Risk Register

Community Risk Register

The Civil Contingencies Act 2004 places a legal duty on Category 1 responders to produce a Community Risk Register (CRR).


UK Resilience Website


A prominent feature of the CRR is a clear risk assessment process, which is used to analyse the specific risks and vulnerabilities within Avon and Somerset. The Avon and Somerset LRF have targeted this risk assessment process as part of a multi-agency approach and have subsequently formed a Risk Assessment Sub-Group (RASG) to develop and maintain the register. All potential hazards and threats are analysed based upon the likelihood and impact of each and awarded a risk rating relative to their potential significance.


Detailed guidance on the risk assessment process can be found within Chapter 4 of the Emergency Preparedness guidance document published by HM Government. The risk assessment process is divided into six stages; including:


  1. Contextualisation
  2. Hazard review and allocation for assessment
  3. Risk analysis
  4. Risk Evaluation
  5. Risk Treatment
  6. Monitoring and Review

1. Contextualisation

  • Define the scope of the project and the process to be followed.
  • Identify stakeholders.
  • Set out risk evaluation criteria and principles.
  • Review or describe social, economic, cultural, infrastructural and environmental issues within local context.

Back to top


2. Hazard review and allocation for assessment

  • Identification of those non-malicious hazards that present significant risks (ie could give rise to an emergency) in their areas over the next five years. These hazards will be identified on the basis of experience, research or other information. It should then be identified which agency will be the lead assessor to conduct the risk assessment.
  • Taking into account centrally provided guidance and drawing on information provided by Category 2 responders, Category 1 responders provisionally identify and describe hazards which might give rise to an emergency in the next five years and those which will not.
  • Category 1 responders provisionally agree allocation of lead assessors.
  • Local Resilience Forum (LRF) endorses hazards to be assessed and determines lead assessor responsibility.
  • Risk Assessment Sub Group (RASG) convenes and reviews hazards identified at LRF for confirmation or possible CRR amendment.
  • RASG confirms appropriateness of lead allocation and identifies any other agencies with key roles.
  • RASG agrees a project plan with deadlines for assessing individual or groups of hazards.

Back to top


3. Risk analysis ID 3.4

  • Lead assessor considers the likelihood of hazards’ occurrence over five-year period, drawing on generic assessments from central government, other research and knowledge of Category 1 responders.
  • Lead assessor suggests the range of potential impacts arising from the hazards as well as any vulnerability surrounding these, and discusses with RASG.
  • Lead assessor captures assessment details for each hazard and related reasoning within the individual risk assessment form. This generates a provisional risk statement with likelihood, impact(s) and an overall risk assessment for evaluation by RASG.

Back to top


4. Risk evaluation ID 3.5

  • RASG considers the individual risk assessment forms, compares the results to the risk criteria, and confirms or modifies these assessments as appropriate.
  • Agreed assessments are collated and incorporated into CRR.
  • Risk matrix is plotted for hazards.
  • RASG incorporates into CRR threat statements provided by central government within the local risk assessment guidance (LRAG), but does not assess likelihood or impact.
  • RASG highlights existing capabilities and mitigation plans for the hazards and threats and:
    • considers the acceptability of risks;
    • identifies and recommends options for risk treatment for the LRF; and
    • makes recommendations to the LRF on risk priorities for hazards and threats.
  • LRF reviews the CRR and risk matrix in light of the evaluation criteria, and amends as appropriate.
  • LRF determines the acceptability of the risks before considering treatment.

Back to top


5. Risk treatment

  • Review the capability challenges posed by the risks against existing capabilities, mitigation plans or known gaps.
  • Set risk priorities.
  • Evaluate proposed options for additional treatment of risks and agree risk treatment plan.
  • Identify officer or organisation to be responsible for implementation of actions.
  • Actions communicated to appropriate working groups.

Back to top


6. Monitoring and Review

  • Formal review of all risks on an annual cycle, but reviewed and updated as and when appropriate.

Back to top

Freedom of Information Data Protection