Reporting and managing risk: a look at current practice at Tesco, RBS, local and central government

Margaret Woods

Research output: Book/ReportOther report

Abstract

These case studies from CIMA highlight the need to embed risk management within more easily understood behaviours, consistent with the overall organisational culture.
In each case, some form of internal audit team provides either an oversight function or acts as an expert link in that feedback loop.
Frontline staff, managers and specialists should be completely aligned on risk, in part just to ensure that there is a consistency of approach. They should understand instinctively that good performance includes good risk management.
Tesco has continued to thrive during the recession and remains a robust and efficient group of businesses despite the emergence of potential threats around consumer spending and the supply chain. RBS, by contrast, has suffered catastrophic and very public failures of risk management despite a large in-house function and stiff regulation of risk controls.
Birmingham City Council, like all local authorities, is adapting to more commercial modes of operation and is facing diverse threats and opportunities emerging as a result of social change. And DCMS, like many other public sector organisations, has to handle an incredibly complex network of delivery partners within the context of a relatively recent overhaul of central government risk management processes.

Key Findings:
•Risk management is no longer solely a financial discipline, nor is it simply a concern for the internal control function.
•Where organisations retain a discrete risk management cadre – often specialists at monitoring and evaluating a range of risks – their success is dependent on embedding risk awareness in the wider culture of the enterprise.
•Risk management is most successful when it is explicitly linked to operational performance.
•Clear leadership, specific goals, excellent influencing skills and open-mindedness to potential threats and opportunities are essential for effective risk management.
•Bureaucratic processes and systems can hamper good risk management – either as a result of a ‘box-ticking mentality’ or because managers and staff believe they do not need to consider risk themselves.
Original languageEnglish
Number of pages14
Publication statusPublished - 31 Aug 2010

Publication series

NameResearch Executive Summary Series
PublisherCIMA
No.8
Volume6
ISSN (Print)1744-7038

Fingerprint

Local government
Risk management
Central government
Threat
Staff
Managers
Monitoring
Business performance
Recession
Internal control
Consumer spending
Internal audit
Control function
Supply chain
Public sector organizations
Management process
Organizational culture
Complex networks
Risk control
Oversight

Cite this

Woods, M. (2010). Reporting and managing risk: a look at current practice at Tesco, RBS, local and central government. (Research Executive Summary Series; Vol. 6, No. 8).
Woods, Margaret. / Reporting and managing risk : a look at current practice at Tesco, RBS, local and central government. 2010. 14 p. (Research Executive Summary Series; 8).
@book{e5a4160f9cf04729aa30c20139d34fd6,
title = "Reporting and managing risk: a look at current practice at Tesco, RBS, local and central government",
abstract = "These case studies from CIMA highlight the need to embed risk management within more easily understood behaviours, consistent with the overall organisational culture.In each case, some form of internal audit team provides either an oversight function or acts as an expert link in that feedback loop.Frontline staff, managers and specialists should be completely aligned on risk, in part just to ensure that there is a consistency of approach. They should understand instinctively that good performance includes good risk management.Tesco has continued to thrive during the recession and remains a robust and efficient group of businesses despite the emergence of potential threats around consumer spending and the supply chain. RBS, by contrast, has suffered catastrophic and very public failures of risk management despite a large in-house function and stiff regulation of risk controls.Birmingham City Council, like all local authorities, is adapting to more commercial modes of operation and is facing diverse threats and opportunities emerging as a result of social change. And DCMS, like many other public sector organisations, has to handle an incredibly complex network of delivery partners within the context of a relatively recent overhaul of central government risk management processes.Key Findings:•Risk management is no longer solely a financial discipline, nor is it simply a concern for the internal control function.•Where organisations retain a discrete risk management cadre – often specialists at monitoring and evaluating a range of risks – their success is dependent on embedding risk awareness in the wider culture of the enterprise.•Risk management is most successful when it is explicitly linked to operational performance.•Clear leadership, specific goals, excellent influencing skills and open-mindedness to potential threats and opportunities are essential for effective risk management.•Bureaucratic processes and systems can hamper good risk management – either as a result of a ‘box-ticking mentality’ or because managers and staff believe they do not need to consider risk themselves.",
author = "Margaret Woods",
year = "2010",
month = "8",
day = "31",
language = "English",
series = "Research Executive Summary Series",
publisher = "CIMA",
number = "8",

}

Woods, M 2010, Reporting and managing risk: a look at current practice at Tesco, RBS, local and central government. Research Executive Summary Series, no. 8, vol. 6.

Reporting and managing risk : a look at current practice at Tesco, RBS, local and central government. / Woods, Margaret.

2010. 14 p. (Research Executive Summary Series; Vol. 6, No. 8).

Research output: Book/ReportOther report

TY - BOOK

T1 - Reporting and managing risk

T2 - a look at current practice at Tesco, RBS, local and central government

AU - Woods, Margaret

PY - 2010/8/31

Y1 - 2010/8/31

N2 - These case studies from CIMA highlight the need to embed risk management within more easily understood behaviours, consistent with the overall organisational culture.In each case, some form of internal audit team provides either an oversight function or acts as an expert link in that feedback loop.Frontline staff, managers and specialists should be completely aligned on risk, in part just to ensure that there is a consistency of approach. They should understand instinctively that good performance includes good risk management.Tesco has continued to thrive during the recession and remains a robust and efficient group of businesses despite the emergence of potential threats around consumer spending and the supply chain. RBS, by contrast, has suffered catastrophic and very public failures of risk management despite a large in-house function and stiff regulation of risk controls.Birmingham City Council, like all local authorities, is adapting to more commercial modes of operation and is facing diverse threats and opportunities emerging as a result of social change. And DCMS, like many other public sector organisations, has to handle an incredibly complex network of delivery partners within the context of a relatively recent overhaul of central government risk management processes.Key Findings:•Risk management is no longer solely a financial discipline, nor is it simply a concern for the internal control function.•Where organisations retain a discrete risk management cadre – often specialists at monitoring and evaluating a range of risks – their success is dependent on embedding risk awareness in the wider culture of the enterprise.•Risk management is most successful when it is explicitly linked to operational performance.•Clear leadership, specific goals, excellent influencing skills and open-mindedness to potential threats and opportunities are essential for effective risk management.•Bureaucratic processes and systems can hamper good risk management – either as a result of a ‘box-ticking mentality’ or because managers and staff believe they do not need to consider risk themselves.

AB - These case studies from CIMA highlight the need to embed risk management within more easily understood behaviours, consistent with the overall organisational culture.In each case, some form of internal audit team provides either an oversight function or acts as an expert link in that feedback loop.Frontline staff, managers and specialists should be completely aligned on risk, in part just to ensure that there is a consistency of approach. They should understand instinctively that good performance includes good risk management.Tesco has continued to thrive during the recession and remains a robust and efficient group of businesses despite the emergence of potential threats around consumer spending and the supply chain. RBS, by contrast, has suffered catastrophic and very public failures of risk management despite a large in-house function and stiff regulation of risk controls.Birmingham City Council, like all local authorities, is adapting to more commercial modes of operation and is facing diverse threats and opportunities emerging as a result of social change. And DCMS, like many other public sector organisations, has to handle an incredibly complex network of delivery partners within the context of a relatively recent overhaul of central government risk management processes.Key Findings:•Risk management is no longer solely a financial discipline, nor is it simply a concern for the internal control function.•Where organisations retain a discrete risk management cadre – often specialists at monitoring and evaluating a range of risks – their success is dependent on embedding risk awareness in the wider culture of the enterprise.•Risk management is most successful when it is explicitly linked to operational performance.•Clear leadership, specific goals, excellent influencing skills and open-mindedness to potential threats and opportunities are essential for effective risk management.•Bureaucratic processes and systems can hamper good risk management – either as a result of a ‘box-ticking mentality’ or because managers and staff believe they do not need to consider risk themselves.

UR - http://www.cfoinnovation.com/white-paper/1658/reporting-and-managing-risk-look-current-practice-tesco-rbs-local-and-central

M3 - Other report

T3 - Research Executive Summary Series

BT - Reporting and managing risk

ER -