Risk and Integrity management
Risk management
We are committed to identification and management of all risks so our business outcomes and effective service delivery to our customers are achieved. Our risk management approach considers regulatory, financial, safety, political, economic, and compliance requirements, as well as reputational exposures and community expectations.
Risk management is integrated into our business planning model. This ensures it is not viewed as a separate activity, but as an inherent part of business processes where everyone is involved and has a responsibility in management of risk.
Management of risk in our projects is embedded in our project management tools, methodologies and the Enterprise Project Management system. Through risk management workshops at the commencement of projects and quality audits during projects, we ensure that the correct reviews and controls are in place.
Our corporate strategic risk assessment is embedded within the corporate business planning process to enhance our ability to make better decisions, deliver on objectives and improve performance. Corporate strategic risk workshops for all our directorates and the Corporate Executive are held every year.
Risk themes include:
- policy
- information technology
- project delivery
- stakeholder engagement
- resource management
- asset management and delivery
Risk Theme | Material Aspects | Key Resources |
---|---|---|
Stakeholder engagement
|
|
|
Policy
|
|
|
Asset management
|
|
|
Resource management
|
|
|
Project delivery
|
|
|
Technology
|
|
|
Business continuity management
All business areas have a Business Continuity Plan in place and function within an overarching corporate business continuity management procedure. Plans ensure that we can respond to, and recover from, any business disruption.
Building on learnings from the Coronavirus pandemic, we continued to ensure our business continuity plans are appropriate and took into consideration the potential of widespread loss of staff due to illness. We continue to strengthen our ability to mobilise resources to operate from non-traditional locations.
Integrity framework
Our Integrity Framework represents our commitment to effective fraud and corruption risk management and the promotion of a culture of integrity. The framework consolidates and clarifies policies and processes in relation to fraud and corruption, gifts and benefits, conflict of interest, contact with lobbyists and misconduct.
Features of the framework include biennial fraud and corruption risk workshops within our organisation’s directorates, a comprehensive integrity data analytics detection program and increased transparency through a central fraud and corruption incident register. The framework was developed in a consultative fashion and is aligned with Australian Standard 8001:2021 and is available to all employees.
Fraud and corruption prevention
We have detection activities and strategic controls in place to help prevent the misappropriation of funds and inappropriate use of public property. Measures include a comprehensive annual Audit Plan, Integrity Detection Plan, Integrity Detection Improvement Plan and a Fraud and Corruption Risk Management cycle. Our Integrity Framework clearly sets out the relevant policies and obligations for all employees regarding preventing, mitigating and reporting instances of fraud and corruption.