Agenda item

To provide the Committee with an update on the Council’s Corporate Risk Register.

Stephen Beacher, Head of ICT, Digital and Resilience, presented the report.

Members asked the following questions:

·         Councillor Booth referred to the risk identified concerning Local Government Reorganisation and that there a couple of comments and actions listed which, in his view, are part of the risk as opposed to actions. He added that the reduced contract limits could increase costs and, in his view, that is part of the risk and he feels that an action is required to make sure that the costs do not materialise. Councillor Booth referred to the fact that it makes reference about the need to negotiate novation clauses in contracts, but it is not very specific, and he asked whether there is a piece of work which needs to be undertaken to determine which contracts need that first? Stephen Beacher stated that they are listed in both sides of the report and explained that procurement challenges have been mentioned, but he agreed that work is currently ongoing to look at all of the contracts which are currently in place as well as all of the new contracts which will come forward.

·         Councillor Booth asked whether it is still too early to know what the legislation is going to do in relation to the contracts or is it a case of having to wait and see what the legislation stipulates as it may assist the Council or cause additional issues for the Council depending on what the legislation states on how contracts should be dealt with. Stephen Beacher explained that there is still a great deal of information concerning the subject to be provided.

·         Councillor Christy asked for confirmation that officers are content that the risk register reflects the recent attempted cyber incidents when considering the threats which are facing local government institutions and whether there is any additional resilience measures planned to mitigate further attacks? Stephen Becher stated that the risk register is quite a broad document when it comes to cyber security and, therefore, the Council does not give away too much detail. He added that this is being reviewed constantly and there is an internal plan as well as having dedicated staff just to deal with cyber security. Stephen Beacher added that whilst it may not be detailed in the risk register, there is a great deal of work being undertaken behind the scenes.

·         Councillor Booth asked whether officers are included in all of the appropriate forums to gain an understanding of where all the new risks are emerging and how to deal with them and whether officers have specialists that they can call upon if the need arises? Stephen Beacher explained that his team keep abreast of any issues highlighted in the press and they are linked into NCSC as well as being part of an early warning. He added that the Council is also linked into the Cambridgeshire and Peterborough Local Resilience Forum and are accredited to all the necessary schemes.

Members AGREED the latest version of the Corporate Risk Register.