Experian 2011 Annual Report Download - page 40

Download and view the complete annual report

Please find page 40 of the 2011 Experian annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 164

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164

Experian Annual Report 2011
Risks and uncertainties
Experian has a risk management framework which provides a structured and consistent
process for identifying, assessing and responding to risks in relation to the Groups strategy
and business objectives including the Groups strategic focus on data and analytics, driving
profitable growth and optimising capital efficiency.
Risk management framework
Effective management of risk and
opportunity is essential to the delivery
of the Groups objectives, achievement
of sustainable shareholder value and
protection of its reputation. Experian has
an established global risk management
process which has operated throughout the
year ended 31 March 2011. The framework
enables the risks of the Group to be
identified, analysed, evaluated, controlled,
monitored and reported. In doing so the
main functions of the Board are supported
by:
identifying and managing risk in
alignment with the Group’s strategic
objectives, corporate responsibility
strategy and the long-term value drivers
in the business; and
enabling management to demonstrate
a responsible and proactive, embedded
approach to risk management.
Key aspects of the Experian risk
management framework
Defined and communicated business
principles and strategies
Clear Group objectives, supported
bynancial and non-financial key
performance indicators (KPIs)
Standardised process to identify,
evaluate and manage significant risks on
an ongoing basis
Control reviews and follow-ups
performed by management, internal
audit and third parties
Budgetary controls and monthly
performance reviews, including
achievement of objectives and KPIs
Regional risk management committees
with local oversight of risk management
processes
Executive risk management
committee with global oversight of risk
management processes
Regular reporting on risk to the Audit
Committee by senior management
Regular risk updates to the Board
Risk management operates at all levels
throughout the Group, across geographies,
business lines, and operational support
functions. The Board is ultimately
responsible for risk management, which
includes the Group’s risk governance
structure and maintaining an appropriate
internal control framework. Managements
responsibility is to manage risk on behalf
of the Board. By reporting regularly to the
Board and to the Audit Committee, the
Group's internal audit and the global risk
management functions provide support
to the Board in maintaining effective
risk management across the Group.
The corporate governance statement in
this report provides further detail on this
process.
R
e
p
o
r
t
i
n
g
M
o
n
i
t
o
r
i
n
g
R
e
p
o
r
t
i
n
g
M
o
n
i
t
o
r
i
n
g
• Full risk review undertaken at
least bi-annually by each
business and function
• Both nancial and non-nancial
risks recorded in controlled risk
registers
• Risk owners allocated to assess
and manage risk
• Controls analysed for adequacy
and effectiveness
• Risk analysed for impact,
probability and the speed
with which a risk impacts the
organisation (known as velocity)
to determine net exposure
• Risk owners identied
• Action plans implemented to
manage or respond to risk subject
to regular review
• Risk exposure reviewed and
risks prioritised
• Risk evaluation documented
in controlled risk register
AnalyseIdentify
Respond Evaluate
38