Risk Management
Risk management is integral to good management and governance. Its focus is to understand and manage the Council’s threats and opportunities, striving to create an environment of ‘no surprises’ and supporting good decision-making.
All Councillors and employees have a responsibility for risk management. This includes the identification, evaluation and management of all risks and opportunities that could affect the achievement of the Council’s objectives.
The Council has a statutory obligation to have risk management arrangements in place. Our approach is explained in the Risk Management Framework which sets out the objectives of risk management and describes the methodology.
Risk Management Framework
The Risk Management Framework recognises the importance of the effective management of risks at all levels within the Council and aims to inform the allocation of resources to achieve stated priorities and delivery of best value.
Risk management framework (MS Word, 614KB)
Risk Processes
The Council aims to align its risk processes with the organisation’s reporting lines, seeking to embed risk management into business as usual while creating value at all levels.
There are three main types of risks:
- Strategic risks – The strategic risk register is maintained by the Head of Audit and Risk and reported upon regularly to the Corporate Leadership Team (CLT), the Corporate Policy Committee and the Audit and Governance Committee.
- Service risks – Each service is expected to maintain its own risk register via the SharePoint Risk Management app. For access to the app and support, contact RiskSupport@cheshireeast.gov.uk.
- Project risks – These are risks captured in relation to delivery of specific project’s stated outcomes and is supported by the various project governance arrangements in place throughout the Council. You can contact the Council’s Programme Management Office (part of the Transformation and Improvement service) for advice and guidance on project management.
Risk management should form part of your business or project planning to help you ensure the desired outcomes are achieved. Guidance for the identification and assessment of service risks can be found in the Practitioner risk on a page document (PDF, 157KB).
For any additional risk management support contact RiskSupport@cheshireeast.gov.uk
Governance and monitoring of the Council’s risks
Risk owners should ensure their existing risks are regularly assessed and also consider if any new or emerging risks need to be formally documented. Risk owners should also ensure that there is reasonable awareness of their risks for all relevant stakeholders, including the escalation of potential material events so they can be mitigated and monitored.
The Corporate Policy Committee receives regular updates on the Strategic Risk Register, as part of it’s co-ordinating role across all other committees, and to have a corporate view of outcomes, performance, budget monitoring and risk management.
The Audit and Governance Committee is responsible for reviewing the effectiveness of the risk management, control and governance arrangements operating in the organisation, and receives reports, and will receive updates on the Strategic Risk Register as part of its assurance role.