POLICY : CORPORATE RISK MANAGEMENT
|
|
- Bonnie Howard
- 8 years ago
- Views:
Transcription
1 APPENDIX 5 POLICY : CORPORATE RISK MANAGEMENT 1 Scope This is a Service wide policy. 2 Aims and Objectives Lancashire Combined Fire Authority provides services to a diverse range of people and organisations, in an ever-changing environment. As such the potential for disruption to services or the loss or damage to assets from a vast range of risks is inherent. Therefore, it is essential that the Authority takes appropriate action to minimise the potential for loss or damage through active risk management. 3 Policy POLICY STATEMENT Risk Management is the process of identifying significant risks to the achievement of the organisation s strategic and operational objectives, evaluating their potential consequences and implementing the most effective way of controlling them. RISK MANAGEMENT OBJECTIVES The risk management policy is designed to safeguard the achievement of the Service s objectives through the effective control of risks, which threaten their achievement. In addition the policy is intended: To ensure best value and best practice are achieved in the management of risks. To regard compliance with legal and regulatory requirements as a minimum standard. To identify and respond to changing social, environmental and legislative requirements. 1
2 To prevent injury, damage and loss to stakeholders and employees or their property. To reduce the overall cost of risk. To integrate risk management into the culture of the Authority. To support staff in their efforts to manage the risks to which they are exposed. To ensure compliance with the Authority s Code of Corporate Governance. RESPONSIBILITIES The variety of risks to which the Authority is exposed is such that a multi-layered approach will need to be adopted to ensure full integration of the risk management culture into all levels of the Authority. Elected Members have the responsibility to ensure the implementation of appropriate risk management structures and processes, and to provide sufficient resources to meet agreed objectives. An elected member sits in the Risk Management Group, to ensure appropriate member input to this group. The Audit Committee has overall responsibility for risk management within the Authority. It is responsible for agreeing the risk management strategy and the risk management policy, as well as reviewing the risk register on a regular basis. This culminates in the Committees consideration of the Annual Governance Statement, which includes reference to risk management arrangements. The Executive Board has overall responsibility for ensuring that the Authority manages risk effectively through the development of a comprehensive risk management strategy and policy and those decisions taken by both the Authority s Members and management give full consideration to the risks associated with those policies. The Service Management Team is responsible for reviewing departmental risks on a regular basis. The Services Risk Management Group is responsible for developing, implementing and reviewing a risk management strategy, setting out the specific programmes, procedures and activities designed to ensure that policy objectives are met, for reviewing actions taken to address key risks and for updating/reviewing the risk register. The Group is also responsible for reviewing departmental risk registers to ensure that any key risks are included on the risk register. Heads of Departments and other Service Management are each responsible for ensuring that proper procedure are in place to effectively identify, evaluate and manage risks within their Service areas. All departments should prepare and maintain a departmental risk register, based on the analysis, in line with this policy and the scoring mechanisms outlined NB: All major projects undertaken will have an associated project risk register as per the Project Management Framework. Heads of Departments and other Service Management should make recommendation as to which departmental risks are transferred to the risk register. Individual managers and employees are each charged with the effective management of the risks associated with their particular roles and duties, and for 2
3 ensuring that significant risks are identified to senior management as soon as they become known. The risk management group is available to support this activity through the provision of training, information and technical assistance as required. RISK MANAGEMENT PROCESS The basis principles of risk management are the identification analysis, control and monitoring of risks. The processes associated with these are: Risk Identification In order to enable risk to be effectively managed, the nature of the risk must first be identified. This can be done by reviewing the Services/Departments strategic, operational and project objectives and identifying all significant risks, which could impact upon their achievement. This also includes risks associated with business continuity issues. Risk Analysis Once risks have been identified they need to be assessed in terms of their likelihood and their potential impact on the Service/Department/Project. Based on this assessment the risks which require the greatest level of management can be identified, i.e. those with a high likelihood of occurrence and the severity of impact, with the overall risk assessment being the combination of the two scores, as set out below (Note, the risk scores are a guide only and some subjective judgement may be required to better reflect the magnitude of the overall risk): Likelihood 5 4 Certain Almost certain Very likely Likely Unlikely Rare/Very Unlikely Minor Noticeable Significant Critical Catastroph ic Impact The overall scores represent the relative importance of the combination of impact and likelihood. This feeds a traffic light system which categories risk, in order to identify the relative priorities and the need for action, as follows: 3
4 high red (a score of 15 or more) medium amber ( score of between 7 and 14) low green (a score of less than7) In order to assess this the following criteria should be applied: Likelihood Probability 5 Certain/Almost certain Greater than 90% 4 Very likely 65% to 90% 3 Likely 35% to 65% 2 Unlikely 5% to 35% 1 Rare/Very Unlikely Less than 5% Minor Noticeable Significant Critical Catastrophic Financial 0k - 100k - 100k 250K Service No impact No impact Provision Health Safety Objectives KPIs & Cuts & bruises No impact on objectives No impact on Key Performa nce Indicators Broken bones/illness departmental objectives not met Key Performance Indicators not met by less than 10% 250k - 1m 1m - 2m 2m+ Services reduced but still able to meet statutory duties Loss of life/ major illness One objective not met Key Performance Indicator not met by between 10% & 20% Reputation - - Adverse local media leader Government Relations - - Poor assessments Services suspended and unable to meet statutory duties for a short period Significant loss of life/ major illness Two objectives not met Key Performance Indicators not met by between 20% and 50% Adverse national publicity Service taken over temporarily Services suspended and unable to meet statutory duties for a long period Major loss of life/ large scale major illness objectives not met Key Performance Indicators not met by more than 50% Adverse national publicity for an extended period Service taken over permanently 4
5 Risk Mitigation Risk mitigation is the process of taking action to minimise the likelihood of the risk event occurring, the frequency with which it might occur and/or reducing the severity of the consequence should it occur. This will involve for example risk avoidance, risk transfer and/or introduction of operating controls. The controls already in place and any additional controls required will be identified and recorded for each of the key risks. (Note the benefit of controls should always be evaluated against the additional cost of these). Risk Recording The risks and control measures will be recorded in a Risk Register in the prescribed format. A process for review of the risks and related controls will be established, to assess how effective the policy has been. The register will contain the following information: Description of risk Assessment of likelihood and impact to determine the risk score Controls in place Controls planned Risk owner Review date Risk Review and Monitoring Corporate and departmental risk registers should be maintained on a regular basis by updating them to reflect changes to existing risks, or to reflect the identification of new risks. On as rolling basis departmental risk registers will be presented to Service Management Team, including a recommendation as to which risk are referred to the Risk Management Working Group for inclusion the risk register. Where risks are referred to the Risk Management Working Group the relevant risk owner must submit a report detailing: What the risk is What the inherent risk is What action has been taken to mitigate against it, including any change since the risk was last reported What the level of residual risk is What further action is recommended and the timeframe for this The Corporate Risk Management Working Group will consider risks flagged up by departmental managers and agree remedial or mitigating actions, determining the overall priority and monitoring progress until such time as the risk is effectively brought under control and can be discharged from the risk register. An audit trail of all changes to the risk register should be maintained. The risk register will be reviewed on an annual basis by the Audit Committee and the success of the control measures evaluated. 5
6 Note: Projects risks are monitored by the project manager regularly through the life of the project via the Project Risk register and therefore additional reports are not required. The Inclusion of Risk Management Implications in Reports Risk Management implications must be included in all reports so that these can be taken into account in the decision making process. As such a separate section should be inserted in all Committee/Management Team reports in which the author states what, if any, risks have been identified and how these will be managed. If no risks have been identified a statement should be made to that effect. Opportunity Risk The above process deals with risk relating to threats to the organisations achievement of objectives. In addition to these there are also opportunity risks. These arise where there is uncertainty in terms of the outcome of issues, but where there is a potential opportunity to improve services dependant upon the final outcome. In these instances a similar process should be undertaken to that described above: Identify the opportunity Identify which objective it links into Identify what likelihood and impact arising from this are Identify what controls are in place to ensure the opportunity materialises in a positive way Identify an owner to progress and monitor this An example of this is the potential to second lifing of crew cabs and bodies. This provides an opportunity to reduce costs and improve our environmental impact. These would mitigate against the risk of inefficient use of resources and also the impact of our actions on the environment. However, at the present time more work is required and we need to explore more fully the long term cost implications of implementing this policy. Ultimately a decision may need to be made considering the cost of taking the opportunity against the benefits received. In this case if the long term costs of second lifing cabs and bodies does not deliver any savings it may still be work considering from an environmental impact. If, on the other hand it costs more in the long term a decision would need to be made as to whether the additional costs were outweighed by the environmental benefits. 4 Equality and Diversity Impact Assessment The changes do not impact on the previous Equality and Diversity impact assessment which did not identify any issues for further consideration. 5 Reference Documents None 6
7 6 Approval Agency Audit Committee 7
8 7 Approval Dates This Policy was originally approved in March 2006 This version was approved in Jan 2011 This version takes effect from Jan 2011 This Policy was reviewed in Jan 2011 Next review date March Policy Sponsor Director of Finance 9 Diversity and Equality Statement Lancashire Fire and Rescue Service is committed to the principles of diversity and equality and the elimination of discriminatory practices. These principles are applied to the treatment of all individuals, whether members of the public, or own staff, be those fire officers, support staff or volunteers. This policy will be implemented in a non-discriminatory manner. Members of Lancashire Fire and Rescue Service administering this policy are responsible for ensuring that in their application, those to whom the policy applies, shall not receive less favourable treatment because of their age, colour, disability, ethnic or national origin, gender reassignment, marital status, nationality, race, religion, sex or sexual orientation. 8
Risk Management Policy and Process Guide
Risk Management Policy and Process Guide Status: pending Next review date: December 2015 Page 1 Information Reader Box Directorate Medical Nursing Patients & Information Commissioning Operations (including
More informationBridgend County Borough Council. Corporate Risk Management Policy
Bridgend County Borough Council Corporate Risk Management Policy December 2014 Index Section Page No Introduction 3 Definition of risk 3 Aims and objectives 4 Strategy 4 Accountabilities and roles 5 Risk
More informationRisk Methodology. Contents. Introduction... 2. The Risk Management Structure... 2. The Risk Management Cycle... 2. Methodology...
Risk Methodology Contents Introduction... 2 The Risk Management Structure... 2 The Risk Management Cycle... 2 Methodology... 3 Appendix 1...5 Definition of Controls... 5 Appendix 2...6 Definition of Impact...
More informationThe Risk Management strategy sets out the framework that the Council has established.
Derbyshire County Council Management Policy Statement The Authority adopts a proactive approach to Management to achieve Best Value and continuous improvement and is committed to the effective management
More informationCORPORATE RISK MANAGEMENT POLICY
CORPORATE RISK MANAGEMENT POLICY 1. INTRODUCTION 1.1 The North Wales Fire & Rescue Authority provides services to a diverse range of people and organisations. It operates in an ever-changing environment,
More informationRisk Assessment Tool and Guidance (Including guidance on application)
Risk Assessment Tool and Guidance (Including guidance on application) Document reference number Revision number OQR012 Document developed by 5 Document approved by Revision date October 2011 Responsibility
More informationRisk Management Within an Organisation
COUNTY DURHAM AND DARLINGTON FIRE AND RESCUE SERVICE Administration and General Order No. AD/1/TBC CORPORATE RISK MANGEMENT POLICY 1. INTRODUCTION 1.1 County Durham and Darlington Combined Fire Authority
More informationRISK MANAGEMENT POLICY. Version 3
RISK MANAGEMENT POLICY Version 3 Version: Version 3 Version 3 Authors: Liz Hollman, Mary Klaus, Sarah Langan-Hart Approved by: Healthcare Governance Committee Trust Board Approved date: May 2009 Review
More informationBusiness Continuity Management Policy
Business Continuity Management Policy May 2009 Document Document drafted by Office of Quality and Risk Reference Number OQR032 Document approved by Ms. E. Dunne, Head of Quality and Risk Revision Number
More informationCost improvement plans Quality Impact Assessment (QIA)
Trust Board in public REPORT TITLE: EXECUTIVE SPONSOR/AUTHOR: AUTHOR Date: 28 November 2013 Agenda Item: 3.2 Cost improvement plans Quality Impact Assessment (QIA) Paul Simpson (Chief Finance Officer)
More informationRisk Management Strategy and Policy. The policy provides the framework for the management and control of risk within the GOC
Annex 1 TITLE VERSION Version 2 Risk Management Strategy and Policy SUMMARY The policy provides the framework for the management and control of risk within the GOC DATE CREATED January 2013 REVIEW DATE
More informationRISK MANAGEMENT STRATEGY
RISK MANAGEMENT STRATEGY 1 Introduction The purpose of this document is to outline a which facilitates the effective recognition and management of risks facing the University. The Combined Code on Corporate
More informationSouth West Lincolnshire NHS Clinical Commissioning Group Business Continuity Policy
South West Lincolnshire NHS Clinical Commissioning Group Business Continuity Policy Reference No: CG 01 Version: Version 1 Approval date 18 December 2013 Date ratified: 18 December 2013 Name of Author
More informationVersion: 3.0. Effective From: 19/06/2014
Policy No: RM66 Version: 3.0 Name of Policy: Business Continuity Planning Policy Effective From: 19/06/2014 Date Ratified 05/06/2014 Ratified Business Service Development Committee Review Date 01/06/2016
More informationBusiness Continuity Management
Business Continuity Management Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not
More informationAll CCG staff. This policy is due for review on the latest date shown above. After this date, policy and process documents may become invalid.
Policy Type Information Governance Corporate Standing Operating Procedure Human Resources X Policy Name CCG IG03 Information Governance & Information Risk Policy Status Committee approved by Final Governance,
More informationRISK MANAGEMENT POLICY
DOCUMENT TYPE: DOCUMENT STATUS: POLICY OWNER POSITION: INTERNAL COMMITTEE ENDORSEMENT: APPROVED BY: Council policy Approved Manager Organisational Development Risk Management Committee Council DATE ADOPTED:
More informationNorthern Ireland Blood Transfusion Service
Northern Ireland Blood Transfusion Service Risk Management Strategy Northern Ireland Blood Transfusion Service Lisburn Road Belfast BT9 7TS Telephone No. 028 9032 1414 www.nibts.org Page 1 of 12 CONTENTS
More informationDORSET & WILTSHIRE FIRE AND RESCUE AUTHORITY Performance, Risk and Business Continuity Management Policy
Not Protectively Marked Item 6 Appendix B DORSET & WILTSHIRE FIRE AND RESCUE AUTHORITY Management Policy The Dorset & Wiltshire Fire and Rescue Authority () is the combined fire and rescue authority for
More informationRiver Stour (Kent) Internal Drainage Board Risk Management Strategy and Policy
River Stour (Kent) Internal Drainage Board Risk Management Strategy and Policy Page: 1 Contents 1. Purpose, Aims & Objectives 2. Accountabilities, Roles & Reporting Lines 3. Skills & Expertise 4. Embedding
More informationHow To Manage Risk In Ancient Health Trust
SharePoint Location Non-clinical Policies and Guidelines SharePoint Index Directory 3.0 Corporate Sub Area 3.1 Risk and Health & Safety Documents Key words (for search purposes) Risk, Risk Management,
More informationRisk Management Policy
Risk Management Policy Responsible Officer Author Ben Bennett, Business Planning & Resources Director Julian Lewis, Governance Manager Date effective from December 2008 Date last amended December 2012
More informationRisk Management: Coordinated activities to direct and control an organisation with regard to risk.
POLICY CG01 RISK MANAGEMENT Document Control Statement This Policy is maintained by the Governance and Organisational Strategy. Any printed copy may not be up to date and you are advised to check the electronic
More informationBedford Group of Drainage Boards
Bedford Group of Drainage Boards Risk Management Strategy Risk Management Policy January 2010 1 Contents 1. Purpose, Aims & Objectives 2. Accountabilities, Roles & Reporting Lines 3. Skills & Expertise
More informationQuality and Engagement Sub Committee
Quality and Engagement Sub Committee 12 June 2012 Corporate Risk Register and Risk Management Strategy Executive Summary As part of authorisation, Blackpool Clinical Commissioning Group (CCG) must identify
More informationSolihull Clinical Commissioning Group
Solihull Clinical Commissioning Group Business Continuity Policy Version v1 Ratified by SMT Date ratified 24 February 2014 Name of originator / author CSU Corporate Services Review date Annual Target audience
More informationPROCEDURE Health and Safety - Incident Investigation. Number: J 0103 Date Published: 18 March 2015
1.0 Summary of Changes This is a new procedure which should be read by all members of staff so they are aware of what health and safety incidents can be reported, what the definition of when a person is
More informationRatified by: Fully ratified via committee 2008
Reference: Author & Title: Responsible Director: Performance Review and Development Policy Andy Catterall HR Director HRD Review Date: March 2015 Ratified by: Fully ratified via committee 2008 Date Ratified:
More informationEssex Clinical Commissioning Groups. Business Continuity Management System. Scope and Policy
Essex Clinical Commissioning Groups Essex Clinical Commissioning Groups Business Continuity Management System Scope and Policy Policy Author: Daniel Hale - Head of Emergency Planning Version: 1.0 Date
More informationRISK MANAGEMENT AND COMPLIANCE
RISK MANAGEMENT AND COMPLIANCE Contents 1. Risk management system... 2 1.1 Legislation... 2 1.2 Guidance... 3 1.3 Risk management policy... 4 1.4 Risk management process... 4 1.5 Risk register... 8 1.6
More informationWaveney Lower Yare & Lothingland Internal Drainage Board Risk Management Strategy and Policy
Waveney Lower Yare & Lothingland Internal Drainage Board Risk Management Strategy and Policy Page: 1 Contents 1. Purpose, Aims & Objectives 2. Accountabilities, Roles & Reporting Lines 3. Skills & Expertise
More informationBusiness Continuity Management; Guidance for Policy Implementation
Business Continuity Management; Guidance for Policy Implementation May 2009 Document Document drafted by Office of Quality and Risk Reference Number OQR033 Document approved by Ms. E. Dunne, Head of Quality
More information39 GB Guidance for the Development of Business Continuity Plans
39 GB Guidance for the Development of Business Continuity Plans Policy number: Version 2.2 Approved by Name of author/originator Owner (director) 39 GB Executive Committee Date of approval August 2014
More informationVersion Number Date Issued Review Date V1 25/01/2013 25/01/2013 25/01/2014. NHS North of Tyne Information Governance Manager Consultation
Northumberland, Newcastle North and East, Newcastle West, Gateshead, South Tyneside, Sunderland, North Durham, Durham Dales, Easington and Sedgefield, Darlington, Hartlepool and Stockton on Tees and South
More informationProject Risk Analysis toolkit
Risk Analysis toolkit MMU has a corporate Risk Management framework that describes the standard for risk management within the university. However projects are different from business as usual activities,
More informationInformation Governance Strategy
Information Governance Strategy Document Status Draft Version: V2.1 DOCUMENT CHANGE HISTORY Initiated by Date Author Information Governance Requirements September 2007 Information Governance Group Version
More informationThe Lowitja Institute Risk Management Plan
The Lowitja Institute Risk Management Plan 1. PURPOSE This Plan provides instructions to management and staff for the implementation of consistent risk management practices throughout the Lowitja Institute
More informationRISK MANAGEMENT GUIDANCE FOR GOVERNMENT DEPARTMENTS AND OFFICES
RISK MANAGEMENT GUIDANCE FOR GOVERNMENT DEPARTMENTS AND OFFICES GOVERNMENT ACCOUNTING SECTION DEPARTMENT OF FINANCE MARCH 2004 Risk Management Guidance CONTENTS Pages List of guidelines on risk management
More informationLEICESTERSHIRE COUNTY COUNCIL RISK MANAGEMENT POLICY STATEMENT 2011-2012
106 LEICESTERSHIRE COUNTY COUNCIL RISK MANAGEMENT POLICY STATEMENT 2011-2012 Leicestershire County Council believes that managing current and future risk, both opportunity and threat, is increasingly vital
More informationRISK MANAGEMENT POLICY
RISK MANAGEMENT POLICY Nuffield College s Risk Management Policy defines the College's approach to risk and how risk management should be embedded into management processes to ensure that the major risks
More informationHow To Ensure That Sovini Is A Successful Business
Group Risk Management Policy Originator: Approval date: Policy and Strategy Team Sovini Board PCHA Board OVH Board/EMT 6 th December 2013 31 st October 2013 14 th October 2013 Review date: December 2014
More informationFire Safety Policy. This section must be completed for all documents. Mark Garthwaite, Fire Team Manager, SERCO ASP
Fire Safety Policy This section must be completed for all documents Lead Author Mark Garthwaite, Fire Team Manager, SERCO ASP Developed by Sharon Fox, Deputy Director of Corporate Affairs Rachel Conlon,
More informationProject Management Toolkit Version: 1.0 Last Updated: 23rd November- Formally agreed by the Transformation Programme Sub- Committee
Management Toolkit Version: 1.0 Last Updated: 23rd November- Formally agreed by the Transformation Programme Sub- Committee Page 1 2 Contents 1. Introduction... 3 1.1 Definition of a... 3 1.2 Why have
More informationInformation Governance Policy
Author: Susan Hall, Information Governance Manager Owner: Fiona Jamieson, Assistant Director of Healthcare Governance Publisher: Compliance Unit Date of first issue: February 2005 Version: 5 Date of version
More informationRisk Management Strategy and Guidelines
Swale Borough Council Risk Management Strategy and Guidelines Status: Final Originating Date: January 2008 Date Ratified: February 2008 (Audit Committee) Next Review Date: January 2009 Accountable Member:
More informationV1.0 - Eurojuris ISO 9001:2008 Certified
Risk Management Manual V1.0 - Eurojuris ISO 9001:2008 Certified Section Page No 1 An Introduction to Risk Management 1-2 2 The Framework of Risk Management 3-6 3 Identification of Risks 7-8 4 Evaluation
More informationCorporate Risk Management Policy
Corporate Risk Management Policy Managing the Risk and Realising the Opportunity www.reading.gov.uk Risk Management is Good Management Page 1 of 19 Contents 1. Our Risk Management Vision 3 2. Introduction
More informationERM Program. Enterprise Risk Management Guideline
ERM Program Enterprise Management Guideline Table of Contents PREAMBLE... 2 When should I refer to this Guideline?... 3 Why do we need a Guideline?... 4 How do I use this Guideline?... 4 Who is responsible
More informationConsultation on financial management guidelines for defined benefit schemes
Consultation on financial management guidelines for defined benefit schemes Introduction Trustees of defined benefit (DB) schemes are faced with complicated financial responsibilities, and this requires
More informationRisk Management in the HSE; An Information Handbook
Risk Management in the HSE; An Information Handbook Document reference number Revision number OQR011 Revision date October 2011 Review date Document developed by 5 Document approved by October 2013 Responsibility
More informationManaging Risk in Procurement Guideline
Guideline DECD 14/10038 Managing Risk in Procurement Guideline Summary The Managing Risk in Procurement Guideline assists in the identification and minimisation of risks involved in the acquisition of
More informationIS INFORMATION SECURITY POLICY
IS INFORMATION SECURITY POLICY Version: Version 1.0 Ratified by: Trust Executive Committee Approved by responsible committee(s) IS Business Continuity and Security Group Name/title of originator/policy
More informationAberdeen City Council IT Security (Network and perimeter)
Aberdeen City Council IT Security (Network and perimeter) Internal Audit Report 2014/2015 for Aberdeen City Council August 2014 Internal Audit KPIs Target Dates Actual Dates Red/Amber/Green Commentary
More informationCCG: IG06: Records Management Policy and Strategy
Corporate CCG: IG06: Records Management Policy and Strategy Version Number Date Issued Review Date V3 08/01/2016 01/01/2018 Prepared By: Consultation Process: Senior Governance Manager, NECS CCG Head of
More informationEquality with Human Rights Analysis Toolkit
Equality with Human Rights Analysis Toolkit The Equality Act 2010 and Human Rights Act 1998 require us to consider the impact of our policies and practices in respect of equality and human rights. We should
More informationPerformance Management Unit. Performance Management Framework
Performance Management Unit Performance Management Framework Issue: 4 Author Amanda Jenkins Performance Management Officer Date of Issue 25 th May 2007 Last Revised February 2011 Version Issue 4 Contents
More informationLiverpool Hope University. Equality and Diversity Policy. Date approved: 14.04.2011 Revised (statutory. 18.02.2012 changes)
Liverpool Hope University Equality and Diversity Policy Approved by: University Council Date approved: 14.04.2011 Revised (statutory 18.02.2012 changes) Consistent with its Mission, Liverpool Hope strives
More informationSpecification for Learning and Qualifications for Common Security Industry Knowledge
Specification for Learning and Qualifications for Common Security Industry Knowledge December 2014 Security Industry Authority PO Box 49768 London WC1V 6WY E-mail info@the-sia.org.uk www.the-sia.org.uk
More informationCCG CO11 Moving and Handling Policy
Corporate CCG CO11 Moving and Handling Policy Version Number Date Issued Review Date V2 06/11/2015 01/10/2017 Prepared By: Consultation Process: Formally Approved: 05/11/2015 Governance Manager, North
More informationBusiness Continuity Management Framework 2014 2017
Business Continuity Management Framework 2014 2017 Blackpool Council Business Continuity Framework V3.0 Page 1 of 13 CONTENTS 1.0 Forward 03 2.0 Administration 04 3.0 Policy 05 4.0 Business Continuity
More informationJOB DESCRIPTION. Corporate Governance Manager. 45 hours per week. Director of Compliance & Governance. London with national responsibilities
JOB DESCRIPTION POST: SALARY: HOURS: REPORTS TO: LOCATION: Corporate Governance Manager 40,000 per annum 45 hours per week Director of Compliance & Governance London with national responsibilities JOB
More informationInformation Governance Policy
Information Governance Policy Policy ID IG02 Version: V1 Date ratified by Governing Body 27/09/13 Author South Commissioning Support Unit Date issued: 21/10/13 Last review date: N/A Next review date: September
More informationBUSINESS CONTINUITY MANAGEMENT POLICY
BUSINESS CONTINUITY MANAGEMENT POLICY AUTHORISED BY: DATE: Andy Buck Chief Executive March 2011 Ratifying Committee: NHS Rotherham Board Date Agreed: Issue No: NEXT REVIEW DATE: 2013 1 Lead Director John
More informationRISK MANAGEMENT STRATEGY 2014-17
RISK MANAGEMENT STRATEGY 2014-17 DOCUMENT NO: Lead author/initiator(s): Contact email address: Developed by: Approved by: DN128 Head of Quality Performance Julia.sirett@ccs.nhs.uk Quality Performance Team
More informationBusiness Continuity Policy
Business Continuity Policy Summary: This policy sets out the structure for ensuring that the PCT has effective Business Continuity Plans in place in order to maintain its essential business functions during
More informationLondon Legacy Development Corporation s Statement of Risk Appetite September 2015
London Legacy Development Corporation s Statement of Risk Appetite September 2015 Appendix 1 1. INTRODUCTION 1.1 Her Majesty s Treasury uses the Orange Book definition of risk management The amount of
More informationNHS Commissioning Board: Information governance policy
NHS Commissioning Board: Information governance policy DOCUMENT STATUS: To be approved / Approved DOCUMENT RATIFIED BY: DATE ISSUED: October 2012 DATE TO BE REVIEWED: April 2013 2 AMENDMENT HISTORY: VERSION
More informationProposed guidance for firms outsourcing to the cloud and other third-party IT services
Guidance consultation 15/6 Proposed guidance for firms outsourcing to the cloud and other third-party IT services November 2015 1. Introduction and consultation 1.1 The purpose of this draft guidance is
More informationShepway District Council Risk Management Policy
Shepway District Council Risk Management Policy Contents Section 1 Risk Management Policy... 3 1. Updates and amendments... 3 2. Definition... 3 3. Policy statement... 3 4. Objectives... 3 Section 2 Risk
More informationBusiness Continuity Policy
Page 1 of 16 Business Continuity Policy Issue Date: Aug 2013 Document Number: 00241 Prepared by: Business Management and Continuity Senior Manager Next Review Date: April 2014 Page 2 of 16 NHS England
More informationVersion Adoption by Council: 2013 Resolution Number: 2013/177 Current Version: V1.0 Administered by: Governance Coordinator
Risk Management Framework Version Adoption by Council: 2013 Resolution Number: 2013/177 Current Version: V1.0 TRIM CON: 12/1132 Administered by: Governance Coordinator Last Review Date: 2013 Next Review
More informationThe Human Rights Impact Assessment for Security Measures
The Human Rights Impact Assessment for Security Measures Developing Security Measures that Respect Human Rights For more information about this guide, contact: Canadian Human Rights Commission 344 Slater
More informationRISK MANAGEMENT FOR INFRASTRUCTURE
RISK MANAGEMENT FOR INFRASTRUCTURE CONTENTS 1.0 PURPOSE & SCOPE 2.0 DEFINITIONS 3.0 FLOWCHART 4.0 PROCEDURAL TEXT 5.0 REFERENCES 6.0 ATTACHMENTS This document is the property of Thiess Infraco and all
More informationBusiness Continuity Policy
Business Continuity Policy Page 1 of 15 Business Continuity Policy First published: Amendment record Version Date Reviewer Comment 1.0 07/01/2014 Debbie Campbell 2.0 11/07/14 Vicky Ryan Updated to include
More informationEQUALITY AND DIVERSITY POLICY & PROCEDURE MICHAEL W HALSALL (SOLICITORS)
EQUALITY AND DIVERSITY POLICY & PROCEDURE MICHAEL W HALSALL (SOLICITORS) JANUARY 2010 Michael W Halsall Anti-Discrimination Policy Introduction Michael W. Halsall Solicitors serves a diverse client base.
More informationInformation & ICT Security Policy Framework
Information & ICT Security Framework Version: 1.1 Date: September 2012 Unclassified Version Control Date Version Comments November 2011 1.0 First draft for comments to IT & Regulation Group and IMG January
More informationSlips, Trips and Falls Policy. Documentation Control
Documentation Control Reference HS/SP/015 Date approved 23 Approving body Directors Group Implementation date 23 Supersedes Version 2 (March 2010) Consultation undertaken Trust Health and Safety Committee
More informationCorporate governance framework and toolkit for working in partnerships
Corporate governance framework and toolkit for working in partnerships How to use this document All officers and elected members involved in partnership working need to be aware of this document. Lead
More informationHow To Help The Council With Its Finances
COUNCIL TAX AND BUSINESS RATES RECOVERY PROCEDURE SECTIONS 1. The Council s Aims 2. The Revenues Service 3. The Legal Framework 4. Demand Notice 5. Joint & Several Liability 6. Instalments 7. Methods of
More informationRisk Management Policy and Framework
Risk Management Policy and Framework December 2014 phone 1300 360 605 08 89589500 email info@centraldesert.nt.gov.au location 1Bagot Street Alice Springs NT 0870 post PO Box 2257 Alice Springs NT 0871
More informationInitial Equality Impact Assessment
Initial Equality Impact Assessment Department Service Area Date 20/10/11 This Initial EqIA will help you to analyse equality in the context of your policy, practice or function. The assessment is a useful
More informationSecurity Management of Government Buildings
GUIDELINE Security Management of Government Buildings The Queensland Government has a responsibility to ensure its services are resilient to all foreseeable risks. In the context of security management,
More informationNORTH HAMPSHIRE CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY MANAGEMENT POLICY AND PLAN (COR/017/V1.00)
NORTH HAMPSHIRE CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY MANAGEMENT POLICY AND PLAN (COR/017/V1.00) Subject and version number of document: Serial Number: Business Continuity Management Policy
More informationCCG CO11 Moving and Handling Policy
Corporate CCG CO11 Moving and Handling Policy Version Number Date Issued Review Date V1: 28/02/2013 04/03/2013 31/08/2014 Prepared By: Consultation Process: Formally Approved: Information Governance Advisor
More informationENTERPRISE RISK M A NAGEMENT POLICY
Tablelands Regional Council ENTERPRISE RISK M A NAGEMENT POLICY Draft Final Policy No: PD 3.3.1 File ref: PD 3.3.1 Policy Section: INSURANCE AND RISK MANAGEMENT Version: 1 Date Adopted: 7 July 2010 Review
More informationThe Newcastle upon Tyne Hospitals NHS Foundation Trust. IT Change Management Policy and Process
The Newcastle upon Tyne Hospitals NHS Foundation Trust Version No.: 2.0 Effective From: 16 July 2015 Expiry Date: 16 July 2018 Date Ratified: 5 June 2015 Ratified By: Director of IT 1 Introduction IT Change
More informationRisk Management Strategy 2014-2017
Appendix 1 London Fire and Emergency Planning Authority London Fire Brigade Risk Management Strategy 2014-2017 Our Risk Management Strategy, together with our underpinning risk management framework and
More informationRISK AND OPPORTUNITY MANAGEMENT STRATEGY 2013-2014
RISK AND OPPORTUNITY MANAGEMENT STRATEGY 2013-2014 Version 1.0 October 2013 Not protectively marked INDEX PAGE NO TITLE 3 Executive Summary 4 Our Shared Vision and Priorities 5 Outline of the Risk and
More informationDORSET & WILTSHIRE FIRE AND RESCUE AUTHORITY Performance, Risk and Business Continuity Management Policy
Part Two Part One Not Protectively Marked DORSET & WILTSHIRE FIRE AND RESCUE AUTHORITY Performance, Risk and Business Continuity Management Policy. The Dorset & Wiltshire Fire and Rescue Authority (DWFRA)
More informationCorporate Health and Safety Policy
Corporate Health and Safety Policy November 2013 Ref: HSP/V01/13 EALING COUNCIL Table of Contents PART 1: POLICY STATEMENT... 3 PART 2: ORGANISATION... 4 2.1 THE COUNCIL:... 4 2.2 ALLOCATION OF RESPONSIBILITY...
More informationBusiness Planning, Risk Management and Quality. Mike Harris Immediate Past Chairman, AOQ-QLD Manager Business Systems, AECOM
Business Planning, Risk Management and Quality Mike Harris Immediate Past Chairman, AOQ-QLD Manager Business Systems, AECOM Australian Organisation for Quality A Professional Member based Incorporated
More informationEthical Sourcing Policy
Ethical Sourcing Policy Index 1.0 Policy Statement... 2 2.0 Organisational Scope and Compliance... 2 3.0 Policy Purpose... 3 4.0 The ETI Base Code... 3 5.0 Guiding Principles... 4 6.0 Identify suitable
More informationAsbestos Management Policy
Asbestos Management Policy Originator: Approval date: Policy and Strategy Team Sovini Board PCHA Board OVH Board/EMT 3 rd December 2012 22 nd November 2012 25 th September 2012 Review date: December 2013
More informationUniversity of New England Compliance Management Framework and Procedures
University of New England Compliance Management Framework and Procedures Document data: Document type: Administering entity: Framework and Procedures Audit and Risk Directorate Records management system
More informationAnnual Leave Policy. Document Owner East and North Herts Clinical Commissioning Group. 2 supercedes all previous Annual Leave Policies
Annual Leave Policy Document Owner Document Author East and North Herts Clinical Commissioning Group Anne Ephgrave Version Directorate Authorised By 2 supercedes all previous Annual Leave Policies Human
More informationGuide to Developing Risk Management Plans for Sport & Active Recreation Clubs
Guide to Developing Risk Management Plans for Sport & Active Recreation Clubs No single risk management model fits every organisation. Different governance and administrative structures, and varying activities
More informationNorth East Ambulance Service NHS Foundation Trust. Job Description
North East Ambulance Service NHS Foundation Trust Job Description Job Title Patient Experience Clerk A4C Band 3 Accountability Complaints Manager Directorate Clinical Care and Patient Safety Date September
More informationGeneral Functions Committee. Meeting Date 22 July 2013 Subject. Insource May Gurney Recycling TUPE Transfer StreetScene Director.
Meeting Date 22 July 2013 Subject Report of Summary General Functions Committee Insource May Gurney Recycling TUPE Transfer StreetScene Director This report relates to the transfer into Barnet of current
More informationBusiness Continuity Policy
Business Continuity Policy St Mary Magdalene Academy V1.0 / September 2014 Document Control Document Details Document Title Document Type Business Continuity Policy Policy Version 2.0 Effective From 1st
More informationINFORMATION GOVERNANCE STRATEGY
INFORMATION GOVERNANCE STRATEGY Page 1 of 10 Strategy Owner Valerie Penn, Head of Governance Strategy Author Caroline Law, Information Governance Project Manager Directorate Corporate Governance Ratifying
More information