RISK MANAGEMENT FRAMEWORK DNeX Group’s Enterprise Risk Management Framework (“ERM”) is the foundation for DNeX Group practice in designing, implementing, monitoring, reviewing and continually improving risk management of DNeX Group. The ERM’s approach is benchmarked against and aligned to International Organisation for Standardisation ISO 31000:2018 – A Risk Practitioner’s Guide which provides principles and generic guidelines on managing risks and applicable within DNeX Group. The ERM encompasses a structured approach, principles and processes on leadership and commitment, integration, designing, implementing, evaluating and improving risk management across DNeX Group. ERM FRAMEWORK: LEADERSHIP & COMMITMENT ERM PRINCIPLES: VALUE CREATION & PROTECTION Integration into culture, business activities & decision making process Integral part of organisational process DNeX VISION, MISSION & CORE VALUES ENTERPRISE RISK MANAGEMENT • Principles of Effective Risk Management • Risk Policy of the Board • Board’s Risk Appetite Statement • Risk Management ERM Structure • Roles & Responsibilities SCOPE, CONTEXT, CRITERIA Customisation of risk management process and understand the internal & external context Risk Identification Identify all possible opportunities, hazards, threats and risk Risk Analysis Determine root causes, likelihood, probability impact and gross risk rating Risk Evaluation Determine key controls, controls effectiveness, residual risk rating and risk profiling RISK TREATMENT Determine risk action planning RECORDING & REPORTING Documentation and reporting of risk management process & its outcomes through appropriate mechanism Continuous Monitoring & Reviewing Regular checking & surveillance for continuous improvements Communication & Consultation Promote awareness and understanding on risk & obtain feedback & information to support decision making RISK ASSESSMENT Structured & comprehensive Customised to objectives and risk profile Transparent & inclusive of the Board & Senior management Dynamic, iterative & responsive to change Based on best available information Takes human & cultural factors into account Facilitate continual improvement Design the ERM according to internal & external context of the Group Implement the risk management process Evaluate effectiveness of risk management framework Continual improvement of the framework STATEMENT ON RISK MANAGEMENT AND INTERNAL CONTROL 111 OPERATIONAL REVIEW SUSTAINABILITY STATEMENT GOVERNANCE FINANCIAL STATEMENTS SHAREHOLDERS’ INFORMATION INTELLIGENCE POWERING
RkJQdWJsaXNoZXIy NDgzMzc=