Risk Management

The identification and management of risk is one of the board’s responsibilities. Risks are not just financial risks, but also include risks associated with loss of key staff and volunteers, reputation or health and safety.

The identification and management of risk is one of the board’s responsibilities, although parts may be delegated to operational staff or volunteers. The Charity Commission has guidance on risk management and we’ve picked out some of the best other tools and guides for you.


Useful tools to help with risk management


Some risks are dealt with by insuring against them, which may be a legal requirement (for example, motor and employer’s liability insurance, where a charity owns vehicles or employs staff.) The Charity Commission has produced excellent guidance.

Risk management


Risk register

A risk register is a framework for identifying, assessing and recording the risks that your organisation faces.

The NCVO : Risk Register Template which is available to NCVO members should be used as a starting point for your own risk register and be adapted for your organisation.



Every charity, NGO and not-for-profit is susceptible to fraud and cybercrime by criminals. Charities need to be aware of the risks and take steps to keep their money, people and data safe.

Below are a range of help sheets from the Prevent Charity Fraud website:

Additional resources can be found on the Fraud Advisory Panel as well as the NCSC Cyber Security Small Charity Guide.

Virgin Media also have a useful Cyber Security Safety Test that aims to build awareness and educate users of all ages on how to better protect themselves from online threats.

Image courtesy of Wheelpower