annual - Maxis

More documents

Recommendations

Info

82 | Maxis BERHAD Annual Report 2009 Code of Business Practice The Group is committed to conducting business fairly, impartially and ethically and in full compliance with all laws and regulations. To this end, there is a detailed Maxis Code of Business Practice (“the Code”), which stipulates how employees as well as external parties such as vendors, suppliers and contractors who conduct business with us should conduct themselves in all business matters. All employees are required to sign an online declaration upon joining the Group and on an annual basis in compliance with the Code. External parties such as vendors, suppliers and contractors who conduct business with the Group are required to sign a declaration that they have read and will adhere to the contents of the Code. To support the implementation and effectiveness of the Code, there is an established Office of Business Practice to provide policy guidance and to facilitate compliance with the Code. The Office of Business Practice will continuously look into ways to enhance the Group’s highest standards of business conduct and ethics, and to benchmark these against best practices. The Company has also established the Ethics Hotline, a safe and effective channel of reporting, to allow employees or parties dealing with us to report to us any observed behavioural inconsistencies which are not in accordance with the general standards and business ethics. Revenue Assurance The Revenue Assurance department is responsible for the continuous monitoring of potential revenue leakage that may arise from day-to-day operations. Processes and controls within the revenue cycle are reviewed on a rotational basis to ensure they function effectively and efficiently, which includes performance and examination of regular automated test calls. These findings are reported to Management. Every quarter, key issues on identified revenue leakages and the corresponding action plans taken are reported to the Audit Committee. The Revenue Assurance Working Committee meets quarterly to address key revenue assurance issues and drive revenue assurance initiatives across the Group. Subscriber Fraud Management The Subscriber Fraud Management function complements the Revenue Assurance function. Whilst the Revenue Assurance function reviews controls within the revenue cycle as indicated above, the Subscriber Fraud Management function monitors daily subscriber call patterns based on pre-set parameters between Maxis’ subscribers with other domestic and international operators on a real time basis and appropriate actions are taken immediately for suspected fraudulent calls. It uses an industry developed system to monitor call patterns on a 24/7 basis throughout the financial year. In addition, it also reviews key new services/products for possible fraud risk and recommends countermeasures. Fraud findings are reported quarterly to Management and the Audit Committee to ensure remedial actions are taken. Business Continuity Planning The Business Continuity Planning (“BCP”) function is responsible for identifying activities and operations that are critical to sustaining business operations in the event of a disaster. These activities include facilitating the building of additional redundancies in network infrastructure and establishing alternate sites where key operational activities can be resumed. A risk based approach is applied in identifying the key initiatives and their levels of importance by reviewing critical systems, single point failures as well as their impact on the business of the Group as a whole. During the financial year, selected critical areas as identified by risk priority were tested to assess the effectiveness of the implemented BCP initiatives. The progress of these initiatives was reported monthly to Management and presented half yearly to the BCP Steering Committee and the Audit Committee. Regulatory The Regulatory function reports to the Chief Financial Officer. It ensures compliance with the Communications and Multimedia Act 1998 (“CMA”), and its subsidiary legislation, which regulate the Group’s core business in the communications and multimedia sector in Malaysia. As a licensee under the CMA, the Group adheres to its licensing conditions, as well as economic, technical, social and consumer protection regulations embedded in the
Maxis BERHAD Annual Report 2009 | 83 CMA and its subsidiary legislation. The Group actively participates in new regulatory and industry development consultations initiated by the regulator, SKMM. The Regulatory function also frequently engages the SKMM and the Ministry of Information Communication and Culture in discussions on pertinent industry issues. Legal The Legal department plays a pivotal role in ensuring that the interests of the Group are preserved and safeguarded from a legal perspective. It also plays a key role in advising the Board and Management on legal and strategic matters. The Board is briefed through reports to the Audit Committee as and when there are any changes in applicable provisions of the law. Limits of Authority A Limits of Authority (“LOA”) manual sets out the authorisation limits for various levels of Maxis’ Management and staff and also those requiring Board approval to ensure accountability, segregation of duties and control over the Group’s financial commitments. The LOA manual is reviewed and updated periodically to reflect business, operational and structural changes. Policies and Procedures There is extensive documentation of policies, procedures, guidelines and service level agreements in manuals and on the Group’s intranet site including those relating to Financial Controls, Contract Management, Procurement, Human Resources, Information Systems, Network Operations, Legal, System and Information Security. These policies and procedures are reviewed and revised periodically to meet changing business, operational and statutory reporting needs. Financial and Operational Information A detailed budgeting and reporting process has been established. Comprehensive budgets are prepared by the operating units and presented to the Board before the commencement of a new financial year. Upon approval of the budget, the Group’s performance is then tracked and measured against the approved budget on a monthly basis. Reporting systems which highlight significant variances against plan are in place to track and monitor performance. These variances in financial as well as operational performance indices are incorporated in detail in the monthly management reports. On a quarterly basis, the results are reviewed by the Board to enable them to gauge the Group’s overall performance compared to the approved budgets and prior periods. MONITORING AND REVIEW The processes adopted to monitor and review the effectiveness of the system of internal control include: Management Representation to the Board by the Chief Executive Officer on the control environment of the Group based on representations made to him by Management on the control environment in their respective areas. Any exceptions identified are highlighted to the Board. Internal Audit in their quarterly report to the Audit Committee continues to highlight significant issues and exceptions identified during the course of their review on processes and controls compliance. The Chairman of the Audit Committee provides the Board with a report of all meetings of the Audit Committee. Defalcation Committee meets and deals regularly on matters pertaining to fraud and unethical practices. All issues arising from work carried out by the investigation team within the Internal Audit department and Management are channeled to this committee for deliberation. Appropriate actions are then taken based on the findings. Risk Management reports to the Board on a quarterly basis through the Audit Committee on the risk profile of the Group and the progress of action plans to manage and mitigate the risks. CONCLUSION For the financial year under review and up to the date of issuance of the Financial Statements, the Board is satisfied with the adequacy, integrity and effectiveness of the Group’s system of risk management and internal control. No material losses, contingencies or uncertainties have arisen from any inadequacy or failure of the Group’s system of internal control that would require separate disclosure in the Group’s Annual Report.
Page 2:
ANNUAL REPORT 2009 ANNUAL REPORT 20
Page 5 and 6:
Maxis BERHAD Annual Report 2009 | 3
Page 7:
Maxis BERHAD Annual Report 2009 | 5
Page 10 and 11:
8 | Maxis BERHAD Annual Report 2009
Page 12 and 13:
Page 14 and 15:
Page 16 and 17:
home automation netWORKING security
Page 18 and 19:
Page 20 and 21:
Page 22 and 23:
Page 24 and 25:
Page 26 and 27:
Page 28 and 29:
Page 30 and 31:
Page 32 and 33:
Page 34 and 35: MONEY MATTERS One day, your weekly
Page 36 and 37: 34 | Maxis BERHAD Annual Report 200
Page 42 and 43: home automation travel netWORKING s
Page 44 and 45: 42 | Maxis BERHARD Annual Report 20
Page 48 and 49: home automation health MONEY securi
Page 50 and 51: 48 | Maxis BERHARD Annual Report 20
Page 60 and 61: NAVIGATION health netWORKING securi
Page 72 and 73: home automation health netWORKING s
show all

annual - Maxis

Create successful ePaper yourself

Delete template?

Save as template?