Kontekstualna zavisnost primene integrisanog modela mendžmenta rizikom od veličine preduzeća

Abstract

S obzirom na primetan nedostatak prethodnih istraživanja, a da bi se omogućilo organizacijama da upravljaju svojim procesima i povezanim rizicima u odnosu na zaheve svake interne i eksterne zainteresovane strane, predložen je novi integrisani model menadžmenta rizikom, koji obuhvata standarde ISO 9001:2015 za sisteme menadžmenta kvalitetom, ISO 14001:2015 za sisteme upravljanja životnom sredinom, ISO/IEC 27001:2013 za sisteme menadžmenta bezbednošću informacija, ISO 45001:2018 za sisteme menadžmenta bezbednošću i zdravljem na radu i ISO 22000:2018 za sisteme menadžmenta bezbednošću hrane. Novopredloženi model se sastoji iz tri nivoa - korespondencije, koordinacije i integracije i uspostavlja jasan i struktuiran pristup upravljanju organizacionim rizicima. Na uzorku od 30 srpskih kompanija predloženi model je empirijski proveren kako bi se ispitala kontekstualna nezavisnost predloženog modela po pitanju veličine preduzeća primenom Mann-Whitney U*testa i dokazano je da je model primenljiv na kompanije različitih veličina, jer nije bilo razlika između mikro i malih u odnosu na srednja i velika preduzeća. Ograničenje ovog istraživanja je veličina uzorka, pa se preopručuje njegovo proširenje. Preporuka za dalja istraživanja je i detaljija analiza prikupljenih podatka uz primenu sofisticiranijih alata za statističku analizu, kao npr. regresione analize, modeliranja strukturnim jednačinama i slično, a da bi se istražile međusobne veze svih promenljivih u novopredloženom modelu.

Novel integrated risk management model for standardized management systems, such as ISO 9001:2015 for quality management systems, ISO 14001:2015 for environmental management systems, ISO/IEC 27001:2013 for information security management systems, ISO 45001:2018 for occupational health and safety management systems, and ISO 22000:2018 for food safety management systems, has been proposed in order to enable that organizations can manage their processes and associated risks versus requirements of each internal and external stakeholder, due to the fact that those models rarely exist in literature. Proposed model consists of three levels - correspondence, coordination and integration and put in place a clear and structured approach to controlling organizational risks. Using sample of 30 Serbian companies the proposed model has been checked empirically to contextual independence of proposed model using Mann-Whitney U*test and it has been proved that model is context free and applicable to companies different in size since there were no differences between micro & small vs. medium & large companies. Limitation of this research for sure is the sample size, so its extension is recommended. Further recommendation for future research is also a more detailed analysis on collected data done by using more sophisticated statistical analysis tools, such as regression analysis, structural equations modeling and similar to see interrelations between variables in the proposed model.