Create a culture that takes a positive attitude to risk

• designing surveys and other health checks
• mapping lines of influence across the organisation to identify opportunities to create change
• advising on better practice in risk management and decision-making in situations of uncertainty 
• identifying strengths and weaknesses based on their experience of working with members of the leadership team or management
• making sure frameworks and processes are fit for purpose and easy to use
• working with colleagues to design organisational governance and practices so that risk is at the heart of them all
• identifying the key risk indicators of poor risk culture
• working with colleagues in your People and Culture team to embed the implementation of the risk culture strategy into the wider organisational strategy.

A recent experience with a small health care organisation showed VMIA’s risk advisers how important risk culture was to the quality of its services.

The organisation, which provides urgent care, primary and community care, aged care and in-patient acute services at two sites in Victoria, had four CEOs in six months and a divided board. Its management operated in silos and it had outsourced its People and Culture function. There was a culture of bullying and cover up.

Many employees felt they couldn’t escalate risks that they came across in their day-to-day work without negative repercussions, which jeopardised patient safety and staff wellbeing. The organisation’s reputation in the community was also suffering.

A new CEO introduced a two-year plan specifically designed to re-shape the organisation’s risk culture. As a result

• a new organisational structure and board governance was established to promote better communication
• position descriptions and committee terms of reference were revised to explicitly spell out accountability for risk management
• employees co-designed the organisation’s values model
• a consumer advisory committee was set up so that clients could contribute to decision-making
• regular People Matters surveys were conducted so that staff could raise concerns and more forums for staff engagement and interaction gave staff a safe way to raise risks
• the leadership communicated consistently about what a positive risk culture looked like

The results of this change? Staff now believe that identifying risks and managing them is part of their everyday work and feel able to raise their concerns. Services also improved, showing the link between good risk management and organisational performance.

In our Risk Culture Guide [PDF, 1.34MB], we describe an essential first step of understanding your current risk culture.

Sustainability Victoria assessed its risk culture in 2019 with exactly that purpose. The assessment helped them to challenge assumptions, test anecdotal reports and quantify dimensions of risk culture so they could continuously measure cultural change over time.

In 2020, they surveyed their people again, reporting changes on all dimensions of risk culture and assessing motivational factors for staff.

This is valuable information for the leadership which has an opportunity to commit to definite courses of action, such as developing a statement of risk appetite or fine-tuning some of their decision-making processes. Other opportunities to adjust frameworks and processes are also proposed for their 2021 Risk Culture and Capability Action Plan.

The experience at Sustainability Victoria is a great example of taking an evidence-based approach to change but also, importantly, integrating risk culture with risk frameworks and processes, so that risk management improves in a sustained and mutually reinforcing way.