Agenda item
Chamberlain's Department Risk Management - Quarterly Report
Report of the Chamberlain.
Minutes:
The Committee received a report of the Chamberlain which provided updates regarding the top risks within the Departmental Risk Register.
In a response to a query concerning CR16 (Information Security), the Chamberlain reassured Members that it was prudent to keep the risk at red for now, with, all being well, a reduction to amber envisaged in January.
A Member also asked officers to amend the terminology in the risk register; the Data Protection Act 1998 needed to be updated as it had been superseded by the DPA 2018 (which, in turn, supplements GDPR). He also asked who was providing oversight for information security across the piece, as it was important to recognise that this risk included paper, as well as IT. The Deputy Chairman and the Chamberlain responded that Audit and Risk Management Committee and the Data Services Sub-Committee were, in the first instance, the lead Committees.
The Chairman reiterated his ongoing concerns around CR23 (Police Funding) and would turn to them in more depth later in the meeting.
RESOLVED – That the Committee notes the report.
Supporting documents:
-
Finance Committee Report Risk Management November 2018, item 11.
PDF 72 KB -
Appendix 1 Risk Reg 181018, item 11.
PDF 164 KB