Agenda item

Risk Management Progress Report - September 2020

(To receive a report by Debbie Bowring (Principal Risk Officer) which invites the Committee to note the current status of the strategic risks facing the Council)

Minutes:

Consideration was given to a report which assisted the Committee in fulfilling its role in overseeing the effectiveness of the Council's risk management arrangements, challenging risk information and escalating issues to the executive.

 

The Committee was required to gain assurance that the systems and processes in place enabled decision makers to understand the level of risk that was being taken and that the Council was prepared to accept.

 

Members were guided through the report and provided with the opportunity to ask questions to the officers present in relation to the information contained within the report and some of the points raised during discussion included the following:

·         It was highlighted that there was some work still to do with CLT to update the strategic risks

·         It was noted that the risks had not really changed, but some of the mitigating actions had been given limited assurance where they had previously received substantial assurance.

·         It was queried whether any research had been carried out on what similar authorities were doing in terms of their risk environment and whether they were seeing risks emerge which had not been previously seen.  Members were advised that officers were members of several networks, and so were fully aware of any risks that were emerging from districts within Lincolnshire and in other counties.  Usually on an annual basis, a compare and contract exercise would be carried out with other authorities.  In addition to this, there was a group that looked at risks on a more regular basis to ensure that officers were kept up to date with the latest information as part of horizon scanning  It was noted that no risks were being identified which were not already on the county council's radar.

·         It was noted that risks were very different at different councils, for example, districts were very operational and so would see different risks to the county council which was more strategic.  Whilst no new risks were identified, it did highlight the differences between different organisations.

·         In relation to the risk heat map on page 337 of the agenda pack, it was clarified that the use of dark amber and light amber indicated a change to the risks, but not enough to move it to either green or red, therefore it was an indicator of direction of travel.

·         It was noted that on the heat map, risk 1 – safeguarding children and risk 9 - cyber security were both still red and it was queried whether there was any ongoing work on these risks to reduce the rating? In relation to Risk 1, this had gone from an amber rating to red, this was mainly due to the targets in relation to dental care and immunisations for children in care not being met which was due to the suspension of these services following the lockdown.  In terms of Risk 9, this was a continuous risk and would be unlikely to be reduced from red as the level of cyber-attacks had increased.  However, it was important to note the level of assurance for this risk and how the council would mitigate this risk.   It was also highlighted that risk 10 – IT infrastructure had improved from dark amber to light amber, this was due to the implementation of Microsoft Teams which had now been rolled out throughout the organisation and general improvements to IT infrastructure since lockdown.

 

RESOLVED

 

            That the Committee notes the current status of the strategic risks facing the Council.

Supporting documents:

 

 
 
dot

Original Text: