Find Resources and Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

Subscribe to this discussion

Risk mgmt agenda examples

Hi members,

I institutionalized a Risk Mgmt Comittee in my organization. The comittee is made up of our COO, CIO, Director of Risk and Compliance and a few others. We will meet quarterly.

I am wondering if any of you could share some non confidential meeting agendas that you follow during these quarterly meetings in order to come up with a formal agenda for my organization that I can adapt.

Thanks in advance!
You must sign in to rate content.
(Unrated)

Comments

RE: Risk mgmt agenda examples

Hi Daniel, we used to have an agenda like this - Action review (follow-up of tasks assigned to the committee members) - Risk Management activities since the last meeting - Changes in the risk situation (all sorts of aggregation and heat maps, new risks, changes,…) - Risk and action highlights - Required decisions - Upcoming RM activities Would I do it again like this? Probably not. Some of it was unnecessary information and just additional preparation work for me. More important than the agenda is to focus on what information is to be shared and what decisions are to be made. It makes sense to review what is important to your organization and the stakeholders. If you are not concise, you are likely to see that the participants are not interested and will use their time more efficiently or might only attend for compliance reasons. For example a review of delayed mitigation actions is only relevant if you request an action upon it or if it affects important deadlines. Otherwise just deal with it outside the meeting. Or on RM activities - Do they really need to know what you did since the last meeting? Only if it is relevant information. A maybe even more important aspect to consider is: no surprises! Make sure you constantly align with the committee members outside the meeting, discuss situations and develop a solution to be shared with the other stakeholders in the committee meeting. This saves time, the stakeholder is able to come up with background information and the committee can discuss the suggested actions and further impact. Hope this helps.
pbusch at 12/5/2017 4:30:00 AM Quote
You must sign in to rate content.
(Unrated)

RE: Risk mgmt agenda examples

Hi Daniel,
I have also recently set up a RM Committee and created a structure for the regular meetings. 
The standing agenda consisted of the following:
a. Confirmation of previous minutes;
b. Review of open actions (actions arising from previous meetings);
c. Review of the Risk Report 
(Risk report was structured around the reporting metrics that were agreed in the Risk Committee Charter. Items included Review of open "High" ranked risks; Risks stated as "Closed" during the last reporting period, risks without action plans, and risks are are behind due date for closure). 
d. Review of risk events (major incidents);

Other items added as needed included things such as: 
- Review and approval of the Risk Committee Charter;
- Review and approval of the Risk Training and Awareness Program; 
- Review and approval to significant changes to the RM Framework; 

Hope this helps, 
regards,
Ian 


IanSimpson VietnamLively at 12/9/2017 3:46:26 AM Quote
You must sign in to rate content.
(Unrated)

RE: Risk mgmt agenda examples

Hi Daniel,
I have also recently set up a RM Committee and created a structure for the regular meetings. 
The standing agenda consisted of the following:
a. Confirmation of previous minutes;
b. Review of open actions (actions arising from previous meetings);
c. Review of the Risk Report 
(Risk report was structured around the reporting metrics that were agreed in the Risk Committee Charter. Items included Review of open "High" ranked risks; Risks stated as "Closed" during the last reporting period, risks without action plans, and risks are are behind due date for closure). 
d. Review of risk events (major incidents);

Other items added as needed included things such as: 
- Review and approval of the Risk Committee Charter;
- Review and approval of the Risk Training and Awareness Program; 
- Review and approval to significant changes to the RM Framework; 

Hope this helps, 
regards,
Ian 


IanSimpson VietnamLively at 12/9/2017 3:46:26 AM Quote
You must sign in to rate content.
(Unrated)

RE: Risk mgmt agenda examples

Hi Daniel, we used to have an agenda like this - Action review (follow-up of tasks assigned to the committee members) - Risk Management activities since the last meeting - Changes in the risk situation (all sorts of aggregation and heat maps, new risks, changes,…) - Risk and action highlights - Required decisions - Upcoming RM activities Would I do it again like this? Probably not. Some of it was unnecessary information and just additional preparation work for me. More important than the agenda is to focus on what information is to be shared and what decisions are to be made. It makes sense to review what is important to your organization and the stakeholders. If you are not concise, you are likely to see that the participants are not interested and will use their time more efficiently or might only attend for compliance reasons. For example a review of delayed mitigation actions is only relevant if you request an action upon it or if it affects important deadlines. Otherwise just deal with it outside the meeting. Or on RM activities - Do they really need to know what you did since the last meeting? Only if it is relevant information. A maybe even more important aspect to consider is: no surprises! Make sure you constantly align with the committee members outside the meeting, discuss situations and develop a solution to be shared with the other stakeholders in the committee meeting. This saves time, the stakeholder is able to come up with background information and the committee can discuss the suggested actions and further impact. Hope this helps.
pbusch at 12/5/2017 4:30:00 AM Quote
You must sign in to rate content.
(Unrated)

RE: Risk mgmt agenda examples

Hi Daniel, we used to have an agenda like this - Action review (follow-up of tasks assigned to the committee members) - Risk Management activities since the last meeting - Changes in the risk situation (all sorts of aggregation and heat maps, new risks, changes,…) - Risk and action highlights - Required decisions - Upcoming RM activities Would I do it again like this? Probably not. Some of it was unnecessary information and just additional preparation work for me. More important than the agenda is to focus on what information is to be shared and what decisions are to be made. It makes sense to review what is important to your organization and the stakeholders. If you are not concise, you are likely to see that the participants are not interested and will use their time more efficiently or might only attend for compliance reasons. For example a review of delayed mitigation actions is only relevant if you request an action upon it or if it affects important deadlines. Otherwise just deal with it outside the meeting. Or on RM activities - Do they really need to know what you did since the last meeting? Only if it is relevant information. A maybe even more important aspect to consider is: no surprises! Make sure you constantly align with the committee members outside the meeting, discuss situations and develop a solution to be shared with the other stakeholders in the committee meeting. This saves time, the stakeholder is able to come up with background information and the committee can discuss the suggested actions and further impact. Hope this helps.
pbusch at 12/5/2017 4:30:00 AM Quote
You must sign in to rate content.
(Unrated)

RE: Risk mgmt agenda examples

Hi Daniel,
I have also recently set up a RM Committee and created a structure for the regular meetings. 
The standing agenda consisted of the following:
a. Confirmation of previous minutes;
b. Review of open actions (actions arising from previous meetings);
c. Review of the Risk Report 
(Risk report was structured around the reporting metrics that were agreed in the Risk Committee Charter. Items included Review of open "High" ranked risks; Risks stated as "Closed" during the last reporting period, risks without action plans, and risks are are behind due date for closure). 
d. Review of risk events (major incidents);

Other items added as needed included things such as: 
- Review and approval of the Risk Committee Charter;
- Review and approval of the Risk Training and Awareness Program; 
- Review and approval to significant changes to the RM Framework; 

Hope this helps, 
regards,
Ian 


IanSimpson VietnamLively at 12/9/2017 3:46:26 AM Quote
You must sign in to rate content.
(Unrated)

Leave a Comment

* required

You must login to leave a comment.