Risk and Integrity management

Risk management

We are committed to identification and management of all risks so our business outcomes and effective service delivery to our customers are achieved. Our risk management approach considers regulatory, financial, safety, political, economic, and compliance requirements, as well as reputational exposures and community expectations.

Risk management is integrated into our business planning model. This ensures it is not viewed as a separate activity, but as an inherent part of business processes where everyone is involved and has a responsibility in management of risk.

Management of risk in our projects is embedded in our project management tools, methodologies and the Enterprise Project Management system. Through risk management workshops at the commencement of projects and quality audits during projects, we ensure that the correct reviews and controls are in place.

Our corporate strategic risk assessment is embedded within the corporate business planning process to enhance our ability to make better decisions, deliver on objectives and improve performance. Corporate strategic risk workshops for all our directorates and the Corporate Executive are held every year.

Risk themes include:

  • policy
  • information technology
  • project delivery
  • stakeholder engagement
  • resource management
  • asset management and delivery
Risk Theme Material Aspects Key Resources
Stakeholder engagement
  • Failure to adapt to evolving community and customer expectations supported by early and ongoing stakeholder engagement.
  • Failure of utility service providers to prioritise delivery requirements in a time effective manner.
  • Good Public Policy
  • Local Communities
  • Open and Transparent Communication
  • Customers
  • Our people
  • Know-how
Policy
  • Regulatory change impacting delivery of project and business conduct
  • Failure to meet evolving government and community expectation on sustainability
  • Failure to maintain momentum in delivering on Aboriginal and Torres Strait Islander peoples engagement commitments
  • Good Public Policy
  • Aboriginal Heritage and Native Title
  • Climate Change and Energy
  • Biodiversity
  • Compliance with environmental legislation
  • Legal compliance
  • Customers
  • Natural resources
  • Know-how
Asset management
  • Failure to demonstrate the benefits of new maintenance and minor capital works delivery model
  • Failure to deliver and demonstrate a robust strategic asset management approach (including capability and resilience)
  • Failure to deliver effective network management and performance during project delivery and failure to meet customer expectations
  • Road Safety
  • Congestion and Freight Productivity
  • Regional Presence and Development
  • Value for Money
  • Assets
  • Financial capital
  • Network performance
Resource management
  • Inability to fund existing commitments, and required outcomes
  • Failure to attract, develop and retain an adaptable and capable workforce
  • Failure to provide staff safety
  • Procurement Practices
  • Value for Money
  • Workforce Safety and Health
  • Training and Education
  • Job Creation
  • Diversity and Equal Opportunity
  • Financial capital
  • Our people
  • Know-how
Project delivery
  • Inability of industry to deliver the project and delivery program in a competitive manner through cost and price uncertainty
  • Increasing exposure to contractor and sub-contractor failure
  • Road Safety
  • Congestion and Freight Productivity
  • Regional Presence and Development
  • Value for Money
  • Procurement Practices
  • Supplier Social Assessment
  • Road building materials
  • Assets
  • Financial capital
  • Network performance
  • Our people
  • Natural Resources
Technology
  • Failure to adequately and effectively manage cyber security
  • Unplanned critical system outage
  • Congestion and Freight Productivity
  • Open and transparent communication
  • Customer Privacy
  • Assets
  • Know-how
  • Network performance
  • Natural Resources

Business continuity management

All business areas have a Business Continuity Plan in place and function within an overarching corporate business continuity management procedure. Plans ensure that we can respond to, and recover from, any business disruption.

Building on learnings from the Coronavirus pandemic, we continued to ensure our business continuity plans are appropriate and took into consideration the potential of widespread loss of staff due to illness. We continue to strengthen our ability to mobilise resources to operate from non-traditional locations.

Integrity framework

Our Integrity Framework represents our commitment to effective fraud and corruption risk management and the promotion of a culture of integrity. The framework consolidates and clarifies policies and processes in relation to fraud and corruption, gifts and benefits, conflict of interest, contact with lobbyists and misconduct.

Features of the framework include biennial fraud and corruption risk workshops within our organisation’s directorates, a comprehensive integrity data analytics detection program and increased transparency through a central fraud and corruption incident register. The framework was developed in a consultative fashion and is aligned with Australian Standard 8001:2021 and is available to all employees.

Fraud and corruption prevention

We have detection activities and strategic controls in place to help prevent the misappropriation of funds and inappropriate use of public property. Measures include a comprehensive annual Audit Plan, Integrity Detection Plan, Integrity Detection Improvement Plan and a Fraud and Corruption Risk Management cycle. Our Integrity Framework clearly sets out the relevant policies and obligations for all employees regarding preventing, mitigating and reporting instances of fraud and corruption.

Continue reading
Benchmarking our commitment
^