The Force’s risk register now focuses on strategic risk. These are identified against an assessment framework consisting of six factors and has resulted in a smaller, better-defined register. A member of the JAC attends the Force’s Risk Star Chamber (which sits on a quarterly basis) and the JAC continues to seek assurance that there is an effective control environment for the management of non-strategic risks.
Similarly, during the year, the OPCC risk register was remodelled with help and advice from a JAC member to ensure better focus on fewer risks with a clearer section on mitigating actions. This means that the JAC can track what movement has been made to reduce the risks.
Strategic risk registers for both the Force and the OPCC were reviewed at each JAC meeting.
The JAC has again noted that some Force risks are of a regional or national nature and the JAC remains reliant upon the CC and PCC for escalating these often high priority matters. The terms of reference for the JAC are such that escalation of such matters beyond the CC and PCC are not currently within the remit of the JAC.
Three “deep dives” on strategic risks have taken place in 2022/2023: a briefing on the contractual risks relating to the PFI (Private Finance Initiative) building in North Kent, governance, and controls in relation to Professional Standards, and in particular vetting and Pensions Governance and Compliance. The JAC has previously identified deep dives as being of value, by broadening understanding and thereby helping fulfil the JAC’s assurance role.