Quick Take
- Narration: Stephen Bel Davies reads with consistent professional clarity, well suited for technical business content that requires precise delivery without becoming monotonous.
- Themes: Quantitative versus qualitative risk assessment, failure modes of heat maps and ordinal scoring, probability modeling and empirical inputs
- Mood: Rigorous and iconoclastic, a book that takes pleasure in dismantling received wisdom
- Verdict: A genuinely important book for anyone who works with risk professionally, Hubbard makes a compelling case that most standard risk management frameworks are not just imprecise but actively harmful.
I started listening to The Failure of Risk Management on a long drive during which I was trying to mentally assess the risks of a significant professional decision I was about to make. I had been thinking in exactly the kind of ordinal categories, high risk, medium risk, low risk, that Hubbard spends the first third of the book methodically demolishing. By the time I reached the chapter on heat maps, I had pulled over to take notes.
Douglas Hubbard has been making this argument since the first edition of this book, and the second edition, released in 2020 and recorded for this Ascent Audio version, updates the case with new examples from data breaches and natural disasters. The core argument has not changed because the problem has not changed: organizations around the world are making risk decisions using methodologies that Hubbard demonstrates, with real evidence, produce results worse than simple probability-based alternatives.
Our Take on The Failure of Risk Management
The book targets what Hubbard calls pseudoscientific risk methods, ordinal scoring of risks, heat maps, Risk Priority Numbers, and the soft analytical frameworks promoted by standards bodies like PMI and ISO 31000. He is direct about his targets and specific about why each fails. The heat map critique is particularly sharp: assigning qualitative categories like high, medium, and low to probabilities and impacts, then multiplying them, produces outputs that are mathematically meaningless but politically legible. Organizations use them because they communicate easily, not because they improve decisions.
What distinguishes this book from most critiques of bad management practice is that Hubbard offers concrete alternatives. He draws on actuarial methods, military operations research, and the broader literature on probability and measurement to propose approaches that actually reduce uncertainty rather than creating the illusion of having done so. One reviewer who has spent decades in risk management called it required reading for anyone in the field, and created a team book club around its chapters.
Why Listen to The Failure of Risk Management
Stephen Bel Davies narrates with the kind of clear, steady professionalism that technical business content requires. He does not make Hubbard’s arguments more dramatic than they are, but he reads the case studies and mathematical reasoning with enough variation in pace and emphasis that thirteen and a half hours does not feel like a lecture. For a book this dense with quantitative argument, the narration does its job.
The runtime is appropriate to the content. Hubbard is thorough, and thoroughness is exactly what this argument requires. Critics of conventional risk management often make the same points more briefly; Hubbard’s value is in the documentation, the research citations, the case studies, the worked examples of better methods. Listeners who want the argument without the evidence can read a summary; listeners who want to actually change how they work will benefit from the full version.
What to Watch For in The Failure of Risk Management
The book requires comfort with probabilistic thinking. Hubbard is not writing for a general business audience; he is writing for risk professionals who already know the methods he is critiquing. Concepts like calibrated probability estimation, Monte Carlo simulation, and Bayesian updating appear throughout, and while Hubbard explains them clearly, they are not simplified for readers unfamiliar with quantitative analysis.
Hubbard is also a skilled writer who is genuinely contemptuous of frameworks he considers intellectually dishonest. That contempt is usually deployed with evidence, not merely asserted, but the confidence level is high throughout. Listeners who find the established frameworks useful in their professional contexts may feel the critique is overstated, though the reviews trend heavily toward endorsement.
Who Should Listen to The Failure of Risk Management
Risk managers, project managers, compliance professionals, and finance executives who work with risk assessment frameworks will find this the most immediately useful. Hubbard’s targets, ISO 31000, PMI risk frameworks, heat maps, Risk Priority Numbers, are everyday tools in these fields, and his critique is directly actionable for practitioners who want to improve their organizations’ risk decision quality. General business readers interested in measurement and decision-making will find it rigorous but accessible. Those without quantitative background who want a lighter treatment of risk psychology should start with something like Annie Duke’s Thinking in Bets before coming here.
Frequently Asked Questions
Is The Failure of Risk Management relevant if I use enterprise risk management frameworks like ISO 31000 or COSO?
Directly relevant, these are among Hubbard’s primary targets. He argues that their qualitative scoring approaches create the appearance of rigor without the substance, and that organizations relying on them are making worse decisions than they would with simple probability-based methods. If you work within these frameworks, this book will be challenging and worth reading.
Does Hubbard offer practical alternatives, or is the book primarily critical?
Both. The first half diagnoses the failure modes of conventional risk methods with evidence and case studies. The second half offers concrete alternatives grounded in probability modeling, calibrated estimation, and empirical data inputs. The book argues for a replacement, not just tears down the existing frameworks.
How does this audiobook compare to Hubbard’s other work, like How to Measure Anything?
The books are complementary. How to Measure Anything argues that seemingly intangible things can be quantified with appropriate methods. The Failure of Risk Management applies that argument to organizational risk and shows where current practices fail to do what measurement properly requires. Many professionals find reading both together provides the most complete picture of Hubbard’s approach.
Is the second edition significantly different from the first, and does the audiobook reflect the updated content?
The second edition includes expanded coverage of newer risk events, data breaches, natural disasters, and updated statistical methods. The Ascent Audio 2020 recording reflects this updated edition. Listeners who read the first edition in print will find new material here, particularly in the case study sections.
