Policy Number: 040 Risk Management August 2018
|
|
- Quentin Paul
- 5 years ago
- Views:
Transcription
1 Policy Number: 040 Risk Management August 2018
2 Policy Details 1. Owner Manager, Business Services 2. Compliance is required by Staff, contractors and volunteers 3. Approved by The Commissioner 4. Date created February Date of this review August Next review due July Driver NSW Treasury Internal Audit and Risk Management Policy for the NSW Public Sector (TPP 15-03) 8. References NSW Treasury Internal Audit and Risk Management Policy for the NSW Public Sector (TPP 15-03) NSW Treasury Risk Management Toolkit for NSW Public Sector Agencies ISO 31000:2009 Risk Management Principles and Guidelines 9. Contact Officer/Maintained by Corporate Governance Officer who monitors changes to legislation, policies and procedures and recommends any amendment to the Risk Management Policy 10. Search terms Risk, likelihood, consequence 11. Compliance assurance method By incident monitoring 12. Policy Document location TD14/482 Policy The Mental Health Commission of NSW complies with the NSW Treasury Internal Audit and Risk Management Policy for the NSW Public Sector ( TPP ). TPP sets out principles and core requirements to guide agencies in the fulfilment of their legislative obligation under section 11 of the Public Finance and Audit Act 1983, that is, that an agency establish and maintain an effective internal audit function. Principle 1 of TPP relates to risk management: The agency has a risk management framework in place that supports the agency to achieve its objectives by systematically identifying and managing risks to: Increase the likelihood and impact of positive events Mitigate the likelihood and impact of negative events Core Requirements 1.1 and 1.2 stem from this principle: Core Requirement 1.1 The Commissioner is ultimately responsible and accountable for risk management in the agency. Core Requirement 1.2 A risk management framework that is appropriate to the agency has been established and maintained and the framework is consistent with AS / NZS ISO 31000:2009. Staff, contractors and volunteers at the Commission must comply with the policy and procedures. The Commission has established a risk management framework to assist the management of its fiscal, environmental and social responsibilities and the successful delivery of its results and services and obligations under the NSW State Plan and its enabling legislation.
3 The Commission has developed a risk management framework and operational model to provide for effective and consistent risk management across the whole organisation. It includes a risk register that is used to record, rate, monitor and report risk and risks are managed and escalated using structured processes at all business unit levels. The Commission also has an established process for monitoring and reviewing risk control and governance systems. Risk Management Framework The framework and operational model establishes risk management as an integral part of the Commission s management to achieve organisational objectives and complies with the international standard AS/NZS ISO 31000:2009. Purpose The Commission has developed a framework and process to provide for effective and consistent risk management across the whole organisation. Pursuant to AS/NZS ISO 31000:2009, the framework provides for a structured, consistent and continuous process across the whole organisation for identifying, assessing and deciding on responses to and reporting on opportunities and threats that affect the achievement of objectives. Specifically, the framework: Assists in strategic decision making by providing a basis for identifying and controlling factors which may impact on the achievement of organisational objectives; Enhances the safety of staff, members of public and clients involved in the work of the Commission; Provides a basis for responsible risk taking to enable and encourage innovation; Provides assurance that organisational objectives will be achieved within an acceptable degree of risk; Provides a basis for demonstrating due diligence in the event of adverse outcomes. Risk Management at the Commission Under AS/NZS ISO 31000:2009, risk is defined as the effect of uncertainty on objectives. The framework and operational model divides risk into 2 major categories of strategic risk and operational risk. Strategic risks are those risks associated with poor business decisions or external influences that are beyond the control of the Commission s Management and may include: Changes in the government disposition to the Commission s objectives Implementation of a major business initiative with significant financial impacts Sustained economic downturn. Operational risks are those risks associated with inadequate or failed internal processes, people or systems, or from external events. Operational risks include those risks associated with individual projects and activities undertaken by the Commission. Examples of operational risks are: Internal Fraud - misappropriation of assets, bribery External Fraud- theft of information, hacking of IT systems and electronic data, theft and forgery Employment Practices and Workplace Safety - discrimination, workers compensation, employee health and safety Clients, Products, & Business Practice - market manipulation, improper trade, product and service defects, fiduciary breaches Damage to Physical Assets - natural disasters, vandalism, terrorism, accident
4 Business Disruption and Systems Failures - utility disruptions, software failures, hardware failures Execution, Delivery and Process Management - data entry errors, accounting errors, failed mandatory reporting. AS/NZS ISO 31000:2009 provides a generic process (fig.1) for managing risk within an organisation. The framework and operational model complies with this process. Figure 1: Commission s Risk Management Process Establish the Context Risk Identification Risk Analysis Communication and Consultation Risk Evaluation Monitoring and Review Risk Treatment The Commission establishes the corporate risk appetite by setting the risk boundaries, ratings and reporting requirements under the framework (tables 1-4).
5 Risk Management Framework The risk categories under the framework identify the context within which the Commission manages risk and accounts for both internal and external factors affecting the ability of the Commission to deliver on its corporate objectives. Preliminary risk categories under the framework include: Financial and Economic Health and Safety Reputation Political Environment Compliance. AS/NZS ISO 31000:2009 provides for risks to be analysed and scaled according to likelihood and consequence. The framework provides boundaries defining the likelihood and consequence of risk as follows. Table 1: Likelihood of risk definitions Rating Almost Certain Likely Possible Unlikely Rare Likelihood of Occurrence (Qualitative) Occurs regularly; expected to occur in most circumstances Will probably occur May occur at some time Doubtful that it will occur May occur only in exceptional circumstances Likelihood of Occurrence (Quantitative) The risk may occur several times over a short period, say 6 months The risk may occur once or twice a year The risk may occur once in a period of several years The risk which is yet to occur but could occur over time The risk that is relatively unknown and has not been experienced to date
6 Table 2: Consequence of risk definitions Consequence Risk: Insignificant Minor Moderate Major Significant Financial and Economic (including assets) Impact on budget insignificant and managed within discretionary limits of single business portfolio Less than $1k Impact on budget is managed within discretionary limits of single business portfolio unit budget less than$10k Impacts budget at Division level Significant impact on organisational contingency between $10K-$50K Impact exceeds MHC s contingency capacity Additional funding necessary over $50K Impact exceeds MHC s contingency capacity. Additional funding necessary over $100k Insignificant loss/damage to assets- no redirection of existing budget required. Loss/damage to assets may require redirection of existing budget Loss /damage to significant items of critical plant & equipment requiring coordinated project and significant redirection of budget to restore Major loss/damage to an item of plant & equipment that is restorable at a cost of $25k plus Major loss/damage to an item of plant & equipment that is not restorable and is required to be replaced at a cost of over $50k. Health and Safety Minor injury requiring first aid and no lost time Minor Injury requiring medical treatment No lost time, but minor temporary incapacity Temporary incapacity or lost-time injury Hospitalization Short-term absence Permanent incapacity and long term absence Permanent incapacity and long term absence, with possibility of no return to work Reputation User complaints direct to MHC either by phone, in writing or person. Can be dealt with by Team management. Possible minor local media attention, resulting in some MHC embarrassment, requiring attention by Director, Strategic Operations and Communications. Widespread user complaints and Adverse Media attention requiring attention by Director, Strategic Operations and Communications and or Deputy Commissioner. Sustained demonstration of user concern and Sustained national adverse media coverage, requiring attention by Commissioner Sustained demonstration of user and media concerns resulting in Ministerial embarrassment and possible loss of political support. Requiring attention by Commissioner Environmental Brief impact resulting in minor diversion of resources for less than 1 day. Brief impact resulting in minor diversion of resources for more than 1 day. Short-term impact resulting in diversion of resources for more than 3 days and affects other business activities Sustained impact Resulting in diversion of resources from other business activities for more than 5 days Significant impact resulting in diversion of resources from other business activities for more than 10 days. Compliance Non-compliance rectified with immediate management intervention. Non-compliance readily rectified with Management intervention and notifying the regulatory agency and addressed by management Non-compliance resulting in a notification from the regulatory agency and addressed by management Non-compliance resulting in penalty or prosecution or restriction order and addressed by the Chief Audit Executive. Significant non compliance resulting in a Ministerial warning and possible mention in Parliament requiring intervention by the Commissioner.
7 The framework derives risk ratings from likelihood and consequence as follows. Table 3: Risk ratings Mental Health Commission of New South Wales Rating Insignificant Minor Moderate Major Significant Almost Certain Medium Medium High Extreme Extreme Likely Low Medium High High Extreme Possible Low Low Medium High Extreme Unlikely Low Low Medium Medium High Rare Low Low Low Medium High The framework provides for risk reporting and action as follows. Table 4: Risk reporting and actions Risk Rating Consequence of Occurrence Action Reporting Loss of ability to sustain ongoing operations. An event Significant that would cause operations to be substantially disrupted resulting in severe impact upon public image and reputation. Immediate Commissioner Significantly reduced ability to achieve corporate Director, Major objectives, impacting our overall business operations, e.g. short term loss of service Engagement & Operations Moderate Minor Insignificant Disruption to normal operations with a moderate effect on the achievement of objectives, e.g. temporary loss of service and/or processing capability. Limited impact on the achievement of objectives No impact on the achievement of objectives readily resolvable by management with no consequences to the business Manager, Business Services Manager, Business Services Manager, Business Services
8 Risk Register The Commission has developed a centralised, electronic risk database which acts as a central register and repository for specific risk management data. The Risk Register permits timely reporting of risk exposure to inform management action. The Risk Register identifies the Commission s strategic and operational risks, ascribes an internal owner to each risk, describes the existing controls that are in place to manage the risk and assigns a risk rating based upon the likelihood and consequence of the risk occurring. Proposed risk mitigation strategies for each risk are also described with the outcomes of these control strategies then creating a target risk rating (that is, the residual risk after proposed control strategies are implemented). The Commission s Risk Register can be accessed via Trim Reference TF14/46. Operational Model The risk management model for the Commission is at Figure 2 and takes account of the physically dispersed nature of the Commission s operations and aligns with the current organisational structure. The model integrates risk management with the Commission s management structure and establishes risk management as a structured, consistent and continuous process across the whole organisation in compliance with AS/NZS ISO 31000:2009. Under the model, strategic risk is managed by the Director, Engagement and Operations who is the Chief Audit Executive and a report on strategic risks is made on a quarterly basis to the Audit & Risk Committee. Operational Risk is managed by the Manager, Business Services and a report on operational risks is made on a quarterly basis to the Audit & Risk Committee. Roles and Responsibilities The Commission s staff, contractors and volunteers will: Manage risks that is, identify, assess and treat risks, in the course of their work Promptly report any existing or potential risk to their manager Managers will: Foster an environment that promotes risk management as part of everyday decision making. Ensure staff have an awareness of internal controls and are accountable for managing risk in their roles Assess known risks using the risk framework and escalate responsibility as appropriate Manage project risks in a way that is consistent with, and linked to the Risk Management Framework Identify uncertainties that will affect the achievement of Commission objectives Establish policies, operating and performance standards, budgets, plans, systems and procedures to address identified risks and reduce them to an acceptable or tolerable level Monitor the effectiveness of controls Undertake self-assessments (where directed) to certify the effectiveness of controls addressing risks for which they are responsible. Manager, Business Services will: Report on operational risks on a quarterly basis to the Audit and Risk Committee Act as the primary champion for risk management at the operational level Prepare the Commission s attestation for compliance with the NSW Treasury Internal Audit and Risk Management Policy for the NSW Government Sector Maintain the Commission s Risk Management Framework and Risk Register Monitor compliance with risk management policy and procedures.
9 Director, Engagement and Operations / Chief Audit Executive will: Report on strategic risks on a quarterly basis to the Audit and Risk Committee Act as the primary champion for risk management at the strategic level Review the Commission s approach and activities with regard to risk management Review recommendations from the Audit and Risk Committee and ensure they are implemented Ensure risk management planning is part of the strategic, operational and annual business planning activities of the Commission Review risk treatment plans and risk management reports, including the Risk Register. Commissioner will: Have ultimate responsibility and accountability for risk management in the Commission. Ensure that a risk management framework that is appropriate to the Commission and consistent with ISO 31000:2009 is established and maintained within the Commission Formally attest to NSW Treasury compliance with NSW Treasury Internal Audit and Risk Management Policy for the NSW Government Sector and publish the attestation in the Annual Report. Determine and articulate the level of risk the Commission is willing to accept or tolerate. Approve, monitor and communicate the Commission s Risk Management Policy and Plans. Promote and communicate a positive risk culture Ensure that managers and decision makers in the Commission understand that they are accountable for managing risk within their sphere of authority and in relation to the decisions they take. Further Guidance and Resources The NSW Treasury Risk Management Toolkit for the NSW Public Sector provides a range of tools to support agencies to develop and implement their risk management framework and processes. The Toolkit provides detailed and practical advice on the various elements of ISO 31000, templates and some worked examples based on a hypothetical agency. It can be accessed via the following website:
10 66
Risk Management Framework. Metallica Minerals Ltd
Risk Management Framework Metallica Minerals Ltd Risk Management Framework 23 March 2012 Table of Contents Contents 1. Introduction... 3 2. Risk Management Approach... 3 3. Roles and Responsibilities...
More informationRisk Management Policy. September 2015
Risk Management Policy September 2015 Contents Policy Statement... 3 AA s Commitment to Risk Management... 3 Risk Management Principles... 4 Governance Framework... 6 Roles and Responsibilities... 7 Board...
More informationKidsafe NSW Risk Management Plan. August 2014
Kidsafe NSW Risk Management Plan August 2014 Document Control Document Approval Name & Position Signature Date Document Version Control Version Status Date Prepared By Comments Document Reviewers Name
More informationRISK MANAGEMENT FRAMEWORK
Risk Management Framework RISK MANAGEMENT FRAMEWORK Purpose This Risk Management Framework introduces St. Michael s College s approach to risk management. It includes a definition of risk, a summary of
More informationRisk Management Framework
Risk Management Framework Anglican Church, Diocese of Perth November 2015 Final ( Table of Contents Introduction... 1 Risk Management Policy... 2 Purpose... 2 Policy... 2 Definitions (from AS/NZS ISO 31000:2009)...
More informationNZ Transport Agency Page 1 of 23
NZ Transport Agency Page 1 of 23 NZ Transport Agency Page 2 of 23 NZ Transport Agency Page 3 of 23 f) NZ Transport Agency Page 4 of 23 NZ Transport Agency Page 5 of 23 NZ Transport Agency Page 6 of 23
More informationAn Update On Association Policies, Health Checks & Guidelines To A Safer Hockey Association. Lauren Woods Member Engagement & Operations
An Update On Association Policies, Health Checks & Guidelines To A Safer Hockey Association Lauren Woods Member Engagement & Operations Association Health Checks Issues arising from the health check: 3/27
More informationRisk management procedures
Purpose and scope In accordance with the BizOps Enterprises risk management policy, these procedures describe the organisation s standard process for risk management, including: 1. Risk identification
More informationPolicy Number: 023 Conflict of Interest and Gifts and Benefits June 2014
Policy Number: 023 Conflict of Interest and Gifts and Benefits June 2014 TRIM ID: TD15/1924 Policy Details 1. Owner Manager, Business Operations 2. Compliance is required by All staff, contractors and
More informationPerpetual s Risk Management Framework
Perpetual s Risk Management Framework Perpetual s Risk Management Framework Context Perpetual Limited (Perpetual) is a diversified financial services firm, listed on the Australian Securities Exchange.
More informationRisk Management Policy and Framework
Risk Management Policy and Framework Risk Management Policy Statement ALS recognises that the effective management of risks is a fundamental component of good corporate governance and is vital for the
More informationApproved by: Diocesan Council 17 December 2015
DIOCESAN COUNCIL POLICY 39 Risk Management Approved by: Diocesan Council 17 December 2015 1 PREAMBLE The Perth Diocesan Trustees under the authority of the Diocesan Trustees Statute 1952 have the responsibility
More informationRisk Management Policies and Procedures
Risk Management Policies and Procedures As at May 5 2017 Masters Swimming Australia ABN 24 694 633 156 Level 2, Sports House, 375 Albert Road, Albert Park 3206 t: (03) 9682 5666 e: gm@mastersswimming.org.au
More informationHSC Business Services Organisation Board
Paper BSO 25/2009 HSC Business Services Organisation Board Risk Management 1. Purpose of this report The purpose of this report is to brief the Board on the BSO Risk Management process. 2. Background HSC
More informationHAZARD MANAGEMENT POLICY Page 1 of 7 Reviewed: October 2018
Page 1 of 7 Policy Applies to: The Board of Directors, staff employed by Mercy Hospital, Credentialed Specialists, Allied Health Professionals, contractors, students, volunteers and visitors. Related Standards:
More informationAn Introductory Presentation for ECU Staff
Risk Management at ECU An Introductory Presentation for ECU Staff Phillip Draber Manager, Risk and Assurance Outcomes By the end of this session you should: Be able to complete and document risk management
More informationRisk Management Policy
Risk Management Policy Version: 3 Board Endorsement: 11 January 2014 Last Review Date: 3 January 2014 Next Review Date: July 2014 Risk Management Policy 1 Table of Contents 1 Introduction... 3 2 Overview...
More informationRISK MANAGEMENT POLICY AND STRATEGY
1 RISK MANAGEMENT POLICY AND STRATEGY Version No: Reason for Update Date of Update Updated By 1 Review Timeframe September 2014 2 Review June 2017 Governance Manager Governance Manager 3 4 5 6 7 8 Introduction
More informationNagement. Revenue Scotland. Risk Management Framework. Revised [ ]February Table of Contents Nagement... 0
Nagement Revenue Scotland Risk Management Framework Revised [ ]February 2016 Table of Contents Nagement... 0 1. Introduction... 2 1.2 Overview of risk management... 2 2. Policy Statement... 3 3. Risk Management
More informationTopic RISK MANAGEMENT Procedure Category Risk Management Updated 07/2011
Topic RISK MANAGEMENT Procedure 07.01 Category Risk Management Updated 07/2011 RELATED POLICIES, PROCEDURES AND FORMS Policies Procedures Forms Risk Management Policy Code of Conduct Public Interest Disclosure
More informationIntegrated Risk Management Framework Sept Page 1 of 17
Integrated Risk Management Framework 2017-2018 Sept 2017 Page 1 of 17 Reference: Title: Author/Nominated Lead: Approval Date: Approving Committee: Review Date: Target Audience: Circulation List: Cross
More informationRisk Management. Policy No. 14. Document uncontrolled when printed DOCUMENT CONTROL. SSAA Vic
Document uncontrolled when printed Policy No. 14 Risk Management DOCUMENT CONTROL Version: Date approved by Board: On behalf of Board: Jack Wegman 17 March 2015 26 March 2015 Denis Moroney President Next
More informationRisk Management Framework. Group Risk Management Version 2
Group Risk Management Version 2 RISK MANAGEMENT FRAMEWORK Purpose The purpose of this document is to summarise the framework which Service Stream adopts to manage risk throughout the Group. Overview The
More informationMEMORANDUM. To: From: Metrolinx Board of Directors Robert Siddall Chief Financial Officer Date: September 14, 2017 ERM Policy and Framework
MEMORANDUM To: From: Metrolinx Board of Directors Robert Siddall Chief Financial Officer Date: September 14, 2017 Re: ERM Policy and Framework Executive Summary Attached are the draft Enterprise Risk Management
More informationRisky Business. Jaidev Iyer Operational Risk Expert, CEO J-Risk Advisors
Risky Business Jaidev Iyer Operational Risk Expert, CEO J-Risk Advisors Speaker Information Jaidev Iyer Enterprise & Operational Risk Expert J-Risk Advisors Jaidev Iyer is a veteran of Citigroup, where
More informationProcedure: Risk management
Procedure: Risk management Purpose To outline the procedures involved for identification, assessment and management of risks. Procedure Introduction 1. This procedure outlines the University s Risk Awareness
More informationRisk Management Strategy January NHS Education for Scotland RISK MANAGEMENT STRATEGY
NHS Education for Scotland RISK MANAGEMENT STRATEGY January 2016 1 Contents 1. NES STATEMENT ON RISK MANAGEMENT 2 RISK MANAGEMENT STRATEGY 3 RISK MANAGEMENT STRUCTURES 4 RISK MANAGEMENT PROCESSES 5 RISK
More informationRISK MANAGEMENT GUIDELINES
RISK MANAGEMENT GUIDELINES Purpose of Guidelines These guidelines outline the way South West Healthcare operates its Risk Management Program and are to assist the organisation, its divisions, departments
More informationRisk Management Policy
Risk Management Policy May 2018 Contents 1.0 Purpose... 3 2.0 Scope... 3 3.0 Risk appetite... 3 4.0 Risk management process... 4 5.0 Measuring success... 7 6.0 Review of policy... 7 Appendix A Definitions
More informationGOV : Enterprise Risk Management Policy
Name: Responsibility: Complements: Enterprise Risk Management Framework Coordinator, Enterprise Risk Management GOV-080-005: Enterprise Risk Management Policy Draft Date: November 2006; January 2012 Revised
More informationRisk Management Policy and Procedures.
Risk Management Policy and Procedures. Rev Date Purpose of Issue/Description of Change Date 1. June 2006 Initial Issue 2. November 2009 Revised and updated 6 th November 2009 3. September 2010 Revised
More informationRISK MANAGEMENT FRAMEWORK
RISK MANAGEMENT FRAMEWORK 1. INTRODUCTION (Company) acknowledges that risk is inherent in its business. The Company s risk management framework is an important tool to guide the organisation towards achieving
More informationRISK MANAGEMENT POLICY October 2015
RISK MANAGEMENT POLICY October 2015 1. INTRODUCTION 1.1 The primary objective of risk management is to ensure that the risks facing the business are appropriately managed. 1.2 Paringa Resources Limited
More informationRISK AND OPPORTUNITY ASSESSMENT GUIDE RISK CRITERIA
RISK AND OPPORTUNITY ASSESSMENT GUIDE RISK ASSESSMENT GUIDE TABLE OF CONTENTS 1. PURPOSE... 3 2. SCOPE... 3 3. RELATED DOCUMENTS... 3 4. PROCEDURE... 3 5. RISK MANAGEMENT PROCESS... 3 6. STEP 1 RISK ANALYSIS...
More informationSteps to join the Managing Operational Risk Webinar for computers and laptops
Steps to join the Managing Operational Risk Webinar for computers and laptops Step 1. Shortly before the day and time of the webinar, visit the Web Conferencing web address www.redbackconferencing.com.au
More informationRISK MANAGEMENT FRAMEWORK OVERVIEW
Perpetual Limited RISK MANAGEMENT FRAMEWORK OVERVIEW September 2017 Classification: Public Page 1 of 6 COMMITMENT TO RISK MANAGEMENT As a publicly listed company and provider of financial products and
More informationContents INTRODUCTION...4 THE STEPS IN MANAGING RISKS ESTABLISH GOALS AND CONTEXT IDENTIFY THE RISKS...8
Contents INTRODUCTION...4 THE STEPS IN MANAGING RISKS...4 1. ESTABLISH GOALS AND CONTEXT...5 2. IDENTIFY THE RISKS...8 Identifying the risks... 8 Identify the sources of the risks... 8 Identify the impact
More informationTONGA NATIONAL QUALIFICATIONS AND ACCREDITATION BOARD
TONGA NATIONAL QUALIFICATIONS AND ACCREDITATION BOARD RISK MANAGEMENT FRAMEWORK 2017 Overview Tonga National Qualifications and Accreditation Board (TNQAB) was established in 2004, after the Tonga National
More informationRISK MANAGEMENT FRAMEWORK
RISK MANAGEMENT FRAMEWORK 1 RISK MANAGEMENT FRAMEWORK... 1 INTRODUCTION... 3 AN EFFECTIVE ENTERPRISE RISK MANAGEMENT SYSTEM... 4 Guiding Principles... 4 RISK GOVERNANCE... 5 Mandate and Commitment... 5
More informationRisk Management Policy Adopted by:
Risk Management Policy Adopted by: Infigen Energy Limited Infigen Energy (Bermuda) Limited Infigen Energy RE Limited in its capacity as Responsible Entity of Infigen Energy Trust Adopted: 17 December 2009
More informationRisk Management Framework
Risk Management Framework Risk Management Framework 1. The University views Risk Management as integral to the successful execution of its Strategy. In order to achieve the aims set out in our strategy,
More informationNagement. Revenue Scotland. Risk Management Framework
Nagement Revenue Scotland Risk Management Framework Table of Contents 1. Introduction... 2 1.2 Overview of risk management... 2 2. Policy statement... 3 3. Risk management approach... 4 3.1 Risk management
More informationJCU Risk Management Framework and Plan
JCU Risk Management Framework and Plan Document Contact: Chief of Staff Approved by Council (5/17) 07 September 2017 1. RISK MANAGEMENT FRAMEWORK... 3 1.1 General... 3 1.2 What is Risk?... 3 1.3 Why Should
More informationRISK AND BUSINESS CONTINUITY MANAGEMENT
RISK AND BUSINESS CONTINUITY MANAGEMENT EFFECTIVE: 18 MAY 2010 VERSION: 1.4 FINAL Last updated date: 29 September 2015 Uncontrolled when printed 2 Effective: 18 May 2010 CONTENTS 1 POLICY STATEMENT...
More informationPractical aspects of determining and applying a risk appetite for SMEs
Practical aspects of determining and applying a risk appetite for SMEs By Tim Timchur acis, Director, ActivePro Consulting Pty Ltd Important to determine appetite for risk before determining what risk
More informationUniversity of the Sunshine Coast (USC) Risk Appetite Statement
Vision and strategic goals University of the Sunshine Coast (USC) Risk Appetite Statement The University of the Sunshine Coast will be a university of international standing, a driver of capacity building
More informationRISK REGISTER POLICY AND PROCEDURE
RISK REGISTER POLICY AND PROCEDURE Lead Manager: Head of Clinical Governance Responsible Director: Board Medical Director Approved by: Date Approved: Date for Review: Feb 2012 Replaces Version: 1.0 Page
More informationVersion: th November 2010 RISK MANAGEMENT POLICY
Version: 1.2-25th November 2010 RISK MANAGEMENT POLICY Document History Document Location To be completed. Revision History Date of this revision: 17/09/2010 Date of next revision: N/A Revision Number
More informationRisk Management at the Deutsche Bundesbank March 2011
Risk Management at the Deutsche Bundesbank March 2011 (C) Deutsche Bundesbank - Division Organisation 1 Agenda Definition of risk management [3] Factors of influence to review the RM set up [4] The Framework
More informationEnterprise Risk Management Program
Enterprise Risk Management Program David W Sundvall, Risk Manager 3/2/2016 Page 0 of 12 Table of Contents Introduction... 2 Approach... 2 Risk Appetite... 3 Roles and Responsibilities... 3 Process... 4
More informationTHE BERMUDA MONETARY AUTHORITY BANKS AND DEPOSIT COMPANIES ACT 1999: The Management of Operational Risk
THE BERMUDA MONETARY AUTHORITY BANKS AND DEPOSIT COMPANIES ACT 1999: The Management of Operational Risk May 2007 Introduction 1 This paper sets out the policy of the Bermuda Monetary Authority ( the Authority
More informationRISK MANAGEMENT FRAMEWORK
RISK MANAGEMENT FRAMEWORK Approving authority Approval date University Council 5 August 2013 (3/2013 meeting) Advisor Vice President (Corporate Services) vpcorporateservices@griffith.edu.au (07) 373 57343
More informationUnderstanding Enterprise Risk Management: An Overview
Understanding Enterprise Risk Management: An Overview 05/2016 What is Risk? An uncertain event It exists in the future Has a cause and effect Impacts objectives Its effect may be positive and/or negative
More informationRisk. Protocol for the Management of Risk
Risk Protocol for the Management of Risk Instr No Contact Brian Orpin Version 4.0 Email brian.orpin@nhs.net Issue Date 27/04/2015 Telephone 0131 314 5360 Review Date 27/04/2016 Status Issued Change Control
More informationWHS Risk Assessment and Control Form
WHS Risk Assessment and Control Form Step 1: Who has conducted the Risk Assessment Risk Assessment completed by (name): Staff / Student Number: Signature: Date: Step 4: Documentation and initial approval
More informationScouting Ireland Risk Management Framework
No. SID 124A/15 Gasóga na héireann/scouting Ireland Issued Amended 20 th June 2015 Deleted Source: National Management Committee Scouting Ireland Risk Management Framework Revision Date Description # 20/06/2015
More informationRisk Management Policy
Risk Management Policy Policy Type: Council Policy Policy Owner: Strategic Procurement, Contracts and Risk Program ManagerProcurement & Risk Coordinator Policy No. CP-099 Last Review Date: 19 June 2018
More informationRisk Management Policy
Risk Management Policy Contents Executive summary... 3 Aim & introduction... 3 Definitions... 3 Consequence... 3 Event... 3 Likelihood... 3 Risk... 4 Risk Appetite... 4 Risk Management... 4 Risk Management
More informationRisk Management Strategy
Risk Management Strategy 2016 2019 Version: 6 Policy Lead/Author & Deputy Director of Quality position: Ward / Department: Nursing Directorate Replacing Document: Version 5 Approving Committee Quality
More informationBoard Risk Appetite Statement
SH NCP 62 Version: 3 Summary: Keywords (minimum of 5): (To assist policy search engine) Target Audience: This document establishes the key areas of risk and guidance on the level of risk the Board is prepared
More informationBERMUDA MONETARY AUTHORITY COMMERCIAL INSURER RISK ASSESSMENT ( CIRA ) PROCEDURES CLASS 4 INSURERS OPERATIONAL RISK CONSULTATION PAPER JUNE 18, 2008
COMMERCIAL INSURER RISK ASSESSMENT ( CIRA ) PROCEDURES CLASS 4 INSURERS OPERATIONAL RISK Commercial Insurer Risk Assessment ( CIRA ) Procedures Class 4 Insurers Table of Contents 0. Introduction 1 1. Operational
More informationRisk Management. Policy and Procedures
Risk Management Policy and Procedures POLICY SCHEDULE Policy title Policy owner Policy lead contact Approving body Date of approval/review Related Guidelines and Procedures Review interval Risk Management
More informationNHS North Somerset Clinical Commissioning Group Risk Management Strategy and Framework
NHS North Somerset Clinical Commissioning Group Risk Management Strategy and Framework An Integrated Risk Management Framework Clinical Risk Management Financial Risk Management Corporate Risk Management
More information1. INTRODUCTION 1 2. OVERVIEW OF THE BUSINESS 1 4. CAPITAL ADEQUACY & OWN FUNDS 6 5. CAPITAL REQUIREMENTS 7 6. REMUNERATION POLICY 10
etoro (UK) Limited Pillar 3 Risk Management Disclosure Report 2016 Contents 1. INTRODUCTION 1 2. OVERVIEW OF THE BUSINESS 1 3. RISK MANAGEMENT OBJECTIVES & POLICIES 1 4. CAPITAL ADEQUACY & OWN FUNDS 6
More informationRISK MANAGEMENT POLICY
RISK MANAGEMENT POLICY 1. INTRODUCTION Seven West Media Limited (SWM) is the leading, listed national multi-platform media business based in Australia, which exposes the company to a wide range of risks.
More informationRisk Management at Central Bank of Nepal
Risk Management at Central Bank of Nepal A. Introduction to Supervisory Risk Management Framework in Banks Nepal Rastra Bank(NRB) Act, 2058, section 35 (a) requires the NRB management is to design and
More informationNATIONAL RISK MANAGEMENT SYSTEM
Scouts Australia NATIONAL RISK MANAGEMENT SYSTEM 2003 First Published 2003 Reviewed August 2006 in consideration of AS/NZS 4360-2004 and Organisational Performance Since First Published. Amendment by Chair
More informationPOLICY. Policy Title: Integrated Risk Management. Director, Strategic and Governance Services Centre
POLICY Policy Title: Integrated Risk Management Policy Owner: Keywords: Policy Code: Director, Strategic and Governance Services Centre Risk Management PL201 [rm001] Intent Organisational Scope Definitions
More informationSteps to join the Managing Operational Risk webinar using a Smart Phone or Tablet
Steps to join the Managing Operational Risk webinar using a Smart Phone or Tablet Step 1. Well before the time of the webinar download the free omnovia app from your app store. This is a web conferencing
More informationRisk Management Policy (v7.0)
Risk Management Policy (v7.0) VERSION HISTORY Rev No. Date Revision Description Approval 0 19 November 1998 Risk Management Policy Prepared by: Manager Internal Audit 1.0 March 2007 Risk Management Policy
More informationRisk Management Framework
Risk Management Framework Purpose: Scope: This Risk Management Framework introduces Central Queensland Christian College s approach to risk management. It includes a definition of risk, a summary of the
More informationRISK MANAGEMENT FRAMEWORK
RISK MANAGEMENT FRAMEWORK 1. INTRODUCTION (Company) acknowledges that risk is inherent in its business. The Company faces a broad range of risks as a listed entertainment organisation. The Company s risk
More informationFraud Risk Management
Fraud Risk Management Fraud Risk Assessment Part 2 2017 Association of Certified Fraud Examiners, Inc. Fraud Risk Assessment Frameworks Frameworks are helpful for performing, evaluating, and reporting
More informationRISK MANAGEMENT STRATEGY Version 3
RISK MANAGEMENT STRATEGY Version 3 Risk Management Strategy V3 - March 2018 1 Standard Operating Procedure St Helens CCG Risk Management Strategy Version 3.0 Implementation Date September 2014 Review Date
More informationSouth Lanarkshire College Risk Management Policy and Procedures
1. Purpose This policy and its procedures detail and communicate the College s approach to risk management. 2. Policy Statement South Lanarkshire College will effectively manage risk, taking all reasonable
More informationRisk Management Plan PURPOSE: SCOPE:
Management Plan Authority Source: Vice-Chancellor Approval Date: 16/05/2018 Publication Date: 17/05/2018 Review Date: 17/05/2021 Effective Date: 16/05/2018 Custodian: General Counsel and University Secretary
More informationRisk Management Policy
DYNAMIC ARCHISTRUCTURES LIMITED Risk Management Policy DYNAMIC ARCHISTRUCTURES LIMITED Regd. Address: 409, Swaika Centre, 4A Pollock Street, Kolkata - 700001 (West Bengal) CONTENTS Sr. Particulars Page
More informationDisclosure and Market Discipline Report V.2. Table of Contents
DISCLOSURE AND MARKET DISCIPLINE REPORT 2014 Table of Contents I. Scope of the Report... 3 II. Risk Management Objectives and Policies:... 4 II.1 Risk Management policy:... 4 II.2 Structure of Risk Management
More informationExecutive Board Annual Session Rome, May 2015 POLICY ISSUES ENTERPRISE RISK For approval MANAGEMENT POLICY WFP/EB.A/2015/5-B
Executive Board Annual Session Rome, 25 28 May 2015 POLICY ISSUES Agenda item 5 For approval ENTERPRISE RISK MANAGEMENT POLICY E Distribution: GENERAL WFP/EB.A/2015/5-B 10 April 2015 ORIGINAL: ENGLISH
More informationSupervisor of Banks: Proper Conduct of Banking Business (12/12) Operational Risk Management Page Operational Risk Management
Operational Risk Management Page 350-1 Operational Risk Management Introduction 1. Operational risk is inherent in all banking products, activities, processes and systems. The effective management of operational
More informationGoodman Group. Risk Management Policy. Risk Management Policy
Goodman Group Contents 1. Overview... 3 1.1 Introduction... 3 1.2 Objectives of the... 3 1.3 Application... 3 1.4 Operative Provisions... 4 2. Risk Management... 5 2.1 Overview of Risk Management... 5
More informationSETSOTO LOCAL MUNICIPALITY
SETSOTO LOCAL MUNICIPALITY OFFICE OF THE MUNICIPAL MANAGER: RISK MANAGEMENT UNIT RISK MANAGEMENT STRATEGY Table of Contents 1. INTRODUCTION...3 2. THE NEED...3 3. OBJECTIVES...4 4. DEFINITIONS...4 5. RISK
More informationRisk Management Strategy
Resources Risk Management Strategy Successful organisations are not afraid to take risks; Unsuccessful organisations take risks without understanding them. Issue: Version 3 - November 2011 Group: Resources
More informationEvent Risk Assessment Tool (ERAT) Version 2.0. Activity Being Assessed: RARE LIKELY ALMOST CERTAIN
Group Name: Date of Assessment: Activity Being Assessed: Review Assessment By: Referenced Documents (Legislation, Codes of Practice, Standards and Industry Guidelines etc): Persons Involved in the Conduct
More informationEvent Risk Assessment Tool (ERAT) Version 1.0 RARE. UNLIKELY Could occur at some time. POSSIBLE Might occur at some time LIKELY ALMOST CERTAIN
Group Name: Activity Being Assessed: Date of Assessment: Review Assessment By: Referenced Documents (Legislation, Codes of Practice, Standards and Industry Guidelines etc): Persons Involved in the Conduct
More informationRisk Management Policy
Risk Management Policy 1 Purpose and scope of this Policy 1.1 CSG Limited (CSG) is committed to managing its risks in a consistent and practical manner. Effective risk management is directly focussed on
More informationENTERPRISE RISK MANAGEMENT (ERM) POLICY Republic Glass Holdings Corporation. Purpose. Goals
Purpose This Enterprise Risk Management Policy (the ERM policy) provides the framework for managing risks across ( RGHC or the Company ). It contains the policies to guide employees, management and the
More informationISO/DIS 9001:2015 Risk-Based Thinking
ISO/DIS 9001:2015 Risk-Based Thinking Whittington & Associates, LLC 6175 Hickory Flat Highway, Suite 110-303, Canton, GA 30115 www.whittingtonassociates.com 770-517-7944 Version 1.0: 01/10/15 2015 Whittington
More informationRISK MANAGEMENT - CORPORATE COMPLIANCE & ETHICS
RISK MANAGEMENT - CORPORATE COMPLIANCE & ETHICS Presenter CLAIRE GOMEZ MILLER CIA CRMA FCCA CA BOARD DIRECTOR/AUDITCOMMITTEE MEMBER UNITEDINDEPENDENT PETROLEUM MARKETING COMPANY LIMITED TRINIDAD AND TOBAGO
More information28 July May October 2016
Policy Name Risk Management Policy & Procedure Related Policies and Legislation AISWA Guidelines Risk Management Policy Category Planning & Management Relevant Audience Date of Issue / Last Revision All
More informationPrudential Standard GOI 3 Risk Management and Internal Controls for Insurers
Prudential Standard GOI 3 Risk Management and Internal Controls for Insurers Objectives and Key Requirements of this Prudential Standard Effective risk management is fundamental to the prudent management
More informationCITY OF JOHANNESBURG METROPOLITAN MUNICIPALITY GROUP RISK AND ASSURANCE SERVICES GROUP RISK MANAGEMENT POLICY
CITY OF JOHANNESBURG METROPOLITAN MUNICIPALITY Effective Date 1 July 2015 TABLE OF CONTENTS 1. POLICY STATEMENT... 3 2. POLICY CONTEXT... 4 3. PURPOSE... 5 4. POLICY SCOPE AND APPLICATION... 6 5. RISK
More informationRISK MANAGEMENT - CORPORATE COMPLIANCE & ETHICS
RISK MANAGEMENT - CORPORATE COMPLIANCE & ETHICS Presenter CLAIRE GOMEZ MILLER CIA CRMA FCCA CA BOARD DIRECTOR/AUDIT COMMITTEEMEMBER UNITEDINDEPENDENTPETROLEUM MARKETINGCOMPANYLIMITED TRINIDAD AND TOBAGO
More informationRisk Management Policy
Risk Management Policy April 2017 1 Introduction 1.1 The primary objective of risk management is to ensure that the risks facing the business are appropriately managed. 1.2 Force is committed to ensuring
More informationSenior Director, Fire Life Safety & Risk Management
Page 1 of 3 Enterprise Risk Management Policy Item 4 November 15, 2018 Building Investment, Finance and Audit Committee Report: To: From: BIFAC:2018-66 Building Investment, Finance and Audit Committee
More informationSOMERSET PARTNERSHIP NHS FOUNDATION TRUST RISK MANAGEMENT POLICY. Report to the Trust Board 26 May Risk and Compliance Manager
SOMERSET PARTNERSHIP NHS FOUNDATION TRUST RISK MANAGEMENT POLICY Report to the Trust Board 26 May 2015 Sponsoring Director: Author: Purpose of the report: Key Issues and Recommendations: Director of Governance
More informationENTERPRISE RISK MANAGEMENT (ERM) GOVERNANCE POLICY PEDERNALES ELECTRIC COOPERATIVE, INC.
1. Purpose: 1.1. Pedernales Electric Cooperative ( PEC ) is committed to delivering low-cost, reliable and safe energy solutions for the benefit of our members. In order to improve the likelihood of achieving
More informationThe Australian National University Fraud Control Framework. Corporate Governance & Risk Office
The Australian National University Fraud Control Framework 2017 2018 Corporate Governance & Risk Office Corporate Governance and Risk Office 21 July 2017 The Australian National University Canberra ACT
More informationRisks and uncertainties facing the business
Identifying and managing our risks The Board is responsible for the Group s system of risk management and internal control. Risk management is recognised as an integral part of the Group s activities.
More informationIntegrated Risk Management Framework
Integrated Risk Management Framework Author Patient Safety Manager Version 4.0 Version Date May 2017 Implementation/Approval Date May 2017 Review Date May 2018 Review Body Governing Body Policy Reference
More information