1. Conduct enterprise-wide risk assessment
Looking ahead, should a second wave of the pandemic hit, public sector services should be fully prepared, understanding the risks inherent to their services and having thought-through mitigating actions to apply if the need arises.
Conducting a thorough enterprise-wide risk assessment of all critical services and functions should be an integral component of running an organization. Chiefly, it involves identifying the organization's top risks, planning how to address them, and assessing the risk potential and impact by creating what-if scenarios. Benefits include informed decision-making, standardized risk reporting and procedures, efficient use of resources, improved risk-aware culture, and, in the case of public service organizations, enhanced political and community support.
Far from being managed on an ad-hoc or standalone basis, enterprise risk management is a continuous process woven into the organizational framework and culture so you can mitigate and monitor potential threats as they arise. It may take several iterations before you have a complete picture of your organization's risks, but once you genuinely understand what they are, and the controls and processes that mitigate them, you are halfway there.