Risk Management Services (NEW)

The Authority offers cyber security assessments to members through business partners. Triden Group and Ankura provide the assessments. The scope of work for each assessment includes the following elements:

1. National Institute of Standards and Technology (NIST) Questionnaire. An interview-style survey that evaluates whether cyber security controls are implemented correctly, operating as intended, and producing the desired outcome concerning meeting the security and privacy requirements for the system and the organization.
2. External Vulnerability Assessment. Identifies and evaluates security vulnerabilities in an organization’s external-facing systems and networks. This includes systems and networks that are accessible to the public, such as web servers and email servers.
3. Internal Vulnerability Assessment. Identifies and evaluates security vulnerabilities in an organization’s internal systems and networks. This includes systems and networks that are not accessible to the public, such as servers, workstations, and databases.

Upon completion of the assessment, members receive a findings report and a roadmap for improvement. The Authority has also executed master services agreements with both business partners, which allows members to take advantage of preferred pricing should they need assistance with remediating deficiencies identified during the assessment. Members interested in a cybersecurity assessment or accessing Triden’s services through our master services agreement (MSA) should contact their assigned Authority risk manager.

The California JPIA has negotiated preferred pricing with KnowBe4 for members not currently using the service. KnowBe4 is a cyber security awareness and simulated phishing service provider. KnowBe4 strengthens cyber security culture and reduces human risk through a simulated phishing platform that helps members stress-test their human firewall through custom, simulated phishing emails. This allows for identification of susceptible employees and the provision of immediate training to correct behavior.

• Discipline to include reduced pay, demotion, suspension, or termination​
• Harassment or discrimination​ complaints
• Complex leave issues​
• Abusive employees​
• Employment assistance and intervention program​
• Suspicion of criminal activity​
• FEHA, POBR, or FOBR matters​
• Accommodation issues

For agencies that need extra help, the Authority offers risk technician assistance. This service provides comprehensive risk management solutions to identify, analyze, and mitigate potential risks. Technicians can thoroughly assess your agency’s operations and activities to evaluate potential hazards, vulnerabilities, and liabilities. They develop strategies, policies, and protocols to minimize risks and ensure compliance with regulations. The service also involves implementing preventive measures, such as safety training programs and emergency response plans, to enhance your agency’s safety and resilience. By effectively managing risks, the technicians will help you maintain operational continuity, protect public resources, and safeguard the well-being of your residents.

The Authority fully funds the Risk Technician Program to fill the gap between the Authority’s regional Risk Managers and member staff in working on critical loss control action items. This program provides work to be done by one of the Authority’s strategic partners.. A strategic partner risk consultant collaborates with the member and the assigned Authority Risk Manager to engage in short-term assignments to address loss control action items. The scope of this program typically includes work in the context of policy writing and development, safety inspections, hazard assessments, safety meeting participation, and subject-matter analysis and expertise. Members interested in utilizing the Risk Technician Program should contact their assigned Authority risk manager.

The Authority negotiated a master services agreement for sidewalk inspection and maintenance services.  This master services agreement with Precision Concrete Cutting provides Authority members with favorable pricing for sidewalk inspection and repair services, which can translate to significant cost savings compared to members seeking the services individually.

To assist members with public safety, the Authority has partnered with Lexipol’s wellness technology solutions. CordicoShield and CordicoFire mental health and wellness apps leverage smartphone technology to provide personalized and anonymous mental health and wellness services specifically for law enforcement and fire personnel and their families. Keeping police and fire personnel healthy ensures consistent public safety and emergency response, reducing downtime due to illness or injuries and maximizing the effectiveness of tax dollars spent on public safety. The Authority currently reimburses 25% of the annual cost of these services up to $10,000 per member. Members who take advantage of the program can contract directly with Cordico, then submit their invoice for reimbursement.

This prevention program offers abuse protection systems to help protect residents and contribute to safe communities. Praesidium is a leader in abuse risk management. For more than 30 years, it has worked globally with thousands of organizations across industries to help them assess, prevent, and respond to sexual abuse of children and vulnerable adults.

Features of the Embark monitoring platform include:

• 24/7/365 web-based access to DMV driver record information accessible via the internet.
• Daily real-time motor vehicle record (MVR) notifications of accidents, violations, suspensions, and other record changes that are reported to the DMV.
• Drivers are color-coded to reduce the amount of time spent on evaluating driving records.
• Violations referencing the CA Vehicle Code are automatically decoded and presented in plain English.
• Pre-employment MVR checks.

Members interested in utilizing Embark Safety should contact their assigned Authority risk manager.

Authority partner STOPit Solutions is designed to allow anonymous reporting in the workplace for unsafe, harmful, or non-compliant behaviors. The program’s purpose is to deter inappropriate behaviors in the workplace, including, but not limited to, harassment, discrimination, threats, compliance risk, theft, fraud, and mental health concerns. In addition to incident reporting, STOPit allows agencies to monitor reported incidents closely and provides resources to manage and resolve incidents. Members interested in learning more about STOPit Solutions and how it can benefit their agency should contact their assigned Authority risk manager.

Our partner, Lexipol, provides resources to member agencies with police and fire departments. This partnership intends for members to access Lexipol’s subscription services for law enforcement policy manual updates, changing legislative mandates, case law, litigation trends, and daily training bulletins. Access to Lexipol may help public safety staff reduce risk and avoid litigation. Members interested in subscribing to Lexipol Policies and Training should contact their assigned Authority risk manager.

Members have access to a wealth of written resources through the California JPIA website. This includes risk management-related policy and program templates, checklists, white papers, and other resources.

For every litigated liability claim, the assigned defense attorney creates a lessons learned report. Each report summarizes the facts of the claim, factors aiding and hurting its defense, and, perhaps most importantly, actions the member agency cam take to prevent similar losses in the future. The Authority’s regional risk managers share these reports with the affected member and work directly with them (leveraging the Authority’s resources) to mitigate the loss exposure.