Effective Assurance Frameworks
|
|
- Godfrey Potter
- 6 years ago
- Views:
Transcription
1 Effective Assurance Frameworks NIGEL IRELAND, HEAD O F BARCUD S HARED S E R barcudss w w w.barcudsharedservices.org.uk
2 Today What an Assurance Framework is How an Assurance Framework can add value Use of an Assurance Framework in practice Understanding key terms like: Assurance; Risk appetite; and 3 lines of defence.
3 Barcud Shared Services Consortium of housing associations in South Wales Primarily Internal Audit Risk, projects, strategy, business continuity
4 Barcud Internal Audit Best of independence & internal Work in housing associations See & feel risks Boards, audit committees, management and staff In-sector information Support and advise Insight Money stays in the sector
5 Assurance Frameworks - History 2002/ Development of risk management processes
6 Assurance Frameworks - Purpose NHS Audit Committee Handbook: the pivotal tool underpinning the Audit Committee s remit of monitoring financial, clinical and all operational risks and the key source of evidence that links strategic objectives to risk. HM Treasury (2012): Should be structured and provide reliable evidence to underpin the assessment of the risk and control environment for the annual Governance Statement, supported by independent appraisal from the internal audit service.
7 Assurance Frameworks - Purpose Main elements: Natural development of risk management processes Provides an enhanced link between strategy and risks Based on reliable evidence Brings together risk management and the 3 lines of defence model
8 What is risk? The threat that an event or action will affect an organisation s ability to achieve its business objectives and execute its strategies
9 So, what is risk management? Being able to identify the risk cause at the earliest opportunity, measure the risk effect and apply a proportionate level of resources to mitigate, or take advantage of, the risk and obtaining assurance that the controls on which the organisation relies for mitigating the risk are effective.
10 What is assurance? Confidence, based on sufficient evidence, that internal controls are in place, operating effectively and objectives are being achieved (various Public Sector) Assurance is what gives you comfort that a control is working (and therefore informs whether a risk is being managed as you had envisaged)
11 What do you want from Risk Management? Tool for increasing the likelihood of achieving objectives Aid to entrepreneurship being risk aware not risk averse Greater exploitation of opportunities Understand and prevent / reduce risk impacts Increase efficiency
12 Role of the Board CHC Code of Governance (new): 3.2 The Board safeguards and promotes the organisation s reputation and, by extension, promotes public confidence in the wider sector. Principle 4 Decision-making, risk and control 4.1 The Board is clear that its focus is on strategy, performance and assurance New WG Governance requirements emphasises Board Assurance
13 Role of the Audit Committee Reviewing the effectiveness of risk management Reviewing, with management, the operation of risk management and responses to identified risks Reviewing the adequacy of assurance providing activities and challenging management s response to these
14 OBJECTIVE RISK INHERENT SCORE We will provide 24/7 365 access to customers An incident occurs which stops our organisation providing access for more than 24hrs 25 (5 x 5) CONTROLS 1) Business Continuity Plan 2) Resilient hardware 3) Regular testing, review and updating RESIDUAL RISK SCORE 8 (2 x 4) ASSURANCE FURTHER ACTION HOW DO YOU KNOW? TARGET RISK Easy review of risks directly against objectives (note cause and effect) which enables more effective assessment & scrutiny of the risk score. A clear understanding of the action being taken and the controls in place to address the risk which enables effective assessment & scrutiny of the residual risk score
15 OBJECTIVE RISK INHERENT SCORE CONTROLS RESIDUAL RISK SCORE ASSURANCE FURTHER ACTION TARGET RISK We will provide 24/7 365 access to customers An incident occurs which stops our organisation providing access for more than 24hrs 25 (5 x 5) 1) Business Continuity Plan 2) Resilient hardware 3) Regular testing, review and updating 8 (2 x 4) Insert assurance here The assurances give you comfort that the controls are working and therefore assurance that the residual risk score is accurate
16 So what s the issue? Risk Registers over-focus on controls: Audit Committee control v risk / objective Time to identify controls & Minor / insignificant controls Assurances are control-driven * Number over quality / effectiveness * Assurances seen as less important Quality of assurance unclear Assurance under-used information not used as such
17 Potential Sources of Assurance Internal Audit External Audit Certifications IIP / ISO9001 / ISO18001 / ISO32001 Specialist reviews HSE / Duty of Care / Penetration Testing Regulator feedback Customer feedback / complaints, including social media Local Authority / Partners Key Performance Indicators (KPIs) Management reports
18 3 Lines of Defence: First Line Day to Day Management Second Line Corporate Oversight Third Line Independent Assurance Maximise Benefit? 3. Independent Assurance 2. Corporate Oversight 1. Management RISK
19 Adding the 3 lines of defence: HM Treasury Guidance
20 Assessing Sources of Assurance Summarises previous identification stage Assessment
21 A lot to rationalise: AC Reporting Current Risk Registers Identifying sources of assurance Assessing sources of assurance Programme of Assurance
22 Proportionality & Adding Value Risk definition: Programme of Assurance Being able to identify the risk cause at the earliest opportunity, measure the risk effect and apply a proportionate level of resources to mitigate, or take advantage of, the risk Shouldn t we also apply this to assurance activities?
23 - Performance Indicators - Information from systems - RAG reports to senior management - Measured performance against targets and plans - Specialist review of process - Independent review of policies and procedures - ISO Accreditation Did the assurance provide VfM? 3. Independent Assurance 2. Corporate Oversight - Key Performance Indicators - RAG reports - Systems reports / management information - Customer satisfaction surveys - Corporate risk management 1. Management RISK
24 Barcud-led Project Aims: Upskill clients in risk management Programme of Assurance Greater understanding of assurance Development of a template Testing in practice Tailored Assurance Framework per-client
25 Programme of Assurance Risk-based like your Internal Audit (IA) Strategy Programme of Assurance & IA Strategy coordinated Should consider the Quality of assurance Should reflect the assurance you already have Should consider Value for Money & proportionality Report progress to the Audit Committee
26 OBJECTIVE RISK INHERENT SCORE CONTROLS RESIDUAL RISK SCORE ASSURANCE FURTHER ACTION TARGET RISK We will provide 24/7 365 access to customers An incident occurs which stops our organisation providing access 25 (5 x 5) 1) Business Continuity Plan 2) Resilient hardware 3) Regular testing, review and updating 8 (2 x 4) 1) Internal Audit of BCP 2017/18 Substantial Assurance 2) Incident in 2016/17 lessons learnt document 3) External Penetration testing report 2017/18 To address any gaps in control (c) or assurance (a) further action may be required
27 Building into current risk registers: Assurance Map
28 Building into current risk registers:
29 Developing a new focus:
30 Programme of assurance IA Plan?
31 Programme of assurance IA Plan?
32 How does an AF achieve efficiencies? KPIs System updates Customer Satisfaction Surveys Independent Review Mgmt Info. Do we need an Internal Audit? Compliments & Complaints RAG Reports Award Regulatory Judgement Accreditation ISO Certification
33 Risk Appetite
34 Risk Appetite (for Risk) The level of risk (taking into account both impact and likelihood) that the organisation is willing to tolerate. It can be at the organisational, departmental or individual risk level. Risk Appetite?
35 Risk Appetite Risk appetite needs to be measurable. Otherwise there is a risk that any statements become empty and vacuous 1 ; and Risk appetite is not a single, fixed concept. There will be a range of appetites for different risks which need to align and these appetites may well vary over time: the temporal aspect of risk appetite is a key attribute to this whole development 1. 1 Institute of Risk Management Risk Appetite & Tolerance Guidance Paper, 2010
36 Risk Appetite Where you might end up if something good happens Current performance direction Where you might end up if something bad happens - Based on Institute of Risk Management model
37 Risk Appetite Risk Universe Risk Tolerance
38 Risk Appetite Risk Appetite
39 Appetite for Opportunity? Different from risk appetite? Used for decision making New opportunities Words like: averse, open, hungry Work for decisions; not for risk?
40 Risk Appetite Removes some of the subjectivity about whether a risk is managed to an acceptable level or not. Enables more robust challenging by stakeholders on the scoring and mitigation of risks. Enables effective allocation of resources when seeking assurance.
41 OBJECTIVE RISK INHERENT SCORE CONTROLS RESIDUAL RISK SCORE ASSURANCE FURTHER ACTION TARGET RISK We will provide 24/7 365 access to customers An incident occurs which stops our organisation providing access 25 (5 x 5) 1) Business Continuity Plan 2) Resilient hardware 3) Regular testing, review and updating 8 (2 x 4) 1) Internal Audit of BCP 2017/18 Substantial Assurance 2) Incident in 2016/17 lessons learnt document 4 (2 x 2) 3) External Penetration testing report 2017/18 An example risk appetite at the individual risk level Should be set by the audit committee (or board) Target Risk
42 Risk Appetite Challenge? Development: Finance: Health & Safety / Legal Compliance: Housing:
43 Elements of Risk Appetite Statement in Risk Management Policy Departmental risk appetites (diagrams?) Your risk matrices / guidance for scoring Risk matrix colour distribution Your target risk scores on the risk register
44 Internal Auditors A key element of your programme of assurance: Do they truly understand your business? Do they know you? Are they too arms length? Do they give you ongoing support and advice? Are they sufficiently knowledgeable of your risks? Are they helping/supporting you pushing your risk/assurance framework forwards?
45 Why an Assurance Framework Greater understanding of risk status Promotes continual improvement Greater Value for Money Makes more use of what you already have More efficient and effective use of assurance, including Internal Audit, to fill gaps Helps you KNOW!
46 Thank you NIGEL IRELAND, HEAD O F BARCUD S HARED S E R barcudss w w w.barcudsharedservices.org.uk
47 Recommended reading ACCA Risk and the Strategic Role of Leadership (2018) - HM Treasury Assurance Frameworks (2012) - Institute of Internal Auditors Coordinating Risk Managemnt and Assurance (2012) - %20Management%20and%20Assurance.pdf ICAEW Assurance Mapping - Talk to us!
Bournemouth Primary MAT Risk Management Policy
Bournemouth Primary MAT Risk Management Policy 1. Introduction The Bournemouth Primary Multi-Academy Trust (the Trust) operates a risk management system in order to identify and manage key exposures and
More informationRisk Management Framework
Risk Management Framework Introduction The outgoing Corporate Strategy 2013-18 and incoming University Strategy 2018-23 continues on a trajectory towards Vision 2025 in an increasingly competitive Higher
More informationRisk Management Strategy January NHS Education for Scotland RISK MANAGEMENT STRATEGY
NHS Education for Scotland RISK MANAGEMENT STRATEGY January 2016 1 Contents 1. NES STATEMENT ON RISK MANAGEMENT 2 RISK MANAGEMENT STRATEGY 3 RISK MANAGEMENT STRUCTURES 4 RISK MANAGEMENT PROCESSES 5 RISK
More informationRisk Management Policy and Strategy
Risk Management Policy and Strategy Version: 2.1 Bodies consulted: Approved by: Directors and Managers responsible for risk Board of Directors Date Approved: 28 March 2017 Lead Manager: Lead Director:
More informationRisk Management Strategy
Risk Management Strategy 2016 2019 Version: 6 Policy Lead/Author & Deputy Director of Quality position: Ward / Department: Nursing Directorate Replacing Document: Version 5 Approving Committee Quality
More informationRisk Management Policy and Framework
Risk Management Policy and Framework Risk Management Policy Statement ALS recognises that the effective management of risks is a fundamental component of good corporate governance and is vital for the
More informationA Housing Association Internal Audit Annual Report 2014/15
A Housing Association Internal Audit Annual Report 2014/15 Date of Issue: 1 June 2015 Presented at the meeting of the Audit Committee: 21 July 2015 TABLE OF CONTENTS EXECUTIVE SUMMARY... 2 Background...
More informationScouting Ireland Risk Management Framework
No. SID 124A/15 Gasóga na héireann/scouting Ireland Issued Amended 20 th June 2015 Deleted Source: National Management Committee Scouting Ireland Risk Management Framework Revision Date Description # 20/06/2015
More informationRISK MANAGEMENT POLICY AND STRATEGY
1 RISK MANAGEMENT POLICY AND STRATEGY Version No: Reason for Update Date of Update Updated By 1 Review Timeframe September 2014 2 Review June 2017 Governance Manager Governance Manager 3 4 5 6 7 8 Introduction
More informationUniversity Risk Management Policy
Preamble University Risk Management Policy Approving Authority: Board of Governors Original Approval Date: June 7, 2007 Date of Most Recent Review/Revision: October 20, 2017 Responsible Officer: Vice-President
More informationRisk Management Policy
Version: 2.0 New or Replacement: Policy number: Document author(s): Replacement ULHT-MD-GOV-RM-PMIMSI Paul White, Risk Manager Contributor(s): Members of the Trust Board & Senior Leadership Team Approved
More informationRisk Management Strategy and Board Assurance Framework
Risk Management Strategy and Board Assurance Framework Version 1.1 Ratified by Health Commissioning Board Date ratified Audit Committee in Common: 10 th October 2017 Heath Commissioning Board: 8 th November
More informationD7 Risk Management Policy
D7 Risk Management Policy Purpose and scope The aim of Kelda s policy is to establish and embed effective risk management in normal business process and culture. This will improve Kelda s ability to predict
More informationHousing Risk Management
Housing Risk Management N I G E L I R E L A N D, C M I I A, C I S A, P R I N C E 2 P R AC T I T I O N E R 17 A P R I L 20 1 5 @ n d i s o l u t i o n s w w w. b a r c u d s h a r e d s e r v i c e s. o
More informationPerpetual s Risk Management Framework
Perpetual s Risk Management Framework Perpetual s Risk Management Framework Context Perpetual Limited (Perpetual) is a diversified financial services firm, listed on the Australian Securities Exchange.
More informationUNIVERSITY OF ABERDEEN RISK MANAGEMENT FRAMEWORK
UNIVERSITY OF ABERDEEN RISK MANAGEMENT FRAMEWORK 1 TABLE OF CONTENTS FIGURES AND TABLES... 3 1. INTRODUCTION... 4 2. KEY TERMS AND DEFINITIONS... 5 2.1 Risk... 5 2.2 Risk Management... 5 2.3 Risk Management
More informationPractical aspects of determining and applying a risk appetite for SMEs
Practical aspects of determining and applying a risk appetite for SMEs By Tim Timchur acis, Director, ActivePro Consulting Pty Ltd Important to determine appetite for risk before determining what risk
More informationTrust Assurance Framework Reviews. (Structure, Engagement and Alignment 2017/18)
Trust Assurance Framework Reviews (Structure, Engagement and Alignment 217/18) The overall purpose of the insight is to summarise the results of the 217/18 Assurance Framework reviews, highlight good practice
More informationLONDON BOROUGH OF ENFIELD RISK MANAGEMENT STRATEGY
LONDON BOROUGH OF ENFIELD RISK MANAGEMENT STRATEGY JANUARY 2013 1 Version Control Reference Comments Approval date 05 09 12 19 11 12 10 01 13 2 FOREWORD Welcome to the Council s Risk Management Strategy.
More informationRisk Management Policy
Risk Management Policy October 2014 Risks 1. Risks can be identified under four principal headings a. Financial risks b. Strategic Risks c. Operational Risks, and d. Hazard Risks 2. These are either externally
More informationWhat keeps Trust Boards awake at night? (2015 Edition) Foundation and NHS Trust Assurance Framework Benchmarking
What keeps Trust Boards awake at night? (2015 Edition) The overall purpose of the insight is to enable individual Foundation Trusts and NHS Trusts to understand how key elements of their Assurance Frameworks
More informationRisk Management Strategy
Risk Management Strategy Ratified by the Board of Directors Date: 26 July 2016 Issue date August 2016 Version 8.0 Review Date July 2019 Document Author Document Lead Document Risk Owner Head of Risk and
More informationRisk Management Strategy
Risk Management Strategy Document Reference MLCSU CA_WL_V3 Version 3 Authors: Donna Bamber, Midlands & Lancashire Commissioning Support Unit Senior Risk Officer Smita Shetty, Service Redesign Manager,
More informationRisk Management Framework
Risk Management Framework Anglican Church, Diocese of Perth November 2015 Final ( Table of Contents Introduction... 1 Risk Management Policy... 2 Purpose... 2 Policy... 2 Definitions (from AS/NZS ISO 31000:2009)...
More informationNHS WEST NORFOLK CLINICAL COMMISSIONING GROUP RISK MANAGEMENT STRATEGY AND POLICY FRAMEWORK
NHS WEST NORFOLK CLINICAL COMMISSIONING GROUP RISK MANAGEMENT STRATEGY AND POLICY FRAMEWORK DOCUMENT CONTROL SHEET Name of Document: WNCCG Risk Management Strategy & Policy Framework Version: 2.0 Date
More informationRISK MANAGEMENT FRAMEWORK
RISK MANAGEMENT FRAMEWORK 1. INTRODUCTION (Company) acknowledges that risk is inherent in its business. The Company s risk management framework is an important tool to guide the organisation towards achieving
More informationNagement. Revenue Scotland. Risk Management Framework. Revised [ ]February Table of Contents Nagement... 0
Nagement Revenue Scotland Risk Management Framework Revised [ ]February 2016 Table of Contents Nagement... 0 1. Introduction... 2 1.2 Overview of risk management... 2 2. Policy Statement... 3 3. Risk Management
More informationRisk Management Strategy
Risk Management Strategy Solent NHS Trust policies can only be considered to be valid and up-to-date if viewed on the intranet. Please visit the intranet for the latest version. Purpose of Agreement Solent
More informationGOV : Enterprise Risk Management Policy
Name: Responsibility: Complements: Enterprise Risk Management Framework Coordinator, Enterprise Risk Management GOV-080-005: Enterprise Risk Management Policy Draft Date: November 2006; January 2012 Revised
More informationM_o_R (2011) Foundation EN exam prep questions
M_o_R (2011) Foundation EN exam prep questions 1. It is a responsibility of Senior Team: a) Ensures that appropriate governance and internal controls are in place b) Monitors and acts on escalated risks
More informationRisk Management & Assurance Strategy. Audit Committee. See reference page 38
BHH Brent Harrow Hillingdon Clinical Commissioning Groups Risk Management & Strategy Author: Policy Number: Version: Sponsor/Executive: Responsible committee: Gilbert George Dawn Crump Interim Head of
More informationRisk Management Strategy Highland Council Pension Fund
Risk Management Strategy Highland Council Pension Fund Approved Pensions Committee 9 August 2018 3 1. Introduction 1.1 Risk management is a key element of Corporate Governance and the Highland Council
More informationRisk Management Strategy (To be read in conjunction with strategic risk register)
Risk Management Strategy (To be read in conjunction with strategic risk register) Page 1 Background The Risk Management Strategy aims to ensure that TGAT complies with risk management best practice as
More informationRisk Management Strategy
Resources Risk Management Strategy Successful organisations are not afraid to take risks; Unsuccessful organisations take risks without understanding them. Issue: Version 3 - November 2011 Group: Resources
More informationUniversity of Greenwich Risk Management Guide Revised October 2017
University of Greenwich Risk Management Guide Revised October 2017 Purpose of the Guide 1. This document supplements the Risk Management Policy of the University of Greenwich. It explains why risk management
More informationRISK MANAGEMENT POLICY October 2015
RISK MANAGEMENT POLICY October 2015 1. INTRODUCTION 1.1 The primary objective of risk management is to ensure that the risks facing the business are appropriately managed. 1.2 Paringa Resources Limited
More informationIntegrated Risk Management Framework
Integrated Risk Management Framework Author Patient Safety Manager Version 4.0 Version Date May 2017 Implementation/Approval Date May 2017 Review Date May 2018 Review Body Governing Body Policy Reference
More informationKidsafe NSW Risk Management Plan. August 2014
Kidsafe NSW Risk Management Plan August 2014 Document Control Document Approval Name & Position Signature Date Document Version Control Version Status Date Prepared By Comments Document Reviewers Name
More informationProcedure: Risk management
Procedure: Risk management Purpose To outline the procedures involved for identification, assessment and management of risks. Procedure Introduction 1. This procedure outlines the University s Risk Awareness
More informationCITY OF JOHANNESBURG METROPOLITAN MUNICIPALITY GROUP RISK AND ASSURANCE SERVICES GROUP RISK MANAGEMENT POLICY
CITY OF JOHANNESBURG METROPOLITAN MUNICIPALITY Effective Date 1 July 2015 TABLE OF CONTENTS 1. POLICY STATEMENT... 3 2. POLICY CONTEXT... 4 3. PURPOSE... 5 4. POLICY SCOPE AND APPLICATION... 6 5. RISK
More informationRISK MANAGEMENT FRAMEWORK
Risk Management Framework RISK MANAGEMENT FRAMEWORK Purpose This Risk Management Framework introduces St. Michael s College s approach to risk management. It includes a definition of risk, a summary of
More informationIntegrated Risk Management Framework Sept Page 1 of 17
Integrated Risk Management Framework 2017-2018 Sept 2017 Page 1 of 17 Reference: Title: Author/Nominated Lead: Approval Date: Approving Committee: Review Date: Target Audience: Circulation List: Cross
More informationPOLICY RISK MANAGEMENT AND REPORTING. Introduction
POLICY RISK MANAGEMENT AND REPORTING Introduction Managing risk is a part of our everyday responsibilities for all of us. It enables us to make decisions about what we do and how we do things both strategically
More informationMEMORANDUM. To: From: Metrolinx Board of Directors Robert Siddall Chief Financial Officer Date: September 14, 2017 ERM Policy and Framework
MEMORANDUM To: From: Metrolinx Board of Directors Robert Siddall Chief Financial Officer Date: September 14, 2017 Re: ERM Policy and Framework Executive Summary Attached are the draft Enterprise Risk Management
More informationRisk Management Policy and Procedures.
Risk Management Policy and Procedures. Rev Date Purpose of Issue/Description of Change Date 1. June 2006 Initial Issue 2. November 2009 Revised and updated 6 th November 2009 3. September 2010 Revised
More informationA proactive approach to auditing risk management
A proactive approach to auditing risk management Anthony Garnett Head of Internal Audit, HM Government, Department for International Development 10 October 2017 Crown Copyright 2017 Agenda 1. What s the
More informationRISK REGISTER POLICY AND PROCEDURE
RISK REGISTER POLICY AND PROCEDURE Lead Manager: Head of Clinical Governance Responsible Director: Board Medical Director Approved by: Date Approved: Date for Review: Feb 2012 Replaces Version: 1.0 Page
More informationENSURING EFFECTIVE GOVERNANCE AND FINANCIAL REPORTING
70 Audit Committee Report ENSURING EFFECTIVE GOVERNANCE AND FINANCIAL REPORTING The Board and the Audit Committee are committed to the continuous strengthening of the Group s systems of risk management,
More informationNetwork Rail Limited (the Company ) Terms of Reference. for. The Audit and Risk Committee of the Board
Network Rail Limited (the Company ) Terms of Reference for The Audit and Risk Committee of the Board Membership of the Audit and Risk Committee 1 The Audit and Risk Committee (the Committee ) shall comprise
More informationRisk Management Strategy, Policy and Procedure
Title: Purpose: Risk Management Strategy, Policy and Procedure The overarching purpose of the risk management strategy is to describe the framework and processes within Cornwall Partnership NHS Foundation
More informationHeadline Verdana Bold Managing tax Balancing current challenge with future promise The EYE, Amsterdam, 30 November - 1 December 2016
Headline Verdana Bold Managing tax Balancing current challenge with future promise The EYE, Amsterdam, 30 November - 1 December 2016 Marvin de Ridder, Deloitte Netherlands Emmet Bulman, Deloitte UK Tax
More informationApproved by: Diocesan Council 17 December 2015
DIOCESAN COUNCIL POLICY 39 Risk Management Approved by: Diocesan Council 17 December 2015 1 PREAMBLE The Perth Diocesan Trustees under the authority of the Diocesan Trustees Statute 1952 have the responsibility
More informationGoodman Group. Risk Management Policy. Risk Management Policy
Goodman Group Contents 1. Overview... 3 1.1 Introduction... 3 1.2 Objectives of the... 3 1.3 Application... 3 1.4 Operative Provisions... 4 2. Risk Management... 5 2.1 Overview of Risk Management... 5
More informationGRINDROD SOUTH AFRICA//Policy Risk and opportunity governance framework
Document number GP24 Revision number 02 Issue date 23 May 2017 Author name Andrew Davies Approval Risk Committee 02 CONTENTS 1 Purpose 04 2 Objective 04 3 Risk and opportunity governance policy 04 4 Governance
More informationAn Introductory Presentation for ECU Staff
Risk Management at ECU An Introductory Presentation for ECU Staff Phillip Draber Manager, Risk and Assurance Outcomes By the end of this session you should: Be able to complete and document risk management
More informationNHS North Somerset Clinical Commissioning Group Risk Management Strategy and Framework
NHS North Somerset Clinical Commissioning Group Risk Management Strategy and Framework An Integrated Risk Management Framework Clinical Risk Management Financial Risk Management Corporate Risk Management
More informationBERGRIVIER MUNICIPALITY. Risk Management Risk Appetite Framework
BERGRIVIER MUNICIPALITY Risk Management Risk Appetite Framework APRIL 2018 1 Document review and approval Revision history Version Author Date reviewed 1 2 3 4 5 This document has been reviewed by Version
More informationBritish Library Risk Management Policy Framework (2017)
Risk Management Policy Framework May 2017 1 British Library Risk Management Policy Framework (2017) 1. Introduction The Library defines risk as being the quantifiable level of exposure to the threat of
More informationDiscussion. Information
Item 10.8 To: From: Trust Board Kevin Turner, Deputy Chief Executive Date: 4 th July 2017 Title: Strategic Risk Management Report Responsible Director: Kevin Turner, Deputy Chief Executive Author: Karen
More informationRISK MANAGEMENT STRATEGY Version 3
RISK MANAGEMENT STRATEGY Version 3 Risk Management Strategy V3 - March 2018 1 Standard Operating Procedure St Helens CCG Risk Management Strategy Version 3.0 Implementation Date September 2014 Review Date
More informationDOCUMENT TYPE: Strategy UNIQUE IDENTIFIER: RMS-01. DOCUMENT TITLE: Risk Management Strategy 2018/2019
DOCUMENT TYPE: Strategy DOCUMENT TITLE: Risk Management Strategy 2018/2019 SCOPE: Trust Wide AUTHOR / TITLE: Phebe Hemmings, Company Secretary Christine Morris, Interim Director of Governance REPLACES:
More informationRisk Management Framework
Risk Management Framework Purpose: Scope: This Risk Management Framework introduces Central Queensland Christian College s approach to risk management. It includes a definition of risk, a summary of the
More informationRISK MANAGEMENT POLICY
HASMONEAN HIGH SCHOOL REVIEWED: SEPTEMBER 205 TO BE REVIEWED: SEPTEMBER 206 REVIEWED BY: Executive Headteacher RISK MANAGEMENT POLICY TABLE OF CONTENTS. INTRODUCTION 2 2. RISK MANAGEMENT OBJECTIVES 2 3.
More informationINTEGRATED RISK MANAGEMENT FRAMEWORK (STRATEGY AND POLICY)
INTEGRATED RISK MANAGEMENT FRAMEWORK (STRATEGY AND POLICY) Version 1.5 (DRAFT) RATIFIED DATE BY WHOM Fylde and Wyre CCG Governing Body Fylde and Wyre CCG (F&W CCG) is committed to ensuring that, as far
More informationGift Aid and reliefs on donations
Report by the Comptroller and Auditor General HM Revenue & Customs Gift Aid and reliefs on donations HC 733 SESSION 2013-14 21 NOVEMBER 2013 4 Key facts Gift Aid and reliefs on donations Key facts 2bn
More informationPS 152 Corporate Risk Management Policy
PS 152 Corporate Risk Management Policy January 2013 Version 1.0 Statement of legislative compliance This document has been drafted to comply with the general and specific duties in the Equality Act 2010;
More informationENTERPRISE RISK MANAGEMENT (ERM) POLICY Republic Glass Holdings Corporation. Purpose. Goals
Purpose This Enterprise Risk Management Policy (the ERM policy) provides the framework for managing risks across ( RGHC or the Company ). It contains the policies to guide employees, management and the
More informationNagement. Revenue Scotland. Risk Management Framework
Nagement Revenue Scotland Risk Management Framework Table of Contents 1. Introduction... 2 1.2 Overview of risk management... 2 2. Policy statement... 3 3. Risk management approach... 4 3.1 Risk management
More informationRisk Management Policy Adopted by:
Risk Management Policy Adopted by: Infigen Energy Limited Infigen Energy (Bermuda) Limited Infigen Energy RE Limited in its capacity as Responsible Entity of Infigen Energy Trust Adopted: 17 December 2009
More informationDocumentation Control. Hazard Identification, Risk Assessment and Management Procedure. (This document is linked GG/CM/007- Risk Management Policy)
Documentation Control Reference: Date approved: 24 November 2016 Approving Body: (This document is linked GG/CM/007- Risk Management Policy) Trust Board (Medical Director) Implementation Date: 24 November
More informationRISK MANAGEMENT FRAMEWORK
RISK MANAGEMENT FRAMEWORK UNIQUE REF NUMBER: GB/AC/001/V2.1 DOCUMENT STATUS: Approved by Audit & Governance Committee 18 October 2018 DATE ISSUED: November 2018 DATE TO BE REVIEWED: November 2021 1 AMENDMENT
More informationOperational Risk Management
Operational Risk Management An Iceberg but Icebergs can melt DMF Stakeholders Forum Berlin, May 2013 Mike Williams mike.williams@mj-w.net Operational risk is: The risk of loss (financial or nonfinancial)
More informationPOLICY. Policy Title: Integrated Risk Management. Director, Strategic and Governance Services Centre
POLICY Policy Title: Integrated Risk Management Policy Owner: Keywords: Policy Code: Director, Strategic and Governance Services Centre Risk Management PL201 [rm001] Intent Organisational Scope Definitions
More informationWest Coast District Municipality. Risk Management Policy
West Coast District Municipality Risk Management Policy TABLE OF CONTENTS Page No. RISK MANAGEMENT POLICY 5 1. OVERVIEW 6 1.1. Policy Objective 6 1.2. Policy Statement 6 1.3. Risk Management Approach 6
More informationRisk Management Framework
Risk Management Framework Risk Management Framework 1. The University views Risk Management as integral to the successful execution of its Strategy. In order to achieve the aims set out in our strategy,
More informationTrust Board Meeting: Wednesday 9 July 2014 TB
Trust Board Meeting: Wednesday 9 July 2014 Title Risk Appetite Review Status History For approval The current Trust level Risk Appetite Statement was considered by: Quality Committee December 2012, Finance
More informationINVEST NI RISK MANAGEMENT STRATEGY AND POLICY
INVEST NI RISK MANAGEMENT STRATEGY AND POLICY Page 1 of 40 Version Control Version: Issue Date: 6 th October 2017 Approver: Carol Keery Status: Approved Next Review Date: 30 th September 2019 Version Author
More informationVersion: th November 2010 RISK MANAGEMENT POLICY
Version: 1.2-25th November 2010 RISK MANAGEMENT POLICY Document History Document Location To be completed. Revision History Date of this revision: 17/09/2010 Date of next revision: N/A Revision Number
More informationRisk Management. Policy No. 14. Document uncontrolled when printed DOCUMENT CONTROL. SSAA Vic
Document uncontrolled when printed Policy No. 14 Risk Management DOCUMENT CONTROL Version: Date approved by Board: On behalf of Board: Jack Wegman 17 March 2015 26 March 2015 Denis Moroney President Next
More informationRisk Management Plan PURPOSE: SCOPE:
Management Plan Authority Source: Vice-Chancellor Approval Date: 16/05/2018 Publication Date: 17/05/2018 Review Date: 17/05/2021 Effective Date: 16/05/2018 Custodian: General Counsel and University Secretary
More informationMeeting of Bristol Clinical Commissioning Group Governing Body
Meeting of Bristol Clinical Commissioning Group Governing Body To be held on Tuesday 30 June 2015 commencing at 13:30pm at the Greenway Centre, 119 Doncaster Road, BS10 5PY Title: Risk Appetite Statement
More informationNHS BROMLEY CLINICAL COMMISSIONING GROUP RISK MANAGEMENT STRATEGY
NHS BROMLEY CLINICAL COMMISSIONING GROUP RISK MANAGEMENT STRATEGY 1 CONTENTS Page Number Introduction 3 Purpose 4 Objectives 4 Systematic Approach to Risk Management 4 The Risk Management Structure 5 Risk
More informationHSC Business Services Organisation Board
Paper BSO 25/2009 HSC Business Services Organisation Board Risk Management 1. Purpose of this report The purpose of this report is to brief the Board on the BSO Risk Management process. 2. Background HSC
More informationRisk Management Procedure. Version Number: 6.0 Controlled Document Sponsor: Controlled Document Lead:
Risk Management Procedure CONTROLLED DOCUMENT CATEGORY: CLASSIFICATION: PURPOSE Controlled Document Number: Procedure Governance To detail the procedure for the management of risk 419 Version Number: 6.0
More informationUniversity of the Sunshine Coast (USC) Risk Appetite Statement
Vision and strategic goals University of the Sunshine Coast (USC) Risk Appetite Statement The University of the Sunshine Coast will be a university of international standing, a driver of capacity building
More informationSouth Lanarkshire College Risk Management Policy and Procedures
1. Purpose This policy and its procedures detail and communicate the College s approach to risk management. 2. Policy Statement South Lanarkshire College will effectively manage risk, taking all reasonable
More informationReference Check Completed by Joanne Phizacklea.Date 02/02/2017
Document Type: Strategy Document Title: Risk Management Strategy 2017/2018 Scope: Trust Wide Author / Title: Paul Jones, Company Secretary Carl Foulkes, Risk and Compliance Manager Replaces: Version 7,
More informationRisk Management Policy
Risk Management Policy May 2018 Contents 1.0 Purpose... 3 2.0 Scope... 3 3.0 Risk appetite... 3 4.0 Risk management process... 4 5.0 Measuring success... 7 6.0 Review of policy... 7 Appendix A Definitions
More informationConstruction projects: manage risk to achieve success
Construction projects: manage risk to achieve success By: Gareth Byatt, Principal Consultant Risk Insight Consulting Date: 12 th August 2017 Summary: This Paper discusses risk management on construction
More informationDraft Head of Internal Audit Opinion 2012/13 Isle of Wight NHS Trust
Draft Head of Internal Audit Opinion 2012/13 Isle of Wight NHS Trust. Contents Introduction 1 The Head of Internal Audit Opinion 2 Commentary 3 Appendix 1 - Key to Assurance Levels 7 Appendix 2 - Statement
More informationCO14: Risk Management Policy
Corporate CO14: Risk Management Policy Version Number Date Issued Review Date V3.1 20/12/17 30/04/2018 Prepared By: Consultation Process: Policy & Corporate Governance Lead, NHS County Durham & Darlington
More informationRisk Management ROYCE BRENNAN BT FINANCIAL GROUP
Update on APRA s Risk Management Prudential Standard ROYCE BRENNAN GENERAL MANAGER RISK BT FINANCIAL GROUP OUTLINE 1. APRA Risk Management Prudential Standards Current state Future state 2. Overview of
More informationTopic RISK MANAGEMENT Procedure Category Risk Management Updated 07/2011
Topic RISK MANAGEMENT Procedure 07.01 Category Risk Management Updated 07/2011 RELATED POLICIES, PROCEDURES AND FORMS Policies Procedures Forms Risk Management Policy Code of Conduct Public Interest Disclosure
More informationRisk Management Strategy
Risk Management Strategy Job title of lead contact: Corporate Services Manager Version number: Version 1 Group responsible for approving Executive Team / Governing Body the document: Date of final approval:
More informationFinance and Asset Management for Long Term Delivery. ICSH National Social Housing Conference, Limerick. 27 September 2017
Finance and Asset Management for Long Term Delivery ICSH National Social Housing Conference, Limerick 27 September 2017 Susanna Lyons Head Of Regulation Regulatory Focus Our mission is to protect AHB assets
More informationPillar 3 Disclosure ICAP Europe Limited
Pillar 3 Disclosure 31 st March 2017 1. INTRODUCTION AND SCOPE The purpose of this report is to meet Pillar 3 requirements laid out by the European Banking Authority (EBA) in Part Eight of the Capital
More informationRisk Management Policy
Risk Management Policy Contents Executive summary... 3 Aim & introduction... 3 Definitions... 3 Consequence... 3 Event... 3 Likelihood... 3 Risk... 4 Risk Appetite... 4 Risk Management... 4 Risk Management
More informationRisk Management Policy
Risk Management Policy 1 Document configuration control Policy Title Author/Job Title Policy Version Version 1.0 Status Reference and guidance Consultation Forum Risk Management Policy Jonathan Sutton
More informationPolicy Number: 040 Risk Management August 2018
Policy Number: 040 Risk Management August 2018 Policy Details 1. Owner Manager, Business Services 2. Compliance is required by Staff, contractors and volunteers 3. Approved by The Commissioner 4. Date
More informationRisk Management. Policy and Procedures
Risk Management Policy and Procedures POLICY SCHEDULE Policy title Policy owner Policy lead contact Approving body Date of approval/review Related Guidelines and Procedures Review interval Risk Management
More information