At a business level, formal discussions on risk management occur at review meetings at least once a quarter. The respective businesses review their major risks, and changes in their nature and extent since the last assessment and discuss the control measures which are in place and further action plans. The control measures stated in the risk matrix are also periodically reviewed by the business management teams to verify their continued effectiveness. These meetings are chaired by the respective business CEOs and attended by CXOs, senior management and appropriate functional heads.
Risk officers have been formally nominated at each of the operating businesses as well as at Group level, whose role is to create awareness of risks at senior management level and to develop and nurture a risk management culture. Risk mitigation plans form an integral part of the performance management process. Structured discussions on risk management also happen at business level with regard to their respective risk matrix and mitigation plans. The leadership teams of the businesses are accountable for governance of the risk management framework and they provide regular updates to the GRMC.
Each of our businesses have developed their own respective risk matrix, which is reviewed by their respective management committee/ executive committee, chaired by their CEOs. In addition, each business has developed its own risk register depending on the size of its operations and number of Strategic Business Units locations. Risks across these risk registers are aggregated and evaluated and the Group’s principal risks are identified based on the frequency, and potential magnitude and impact of the risks identified.
This element is an important component of the overall internal control process, from which the Board obtains assurance. The scope of work, authority and resources of Management Assurance Services (MAS) are regularly reviewed by the Audit Committee. The responsibilities of MAS include recommending improvements in the control environment and reviewing compliance with our philosophy, policies and procedures.
The planning of internal audits is approached from a risk perspective. In preparing the internal audit plan, reference is made to the risk matrix, and inputs are sought from senior management, business teams and members of the Audit Committee. In addition, we make reference to past audit experience, financial analysis and the current economic and business environment.
The year 2020 has seen the outbreak of COVID-19 (coronavirus) pandemic. As a result of COVID-19, we have seen macro-economic uncertainty with regards to prices and demand for commodities and oil & gas. Furthermore, recent global developments and uncertainty in oil supply in March have caused further volatility in commodity markets. The scale and duration of these developments remain uncertain but could impact earnings and cash flow of resource companies.
The order in which these risks appear in the section below does not necessarily reflect the likelihood of their occurrence or the relative magnitude of their impact on our business. The risk direction of each risk has been reviewed based on events, economic conditions, changes in business environment and regulatory changes during the year. While Vedanta’s risk management framework is designed to help the organisation meet its objectives, there can be no guarantee that the Group’s risk management activities will mitigate or prevent these or other risks from occurring.
Read Less