Good practice guide - Overcoming challenges to managing risks in government: Assessment template

This assessment can be undertaken in two ways: a As a method of self-assessment by risk leaders and practitioners on the organisation’s current level of risk management performance b As a method of challenge by Audit and Risk Assurance Committees on the organisation’s risk management performance The template covers the ten approaches to overcoming the challenges of managing risks in government whi. [...] Strongly Don’t agree Agree Disagree Strongly disagree know or N/A 3.1 There is a clear articulation of the levels of risk the organisation is willing to accept and tolerate 3.2 Good quality information is used to inform risk appetite and tolerance 3.3 Risk appetite is communicated across the organisation so it can be understood and put into action 3.4 Risk appetite is flexed to reflect changing dy. [...] Strongly Strongly Don’t agree Agree Disagree disagree know or N/A 6.1 The organisation identifies risks in the third-party ecosystem 6.2 The organisation maps interdependencies and connections for cross-cutting risks 6.3 The organisation assesses the range of impacts and consequences of risks 6.4 There is a joined-up approach to managing risks and breaking down silos 6.5 Risk information is aggreg. [...] Strongly Don’t agree Agree Disagree Strongly disagree know or N/A 7.1 The right tools and expertise are used to assess and evaluate risks 7.2 Good quality data is leveraged to support the risk assessment effort 7.3 Qualitative and quantitative methods are deployed to assess impact 7.4 The aggregate impact of risks across the organisation is identified and assessed 7.5 The information and data bein. [...] Strongly Don’t agree Agree Disagree Strongly disagree know or N/A 10.1 The current level of maturity is assessed to identify gaps and areas for development 10.2 Good practice from across the organisation is identified and shared 10.3 Lessons from beyond the organisation are learned and shared 10.4 The organisation validates, benchmarks, and seeks assurance over risk management arrangements 10.5 Ar.