Image

RISK MANAGEMENT

We have extensive experience in helping organisations identify, assess and report risks in addition to building and optimising risk management frameworks.

Risk Management Maturity

We have developed a best practice risk maturity tool to help you understand your current and ‘to be’ state

Risk Identification and Assessment

Identification and quantification of risks to an organisation’s objectives. Helping to design effective mitigating controls

Risk Monitoring and Reporting

Ongoing assessment of risks and the effectiveness of controls. Development of action focused, meaningful risk reporting

Law 6INTERNAL AUDIT

We have global experience in managing and executing complex internal audit plans, specialising in the Oil & Gas, Mining and Utilities sectors

Internal Audit Planning

Development of an achievable Internal Audit plan, focused on the key risks of the organisation

Audit Execution

Providing specialist Internal Audit resources to ensure that your plan is delivered on time, on budget and with maximum impact

Internal Audit Optimisation

Building the Internal Audit brand within the business and optimising its reach, scope and focus

ASSURANCE

Targeted assurance reviews covering key organisational risks, often in support of management or line 2 assurance providers.

Procurement & Contract Management

Helping to establish confidence in the supply chain by reviewing key contracts or suppliers

Fraud Reviews & Investigations

Plan and execute fraud reviews and investigations, reporting to management and the relevant authorities

Joint Ventures (JVs)

Targeted JV compliance assurance in addition to assessing JV management processes

Law 6GOVERNANCE

Helping with the design, implementation and improvement of governance frameworks and supporting processes.

Project Governance & Assurance

Initial setup of project governance and deep dives on risk areas. Health-checks and assurance that ensure objectives are being met

Fraud / Anti-Corruption Framework

Advice on an overall fraud or anti-corruption framework and support during implementation

Business Process Improvement

The assessment and improvement of business processes to increase efficiency and value to the business

Image 4

CHANGE MANAGEMENT

Helping organisations prepare for change and organisation development, particularly how to communicate change both internally and externally.

Change Development

Working with organisations to help establish need for change or development, what areas need to be addressed and what strategies are needed to best implement change.

Change Communication

Supporting organisations to develop of strategies to help people to adopt and accept change through effective communications to both internal colleagues and external stakeholders.

Risk and Change

Understanding and helping to manage the risks associated with change and development. Supporting the development of change management plans to allow early identification and management of potential risks.

Image 6RESOURCING

Providing expert resourcing support specialising in risk management, audit, internal controls, compliance and governance.

Recruitment Support

Specialist GRC expertise to provide support during your resourcing requirements for permanent, contract, fixed term or project needs

GRC Maturity Analysis

Provision of GRC resourcing methodology and maturity analysis designed & applied by SME’s.

“Thank you A&P Advisory, you did a great job on this audit & I really appreciate all the support you’ve given us.”

Chief Audit Executive / Senior Vice President, ASX20 Resources Company

“Thank you for your work with this Internal Audit. It really was a smooth sailing process. AP Advisory will be on top of my list for recommended IA’s.”

Chief Executive Officer, WA Government Statutory Authority

“We have recently worked with A&P Advisory, and what I have valued most about our relationship is that A&P Advisory know us and our business.”

Chief Audit Executive, Resources Company

“A&P Advisory completed an excellent and well delivered presentation which provided key governance insights to the members of the WA Certified Fraud Examiner Chapter”

President, Western Australia Association of Certified Fraud Examiners (ACFE) Chapter

“A&P Advisory completed a diagnostic & benchmarking exercise with my assurance function, as well as the development of a 2 year plan & operating model.  A&P Advisory were collaborative, engaging and professional in delivering an excellent service and outcome”

Assurance Manager, Alinta Energy

“Thank you to A&P Advisory who provided excellent Governance, Risk and Compliance support through a structured framework and methodology leading to further progression along our GRC maturity curve”

Chief Financial Officer, Resources Company

“We received very positive feedback as to how enjoyable and informative the strategic risk management session with the executive leadership team was. The A&P Advisory team worked together effectively and added value to the experience.”

Governance, Compliance and Risk Officer, Local Government Authority

Our Case Studies

At A&P Advisory, our case studies demonstrate our collaborative approach to provide and build fit for purpose solutions, tailored to meet the needs of the organisation that we are working with, rather than taking a one size fits all approach.

  • We build trust quickly and are adept at stakeholder management across all layers of the organisation
  • We are prepared, targeted in our approach and do not waste time asking basic or irrelevant questions
  • We are agile and can navigate complexity ‘on the ground’, cutting through noise to identify the real issues at stake
  • We are well versed in recognising and sharing best practice – of particular importance as you optimise the risk and control environment across your organisation
  • We have honed written and verbal communication skills and genuinely understand how to provide practical and insightful recommendations

Integrated Assurance Implementation for Tier 1 Resource companies based in WA

Client Requirements

Design and implement an integrated assurance model and framework to:

  • Assist with applying a common assurance methodology
  • Focus assurance efforts on the core management system requirements
  • Remove duplication effort
  • Present coordinated assurance results to Senior Management.

A&P Advisory Delivered

  • Understand needs and develop an integrated assurance implementation strategy
  • Developed common assurance methodology, tools and templates – a common terminology
  • Mapped assurance activities through engagement with internal stakeholders
  • Delivered risk based assurance reviews.

A&P Advisory Value

  • Improved transparency and accountability for core management system requirements
  • Enabled assurance activities to be accurately mapped to Management System requirements and optimised appropriately
  • Provided recommendations to improve strength of line 2 assurance programs
  • Defined integrated assurance interfaces with functions, operations and projects.

Image 2

Improved risk management identification and analysis at ASX 20 Resources Company

Client Requirements

Technical support to management in facilitating risk management training and client workshops, project management and reporting; as well as completing the analysis, evaluation and helping resolve risk management problems.

A&P Advisory Delivered

  • Risk identification completed utilising industry and company research
  • Facilitated workshops run with management in order to support the identification of risks, causes, likelihood, impacts across a number of categories (MFL and RRR) and controls in place to mitigate risks and the strength of those controls
  • Stakeholder management across all levels.

A&P Advisory Value

  • Value add, fit for purpose and complete risk universe
  • Practical & relevant actions to improve the overall risk environment
  • Risk-based insights & recommendations
  • Strong engagement and collaboration through risk management training and mentoring.

Design & implement an enterprise wide GRC framework at an ASX 50 Oil & Gas Company

Client Requirements

Assist with the design, implementation and project management of integrated GRC processes and system, with a particular focus on ensuring high quality control design and assurance outcomes.

A&P Advisory Delivered

  • Developed key controls for all business processes
  • Implemented control self-assessment methodology
  • Developed integrated assurance standard (co-ordinating IA activities with self-assessments)
  • Developed asset based control assessment protocols
  • Completed risk-based integrated assurance map

A&P Advisory Value

  • Increased line of sight of other assurance activities for Internal Audit
  • Streamlined line 1 & 2 assurance activities to focus on key controls
  • Implemented structured, integrated and consistent company-wide assurance methodology
  • Enabled the business to integrate and automate the current GRC process

Deliver high quality Risk Management to $1b Lithium Project and FTSE 20 Upstream Oil & Gas Company

Client Requirements

Experienced delivery by industry professionals to support risk management & control implementation through risk identification workshops, assessment and risk prioritisation and risk based reviews.

A&P Advisory Delivered

  • Key risk and controls reviewed by industry, company wide expertise, engineering controls/solutions identified and prioritised
  • Identification, embedment and monitoring of lead / lag indicators of key risk controls
  • Improved risk and control effectiveness reporting
  • Stakeholder management across all levels.

A&P Advisory Value

  • Risk-based insights and recommendations
  • Functional improvement of risk management (methodology, approach, use of data analytics)
  • Risk management training and mentoring
  • Real-term financial gains for the organisation
  • Risk identification, assessment and treatment activities risk health view.

Development of GRC training materials for ASX 50 Oil & Gas Company

Client Requirements

Develop GRC training materials that can be rolled out company-wide, focused on:

  • The development of efficient, risk based controls
  • Good process and control design principles linked to integrated management standard objectives.
  • Management system roles, responsibilities and accountabilities.

A&P Advisory Delivered

  • A targeted training program ready to be rolled out organisation-wide.
  • Good control and process principles, aligned to management system requirements using company-relevant examples.
  • Engaging and informative training content, including interactive case studies, designed to be readily understood by training recipients.

A&P Advisory Value

  • Defined GRC roles and enhanced interfaces with functions, operations and projects.
  • Strengthened connection between risk management, integrated management and assurance roles / activities.
  • Customised training program designed to be delivered either face to face or online.
  • Simplified GRC concepts for non-GRC professionals.

Risk Review at WA Football and Community Organisation

Client Requirements

Complete a risk management review across the organisation to determine the framework robustness, ownership and responsibilities of risks provide the Board with improvement opportunities to increase the maturity of their risk management journey.

A&P Advisory Delivered

  • Interviews with executive and non-executive management to review processes & controls
  • Identification of efficient and effective improvement opportunities to manage significant operation and community risks
  • Provision of tools and implementation information for recommendations
  • Assess and benchmark the club’s maturity utilising industry and company research

A&P Advisory Value

  • Fit for purposes risk management review to support objectives
  • Strong engagement and collaboration through risk management interviews and Risk and Audit Committee presentation
  • Practical & relevant actions to improve the overall risk environment
  • Improved transparency and accountability for risk management requirements

Strategic Risk facilitation at WA local government authority

Client Requirements

Provide strategic risk management support in organisation to support effective strategic risk management identification and assessment to support the City’s Strategic Objectives and increase the maturity of the City’s strategic risk management journey.

A&P Advisory Delivered

  • Review of City’s Risk Management Framework, Strategic Risk scope, context and criteria
  • Development of tailored workshop materials with executive
  • Facilitation of workshop with executive and non-executive management to review and assess City strategic risks
  • Identification of efficient and effective improvement opportunities.

A&P Advisory Value

  • Tailored, engaging and collaborative risk management facilitation with executive and non-executive stakeholders
  • Refined and developed strategic risk management register
  • Engagement and education of City executive management team on value-add risk management
  • Strong engagement and collaboration through process with Risk team

Development of GRC learning content for University

Client Requirements

Provide subject matter expertise to assist in curriculum development and delivery of learning content for a digital finance offering that covered governance, compliance, risk management, regulations, cyber security and FinTech.

A&P Advisory Delivered

  • Australian Qualifications Framework (AQF) Level 8 tailored content ready to be included within the learning curriculum
  • Engaging and informative training content, including interactive case studies and assessments designed to be readily understood by learning recipients
  • Strong collaboration with a learning designer, and Academic Director
  • Identification of efficient and effective improvement opportunities.

A&P Advisory Value

  • Value-add learning outcomes, with strong focus on emerging themes in a rapidly evolving industry
  • Customised learning and curriculum materials designed to be delivered online
  • Efficient and effective delivery with tight turnarounds for overall project delivery
  • Simplification of detailed GRC concepts for non-GRC professionals

Implementation of enterprise level GRC solution at WA Ports Authority

Client Requirements

Support in the design, implementation, project management and management of change for the rollout of an integrated GRC IT solution, with as key component engagement with a large stakeholder group across different levels of responsibility and authority, including software vendor management and data migration.

A&P Advisory Delivered

  • Compiled project management artefacts and managed project end-to-end including risks, actions, issues, decisions, lessons learnt and executive reporting
  • Designed project change management plan and implemented communications and training organisation wide
  • Provided subject-matter governance, risk and compliance as well as information technology expertise

A&P Advisory Value

  • End-to end project delivery
  • High touchpoint engagement throughout project, resulting in strong stakeholder support
  • Completed individual and group training sessions across all client departments
  • Provided effective first point of contact for wide end user base post-Go Live
  • Provided effective link between the business, ICT and vendor, ensuring smooth system transition and data migration.