This infographic features five tiers. From top to bottom:
HRA Board
- Conducts a high level risk assessment as part of the annual business planning activities
- Ensure that risk controls and contingencies are implemented
- Reviews the corporate risk register quarterly
HRA Audit and Risk Committee
- The sub-committee of the Board that overseas and ensures that appropriate systems and activities are taking place to ensure effective risk management.
- Reviews the corporate risk register quarterly
- Deep dives into specific risks to understand the risk in more detail, the mitigations, and controls in place, and any lessons and recommendations which can be made.
Corporate Risk Register (quarterly) points to DHSC Sponsor: Quarterly accountability meetings held with corporate risk register reviewed
- Leadership Team
- Conducts a high level risk assessment as part of the annual business planning activities
- Ensure that risk controls and contingencies are implemented
- Reviews the corporate risk register quarterly
- Leadership team agrees those risks which require escalation to the corporate risk register
Directorate risk registers
- All risks are owned by a director
- Directorate and other team meetings are held on a regularly basis (monthly / bimonthly) where risks are regularly identifies and reviewed
- Consideration of the likelihood of the risk occurring along with the impact of the risk on the organisation and on the delivery of the strategic objectives
- All risks with a combined impact and likelihood risk score of 12 and above are escalated to Leadership Team
A cycle diagram is included at the bottom: identify, investigate, evaluate, manage, and monitor.