Agenda item

To review the Corporate Risk Register and consider if any further risks should be included.  

  i.  Having reviewed and scrutinised the Corporate Risk Register, that no further risks be included; and

  ii.  That no further action was required to mitigate risk 58.

By way of a report by the Audit and Risk Manager (a copy of which is appended in the Minute Book) the Cabinet were presented with the first report on risk management and the contents, reports having previously been submitted to the former Corporate Governance Panel.

The Risk Register was reviewed frequently by Heads of Service to ensure that it remained fit for purpose and captured the significant risks to the achievement of the Council’s objectives.

The report detailed the contents of the Risk Register as at 24 May 2016 and focused mainly on corporate risks. It was noted that the Risk Management Strategy required the Cabinet to consider each of the very high ‘red’ residual risks that exceeded their risk appetite levels, and to decide whether they should be further mitigated by cost-effective and affordable actions.

The Cabinet considered each of the ‘red’ residual risks as detailed in the Corporate Risk Register, as appended to the Officer’s report.

Regarding risk reference 239 – Huntingdon Town Centre redevelopment, it was explained that this risk had been classified as a transformational risk which according to the Risk Management Strategy was acceptable provided the benefits and risks were properly assessed and accepted before the redevelopment progressed.  The risk was likely to be downgraded or removed from the Risk Register as a reserve had been established to mitigate against the loss of Section 106 monies.

Having been advised that the Risk Register contained one very high operational risk, risk 58, that referred to information security and information use, it was explained that the risk owner was of the view that the loss of IT services was the key risk that needed to be addressed.  A number of systems had been successfully tested and recovered to their ‘live’ state since December 2014. With the introduction of the IT shared service, the programme needed to be extended to include all systems. Once that had been completed it was considered that the inherent risk score would reduce to an amber status.  The Cabinet agreed that no further action was required to mitigate risk 58.

Regarding risk reference 40 – Planning Policy may be insufficient to meet Government requirements, it was explained that the succeeding report on the Cabinet agenda provided a progress update on preparation of the Huntingdonshire Local Plan to 2036 (HLP2036), its supporting evidence base and highlighted the risks arising from delays to the Strategic Transport Study and the Strategic Flood Risk Assessment.  The Cabinet were informed that the Council had received confirmation that the Council had met the Government deadline for ‘writing’ a Local Plan by March 2017.

Regarding risk reference 47 - Council's funds not invested appropriately leading to losses or poor returns resulting in unexpected service cuts, it was explained to the Cabinet that there were a number of controls in place to ensure that investments were made in the most prudent way.

Risk reference 251 related to social media activity operating inconsistently leading to inappropriate and unauthorised use of social media by services.  It was explained that a Social Media Policy and Guidelines had been introduced to ensure Staff were aware of the correct procedures to follow.

Having thoroughly considered that the Corporate Risk Register incorporated the significant risks encountered by the Council and being satisfied that risks had been mitigated to an appropriate level, the Cabinet,

RESOLVED

  i.  that having reviewed and scrutinised the Corporate Risk Register, that no further risks be included; and

  ii.  that no further action was required to mitigate risk 58.