Singapore Airlines 2005 Annual Report Download - page 33

Download and view the complete annual report

Please find page 33 of the 2005 Singapore Airlines annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 128

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128

SIA Annual Report 04/05 31
Statement on Risk Management
1. EMPHASIS ON EFFECTIVENESS OF RISK CONTROLS
Recent events in other countries and other organisations where controls and back-up systems failed, underline the
need to ensure that risk reduction measures put in place are effective and regularly maintained. Following the
establishment of the risk framework and the implementation of structured risk controls, SIA continued to improve
on risk management by reviewing and validating the effectiveness of the risk reduction measures implemented.
2. REVIEW OF EFFECTIVENESS OF RISK CONTROLS
Requirement to Test or Simulate Risk Controls
Within the Risk Management Process, business units are required not only to develop risk prevention and risk
mitigation controls, but to review the effectiveness of these controls as well. As part of this review, business units
were required to test these controls or to simulate failures to verify that the controls are effective. Risk owners are
required to further improve the risk controls if the results show weakness or inadequacy.
Structured Review on Effectiveness
To reinforce the emphasis on effectiveness, the oversight risk committees at various levels reviewed risk controls
put in place by risk owners. At the highest level, the Audit & Risk Committee of the Board reviewed controls of
various top risks of the Group, while correspondingly, the respective Risk Management Committees reviewed the
management of key risks of their Companies, without duplicating the work of the Audit & Risk Committee.
3. ENHANCEMENT OF RISK POLICIES
In addition to ensuring effectiveness of risk reduction measures, SIA also reviewed and updated risk policies and
guidelines to make sure that the overall control environment remains relevant and appropriate. These reviews
include the following:
Guidelines on Managing Risks of Outsourcing
In view of the increased level of outsourcing, guidelines were issued in relation to managing the risks arising from
outsourcing of activities and functions.
Policy for the Rotation of Sensitive Job Positions
This policy was set up to reduce SIA's exposure to risks such as fraud, bribery, collusion with a third party or pilferage
by the job holder. In consideration of the many changes in job functions, the policy was updated to ensure relevance
in the current circumstances.
Fraud Prevention Policy and Procedures
The Policy and accompanying procedures provide guidance on detection, reporting and investigation for fraud
within SIA and the subsidiaries. A review and update is in progress to ensure its effectiveness and to enhance the
scope and application.
Corporate Policies on Banking and Borrowing Activities
Corporate policies in relation to banking transactions and borrowing activities were reviewed and updated.
Lenders to SIA are to note that all bank transactions undertaken by any Group Company must be properly authorised,
including the opening of new bank accounts and any proposed credit facilities. Each Group Company has its own
approval limits and procedures for every banking transaction, having regard to the nature of the transaction
concerned. These approval limits and procedures are updated from time to time and are available on request. The
bankers of each Group Company should always verify, in accordance with the verification process set out in the
applicable procedures, that the transaction is properly authorised.