Welcome to Risk Management at SCU


The Risk Management Policy is available online.

The Risk Management Standard

At Southern Cross University the current approach to Risk Management follows that set out in the Australian/New Zealand Risk Management Standard (AS/NZS 4360:2004). While this standard is generally regarded as exhibiting world's best practice in this area, it has been superseded (in November 2009) by the ISO 31000:2009 Risk Management Standard.

While the new ISO Standard differs only slightly from the AS/NZ Standard, the University's Risk Management Policy and Procedures will be reviewed and amended as deemed appropriate, in light of the abovementioned development.

What is Risk Management?

Risk is defined as "the chance of something happening that will have an impact upon objectives. It is measured in terms of likelihood and consequence".~

Risk Management is defined as "the culture, processes and structures that are directed towards effective management of potential opportunities and adverse effects".~

Risk Management is an integral part of good management. The application of sound risk management allows for continual improvement in decision making and processes.

Effective risk management involves the systematic application of management policies, procedures and practices and should include a clear understanding of roles and responsibilities.

(~ reference definitions as per AS/NZS 4360:2004)

Risk Management at SCU

Southern Cross University has specific risk management processes in place, for example, audits, OH&S, equity and access provisions, among others. Risk, however, occurs in much wider contexts including environment, governance, security, quality, entrepreneurial activities, reputation etc.

One of the overriding philosophies of Risk Management for SCU is that risk will be identified, assessed and managed by all employees, through supervisors and managers, appropriate to the level, and impact, of the risk.

Responsibility for managing risk rests with everyone. An effective risk management structure is one that assigns the responsibility to the appropriate operational area within which the risk is found, and establishes a timeframe for action to treat the risk.

Risk management will increase every manager's capacity to identify and deal with risk as well as provide the University with useful strategic information for planning, budgeting and reduction of exposure to risk at all levels.

Used by individuals in the workplace it will also be a most useful tool to assign priority order to competing tasks, enabling employees at all levels to meet their personal objectives.