Issue - meetings

a) The 2025/26 quarter three corporate risk register and actions being taken to control and mitigate risk was considered and noted.

b) That the actions being taken following the recent internal audit report on the Council’s risk management arrangements were noted.

The Executive Member for Financial Sustainability presented the Strategic Risk Register Quarter 3 Monitoring report. Members heard that the risk register had been reviewed by the Leadership Team as part of the Council’s routine governance arrangements and that an internal audit of the Council’s risk management framework had been completed in December 2025. The audit confirmed that the Council had a structured and well?documented approach to managing risk, supported by an up?to?date strategy and a defined five?stage risk cycle. The audit also identified areas where further improvements could strengthen consistency, transparency and operational assurance across the organisation. The recommendations from audit were set out in table 2.3 of the report.

Members heard that the Leadership Team had introduced a programme of deep?dive reviews to examine individual risks in greater detail, beginning with the Place Directorate.

It was reported that dedicated risk?management training for Members would take place in June 2026 and would be recommended for those serving on the Audit and Governance Committee.

The corporate risk register, included as Appendix A, had remained broadly stable between quarters 2 and 3, with only a minor movement in the climate?change risk relating to planning permission for the Great Amwell site.

Members were informed that the register format had been updated to include target scores and movement indicators, improving transparency around how risks were changing over time and supporting the Leadership Team’s ongoing oversight.

The Executive Member for Financial Sustainability proposed the recommendations as detailed in the report. The Executive Member forNeighbourhoods seconded the proposal.

Members asked for further detail on the recent deep dive undertaken within the Place Directorate. Officers explained that the review drew on operational risk registers and highlighted concerns around recruitment, retention and maintaining adequate staffing levels to deliver statutory services. It was confirmed that similar deep dives would be carried out across all directorates.

Questions were raised about upcoming risk?management training. Officers confirmed that training sessions had been arranged for both Members and officers in June 2026, with attendance expected for those on Audit and Governance Committee.

Members also sought clarification on how frequently the corporate risk register was updated. It was advised that the Leadership Team reviewed risks quarterly and that emerging global issues would be considered at the next review.

Concerns were expressed about the scale of cyber?security threats facing local authorities. Members were encouraged to attend the Joint ICT Committee for updates.

The motion to support the recommendation, having been proposed and seconded, was put to the meeting and upon a vote being taken, was declared CARRIED.

RESOVLED – that (A) the 2025/26 quarter three corporate risk register and actions being taken to control and mitigate risk was considered and noted.

(B) the actions being taken following the recent internal audit report on the Council’s risk management arrangements were noted.

The Director for Finance, Risk and Performance presented the report, outlining the Council’s key strategic risks, how they had evolved, and the actions in place to manage them. Members’ attention was drawn to the internal audit findings on risk management, with recommendations set out in paragraph?2.3. They were informed that work was already underway to implement these recommendations, including clarifying target risk scores, strengthening risk indicators within the Strategic Risk Register, carrying out directorate?level deep dives to ensure alignment between corporate and operational risks, and arranging training for both officers and Members.

The Director for Finance, Risk and Performance confirmed that the overall strategic risk profile for Quarter?3 remained broadly similar to that of Quarter?2, with the only notable change being an update to the climate change risk.

The Chair thanked the Director for Finance, Risk and Performance for the report. Members commented that the inclusion of the target risk was very helpful.

Members queried whether the Local Government Reorganisation (LGR) risk should be broadened to reflect the potential impact on frontline service delivery arising from the demands placed on management time. Members also questioned whether the current risk score attributed to Financial Resources remained appropriate or required reclassification.

In response, Members were advised that these were valid considerations and that the uncertainties surrounding LGR would continue to influence the development of the risk register. The Director for Finance, Risk and Performance confirmed that he would review the adequacy of the Financial Resources risk for Quarter 4.

Members observed that the climate change mitigations within the register appeared vague and questioned the extent to which the Council was able to control this risk.

Members were advised that the mitigations related specifically to Amwell Depot, for which a planning application had been submitted. They also heard that Leadership Team was mindful of delays associated with this achieving process.

It was moved by Councillor Deeringand seconded by Councillor Nicholls that that the recommendations, as detailed, be approved.

After being put to the meeting and a vote taken, this motion was declared CARRIED.

RESOLVED – that (A) The 2025/26 quarter three corporate risk register and actions being taken to control and mitigate risk be considered and noted, and;

B) That the actions being taken following the recent internal audit report on the Council’s risk management arrangements be noted.