RISK MANAGEMENT

PUBLIC ORGANIZATIONS
Risk management is one of the key processes in public sector organizations. It is not only an active factor in the decision-making process and plays a significant role in the supervision of operational activity, but is also crucial for the successful and effective implementation of organizational changes.
We have an extensive experience in risk identification, assessment and management in all areas of the public sector.
We will conduct, at your behest, a risk identification and assessment in any domain of interest and help optimize your organization’s risk management process.

compliance risk

risk of financial abuse and corruption

continuity risk

information security risk

occupational health and safety risk

environmental risk

risk in healthcare services

risk scan

compliance risk

Compliance risk is related to sanctions, financial loss and loss of reputation by an organization, if it fails to comply with applicable statutory law and regulations, or internal standards and procedures.
We will help you effectively identify the statutory dangers of non-compliance, based on our original SenseMaking Practices© methodology, the international ISO 19600 standard –compliance management systems: ISO 19600, and professional experience of acknowledged law experts. During the consultation process we will conduct a legal audit: legal audit,  for the purpose of ensuring your organization’s statutory security.

risk of financial abuse and corruption

The risks of financial abuse and corruption are related to conflicts of interest, price fixing, bribery, document fraud, non-disclosure of information, misuse of resources, abuse of position. They most frequently occur in the areas of public procurement and competitive tendering, investment settlements and approval procedures, recruitment procedures, supervisor-supervisee relationship, or in cases of decisions made without appropriate supervision.
We will conduct a risk assessment pertaining to the potential occurrence of financial abuse and corruption in your organization and suggest effective dedicated controls to safeguard your organization against financial abuse and corruption, in conformity with the European Union and ISO 37001:2016 anti-bribery guidelines.

continuity risk

The risk of continuity loss in key processes and areas in a public organization’s activity is related to incidents which may impede or disrupt its operation. Accurate identification of continuity risks and planning optimal corrective and preventive actions ensures the organization’s continuity and prevents its loss of reputation.
We will carry out an assessment of continuity risk in your organization. Using our original SenseMaking Practices© methodology, we will identify and assess the risk of the influence of process disruptions on your organization, provided services and existing processes. On this basis, we will outline necessary corrective actions and propose a recovery plan for the critical areas of your organization’s activity.

information security risk

Information security risk concerns the identification and assessment of confidentiality, accessibility and integrity loss with regard to information processed by a public sector organization, and its compliance with the law. It should be considered in conjunction with the requirements of ISO 27005 and ISO 31000 standards in order to better define necessary technological and organizational security measures for a public sector organization.
We will carry out an assessment of information security risk in your organization. Using our original SenseMaking Practices methodology © we will identify and assess information security risks in pertinent processes and areas of your organization’s activity. On this basis, we will suggest necessary actions and security measures to ensure the protection of your processed information and public activity.

occupational health and safety risk

Occupational health and safety risk concerns employee exposure  to hazardous phenomena and adverse events in the course of their activity in a workplace. Assessment of such risks is required by law with regard to all work positions.
We will conduct an assessment of occupational health and safety risks for all workplace positions in your organization. Using our original SenseMaking Practices© methodology, and conforming to the requirements of the ISO 45001 – Occupational health and safety, we will identify hazardous activities, indicate protection measures to be applied, mechanisms for disseminating relevant information among employees, and  guidelines for protection against occupational hazards.

environmental risk

Environmental risk assessment identifies events conducive to the occurrence of environmental accidents and factors adversely affecting the natural environment and the activity of a public organization. By law, public sector organizations are required to comply with environmental legislation and follow mandatory reporting procedures.
We will conduct an assessment of environmental risks in your organization. Using our original SenseMaking Practices© methodology , and conforming to the ISO 14001- Environmental management standard, we will determine and assess the risks of adverse influence of the organization’s activity on the natural environment, indicate emergency areas, ensure conformity with environmental laws and regulations and suggest effective alternative mechanisms of operation.postępowania.

risk in healthcare services

At the core of risk management in healthcare services lies the issue of assuring patient safety. Risk areas include clinical processes and medical services on offer and concern the management practices in public healthcare institutions, with regard to their compliance with internal regulations, statutory law and other external factors.
We will carry out an assessment of risks for the services offered by your public healthcare organization. Using our original SenseMaking Practices© methodology, and accreditation standards for hospitals and primary care providers (issued by Centrum Monitorowania Jakości w Ochronie Zdrowia/Polish Centre for Monitoring Quality in Healthcare), we will identify and assess the probability of risk with regard to adverse events, accuracy of clinical procedures, billing procedures, compliance with the law, and we will help you determine the security level and indicate effective security measures for the protection of your patients and your organization’s activity.

risc scan

Risk scanning is the basic self-evaluation tool used by public organizations for identifying hazards in crucial areas of their activity. It detects vulnerable areas which may be susceptible to potential threat and as such affect the overall operation and performance of an organization.
We will help you conduct an effective and comprehensive risks scan in your organization, based on the original method created by the SenseMaking Consulting Group. During the process we will concentrate on determining the levels of vulnerability in your organization (Comprehensive Vulnerability Scanning), to  follow with risk assessment and risk containment solutions in all areas of your activity.