Risk Management and Audit

Work Health and Safety – Response to Occupational Violence in the Workplace

Since late 2016, the Education Directorate has significantly increased its focus on the risk management of, and response to, occupational violence (OV) in the workplace.

The Caple Review commenced in January 2017 and the report was provided to the Directorate in April 2017. The Caple Review made four recommendations together with details of actions that could be implemented to address each recommendation. These recommendations have been considered and more broadly addressed through the development and publication of the Directorate’s Occupational Violence Policy and Management Plan which were launched in July 2017.

On 28 September 2018, the Education Directorate entered into an Enforceable Undertaking with WorkSafe ACT, on behalf of the Territory. The Strategy 1 of the Undertaking includes a range of actions and initiatives that will result in the full implementation of the Occupational Violence Policy and Management Plan.

A copy of the undertaking is below.

Enforceable Undertaking (366kb)

Internal Audit and Risk Management

Internal Audit Section is responsible for planning and delivering the Directorate’s annual audit program, monitoring the Directorate’s compliance and governance controls and coordination of audit sponsors, auditees and audit providers. It also undertakes reviews and investigations as requested by the Senior Executive Responsible for Business Integrity Risk (SERBIR), Senior Executive Team (SET) and the Audit Committee.

The Directorate’s risk management functions are managed by the Chief Internal Auditor and the Director, Governance and Community Liaison. The Directorate’s Senior Executive and the Audit Committee receive regular risk management reports, providing an overview of significant risks, mitigation strategies, responsibilities and an oversight on the implementation of audit recommendations.

The Directorate’s risk management framework is based on the Australian and New Zealand Standard ISO 31000:2009 Risk Management – principles and guidelines. Risks are identified and mitigated through the Directorate’s internal governance control structure, which includes:

  • Risk Management Framework;
  • Strategic Risk Profile;
  • School compliance reporting;
  • Fraud & Corruption, Prevention & Response Plan 2016-2018;
  • Internal audit program;
  • Detailed financial policies and controls, such as the Director-General’s Financial Instructions and the School Management Manual; and
  • Detailed financial operating procedures and practices.