Risk Management of Universities in the Age of Digital Disruption


  • Vichian Puncreobutr Faculty of Education, St Teresa International University, Thailand
  • Budsayarat Puncreobutr The Secondary Educational Service Area Office 2, Bangkok, Thailand


Risks of Universities in the Age of Digital Disruption, Situational Risk Management, Universities of the Future


The initial stages of risk management in universities focus on policy/strategic risk, operational risk, financial risk, and compliance risk. Subsequently, additional focus was put on external risks namely competitive risk, supplier risk, economic/political risk, and regulatory risk. These risks can be managed through 4 basic techniques or 4Ts which are accepting risks (take), reducing or controlling risks (treat), transferring risks (transfer), and avoiding risks (terminate) according to the direction and capacity of each organization. Nevertheless, when universities move into the age of disruption, they will face new risks. These include risks of uncertainty, risks that are hazards, or risks that can turn into opportunities. Hence, universities must respond to risks evolving from situations of volatility, uncertainty, complexity, and ambiguity, or VUCA, to equip themselves to become universities of the future. Management of these new risks requires universities to eliminate uncertainties by creating clarity and employing CLEAR (C: communication, L: limit of detection, E: effective operational, A: awareness, R: readiness), and create opportunities for themselves with SELF (S: skill gap management, E: empathy learning, L: lifelong learning, F: failure learning), and to gain competitive advantages by ACT (A: adherence to rules & academic staff, C: confidence & collaboration, T: target market & time management). Therefore, universities will adapt and manage the current unseen and future risks. As well as navigate away from risks as disruptors, rather than as victims of change and disruption, to grow sustainably amidst the trend of digital disruption.


Anusapa, S. (2019). Risk Management: Leadership Model in 21st Century. Journal of Education Srinakharinwirot University, 16(30): 228-244.

Ayyub, B. M. (2003). Risk Analysis in Engineering and Econiomics. Florida: CRS Press.

Blanchard, B. S. (2004). System Engineering and Management. New Jersey: John Wiley.

Chapman, R. (2006). Simple Tools and Techniques for Enterprise Risk Management. New Jersey: John Wiley & Sons.

Committee of Sponsoring Organization of Treadway Commission. (2013). COSO Internal Control Integrated Framework. Retrieved December 8, 2020 From https://ce.jalisco.gob.mx/sites/ce.jalisco.gob.mx/files/coso_mejoras_al_control_interno.pdf

Ernst & Young, (2008). Global Human Resources (HR) Risk from the Danger Zone to the Value Zone. London. EY, 8(3): 321-342.

HEFCE. (2005). Risk Management in Higher Education: A Guide to Good Practice. Prepared for HEFCE by Pricewaterhouse Coopers. Higher Education Funding Council for England.

Lam, J. (2003). Enterprise Risk Management, from Incentives to Controls. Hoboken, New Jersey: John Wiley & Sons.

Orange Book. (2004). Management of Risk-Principles and Concepts. London: HM Treasury.

Stevens, J. (2005). Managing Risk: The HR Contribution. London: Routledge.

Sum, R. M. & Saad, Z. M. (2017). Risk Management in Universities. 3rd International Conference on Qalb-Guided Leadership in Higher Education Institutions 2017. December 2017. Malaysia: Universiti Sains Malaysia.