Cabinet considered the recommendation from the Audit Committee on the Corporate Risk Register.
Resolved to approve the Corporate Risk Register as submitted.
The Internal Audit Manager summarised the risks affecting the Council as outlined in the report and highlighted a number of issues, specifically information governance, ICT security, risk of failure in service delivery, the Code of Corporate Governance, procurement, housing, business rates income, acquisitions and investments and debt recovery.
The Committee discussed a number of risks associated with ICT security, in particular concerns in relation to Wi-Fi security at the council offices and the risk of a KRACK attack. Officers agreed to share these concerns with ICT for further consideration.
The revised Register was considered to be an accurate reflection of the high level risks affecting the Authority and progress on actions was documented on the Register.
Resolved that:
1. The contents of the Corporate Risk Register be noted and accepted;
2. That the Corporate Risk Register be recommended to Cabinet for approval.