ESS Vision 2020Strategic Risk Management

Risk Mitigation

Involvement of the DIME-ITDG

DIME-ITDG Steering Group – item 07Luxembourg, 18.11.2015

Strategic risks - backgroundFebruary 2015

ESSC invites the VIG to identify, classify and assess strategic risks affecting the Vision implementation, and develop appropriate mitigation actions

April 2015 VIN members provided views on the strategic risks and mitigations

September 2015

VIG proposals on strategic risks ad mitigations

September 2015

ESSC approval of the VIG proposals

Risk identification & assessment

• Review by VIG of existing project level risks, identification of commonalities

• Invitation to VIN to assess initial set of strategic portfolio risks

• Scoring and prioritisation of strategic risks

Risk response

• Ideas for mitigation actions:

• Mitigation plans: actions to reduce the likelihood and/or potential impact

• Contingency plans: actions to manage the impact of a risk should it materialise (to be developed)

• Quarterly project and portfolio level risk report to VIG

• Quarterly review of risks & mitigations by VIG - key points reported to ESSC

• Annual re-assessment of strategic risks

Risk reporting and monitoring

Priorities

In September 2015, the ESSC has identified the following priorities:•Mitigate the risks related to the exchange of identifiable micro-data•Enhance capabilities to implement the Vision at the national and European level in terms of skills and resources•Reinforce the communication on Vision objectives and implementing measures to stakeholders, within the ESS and beyond

Mitigation actions

Each mitigation action will be implemented under the responsibility of:•an action owner (Eurostat unit)•a Directors Group, where relevant

Mitigation actions under the umbrella of DIME/ITDG (1)

Define the roadmap and responsibilities:

• WG (or other body) to be involved in the follow-up of the mitigation action

• Deliverables• Timeline

Mitigation actions under the umbrella of DIME/ITDG (2)Risk to be mitigated: Exchange of confidential micro data for statistical production

purposesMitigation actions for DIME-ITDG: • Establishment and implementation of a Common ESS IT

Security Framework (proposal: WG IT)• Development and implementation of an IT infrastructure

for secure transfer and remote access to micro-data for statistical purposes (proposal: WG IT)

Mitigation actions under the umbrella of DIME/ITDG (3)Risk to be mitigated: Lack of coherence between national and ESS modernisation

programmesMitigation actions for DIME-ITDG: • Ensure consistency with ESS/agreed international standards

(e.g. for production processes). Monitor actions. (proposal: WG Standards)

• Develop recommendations related to the ESS Vision 2020 principles/objectives for managers responsible for modernisation programmes/projects (proposal: WG Methodology)

Questions for the DIME-ITDG

The members of the DIME-ITDG are invited to•express their opinion on the proposed Working Groups to be involved for the mitigation actions that fall under its responsibility •advice on specific activities/deliverables for the implementation of the mitigation actions

ESS Vision 2020

Strategic Risk Management

Thank you for your attention !

Questions?