NIPS Annual Report and Accounts 2012-13 - Department of Justice
NIPS Annual Report and Accounts 2012-13 - Department of Justice
NIPS Annual Report and Accounts 2012-13 - Department of Justice
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
<strong>2012</strong>-20<strong>13</strong><br />
attract a low risk appetite. This document allows<br />
tolerance for risk to be tailored across different<br />
business areas in order that appropriate policies<br />
may be followed, <strong>and</strong> mitigation <strong>of</strong> risks to be<br />
customized.<br />
<strong>NIPS</strong> identified two risks throughout the year which<br />
were added to the Corporate Risk Register. Once<br />
identified, steps were taken to ensure that the<br />
controls in place adequately covered these risks.<br />
The first risk identified was the potential <strong>of</strong> a rapid<br />
increase <strong>of</strong> the prisoner population should potential<br />
protests against the G8 conference in Enniskillen<br />
lead to a large number <strong>of</strong> arrests. Contingency plans<br />
are in place to provide alternative accommodation<br />
<strong>and</strong> steps have been put in place to ensure suitable<br />
staffing levels. The second risk identified was the<br />
potential failure to deliver a predictable regime for<br />
prisoners. The completion <strong>of</strong> the VER scheme <strong>and</strong><br />
the recruitment <strong>of</strong> new staff should enable the<br />
continued implementation <strong>of</strong> the TOM, thereby<br />
allowing for the delivery <strong>of</strong> a predictable regime.<br />
Another key element <strong>of</strong> these risk management<br />
arrangements is the pr<strong>of</strong>essionally-led Internal Audit<br />
function that works to Government Internal Audit<br />
St<strong>and</strong>ards, reviewing the overall arrangements for<br />
managing risk. Internal Audit provides independent<br />
assurance to the Accounting Officer through reports<br />
<strong>and</strong> briefings at the ARC throughout the year.<br />
Other governance structures <strong>and</strong> functions that<br />
support information risk management include: a<br />
Security Officer, Human Rights Manager, Equality<br />
Manager, HR Equality <strong>and</strong> Diversity Manager <strong>and</strong> a<br />
Records <strong>and</strong> Information Unit.<br />
Information Assurance<br />
<strong>NIPS</strong> has fully embraced the DOJ’s Information<br />
Assurance policy <strong>and</strong> procedures <strong>and</strong> is represented<br />
at Director level on the DOJ Information Risk<br />
Owners Council (IROC) which comprises senior<br />
business owners across the departmental family<br />
<strong>and</strong> holds them to account for the ownership<br />
<strong>and</strong> management <strong>of</strong> information assurance risks<br />
within their respective business areas. In line with<br />
IROC requirements, <strong>NIPS</strong> has its own Information<br />
Assurance Group, chaired by the Director <strong>of</strong> Finance<br />
<strong>and</strong> Corporate Services who is also the SIRO for<br />
<strong>NIPS</strong>. This group has been established to oversee<br />
the delivery <strong>of</strong> the Information Assurance policy <strong>and</strong><br />
procedures <strong>and</strong> to implement the Security Policy<br />
Framework. The <strong>NIPS</strong> <strong>of</strong>fices’ supported IT systems<br />
are regularly accredited by the DOJ Accreditation<br />
Authority Panel.<br />
REVIEW OF EFFECTIVENESS OF THE<br />
GOVERNANCE FRAMEWORK<br />
In December 2010 CJINI issued its report into<br />
Corporate Governance arrangements in <strong>NIPS</strong>. In<br />
light <strong>of</strong> the imminent publication <strong>of</strong> the PRT final<br />
report, the observations <strong>of</strong> CJINI were incorporated<br />
into the 40 PRT recommendations. The Service<br />
has accepted these findings <strong>and</strong> recognised the<br />
importance <strong>of</strong> addressing the issues raised in order<br />
to transform <strong>NIPS</strong> into a model <strong>of</strong> good practice.<br />
<strong>NIPS</strong> has taken forward a number <strong>of</strong> key actions<br />
since the publication <strong>of</strong> the recommendations in<br />
order to enhance <strong>and</strong> strengthen existing corporate<br />
governance arrangements. These include:<br />
• clarification <strong>of</strong> the role <strong>of</strong> the Board <strong>and</strong> Board<br />
members;<br />
• roles <strong>and</strong> responsibility <strong>of</strong> the Executive<br />
Management Team;<br />
• definition <strong>of</strong> the assurance framework operating<br />
between the Board <strong>and</strong> its Committees, the<br />
Board <strong>and</strong> the Executive Management Team <strong>and</strong><br />
the Board <strong>and</strong> Arms Length Bodies funded by<br />
<strong>NIPS</strong>;<br />
• revised business planning processes;<br />
• revisions to the performance information<br />
provided to the Board;<br />
• review <strong>of</strong> risk management processes <strong>and</strong><br />
business controls;<br />
61