Issue - meetings

This report updates councillors on the position of the council’s Corporate Risk Register. The main updates are as follows:

·       CR4 – Loss or disruption to IT Systems and Networks from cyber attack – The title of this risk has been updated.

·       CR8 - Inability to run an election/referendum was removed during the quarter.

·       CR11 – Ability of the council to function and operate efficiently in the delivery of single services across the area of BCP was removed during the quarter.

·       CR14 – Continuity of Public Health arrangements for health protection – The title of this risk was updated and the content of this risk is currently under review.

·       CR15 – Effective People Strategy – This risk has been reviewed and the net risk score updated.

Material updates to the risks are summarised at section 8.

The Risk and Insurance Manager presented a report, a copy of which had been circulated to each Member and a copy of which appears as Appendix 'B' to these Minutes in the Minute Book.

The report provided an update for the Committee on the position relating to the Council’s Corporate Risk Register.  Material updates during the Quarter were summarised for the Committee. It was reported that the title of Risk CR4 (Loss or disruption to IT Systems and Networks from cyber attack) had been updated to better articulate the risk. In accordance with normal practice, Risk CR8 (Inability to run an election/referendum) had been removed during the Quarter following completion of the election period in May. Risk CR11 (Ability of the Council to function and operate efficiently in the delivery of single services across the area of BCP) was reported to have been removed from the Corporate Register for consideration at service risk level. Risk CR14 (Continuity of Public Health arrangements for health protection) would be the subject of further report as it was currently undergoing a refocus. Risk CR15 (Effective People Strategy) had been reviewed and the net risk score updated to reflect the impact of the deferment of the Pay and Reward programme.

In response to questions, the process of adding new risks was described including through the process of environmental scanning and Officer and elected Member discussion. The inclusion of risks additionally also took place through specific identification by the Audit and Governance Committee itself. It was explained that, at the level below the Corporate Risk Register, there were Service Risk Registers into which risks removed from the corporate list would be placed and, with involvement of the Risk Management team, these would continue to be reviewed and discussed as part of routine service risk review.

The Committee received an update on the ongoing subject of the ‘Dedicated Schools Grant Deficit’ (Corporate Risk CR9) and the update included outline details of an invitation for the Council to be involved in a Central Government initiative to address the issue and regular updates would be provided to the Committee as progress was made. In response to specific questions, updates would be separately provided to Members on Corporate Risks CR11 (Single service delivery across the area of BCP) and CR 19 (Planning application determination).

To enable new Members of the Committee to better understand the context of the risk and appreciate the dynamic nature of the Register, a risk history summary of the previous year would also be prepared for issue to Members.

RESOLVED that Members of the Audit and Governance Committee note the update provided in this report relating to corporate risks.

Voting: Unanimous