management and risk management planning. With regard to risk management, there are no significant differences between the different age groups of the companies. When one intends to compare family businesses with non-family businesses, it can be verified that there are no significant differences in risk management planning and risk management.
This is a pioneering work in Portugal, studying risk management planning and risk management in Portuguese companies. It is believed that this study will be useful for companies to know and master the concepts of risk planning and management and their variables for the state, as a creator of public policies, and for society as a whole, as a way of raising awareness of risks and of adopting possible strategies for better risk management and planning.
In future works, it will be interesting to compare risk management between family and non-family businesses, as well as between the different classifications of companies in terms of size, based on the number of employees.

Author Contributions

Conceptualization, F.O.T. and E.S.; methodology, F.O.T., V.C.T., E.S. and V.R.; software, F.O.T., V.C.T. and E.S.; validation, F.O.T.; formal analysis, F.O.T., E.S., V.R. and V.C.T.; investigation, F.O.T., E.S. and V.C.T.; writing—F.O.T., E.S., V.R. and V.C.T.; writing—review and editing, F.O.T., E.S., V.R. and V.C.T. All authors have read and agreed to the published version of the manuscript.

Funding

This research received no external funding.

Informed Consent Statement

Informed consent was obtained from all subjects involved in the study.

Data Availability Statement

Not applicable.

Conflicts of Interest

The authors declare no conflict of interest.

References

  1. Alviniussen, Alf, and Håkan Jankensgard. 2009. Enterprise risk budgeting: Bringing risk management into the financial planning process. Journal of Applied Finance (Formerly Financial Practice and Education) 19: 1–16. [Google Scholar]
  2. Baz, Jamal, and Salomée Ruel. 2021. Can supply chain risk management practices mitigate the disruption impacts on supply chains’ resilience and robustness? Evidence from an empirical survey in a COVID-19 outbreak era. International Journal of Production Economics 233: 107972. [Google Scholar] [CrossRef]
  3. Bhuiyan, Md Borhan, Muhammad Cheema, and Yimei Man. 2021. Risk committee, corporate risk-taking and firm value. Managerial Finance 47: 285–309. [Google Scholar] [CrossRef]
  4. Bogodistov, Yevgen, and Veit Wohlgemuth. 2017. Enterprise risk management: A capability-based perspective. Journal of Risk Finance 18: 234–51. [Google Scholar] [CrossRef]
  5. Cressy, Robert. 2006. Why do most firms die young? Small Business Economics 26: 103–16. [Google Scholar] [CrossRef]
  6. Dey, Prasanta, Ben Clegg, and Walid Cheffi. 2013. Risk management in enterprise resource planning implementation: A new risk assessment framework. Production Planning & Control 24: 1–14. [Google Scholar] [CrossRef] [Green Version]
  7. Dittfeld, Hendryk, Kirstin Scholten, and Dirk Van Donk. 2020. Proactively and reactively managing risks through sales & operations planning. International Journal of Physical Distribution & Logistics Management 51: 566–84. [Google Scholar] [CrossRef]
  8. Dvorsky, Jan, Jaroslav Belas, Beata Gavurova, and Tomas Brabenec. 2021. Business risk management in the context of small and medium-sized enterprises. Economic Research-Ekonomska Istraživanja 34: 1690–708. [Google Scholar] [CrossRef]
  9. Ferri, Luca, Rosanna Spanò, Marco Maffei, and Clelia Fiondella. 2021. How risk perception influences CEOs’ technological decisions: Extending the technology acceptance model to small and medium-sized enterprises’ technology decision makers. European Journal of Innovation Management 24: 777–98. [Google Scholar] [CrossRef]
  10. Fraser, John, and Betty Simkins. 2016. The challenges of and solutions for implementing enterprise risk management. Business Horizons 59: 689–98. [Google Scholar] [CrossRef]
  11. Gómez-Mejía, Luis, Katalin Takács Haynes, Manuel Núñez-Nickel, Kathyrn J. L. Jacobson, and José Moyano-Fuentes. 2007. Socioemotional wealth and business risks in family-controlled firms: Evidence from Spanish olive oil mills. Administrative Science Quarterly 52: 106–37. [Google Scholar] [CrossRef] [Green Version]
  12. Gottardo, Pietro, and Anna Maria Moisello. 2017. Family firms, risk-taking and financial distress. Problems and Perspectives in Management 15: 168–77. [Google Scholar] [CrossRef] [Green Version]
  13. Grondys, Katarzyna, Oliwia Ślusarczyk, Hafezali Iqbal Hussain, and Armenia Androniceanu. 2021. Risk assessment of the SME sector operations during the COVID-19 pandemic. International Journal of Environmental Research and Public Health 18: 4183. [Google Scholar] [CrossRef] [PubMed]
  14. Hair, Joseph, William Black, Barry Babin, and Rolph Anderson. 2014. Multivariate Data Analysis, 7th ed. Pearson: Edinburgh. [Google Scholar]
  15. Hristov, Ivo, Riccardo Camilli, Antonio Chirico, and Alessandro Mechelli. 2022. The integration between enterprise risk management and performance management system: Managerial analysis and conceptual model to support strategic decision-making process. Production Planning & Control 2022: 2140086. [Google Scholar] [CrossRef]
  16. Kalina, Iryna, Viktoriia Khurdei, Vira Shevchuk, Tetiana Vlasiuk, and Ihor Leonidov. 2022. Introduction of a Corporate Security Risk Management System: The Experience of Poland. Journal of Risk and Financial Management 15: 335. [Google Scholar] [CrossRef]
  17. Kline, Rex. 2016. Principles and Practice of Structural Equation Modeling. New York: Guilford Press. [Google Scholar]
  18. Kraus, Sascha, Rainer Harms, and Erich Schwarz. 2006. Strategic planning in smaller enterprises—New empirical findings. Management Research News 29: 334–44. [Google Scholar] [CrossRef]
  19. Krüger, Niël, and Natanya Meyer. 2021. The development of a small and medium-sized business risk management intervention tool. Journal of Risk and Financial Management 14: 310. [Google Scholar] [CrossRef]
  20. Lima, Priscila, Sara Sadaba, and Chiara Verbano. 2021. Successful implementation of project risk management in small and medium enterprises: A cross-case analysis. International Journal of Managing Projects in Business 14: 1023–45. [Google Scholar] [CrossRef]
  21. Louw, Elretha, and Simon Van Wyk. 2011. Disaster Risk Management-planning for resilient and sustainable societies. Civil Engineering = Siviele Ingenieurswese 7: 16–18. [Google Scholar]
  22. Marôco, João. 2018. Análise Estatística com o SPSS Statistics 25, 7th ed. Lisboa: ReportNumber. [Google Scholar]
  23. Mehrjerdi, Yahia. 2010. Enterprise resource planning: Risk and benefit analysis. Business Strategy Series 11: 308–24. [Google Scholar] [CrossRef]
  24. Mihaylov, George, and Ralf Zurbruegg. 2021. The relationship between financial risk management and succession planning in family businesses. International Journal of Managerial Finance 17: 438–54. [Google Scholar] [CrossRef]
  25. Mikes, Anette. 2009. Risk management and calculative cultures. Management Accounting Research 20: 18–40. [Google Scholar] [CrossRef]
  26. Naldi, Lucia, Mattias Nordqvist, Karin Sjöberg, and Johan Wiklund. 2007. Entrepreneurial orientation, risk taking, and performance in family firms. Family Business Review 20: 33–47. [Google Scholar] [CrossRef]
  27. Norris, Simon, Julia Hagenbeck, and Steffan Schaltegger. 2021. Linking sustainable business models and supply chains—Toward an integrated value creation framework. Business Strategy and the Environment 30: 3960–74. [Google Scholar] [CrossRef]
  28. Norrman, Andreas, and Andreas Wieland. 2020. The development of supply chain risk management over time: Revisiting Ericsson. International Journal of Physical Distribution & Logistics Management 50: 641–66. [Google Scholar] [CrossRef]
  29. Pestana, Maria, and João Gageiro. 2014. Análise de Dados em Ciências Sociais—A Complementaridade do SPSS, 6th ed. Lisboa: Sílabo. [Google Scholar]
  30. Santos, Eulália, Margarida Oliveira, Vanessa Ratten, Fernando Tavares, and Vasco Tavares. 2020. A reflection on explanatory factors for COVID-19: A comparative study between countries. Thunderbird International Business Review 63: 285–301. [Google Scholar] [CrossRef]
  31. Santos, Eulália, Vanessa Ratten, Ana Diogo, and Fernando Tavares. 2022. Positive and negative affect during the COVID-19 pandemic quarantine in Portugal. Journal of Science and Technology Policy Management 13: 195–212. [Google Scholar] [CrossRef]
  32. Shen, Na. 2018. Family business, transgenerational succession and diversification strategy: Implication from a dynamic socioemotional wealth model. Cross Cultural & Strategic Management 25: 628–41. [Google Scholar] [CrossRef]
  33. Syrová, Lenka, and Jindřich Špička. 2022. The Impact of Foreign Capital on the Level of ERM Implementation in Czech SMEs. Journal of Risk and Financial Management 15: 83. [Google Scholar] [CrossRef]
  34. Tavares, Fernando, Eulália Santos, Ana Diogo, and Vanessa Ratten. 2020. An analysis of the experiences based on experimental marketing: Pandemic COVID-19 quarantine. World Journal of Entrepreneurship Management and Sustainable Development 16: 327–40. [Google Scholar] [CrossRef]
  35. Tavares, Fernando, Eulália Santos, and Vasco Tavares. 2021. Risk categorization in Portuguese organizations in times of the COVID-19 pandemic—an exploratory statistical analysis. Journal of Entrepreneurship and Public Policy 10: 306–22. [Google Scholar] [CrossRef]
  36. Tavares, Fernando, Luís Pacheco, and Miguel Pires. 2016. Gestão do risco nas PME de Excelência portuguesas. Tourism & Management Studies 12: 135–44. [Google Scholar] [CrossRef]
  37. Van Wyk, Jay, William Dahmer, and Mary Custy. 2004. Risk management and the business environment in South Africa. Long Range Planning 37: 259–76. [Google Scholar] [CrossRef]
  38. Verbano, Chiara, and Karen Venturini. 2013. Managing Risks in SMEs: A Literature Review and Research Agenda. Journal of Technology Management Innovation 8: 186–97. [Google Scholar] [CrossRef]
  39. Wu, Desheng, Shu-Heng Chen, and David Olson. 2014. Business intelligence in risk management: Some recent progresses. Information Sciences 256: 1–7. [Google Scholar] [CrossRef]
  40. Xia, Nini, Patrick Zou, Mark Griffin, Xueqing Wang, and Rui Zhong. 2018. Towards integrating construction risk management and stakeholder management: A systematic literature review and future research agendas. International Journal of Project Management 36: 701–15. [Google Scholar] [CrossRef]
  41. Zwikael, Ofer, and Mark Ahn. 2011. The effectiveness of risk management: An analysis of project risk planning across industries and countries. Risk Analysis: An International Journal 31: 25–37. [Google Scholar] [CrossRef]
Jrfm 16 00314 g001 550
Figure 1. Comparison of risk management planning and risk management in terms of organization size. Source: own elaboration.
Figure 1. Comparison of risk management planning and risk management in terms of organization size. Source: own elaboration.
Jrfm 16 00314 g001
Jrfm 16 00314 g002 550
Figure 2. Comparison of risk management planning and risk management in terms of the age of the organization. Source: own elaboration.
Figure 2. Comparison of risk management planning and risk management in terms of the age of the organization. Source: own elaboration.
Jrfm 16 00314 g002
Table
Table 1. Sample characterization.
Table 1. Sample characterization.
VariableCategoryn%
GenderMen92556.2
Women72243.8
FunctionAdministrator/manager91055.3
Director27116.5
Administrative46628.3
Number of employeesLess than 10 employees54533.1
10 to 49 employees83750.8
50 to 249 employees20712.6
More than 250 employees583.5
Sector or area of activityCommerce44326.9
Services40424.5
Construction32019.4
Industrial30618.6
Tourism875.3
Transport523.2
Agricultural352.1
Year of foundation of the companyLess than 15 years58835.7
15 to 25 years50230.5
More than 25 years55733.8
Table
Table 2. Factor loadings matrix of the perception of risk management planning.
Table 2. Factor loadings matrix of the perception of risk management planning.
LoadingsMSDSkKuCronbach’s Alpha If Item Deleted
RMP1. Having a 5-year strategic plan0.583.750.91−0.600.260.81
RMP2. Having a 1-year operational plan0.614.100.78−1.041.890.80
RMP3. Having an updated security plan0.764.260.62−0.692.020.78
RMP4. Having a management plan for the relationship with clients0.854.180.61−0.531.640.77
RMP5. Having a management plan for the relationship with suppliers0.854.140.63−0.581.760.77
RMP6. Having a management plan for the short-term relationship with the workers0.573.880.88−0.951.050.82
RMP7. Having a management plan for the medium- and long-term relationship with the workers0.724.030.72−0.691.250.79
Source: Own elaboration.
Table
Table 3. Factor loadings matrix of the perception of risk management.
Table 3. Factor loadings matrix of the perception of risk management.
LoadingsMSDSkKuCronbach’s Alpha If Item Deleted
RM1. Risk management contributes to achieving goals and keeping the normal business functioning 0.774.120.65−0.762.160.73
RM2. Risk management should consider risks as events with a potential negative impact 0.724.080.71−0.952.250.75
RM3. Risk management should consider risks as events with a potential positive impact 0.673.910.82−0.981.680.77
RM4. All of the company’s workers and other interested people should be involved in risk management 0.713.900.87−0.941.160.76
RM5. Risk management should consider all of the company’s activities, areas, and departments. 0.824.160.71−0.942.140.71
Source: Own elaboration.
Table
Table 4. Comparative analysis of the risk management planning between companies with different sizes.
Table 4. Comparative analysis of the risk management planning between companies with different sizes.
ItemsLess than 10 WorkersFrom 10 to 49 WorkersFrom 50 to 249 WorkersMore than 250 Workers Welch’s Test
(n = 545)(n = 837)(n = 207)(n = 58)
MSDMSDMSDMSD
RMP13.690.923.690.894.020.894.050.9410.44 ***
RMP24.060.844.060.744.300.684.290.908.32 ***
RMP34.180.644.240.64.500.544.500.6619.15 ***
RMP44.120.644.160.594.350.574.360.649.79 ***
RMP54.090.654.110.614.290.594.360.678.60 ***
RMP63.810.923.890.843.980.924.120.903.26 *
RMP73.960.774.020.704.180.634.240.717.48 ***
Note: *** p < 0.001 and * p < 0.05. Source: own elaboration.
Table
Table 5. Comparative analysis of risk management between companies with different sizes.
Table 5. Comparative analysis of risk management between companies with different sizes.
ItemsLess than 10 WorkersFrom 10 to 49 Workers From 50 to 249 WorkersMore than 250 Workers Welch’s Test
(n = 545)(n = 837)(n = 207)(n = 58)
MSDMSDMSDMSD
RM14.130.674.080.644.180.674.220.622.04
RM24.080.704.060.714.140.734.240.761.70
RM33.900.813.880.814.020.884.030.941.79
RM43.910.863.900.873.900.893.690.941.01
RM54.130.744.150.694.280.724.170.652.26
Source: own elaboration.
Table
Table 6. Comparative analysis of the risk management planning between the companies’ ages.
Table 6. Comparative analysis of the risk management planning between the companies’ ages.
ItemsLess than 15 Years OldBetween 15 and 25 Years OldMore than 25 Years OldWelch’s Test
(n = 588)(n = 502)(n = 557)
MSDMSDMSD
RMP13.770.943.690.883.770.901.25
RMP24.090.784.060.804.140.771.41
RMP34.260.634.210.644.310.583.81 *
RMP44.180.654.130.604.220.592.52
RMP54.130.664.080.634.180.593.54 *
RMP63.860.913.860.863.930.871.25
RMP74.050.743.970.734.060.702.50
Note: * p < 0.05. Source: own elaboration.
Table
Table 7. Comparative analysis of risk management between the companies’ ages.
Table 7. Comparative analysis of risk management between the companies’ ages.
ItemsLess than 15 Years OldBetween 15 and 25 Years OldMore than 25 Years OldWelch’s Test
(n = 588)(n = 502)(n = 557)
MSDMSDMSD
RM14.130.664.110.664.110.640.17
RM24.070.764.080.704.100.670.27
RM33.990.783.830.883.910.814.89 **
RM43.890.873.910.883.900.860.08
RM54.180.714.140.734.160.700.26
Note: ** p < 0.01. Source: own elaboration.
Table
Table 8. Comparative analysis of risk management planning between family and non-family businesses.
Table 8. Comparative analysis of risk management planning between family and non-family businesses.
ItemsCompany Typet-Test
FamilyNon-Family
(n = 1090)(n = 557)
MSDMSD
RMP13.720.923.790.891.30
RMP24.080.794.140.761.57
RMP34.240.624.310.612.24 *
RMP44.160.604.200.641.26
RMP54.130.624.150.650.70
RMP63.870.873.910.910.98
RMP74.010.724.050.731.12
PRMP4.030.504.080.541.87
Note: PRMP—perception of risk management planning, * p < 0.05. Source: own elaboration.
Table
Table 9. Comparative analysis of risk management between family and non-family companies.
Table 9. Comparative analysis of risk management between family and non-family companies.
ItemsCompany Typet-Test
FamilyNon-Family
(n = 1090)(n = 557)
MSDMSD
RM14.110.664.130.630.46
RM24.070.714.10.710.83
RM33.910.843.920.80.13
RM43.890.93.910.810.29
RM54.160.724.170.690.34
PRM4.030.574.040.530.54
Note: PRM—perception of risk management. Source: own elaboration.
Disclaimer/Publisher’s Note: The statements, opinions and data contained in all publications are solely those of the individual author(s) and contributor(s) and not of MDPI and/or the editor(s). MDPI and/or the editor(s) disclaim responsibility for any injury to people or property resulting from any ideas, methods, instructions or products referred to in the content.

Share and Cite

MDPI and ACS Style

Tavares, F.O.; Santos, E.; Tavares, V.C.; Ratten, V. Risk Planning and Management in Portuguese Companies—A Statistical Approach. J. Risk Financial Manag. 2023, 16, 314. https://doi.org/10.3390/jrfm16070314

AMA Style

Tavares FO, Santos E, Tavares VC, Ratten V. Risk Planning and Management in Portuguese Companies—A Statistical Approach. Journal of Risk and Financial Management. 2023; 16(7):314. https://doi.org/10.3390/jrfm16070314

Chicago/Turabian Style

Tavares, Fernando Oliveira, Eulália Santos, Vasco Capela Tavares, and Vanessa Ratten. 2023. "Risk Planning and Management in Portuguese Companies—A Statistical Approach" Journal of Risk and Financial Management 16, no. 7: 314. https://doi.org/10.3390/jrfm16070314

Article Metrics

Back to TopTop