Risk Management
To avoid losing enterprise value and the trust of the public, the azbil Group strives to accurately understand and minimize risk factors with the potential for serious impact on operations, including unpredictable events and uncertainties.
The azbil Group risk management
To minimize risk from possible future events, we comprehensively identify risks every year, taking changes in the external environment into account, and select major risks based on quantitative standards such as the financial impact and frequency of those risks. We have determined that risk management must integrate bottomup and top-down approaches, and adopted a procedure to ensure that top management has a full understanding of the information from the bottom (departments handling onsite work), enabling more informed decision-making. Of the 119 risks comprehensively identified in FY2024, we selected 16 as major risks that would have a severe impact on the business of the azbil Group, and categorized other risks as departmental management risks. Major risks are handled by officers who are fully responsible for those risks, whereas departmental management risks are handled by the head of the corresponding department. They both formulate and promote risk mitigation plans for reducing risks. Quarterly reports on the progress of implemented measures are provided to the general risk management department and executive officer in charge of risk management, who is ultimately responsible for the risk management of the azbil Group. These reports are made at the azbil Group CSR Promotion Committee meetings, which are attended by divisional managers and officers in charge of CSR at Group companies. Major risks are further discussed at semiannual azbil Group General Risk Committee meetings, which are attended by the members of Azbil Corporation’s Management Meeting and headed by the executive officer in charge of risk management. At these meetings, the progress and effectiveness of risk mitigation plan are confirmed, the impact and/or likelihood of these risks occurring at the end of the financial year are managed to ensure risk reduction, and these efforts are improved through the PDCA cycle.
We have also established a crisis management response system to help us respond to crises and emergencies, with the aim of minimizing the impact of any crisis that occurs. For each emergency that occurs, we will establish an emergency headquarters headed by the officer in charge, which investigates the cause, implements countermeasures, and prevents future reoccurrence. The status of such efforts are reported at Azbil Corporation’s Management Meetings and Board of Directors Meetings held quarterly. Furthermore, we have formulated many kinds of detailed business continuity plans (BCPs) as we continuously strive to improve our systems as part of our business continuity management.
Risk Management System
The azbil Group manages risk based on three lines of defense.In the Group’s overall activities, we are working to improve the organization’s internal control and risk response functions through three lines of defense, with clearly defined responsibilities. As the first line of defense, we are strengthening autonomous management by clearly identifying an officer responsible for each risk. As the second line of defense, departments with indirect management are primarily responsible for developing and managing countermeasures and providing support for risks that should be addressed by the entire organization, thereby functioning to deter risk and support risk management. As the third line of defense, the Internal Audit Department verifies and ensures the risk management systems of the first and second lines of defense. We conduct a comprehensive identification of risks that could have a significant impact on management and assess their degree of impact and likelihood of occurrence. Interviews are conducted with management to identify and evaluate risks from management’s perspective. The azbil Group General Risk Management Committee comprised of department heads and department general managers identifies and evaluates risks from the perspective of work sites and compiles the results of these two activities into a list of risks with evaluations and a risk map (a document in which risks are arranged in a 5×5 matrix based on impact and likelihood of occurrence). The azbil Group General Risk Committee deliberates on this data and selects the aG major risks, which are then reported to the Board of Directors.
Business-Related and Other Risks
Major risks that could severely affect the business results and financial position of the azbil Group are summarized on the right. Of the 119 risks comprehensively identified, we selected 16 as major risks. The major risks indicated on the right and the specific risk factors are judged by the Group to be valid as of the end of FY2023. Details on risk awareness and concrete risk countermeasures for major risks are found in the 102nd Securities Report.
| Major risks | Specific risk factors |
|---|---|
| ⑴ Risks to quality | 1 Outflow of noncompliant products 2 Quality problems |
| ⑵ Risks to information security | 3 Information management problems 4 Cyberattacks |
| ⑶ Risks to technology and product development | 5 Delay in responding to technological innovation 6 Lack of technology and product development themes 7 Delay in product/technology development |
| ⑷ Risks related to change in the international situation | 8 Legal violations related to export management 9 International conflict/dispute 10 Human life/safety in emergencies |
| ⑸ Risks related to natural disasters | 11 Volcanic eruptions 12 Earthquakes/tsunamis 13 Fires/explosions(including man-made in some cases) |
| ⑹ Risks related to a lack of human resources | 14 Difficulty with hiring 15 Insufficient engineers/workers 16 Loss of human resources |
Improving Disaster Prevention Capabilities and Business Continuity Plan (BCP)
The azbil Group takes various disaster prevention measures to minimize potential damage to its operations and improve its disaster response capabilities. For example, we regularly verify the earthquake resistance levels of our buildings and work to strengthen them. We also conduct hazard inspections, stockpile inspections, and disaster prevention drills, and we are developing an emergency communication infrastructure. Through our BCP, we aim to fulfill our responsibility to society by ensuring that the survival of the entire azbil Group is not threatened, while also preventing serious suspensions and delays in operations, with a top priority of guaranteeing the safety of human life. Our basic policy is to normalize corporate activities without causing delays to the restoration of society. We have created various disaster scenarios, based on which we analyze the current situation and formulate countermeasures for each business, production, and administrative function while conducting relevant training. We have also secured offices, restored important systems and networks, and performed financial simulations. With respect to the COVID-19 pandemic, we are making Group-wide responses based on plans that we have prepared so far, with a top priority on ensuring the safety and security of customers and employees. We will also continue working to improve our BCP responses.
Reinforcing Our Information Management System
We are using IT systems in various ways, such as enhancing the environments in which employees can work safely from external locations. Our aim is to maintain high levels of safety and security even for employees working from home.In addition, we conduct information security training annually for all Group employees. We also address information management issues identified via our compliance awareness survey, and we have a system to ensure proper compliance with laws and regulations on the protection of important information, including personal information, in each country/region. In these and other ways, we are working to improve and strengthen our Group-wide information management system.