I think I may understand why we’re slightly talking past each other on this.

I’ve certainly worked in organizations that continued processes out of sheer inertia of “this is the way we’ve always done it.” While someone may have inherited a process and continued using it without understanding why, if you reach back to the initiator they will have a risk they were trying to mitigate. Even if their predecessors are oblivious. Again, I would chalk this up to a failure of leadership to explain the “why” when passing it off rather than a failure of process.

Even in instances where people copy processes just because they are emulating a different org, that original organization had a risk they were mitigating. Blindly following suit like an automaton says more about the person pushing it than the validity of the original intent.

A process can certainly outgrow its intent. If I am prescribed medicine and blindly continue taking that medicine after I’m well, it doesn’t mean the there was no original, valid intent. The risk profile changed; the process did not update keep inline with that changed risk profile.

I've worked with many organisations that had processes, that placed a lot of value on process. At most one of them would have described their processes as being about risk mitigation. For all I know it may be true, as a kind of etymological curiosity, that the concept of process originated as a means of originating risk, but that's certainly not a useful perspective for understanding how and why most organisations that adopt processes today do so.