Professional Documents
Culture Documents
Risk Register Template Excel
Risk Register Template Excel
Risk Register Template Excel
Links to
references (if Ref 1 – Determine your key objectives and identify known uncertainties
Ref 2 – Risk
thatdescription
may impact the achievement of these key objective. Ref 3 – Current mitigations Ref 4 – Mitigation effectiveness
applicable)
OFFICIAL
#
Current Risk Rating Future Risk Rating
Future risk treatments Key risk indicators
See Ref 5 and 6 See Ref 5 and 6
Please outline any available indicators which could be
used to track the progression of the risk itself and where
this information can be sourced from
Consequence Risk Rating Likelihood rating Consequence Risk Rating e.g. waitlist data from an existing dataset held by a
Likelihood rating
rating Risk rating (like Future treatments Future treatment How frequently is rating Risk rating particular area
How likely is this Risk Owner
How severe is the hood and See Ref 8 status this likely to How severe is the (likelihood and
to occur?
effect consequence) occur? effect consequence)
Ref 5 – Likelihood
Ref
rating
6 – Consequence
Risk
rating
rating Ref 7 – Future mitigations Ref 5 – Likelihood
Ref
rating
6 – Consequence
Risk
rating
rating
OFFICIAL
#
Risk management guidance
Risk management involves the identification, evaluation, treatment and ongoing monitoring and review of a broad range of risk events
Ref 1 – Determine your key objectives and identify known uncertainties that may impact the achievement of these key objective.
Identify the key objectives or outcomes that you are seeking to achieve.
According to the Australian risk management standard, AS ISO 31000: 2018 Risk management – Guidelines, risk is defined as the “effe
OFFICIAL
#
The event will probably occur
4 Likely in most circumstances At least once per year
Stakeholder outcomes
Some customer delays. Some
Little or no impact on Inconvenient customer delays. under-achievement of
customer outcomes performance.
Medium-term temporary
Short-term temporary suspension of services.
No material disruption suspension of services. Backlog requires extended
to services. Backlog cleared in day. No work, overtime or additional
public impact. resources to clear.
Manageable impact.
OFFICIAL
#
Operational efficiency
and service delivery
Project management Up to 1% over project Up to 5% over project budget Up to 10% over project
budget budget
Consequence
Likelihood 1 2
Negligible Minor
5 Almost Certain 5 10
4 Likely 4 8
3 Possible 3 6
2 Unlikely 2 4
1 Rare 1 2
Ultimately, the process gets you to a point of deciding whether the risk is acceptable or requires further action.
Risks will always occur in any business environment. This process is not about removing or avoiding risks, rather we aim to manage the
OFFICIAL
#
• Changing the consequences;
• Sharing the risk with another party or parties [including contracts and risk financing; and
• Retaining the risk by informed decision.
Who is responsible
Level of risk Criteria of risk management (i.e. The person with
authority to accept the risk)
#OFFICIAL
review of a broad range of risk events associated with all strategic, operational and project activities. Risks will always occur in any business environ
Guidelines, risk is defined as the “effect of uncertainty on objectives”. Risk is, therefore, known uncertainties or uncertain events that may impact th
We are asking that you split this between the event itself, the cause of the risk, and the consequence of the risk.
the likelihood and/or consequences of the risk event. Controls include a process, policy, device, practice, or other actions which modify risk.
er the circumstances to minimise the risk, i.e. ‘Excellent’, ‘Adequate’, or ‘Inadequate’, as shown in the table below.
OFFICIAL
#
t if it does occur using the consequence table below.
Major - 4 Extreme - 5
Financial loss of up to
$5,000,000 Financial loss of >$5,000,000
Prolonged suspension of
services. Additional resources, Indeterminate prolonged
budget and/or management suspension of services. Impact
assistance required. not manageable. Other
Performance criteria providers appointed.
compromised.
OFFICIAL
#
Deliberate breach or gross Serious and wilful breach.
negligence. Significant harm. Criminal negligence or act.
Formal investigation. Litigation or prosecution with
Disciplinary action. Ministerial significant penalty. Dismissal.
involvement. Serious Ministerial censure. Criminal
misconduct. misconduct.
r level of risk, as shown in the table below. NB: If there are multiple consequences identified use the highest rating to calculate risk rating.
existing controls.
een fully implemented.
Consequence
3 4 5
Moderate Major Extreme
15 20 25
12 16 20
9 12 15
6 8 10
3 4 5
further action.
ng risks, rather we aim to manage the risk to an acceptable level.
hood of a risk, or improve the control effectiveness rating, as shown in the table below. These treatment actions must already be planned, approved
OFFICIAL
#
ntracts and risk financing; and
OFFICIAL
#
always occur in any business environment. This process is not about removing risks. Rather we aim to manage the risk to an acceptable level.
uncertain events that may impact the achievement of the organisation’s outcomes.
OFFICIAL
#
ating to calculate risk rating.
OFFICIAL
#
risk to an acceptable level.
OFFICIAL
#