Three lines of defence to help with managing the risks in decision-making
- Australian Capital Territory
Regulatory reviews of organisational failings inevitably focus on why risks were not effectively identified, measured, monitored or managed. The risks are the same for policy-makers. The Three Lines of Defence model for risk-management is a way to ensure policy doesn’t fail.