Management of Risk Services
We all know from experience that things can and do go wrong. Corporate governance requires us to safeguard our finances, assets and reputation. And we have legal and moral duties of care for people’s health and safety and for the environment.
The management of risk has thus become a central feature of organisational and business life.
Different types of risk activity are needed in different business contexts. Building on our varied risk experience with our clients since 1996, IWI Associates has therefore developed five tailored risk consultancy services:
- Business Risk Management – for example the crime and security function;
- Strategic Risk management – to assure and support good governance;
- Programme and Project Risk Management – to minimise threats to delivery timescales, costs and quality;
- Events Risk Management – to support event planning and delivery;
- IT Security Risk Management – to assess and manage the risks to data assets.
Managing risk is about managing perceptions. Different individuals and groups of stakeholders can and do perceive risk in entirely different ways. It is therefore important to ensure a broad range of perspectives is adequately represented in any risk activity. The IWI risk services take full account of this important point.
Assignment examples
2008 to date – Crime and Security Management – Association of Train Operating Companies
Since May 2008, IWI Associates has been contracted to supply consultancy services and consultancy personnel experienced in policing, crime, risk, safety and security matters. This function is led by Andy Odell, who is contracted as the ATOC Police and Security Liaison Officer.
2004 – Review of Corporate Governance for an Event Management Company
Appointed to lead a full assessment of the strategic risks facing the company. The work involved interviews, workshops and documentation to identify the threats, assess the risks and ensure that these were brought under proper control by the Board.
2003 – Review of Corporate Governance for a City College
Appointed to carry out a corporate governance audit using the Further Education sector’s own audit tool. The work involved interviews with stakeholders and ‘critical friend’ observations to assess the extent of compliance and to make recommendations for improvement.
2001 – Management of Project Risk Training for a large UK Police Service
Appointed to manage the design, development and delivery of a bespoke course in the management of project risk for staff employed in change management roles within the Constabulary. The courses were successfully delivered to 53 students in six cohorts. A breakfast briefing was also delivered to the most senior managers of the force.
1999 – The National Risk Assessment for Policing for Millennium Celebrations – Association of Chief Police Officers
Appointed to design and lead the national police risk assessment process for perhaps the largest ever national event. The work involved liaison with national bodies, running workshops with key stakeholders; documenting the risk assessment and communicating the findings at a national police conference.
1997 to 2003 – Various Management of Risk Assignments
With the bodies now comprising the National Policing Improvement Agency i.e. National Police Training (latterly Centrex) and the Police Information Technology Organisation, including:
- programme and project risk assessments;
- event risk assessments;
- business risk assessments; and
- IT security studies using the CRAMM methodology.