Amal Ltd | Annual Report 2022-23 and buildings), plant, equipment, other assets and third parties. 07. Risk management Risk management is an integral part of the business practices of the Company. The framework of risk management concentrates on formalising a system to deal with the most relevant risks, building on existing management practices, knowledge and structures. With the help of a reputed international consultancy firm, the Company has developed and implemented a comprehensive risk management system to ensure that risks to the continued existence of the Company as a going concern and to its growth are identified and remedied on a timely basis. While defining and developing the formalised risk management system, leading standards and practices have been considered. The risk management system is relevant to business reality, pragmatic and simple and involves the following: i) Risk identification and definition - Focuses on identifying relevant risks, creating | updating clear definitions to ensure undisputed understanding along with details of the underlying root causes | contributing factors. ii) Ri sk c lass i f i cat i on - Focuses on understanding the various impacts of risks and the level of influence on their root causes. This involves identifying various processes, generating the root causes and a clear understanding of risk inter-relationships. iii) Risk assessment and prioritisation - Focuses on determining risk priority and risk ownership for critical risks. This involves assessment of the various impacts taking into consideration risk appetite and the existing mitigation controls. iv) Risk mitigation - Focuses on addressing critical risks to restrict their impact(s) to an acceptable level (within the defined risk appetite). This involves a clear definition of actions, responsibilities and milestones. v) Risk reporting and monitoring - Focuses on providing to the Audit Committee and the Board, periodic information on risk profile evolution and mitigation plans. Roles and responsibilities Governance The Board has approved the Risk Management Policy of the Company. The Company has laid down procedures to inform the Board on i) to iv) listed above. The Audit Committee periodically reviews the risk management system and gives its recommendations, if any, to the Board. The Board reviews and guides the Risk Management Policy. Implementation Implementationof theRiskManagement Policy is the responsibility of the Management. It ensures functioning of the risk management system as per the guidance of the Audit Committee. The Company has a risk management oversight structure in which each sub-segment has a Chief Risk and Compliance Officer. The Management at various levels takes accountab i l i t y fo r r i sk i dent i f i cat i on , appropriateness of risk analysis, and timeliness as well as adequacy of risk mitigation decisions at both individual and aggregate levels. It is also responsible for the implementation, tracking and reporting of defined mitigation plans, including periodic repor ting to the Audit Committee and Board. 08. Internal financial controls The internal financial controls over financial reporting are designed to provide reasonable assurance regarding the reliability of financial reporting and the preparation of the Financial
RkJQdWJsaXNoZXIy MjA2MDI2