Primary Risk Register



This Primary Risk Register sets out the categories of risks of an organisation on a high-level basis. The Primary Risk Register can then be expanded to a register for each category of risks, such as, data security and privacy, product safety, work health and safety, compliance, corporate risks and more.

This Primary Risk Register is suitable for organisations of all sizes. It has been pre-filled with risk categories, risk ratings and monitoring or performance measures, which can be customised for a specific organisation.

Contents

  1. Purpose. 2
  2. Risk documentation. 2
  3. Use of register 3
  4. Primary Risk Register 4
  5. Instructions. 4
  6. Risk ownership details. 4
  7. Risk category details. 4
  8. Risk assessment tables. 5
  9. Primary Risk Register 8
  10. Document information. 11

Purpose

A risk register acts as a master document which contains all items of risks of an organisation and allows the organisation to track issues and create contingency plans as they arise. This Primary Risk Register sets out the categories of risks for [organisation name] and prioritises [organisation name]’s risks.

This Primary Risk Register should be used in conjunction with the more detailed risk registers set out in the next section.

Risk documentation

[Organisation name]’s detailed risk assessments are contained in the following risk registers:

  1. WHS Risk Register
  2. Consumer Protection Risk Register
  3. Business Continuity Risk Register
  4. Financial Risk Register
  5. Data Security Risk Register
  6. Compliance Risk Register

Risk treatment and risk management for the risks documented in the risk registers are set out in their corresponding risk treatment plans. The following information is included in each risk register or risk treatment plan, or both.

Risk ownership details

Risk ownership details are contained in either the Primary Risk Register or the other risk registers, in the corresponding risk treatment plans, or both, as indicated below.

Information category Description Contained in
Business details Business name Risk register | Risk treatment plan
  Business location Risk register | Risk treatment plan
  Business unit or department Risk register | Risk treatment plan
Risk owner Name Risk register | Risk treatment plan
  Position Risk register | Risk treatment plan
  Reports to Risk register | Risk treatment plan
Risk control owner Name Risk register | Risk treatment plan
  Position Risk register | Risk treatment plan
  Reports to Risk register | Risk treatment plan
Risk treatment plan owner Name Risk register | Risk treatment plan
  Position Risk register | Risk treatment plan
  Reports to Risk register | Risk treatment plan
Risk treatment approver Approver name Risk register | Risk treatment plan
  Position Risk register | Risk treatment plan
  Reports to Risk register | Risk treatment plan

Risk description details

Information category Description Contained in
Risk identification details Risk register ID Risk register | Risk treatment plan
  Risk name Risk register | Risk treatment plan
  Risk category Risk register | Risk treatment plan
  Risk description Risk register | Risk treatment plan
  Risk causes or reasons Risk register
Risk rating details Inherent risk consequence Risk register
  Inherent risk likelihood Risk register
  Inherent risk rating Risk register
  Inherent risk tolerance level Risk register
  Inherent risk response Risk register
  Residual risk rating Risk register
  Residual risk tolerance level Risk register
  Residual risk response Risk register
  Residual risk monitoring schedule Risk register
  Performance measures and constraints Risk register
Risk treatment details Risk treatment plan ID Risk register | Risk treatment plan
  Risk treatment option Risk treatment plan
  Risk treatment actions and tasks Risk treatment plan
  Resource requirements including contingencies Risk treatment plan
  Risk treatment implementation schedule Risk treatment plan

Use of register

The register set out in the next page is a copy of the Primary Risk Register which is kept as a Microsoft Excel document. The register provides a high-level overview of the priority risks of [organisation name].

The Microsoft Excel version of this Primary Risk Register and all other registers are located at [insert name of document repository].

Sign in

Questions or can't sign in? Contact our Support team.

Use of our services is subject to our Terms of Service.


Not a registered subscriber?

Register for FREE



Share: