john-lewis-partnership-plc-annual-report-2015
john-lewis-partnership-plc-annual-report-2015
john-lewis-partnership-plc-annual-report-2015
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Annual Report and Accounts <strong>2015</strong> John Lewis Partnership <strong>plc</strong> 45<br />
Our principal risks<br />
and mitigations<br />
Using our risk universe, risk management process<br />
and governance structure, the Chairman’s Committee<br />
has identified 23 principal risks, prioritised between<br />
‘red’ and ‘amber’ risks:<br />
We have defined a Risk Universe<br />
for the Partnership, defining<br />
a comprehensive list of potential<br />
risks we could be exposed to.<br />
It helps us identify and analyse<br />
our risks.<br />
Top<br />
red risks<br />
(10)<br />
Top<br />
amber risks<br />
(13)<br />
Of those identified:<br />
Principal risks, analysed per our Risk Universe categories<br />
Strategic risks<br />
i.e. risk of us “doing<br />
the wrong thing”<br />
1 Competition<br />
5 Economic environment<br />
6 Operating model strain<br />
7 IT infrastructure capability<br />
8 Change delivery<br />
aa<br />
Political environment<br />
aa<br />
Media communications<br />
aa<br />
Ten risks are in the ‘red zone’. They have<br />
been assessed as beyond our tolerance for<br />
acceptable risk taking and so require further<br />
responses. Plans have been developed<br />
with action owners and timelines. Progress is<br />
reviewed by the Chairman’s Committee.<br />
Our principal risks evolve over time.<br />
As we progress our strategy and business<br />
plan, new risks emerge and we adjust our<br />
mitigation activities. Following this year’s<br />
evaluation, the Chairman’s Committee has<br />
identified that:<br />
Operational risks<br />
i.e. risk of us “doing the<br />
right thing, in the wrong way”<br />
4 Efficiency<br />
10 Talent<br />
aa<br />
Omnichannel proposition<br />
aa<br />
Responsible sourcing<br />
aa<br />
Loss of key suppliers, 3rd parties<br />
aa<br />
Loss of key B2B customers<br />
aa<br />
IT failure<br />
aa<br />
Business interruption<br />
1 Competition<br />
4 Efficiency<br />
Financial risks<br />
i.e. risk of us “doing it in<br />
a way that loses money or incurs<br />
unnecessary liabilities”<br />
2 Pension obligations<br />
3 Property valuation<br />
aa<br />
For details of how we evaluated the top ten<br />
risks, see page 43 and for how we manage<br />
them, see pages 46 to 47.<br />
aa<br />
13 risks are in the ‘amber zone’.<br />
They have been assessed as being managed<br />
satisfactorily and so no additional actions are<br />
required. They are formally monitored by<br />
Divisional Risk Committees to ensure they<br />
do not deteriorate.<br />
Increased risk profile<br />
3principal risks have increased<br />
significantly and are now in the<br />
red zone.<br />
aa<br />
Funding & liquidity<br />
aa<br />
Financial control, <strong>report</strong>ing<br />
and governance<br />
What s changed since last year<br />
3 Property<br />
valuation<br />
What are we doing about these risks?<br />
Additional plans have been developed to improve<br />
our management of threats from competitors,<br />
secure delivery of our efficiency initiatives and<br />
protect against changes in the value of our property.<br />
Progress is monitored by Divisional Risk Committees and<br />
the Chairman’s Committee.<br />
Business<br />
interruption<br />
Compliance risks<br />
i.e. risk of us “not doing what<br />
Regulators require”<br />
9 Data protection breach<br />
aa<br />
Our risk universe helps us to identify<br />
emerging and changing risks.<br />
These risks do not comprise all those associated<br />
with the Partnership, as there are some risks<br />
currently deemed to be less material, i.e.<br />
in the ‘green zone’, and others we are not yet<br />
aware of.<br />
Decreased risk profile<br />
2<br />
aa<br />
Product quality and food safety<br />
aa<br />
Health & Safety breach<br />
aa<br />
Other regulatory compliance<br />
principal risks from last year’s<br />
evaluation are no longer in the red<br />
zone, as they are now deemed to<br />
be being managed satisfactorily and<br />
have a reduced threat.<br />
Regulatory<br />
compliance<br />
Why have these reduced?<br />
Work performed throughout the year has improved<br />
the resilience of our key IT systems and a Regulatory<br />
Compliance project is underway to improve our policies<br />
and procedures.<br />
Introduction Partnership difference Principles Strategy Performance Governance Financial statements