National Grid 2015 Annual Report Download - page 42

Download and view the complete annual report

Please find page 42 of the 2015 National Grid annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 200

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200

Strategic Report
Internal control and risk management continued
Strategic objective Risk description Example of mitigations
Engage our
people
Inability to secure the business capacity,
appropriate leadership capability and
employee engagement levels required
todeliver our vision and strategy.
It is through the high-quality work of our
employees that we will achieve our vision,
respond to the changing needs of our
stakeholders and create a competitive
advantage. Obtaining and fostering an
engaged and talented team that has
theknowledge, training, skills and
experience to deliver on our strategic
objectives is vital to our success. We must
attract, integrate and retain the talent we
need at all levels of the business.
We have identified the core capabilities that align with our
strategic ambition and defined our set of leadership standards.
We have filled key leadership roles with a mix of internal and
external hires.
We are involved in a number of initiatives to help secure the
future engineering talent required (see page 24).
We continue to develop our succession plans for key roles,
including leadership.
We continue to actively promote inclusion and diversity.
We monitor employee engagement and formally solicit employee
opinions via a Company-wide employee survey annually.
Deliver
operational
excellence
Failure to achieve levels of financial
performance required to meet regulatory
requirements.
The Group operates under a number of
regulatory regimes and we must maintain
the performance levels required. Failure to
achieve the agreed returns could damage
our reputation and threaten future growth
opportunities and regulatory arrangements.
We have a US strategy focused on safety and reliability,
customer responsiveness, stewardship and cost
competitiveness. Performance measures are tracked and
reported monthly. US jurisdictional presidents continue
todevelop strong relationships with local regulators and
communities. A Performance Excellence framework is
firmlyestablished to deliver sustainable and innovative
performance improvements.
The UK operating model implemented in 2013 to support our
performance under RIIO is now established and we continue
toroll out our Performance Excellence framework across the
business. We actively engage with local communities and
non-governmental actors.
We monitor network reliability and customer satisfaction
asKPIs, as described on pages 18 and 19.
Failure to deliver appropriate information
systems and data integrity.
The Company is increasingly reliant on
technology to support and maintain our
business-critical processes. We must be
able to rely on the performance of these
systems and the underlying data to
demonstrate the value of our business to our
shareholders, and to meet our obligations
under our regulatory agreements, and
comply with agreements with bond holders
and other providers of finance.
We implemented a new US enterprise resource planning
system at the end of 2012. After a significant effort to combat
programme difficulties, the system is now stabilised and
enhancements todrive business value are under way.
We are undertaking a programme to strengthen identified
weaknesses in US controls over financial reporting.
We are implementing a global information management
framework focusing on data integrity and security.
We completed a data assurance programme last year
andactions to improve our data quality and integrity
processesbased on the results are being managed by
thebusiness functions.
We experience a catastrophic/major
cybersecurity breach.
Due to the nature of our business we
recognise that our critical national
infrastructure (CNI) systems may be a
potential target for cyber threats. We
mustprotect our business assets and
infrastructure and be prepared for any
malicious attack.
We use industry best practices as part of our cyber security
policies, processes and technologies.
We continually invest in cyber strategies that are commensurate
with the changing nature of the security landscape. This
includes collaborative working with DECC and the Centre for
Protection of National Infrastructure (CPNI) on key cyber risks
and development of an enhanced CNI security strategy and our
involvement in the US with developing the National Institute of
Standards and Technology Cyberspace Security Framework.
Failure to prevent a significant process
safetyevent.
Safety is paramount. Some of the assets
owned and operated by National Grid are
inherently hazardous and process safety
incidents, whilst extremely unlikely,
canoccur.
We continue to commit significant resources and financial
investment to maintain the integrity of our assets and we strive
tocontinuously improve our key process safety controls.
We continue to implement our Group-wide process safety
management system to ensure a robust and consistent
frameworkof risk management exists across our higher
hazardasset portfolio.
40