|
1 Establish ERM Working Committee and identify Project Champion
- Obtain Project Coordinator (back fill where necessary)b) Develop and conduct training to familiarize ERM Working Committee with Enterprise Risk Management.
2 Define the Policy Framework:
- Governance Model, approval SMT, EMT, Audit Committee, Council
- Define:
- Risk
- Risk Management
- Risk Management Process (see new Zealand Model)
- Risk Mitigation (associated activities)
- Uses of RM Decision making
Project management
Evaluation
Planning
Operations
- Role in HRM Scorecard
3 Obtain approval for Risk Policy - EMT, SMT
- Conduct training on ERM tool.
4 Identify Current Risk Management activities within HRM-
- IE IT Threat and Firewall Testing Legal Prosecution, liability management,
- Physical and Personal Safety Inventory - Police, Fire
- Insurance and Claims Management
- Grants and Contributions Program
- Fire Prevention Inspections, Education, Investigation
- Project Management
- Mgmt agreeements review/standardization
- Audit Planning,
- Scope Focus FTE Rationalization Model
- Legislation enforcement (bylaws, etc)
- Succession Planning Strategy
- Occupational Health and Safety
- Disability Case Management
5 Develop Roll out Approach -
- Strategic, Operations, Project
- Business Planning, budgeting
- Pilot Project or by Business Unit
6 Under selected Approach:
- Develop Risk Tolerance Levels
- Rewards, incentives, penalties
- Public Input
- BSC Outcomes/measurements
- Survey at each level - Supervisor, SMT, EMT, Council
7 Under Selected Approach:
- Identify all risks - Review risk factor table
- Strategic, operations, project
8 Under Selected Approach:
- Measure likelihood and impact (once factors validated, based on tolerance levels established above)
9 Under Selected Approach:
- Develop risk mitigation plan - Resources, assignment process
10 Gain organizational approval - EMT, SMT, Council
11 Develop communication plan
12 Operationalize ERM - at all levels
- training
- education
- tool for monitoring, reporting - system, processes, PDP
|
