Directors in the Northern Territory: duties, risk management and practical governance priorities

In the Northern Territory, where reputation, relationships, safety, logistics, land access and community trust matter greatly, the job of a Director requires practical vigilance. Governance is not paperwork. It is active stewardship. The board’s job is not to manage every operational detail; it is to ensure the right people, systems, information, controls, culture and assurance are in place.

In this article we explore the role of a Director operating in the Northern Territory, the key duties, risks and governance priorities.

1. Why directors need to be actively engaged

Directors in the Northern Territory operate in a distinctive environment. Many organisations are smaller, relationships are closer, markets are thinner, skilled labour is harder to obtain, and projects often depend on government, land access, remote logistics, weather, culture, reputation and community trust. These features do not reduce a director’s obligations. If anything, they make active, informed and practical governance more important.

The starting point is a director must exercise care and diligence. Section 180(1) of the Corporations Act 2001 requires directors and officers to exercise the degree of care and diligence a reasonable person would exercise if they were a director or officer of a corporation in the corporation’s circumstances and had the same responsibilities.

This is not a standard of perfection. Directors are not expected to know everything or personally manage every operational issue. But they are expected to understand the organisation’s business, monitor its affairs, ask sensible questions, and take reasonable steps to ensure that important risks are visible and properly managed.

The recent Federal Court decision in ASIC v Bekier concerning The Star Entertainment Group is a useful warning. ASIC alleged governance failures arising from anti-money laundering risk, junket operators, suspicious cash activity, and China UnionPay transactions. The Court found Star’s former CEO and Chief Legal and Risk Officer breached their duties, while ASIC’s case against the non-executive directors was dismissed.

The lesson is not non-executive directors are safe if management fails. The better lesson is liability depends on context, what the director knew or ought reasonably to have appreciated, the information provided, the director’s role, and whether the director applied an enquiring mind. The case reinforces that directors must be more than passive recipients of board papers.

2. The practical content of care and diligence

A director should be able to demonstrate that they have taken reasonable steps to place themselves in a position to guide and monitor management.

The business judgment rule may protect directors where they make a business judgment in good faith, for a proper purpose, without material personal interest, after informing themselves to the extent they reasonably believe appropriate, and where they rationally believe the judgment is in the company’s best interests. The statutory rule is set out in s 180(2) of the Corporations Act.

However, the rule is not a general shield for inaction. A director must actually turn their mind to the issue. A decision not to act can be a business judgment, but only where the director has consciously considered the matter.

3. Best interests of the corporation

Directors must act in good faith in the best interests of the corporation and for a proper purpose. In ordinary commercial companies, shareholder interests remain central. But the best interests of the company are not limited to short-term profit.

Directors may properly consider employees, customers, creditors, Traditional Owners, suppliers, regulators, environmental impacts, safety, community trust and reputation where those matters affect the company’s long-term interests, sustainability, compliance or social licence.

4. Risk management is core governance

Risk management is not separate from governance. It is a central board responsibility. The Governance Institute’s risk management guidance describes risk oversight as part of the board’s ultimate accountability and emphasises an integrated, organisation-wide view of risk.

The board should set the risk appetite, approve the risk framework, challenge management, and ensure the organisation has reliable systems for identifying, assessing, controlling and reporting risk. Management’s role is to operate the framework within the boundaries set by the board.

5. Information overload

The ASIC v Bekier case also illustrates the danger of information overload. Board packs that are hundreds of pages long may appear comprehensive, but they can obscure the real issues. Directors cannot excuse poor engagement by saying the material was too voluminous. Boards can and should control the information they receive.

Artificial intelligence may assist directors and management to summarise board materials, identify themes and detect anomalies. But AI should not become an informal, ungoverned substitute for judgment. Board use of AI should be transparent, controlled by policy, and subject to confidentiality and privilege safeguards. Directors remain personally responsible for informed human judgment.

6. Our top 10 governance issues and risks for NT organisations

1. Regulatory and compliance. Do we know our top legal and regulatory obligations, who owns them, and what evidence proves compliance?
2. Board oversight, information flow and directors’ duties. Are board papers helping directors understand risk, or burying risk in operational detail?
3. Workforce attraction, retention and capability. Do we have a workforce plan dealing with recruitment, retention, housing pressure, succession and key-person risk?
4. Work health and safety, including psychosocial risk. Are safety risks, fatigue, remote work, heat and psychosocial hazards treated as board-level risks?
5. Cashflow, solvency and financial resilience. Do we receive forward-looking cashflow, debtor, contract-margin and solvency reporting, not just historical profit and loss?
6. Cybersecurity, privacy and data governance. Could we detect, contain and explain a cyber incident within 24 to 72 hours?
7. Environmental approvals, reporting and enforcement. Are environmental obligations mapped, monitored and reported to the board with evidence?
8. Climate, cyclone, heat, water and business continuity risk. Do we have tested continuity plans for cyclone, power failure, road closure, heat, flood and supply interruption?
9. Remote logistics, infrastructure and supply-chain fragility. Are our contracts, pricing, insurance and timelines realistic for wet season, freight, fuel and remote-access risk?
10. Aboriginal land, sacred sites, cultural heritage and social licence. Have we obtained the right clearances, engaged the right people, and built cultural heritage risk into project design before work starts?