Connecting the nation. and Beyond. - ChartNexus
Connecting the nation. and Beyond. - ChartNexus
Connecting the nation. and Beyond. - ChartNexus
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
132 / MRCB laporan tahunan 2011 /<br />
rIsK management report<br />
One of <strong>the</strong> strategic moves made by <strong>the</strong> Board in its efforts to<br />
protect shareholders value is <strong>the</strong> establishment of an integrated<br />
<strong>and</strong> structured enterprise risk management process within<br />
<strong>the</strong> Group. Since February 2003, <strong>the</strong> Board toge<strong>the</strong>r with <strong>the</strong><br />
Management have developed <strong>and</strong> implemented structured<br />
Enterprise Risk Management (“ERM”) practices throughout <strong>the</strong><br />
Group.<br />
To provide a foundation for enterprise risk management in <strong>the</strong><br />
Group, <strong>the</strong> Management had designed a Risk Management<br />
Framework <strong>and</strong> Manual (“RMF”) which was approved by <strong>the</strong><br />
Board on 17 February 2003. This Framework was implemented<br />
throughout <strong>the</strong> Group. In 2011, a comprehensive review of<br />
<strong>the</strong> RMF was undertaken to align <strong>the</strong> RMF with best practices<br />
recommended by <strong>the</strong> COSO Enterprise Risk Management –<br />
Integrated Framework <strong>and</strong> to ensure that it remains relevant <strong>and</strong><br />
effective for <strong>the</strong> pro-active management of risks, particularly<br />
<strong>the</strong> strategic risks of <strong>the</strong> Group, in its present operating<br />
environment.<br />
KeY revIsIons maDe to tHe rmF Were as FoLLoWs:<br />
a The Group’s policy on managing risk was enhanced with<br />
<strong>the</strong> introduction of <strong>the</strong> concept of <strong>the</strong> risk of unrealised<br />
opportunities;<br />
b Risk categories were revised <strong>and</strong> exp<strong>and</strong>ed to reflect <strong>the</strong><br />
expansion of <strong>the</strong> Group’s scale <strong>and</strong> scope of operations;<br />
c A common set of risk definitions for key risk events were<br />
developed to facilitate uniformity of underst<strong>and</strong>ing<br />
throughout <strong>the</strong> Group;<br />
d The granularity of <strong>the</strong> risk rating scale was exp<strong>and</strong>ed from<br />
a 2x2 scale to a 4x4 scale in response to management’s<br />
improved underst<strong>and</strong>ing of risks; <strong>and</strong><br />
e The roles <strong>and</strong> responsibilities of <strong>the</strong> various parties involved<br />
in risk oversight were refined <strong>and</strong> aligned with changes in<br />
<strong>the</strong> organization <strong>and</strong> reporting structure that have taken<br />
place since <strong>the</strong> last review of <strong>the</strong> RMF.<br />
The Corporate Governance Department is responsible for<br />
developing, coordinating <strong>and</strong> facilitating <strong>the</strong> ERM processes<br />
within <strong>the</strong> Group.<br />
rIsK reportIng anD monItorIng<br />
The Board has delegated to <strong>the</strong> AC <strong>the</strong> responsibility to oversee<br />
<strong>and</strong> monitor all risk management activities of <strong>the</strong> Group. In this<br />
respect, <strong>the</strong> AC is assisted by <strong>the</strong> CEO <strong>and</strong> a Risk Management<br />
Working Committee (“RMWC”), which comprises key senior<br />
management personnel of <strong>the</strong> Group.<br />
The RMWC, which meets on a quarterly basis, monitors <strong>the</strong><br />
effectiveness of <strong>the</strong> risk mitigating actions that have been<br />
proposed by management, evaluates <strong>and</strong> monitors <strong>the</strong> risk<br />
management infrastructure <strong>and</strong> facilitates <strong>the</strong> risk management<br />
process throughout <strong>the</strong> Group.<br />
rIsK management sYstem<br />
During <strong>the</strong> year under review, <strong>the</strong> Corporate Governance<br />
Department had worked with <strong>the</strong> Information Technology<br />
Department to develop an IT–enabled Risk Management System<br />
to facilitate <strong>the</strong> documentation, monitoring <strong>and</strong> reporting of<br />
risks, controls <strong>and</strong> mitigating action plans throughout <strong>the</strong> Group.<br />
The Risk Management System has been operational since <strong>the</strong><br />
3rd Quarter of 2011.<br />
To introduce <strong>the</strong> revised Risk Management Framework <strong>and</strong> Risk<br />
Management System to <strong>the</strong> senior <strong>and</strong> middle management<br />
team of <strong>the</strong> Group, various briefing <strong>and</strong> system demonstration<br />
sessions were conducted by <strong>the</strong> Corporate Governance<br />
Department. The Corporate Governance Department also<br />
actively engaged with senior <strong>and</strong> middle management to share<br />
information <strong>and</strong> current thinking on risk management in an effort<br />
to embed risk-consciousness into <strong>the</strong> culture of <strong>the</strong> Group.<br />
The MRCB Board <strong>and</strong> Management constantly reviews <strong>the</strong><br />
effectiveness of <strong>the</strong> Group’s risk management system <strong>and</strong> will<br />
continue to devote <strong>the</strong> appropriate amount of resources to this<br />
end.<br />
this risk management report is approved by <strong>the</strong> Board of<br />
Directors via its resolution on 14 February 2012.<br />
tan sri azlan Zainol<br />
Chairman<br />
malaysian resources corporation Berhad