Fundamentals of Corporate Sustainability

Risk & Crisis Management

Effective risk management is a key mechanism that helps the Company grow sustainably, quickly sense and respond to any risks from current rapidly changing environment.

Therefore, the Company and its subsidiaries place importance on enhancing the systematic and efficient enterprise risk management to control the risks, mitigate their associated consequences to achieve its business goals, and gain business opportunities toward creating sustainable value for the Company its stakeholders

Risk Management Structure (Disclosure 102-30)

The Company’s Risk management is under supervision of the Company’s Board of Directors whereby the Risk Management Committee is responsible for setting up efficient risk management policy and approaches as well as overseeing the Enterprise Risk Management Working Committee to ensure that their operations are appropriate for current business contexts and situations. The Risk Management Committee comprises 7 members from the Company’s directors and senior executives with an Independent Director serves as Chairman of Risk Management Committee. (For more details about Risk Management Structure please see 56-1 One Report, “Corporate Governance Structure” and “Risk Management” Section)

In order to enable the Company to drive effective risk management throughout the organization and respond to the Company's risk management and crisis management policy, the Risk Management Committee has appointed the new Enterprise Risk Management Working Committee in 2020 consist of management, representatives from various departments and Managing Directors of subsidiary companies totally 24 persons. The Chairperson of the Committee is the Senior Vice President of Accounting, Tax and Finance, Investor Relation, and Information Technology. The roles and responsibilities are as follows:

  1. Assessing key corporate risks aligned with the Company’s business direction and risks in business value chain such as strategic risk, risks from investment and business development in Thailand and other countries, operational risk covering health, safety, social and environmental aspects, financial risks, compliance risks, and other risks that may impact the Company. Providing suggestions on risk prevention and mitigation to an acceptable level.

  2. Monitoring, evaluating and continuously improving risk mitigation plans to reduce risks and suit to business conditions. Regularly reporting the risk assessment and risk management performance to the Risk Management Committee.

  3. Setting up a business continuity plan at the corporate level to address key risks.

  4. Promoting learning, providing training and sharing knowledge of risk and risk management to personnel at all levels in the Company and creating corporate culture in risk management.

As the Risk management is the responsibility of employees at all levels. The employees must be aware of the existence of risks in the business value chain and their working process and provide the appropriate and sufficient risk management measures. Therefore, all departments in the Company and its subsidiaries have appointed their risk coordinators in operational level working together with the Enterprise Risk Management Working Committee and Corporate Strategy and Risk Management Division in risk identification and assessment, risk mitigation plan preparation and evaluation, and also promoting risk awareness, risk culture and participation of employees in their own departments.

Management Approach

The Company conducts Enterprise Risk Management using the guidelines of the Committee of Sponsoring Organization (COSO). (Disclosure 102-11) The Company conducts corporate risk assessment annually by considering the current risks, emerging risks, economic conditions, business competition, innovations and technology development, government policies and regulations, social and environmental changes that may affect the Company’s business operations.

The Company has set the corporate risk management process which is in line with the international standard in order to manage all risks effectively. 

The risk management must be implemented in the same direction across the organization, including being part of the decision making, strategic planning and business operation. It must also support the achievement of business objectives and goals.After risk identification and assessment, the Company has prepared the appropriate risk mitigation plans, determined key risk indicators (KRI), and risk appetite to monitor risk management performance and effectiveness of risk  management measures, and considered business opportunities arisen from these risks. In 2020, the Company paid attention to enterprise risks which are related to environmental, social, and good governance (ESG-related risks) and had assigned the enterprise risk owner to develop their risk management plans and key risk indicators.

The Enterprise Risk Management Working Committee keeps monitoring the result of risk treatment measures and the situations which cause the risks and reports the findings to the Strategic Management Meeting which consist of the Chairman of the Audit Committee, all Chief level, and Managing Directors of subsidiary companies and to the Board of Directors respectively.

In addition, the Company intended to enhance employee participation in risk management, therefore, the Company has provided workshops and trainings on risk management to employee at all levels in order to educate, raise awareness, and develop corporate risk culture in the Company employees.

Performance

In 2021, the Company reassessed the enterprise risks to ensure consistency with Corporate Strategic plans and targets, the trends in global and technology changes as well as changing environmental and social context. The Company has emphasized on the ESG-related risks and emerging risks which are strategically important to the Company. The Enterprise Risk Management Working Team has categorized the risks into 5 categories, namely Strategic Risk, Operational Risk, Compliance Risk, Financial Risk and Emerging Risk and reassessed and reviewed the risk management plans and key risk indicators (KRIs) to follow up and monitor the risks. The Company targets to expand the risk management further down to business unit level across the Company. 

Emerging Risk

The Company's risk assessment result shows one significant emerging risk that may affect the Company's business operations in the next 3-5 years, which is the risk from changing behaviors and demands in the new/next normal due to the pandemic. Although this emerging risk has not directly impacted the Company yet, but the Company is aware of the importance of such risk and has raised it to an enterprise risk which is needed to monitor and assess closely.

Risk from changing behaviors and demands in the New/Next Normal

The new normal refers to changes in the lifestyle, business conduct, attitude, and demand of the Company's stakeholders after the COVID-19 pandemic. It is expected to be a key factor to speed up the changes of global trends in many areas, such as product demand, trade policy, global supply chain, labor-intensive industry, production innovation and technology, and human resource management. These changes may force manufacturers in the industrial estates to adapt to and prepare for future situations. Then the manufacturers have to adjust their business policies, change production processes, delay their investments, or have new requirements for decision making to invest in AMATA City Industrial Estates. Those may affect the Company's revenue and decrease its competitiveness if appropriate response measures have not been set in place.

Therefore, the Company has been closely monitoring the global and regional changes, as well as their impacts on our clients in the industrial estates in order to assess the business risk and determine appropriate risk management measures. It has also adjusted its international business model to ensure business continuity. In addition, the Company has been monitoring changes in demands, expectations, and concerns of internal and external stakeholders to analyze and address appropriate responses.

Promotion of Risk Management Culture

The Company places importance to the participation of executives and employees in the Company’s risk management, especially the risks in their duties and responsibilities. The Company requires the risk management system to be a part of the daily operation and eventually turn it to become a corporate culture. Besides the executives of each department and subsidiary, there are risk coordinators jointly drive the risk management by attending the meeting with the Enterprise Risk Management Working Committee and transmitting the message to other employees in operation level.

In 2021, the Company determined four approaches to promote corporate risk management culture to all staff level which are 1) EDUCATE: Promotion of Knowledge and Understanding 2) PARTICIPATE: Promotion of participation 3) MANAGE: Systematic Risk Management and 4) ENCOURAGE: Integration risk management into daily work.     

1. EDUCATE: Promotion of knowledge and understanding on Enterprise Risk Management

The Company realized that knowledge and understanding of all staff is a key factor that will help bring about the efficient corporate risk management process and achieving the risk management objective and therefore, held workshop and special lecture on topics relevant to each risk category. The Company also set to regularly hold special lectures and trainings every year. The performance in 2021 included the followings:

  • On-line Special lecture on “Importance of Corporate Risk Management” by Mr. Tevin Vongvanich, Independent Director and Chairman of Risk Management Committee of AMATA Corporation Public Company Limited, to the Company’s Board of Director and all senior executives (100%) to create mutual awareness and understanding on Corporate Risk Management.

  • Workshop on “Introduction to Circular Economy” which is one of the corporate risks for staff at operation level who develop and look after the Company’s products and services. The objective of this workshop was to create fundamental understanding on circular economy related to real estate industry, city management as well as product & service design process which fully integrate the circular economy.

  • Training on “Cyber Security around YOU” to all staff (100%) in order for the staff to understand the threats and cybercrime occurred by using internet and electronic devices connected to unsafe internet network as well as the way to manage personal security to protect themselves from threats in various forms which might happen.
2. PARTICIPATE: Promotion of participation.
The Company held 24 virtual workshops throughout the year for Enterprise Risk Management Working Team comprising senior executives, department executives and operation staff to promote knowledge and understanding in corporate risk management process, determination of risk indicators and risk appetite. In addition, the Enterprise Risk Management Working Team also prepared risk mitigation plans, determined targets, key risk indicators and continuously followed up on the implementation of risk controls and mitigation plan.
3. MANAGE: Systematic Risk Management

The Company has adopted “The Committee of Sponsoring Organization” or COSO for Enterprise Risk Management approaches and set to have systematic internal control in accordance with the three Lines of Defense concept which consists of 1st Line of Defense (risk owner who is responsible for risk management), 2nd Line of Defense (Corporate Strategy and Risk Management Department who sets guidelines and standards of risk management and follow up the operation), and 3rd Line of Defense (Internal Audit Division who independently audits the efficiency of the enterprise risk management system). The risk management performance will be reported monthly to senior executives and to Risk Management Committee.

In 2021, the Company reported the performance of enterprise risk management to senior executives and Risk Management Committee 12 times and 5 times, respectively.

4. ENCURAGE: Integration risk management into daily work

The Company has set the achievement of enterprise risk management as key performance indicators of the Company (Corporate KPIs) as well as of senior executives which will be evaluated every 6 months and it also linked to the KPIs of units that are risk owner also.   

Start building the Future
with Amata