The Group adopts an integrated top-down and bottom-up risk review process that enables systematic identification and prioritisation of all material risks. An integral part of the process towards effective risk management is continuous communication and consultation with internal and external stakeholders. This enables us to understand the importance of risk management, to appreciate the decisions that are taken within the Group, and to implement the best policies and practices necessary for the Group’s benefit.


The Group categorises its risk profiles into four key areas: Strategic, Treasury and Financial, Operational and Compliance, and Information Technology. These risks vary widely, with many being beyond the Group’s control. The Group is committed to mitigating risk exposure through appropriate risk management strategies and adequate internal controls. Close monitoring and control processes, including the use of appropriate key risk and key performance indicators, are implemented to ensure that the risk profiles are managed within the Group’s risk appetite and tolerance limits.