The Governance & Assurance Committee of Redbridge Council met on Wednesday, 28 January 2026. The meeting's agenda included discussions on the council's financial audit reports, updates on overdue actions, internal audit and counter-fraud activities, and the strategic risk register. Other topics scheduled for consideration were the Regulation of Investigatory Powers Act 2000, DBS checks for councillors, and the council's Information Governance and Cyber Security strategies for 2026-27.

Update on Red-Rated Actions Over 12 Months Past Their Original Target Date

The committee was scheduled to receive updates on red-rated actions that are over 12 months past their original target date. These actions are agreed following Internal Audit reviews and are intended to enhance the council's internal control environment. The report indicated that the owners of two such actions were scheduled to attend the meeting to provide explanations and updates on the further steps required to complete them and ensure sufficient assurance over the associated risks. The recommendations for the committee were to note these updates and the further steps planned for completion.

Internal Audit and Counter Fraud 2025/26 Q3 Update

This report was intended to provide an update on Internal Audit and Counter Fraud activities for the third quarter of the 2025/26 financial year. It was scheduled to cover the outcomes of completed Internal Audit work, highlighting any areas where there was limited or no assurance over governance, risk management, or control arrangements. The report also aimed to detail the progress made by management in implementing red and critical risk recommendations to address previously identified significant issues. The committee was recommended to note the update on activities, the outcomes of completed work, management's progress on recommendations, and to consider the responses from owners of unimplemented red-rated recommendations.

2025/26 Strategic Risk Register Quarter 3

The committee was scheduled to review the council's Strategic Risk Register for the third quarter of 2025/26. This report details the risks presented within the register, including changes in controls and their scoring, monitored by RAG (Red, Amber, Green) status. The purpose of this review is to ensure the council effectively manages uncertainty and supports informed decision-making by identifying opportunities or mitigating risks to an acceptable level. The committee was recommended to note and consider the current Strategic Risk Register.

Regulation of Investigatory Powers Act 2000 (RIPA)

This item was scheduled to inform the committee about the council's use and conduct of covert surveillance powers when investigating serious criminal offences, in accordance with Part II of the Regulation of Investigatory Powers Act 2000 (RIPA). The report proposed the formal adoption of a policy and procedures manual on RIPA by the Cabinet. It also recommended that the Cabinet delegate authority to the Chief Executive to amend the policy regarding the updating of Authorised Officers. The report noted that there had been no authorisations for RIPA powers during the 2025/2026 financial year to date, and highlighted a substantial reduction in their use by local authorities since 2012.

DBS Checks for Councillors and Co-opted Members

The committee was scheduled to consider a report proposing the formal adoption of a policy for conducting enhanced Disclosure and Barring Service (DBS) checks on all Councillors and Co-opted members. The report highlighted that while the council has a policy for DBS checks for employees, no equivalent policy currently exists for councillors and co-opted members. The proposal included recommendations for Full Council to adopt the policy, embed it into the Council's Constitution, and amend the Members' Code of Conduct to reflect the requirement for enhanced DBS checks and add a section on safeguarding. The rationale behind this proposal was to ensure the highest standards of safeguarding and public trust, given the roles councillors and co-optees play in the community and their potential engagement with vulnerable individuals.

Information Governance Strategy 2026-27

This report presented the IT Information Governance Strategy for the 2026-27 financial year. The strategy included minor updates from the previous year's strategy, reflecting changes in the council's modernisation and transformation agenda, recommendations from the Information Commissioner's Office, and strengthening language to align with council outcomes. Key changes included the addition of a roadmap of activities to support the council's information governance approach and amendments to strengthen information governance to support service delivery and data transparency. The committee was recommended to note and agree the proposed strategy.

Cyber Security Strategy 2026-27

The committee was scheduled to review the updated cyber security strategy for Redbridge for the 2026-27 period. Amendments to the strategy included references to the critical role of cyber security in the council's modernisation and transformation agenda, and an updated vision statement to Proactive threat detection and incident response to safeguard services and information. The strategy also included a roadmap of activities to support the achievement of its goals within the year. The committee was recommended to note and agree the proposed strategy.

Pension Fund Annual Audit Report (ISA 260)

This item was listed as To Follow, indicating that the report was expected to be presented to the committee. Typically, an ISA 260 report from an auditor provides an overview of the audit findings and conclusions regarding the financial statements of the Pension Fund.

Draft Minutes of Previous Meetings

The committee was scheduled to review the draft minutes from its previous meetings held on 4 November 2025 and 17 November 2025.

Public Question Time

This item allowed for members of the public to ask questions of the committee.

Date of Next Meeting

The date for the next Governance & Assurance Committee meeting was scheduled for 29 April 2026.

Motion to Exclude the Public

A motion was scheduled to be moved to exclude the public from the meeting for specific agenda items where exempt information was to be discussed, as permitted under the Local Government Act 1972. This was in relation to an Exempt Appendix to Item 13, which was not detailed on the public agenda.