Risk Management

To avoid losing enterprise value and the trust of the public, the azbil Group strives to accurately understand and minimize risk factors with the potential for serious impact on operations, including unpredictable events and uncertainties.

The azbil Group risk management

To minimize risk from possible future events, we carefully review risks every year. Starting from FY2023, we have selected major risks based on new criteria, judging that risk management must integrate bottom-up and top-down approaches. We have changed the procedure to ensure that top management has a full understanding of the information from the bottom (departments handling onsite work), enabling more informed decision-making. The officer in charge of major risks and the head of the department in charge of departmental management risks implement strategies to mitigate the risks.
We have also established a crisis management response system to help us respond to crises and emergencies, with the aim of minimizing the impact of any crisis that occurs. We are also building and strengthening our response system for major emergencies. Furthermore, we have formulated many kinds of detailed business continuity plans (BCPs) as we continuously strive to improve our systems as part of our business continuity management.

Risk management process

Risk Management System

The company manages risk based on three lines of defense. In the azbil Group’s overall activities, we are working to improve the organization’s internal control and risk response functions through three lines of defense, with clearly defined responsibilities. As the first line of defense, we are strengthening autonomous management by clearly identifying an officer responsible for each risk. As the second line of defense, departments with indirect management are primarily responsible for developing and managing countermeasures and providing support for risks that should be addressed by the entire organization, thereby functioning to deter risk and support risk management. As the third line of defense, the Internal Audit Department verifies and ensures the risk management systems of the first and second lines of defense. We conduct a comprehensive identification of risks that may have a significant impact on management and assess their degree of impact and likelihood of occurrence. Interviews are conducted with management to identify and evaluate risks from management’s perspective. The azbil Group General Risk Management Committee identifies and evaluates risks from the perspective of work sites and compiles the results of these two activities into a list of risks with evaluations and a risk map (a document in which risks are arranged in a 5 × 5 matrix based on impact and likelihood of occurrence).
Moreover, we have established quantitative evaluation criteria for evaluating the magnitude of impact and the frequency of occurrence of risk so that we can objectively compare and integrate the results of our evaluations. Based on these data, management deliberates in the azbil Group General Risk Committee and selects the aG major risks and also departmental management risks. These are then deliberated and finalized by the Board of Directors.

Risk map
Risk management system

Business-Related and Other Risks

Risks that may affect the business results and financial position of the azbil Group are summarized below. These risks are deliberated on by the azbil Group General Risk Committee and the Board of Directors, and are managed Business-related and other risks comprehensively. In addition to this overall management, related departments also take measures to mitigate risk. Information in the table that pertains to the future was judged by the Group to be valid as of the end of FY2022.

Major Risks Countermeasures

1. Risks to quality

  • To reduce the occurrence of non-conforming products, implement standards related to the development process and safe design, implement standard procedures at each production work site, using an inspection system to provide safe products, manage and improve production lines to maintain proper inspection work processes, and work on business process inspections
  • Standardize processes for checking regulations on chemical substances in products and checking product safetyrelated regulations and standards at the product development and mass production stages

2. Risks to information security

Ensure confidentiality of important information and comply with laws on personal information protection

  • Install PC storage encryption and email mis-delivery prevention add-in software
  • Restrict access to the internet from inside the company
  • Education through azbil Group information security training

Cyber-attack countermeasures

  • Periodic training to create a strong IT environment and improve employees’ information literacy (ability to use information)
  • Network protection and monitoring
  • Separate production facilities and office networks
  • Malware countermeasures for the system and the PCs that use it

3. Risks to technology and product development

Delay in responding to technological innovation

  • Understand trends in relevant technology, among competitors, and in international standards
  • Check the status of initiatives in AI, cloud computing, telecommunications, custom ICs, etc., at development-related meetings, etc.

Lack of technology and product development themes

  • Needs and seeds matching activities for theme identification
  • Address the creation of an ecosystem through collaboration with technology development partners both in Japan and abroad
  • Strengthen the system for enhancing the competitive advantage of our technology in sensing devices (MEMS, etc.), actuators, and cloud computing in order to enhance our product-provision capabilities
  • Development delays, lack of human resources

    • Implement countermeasures against development delays due to inadequate management of R&D processes (improve development process standards)
    • Secure resources through strengthened cooperation among development departments and proper allocation of human resources
    • Create strategies for optimal allocation, training, and mobility of development personnel (introduce a talent management system)

4. Risks related to change in the international situation

Collect information on changes in geopolitical risks in each country and region where the company operates

  • Assess risk by country and develop a manual for human safety
  • Create BCPs that take into account changes in international conditions, etc.
  • Focus consideration on events with lethal impact, such as scenario planning for specific regions
  • Take note of changes in export control-related laws and regulations, international circumstances, and related domestic and overseas laws and regulations, and collect information and properly manage exports (conduct internal operational system reviews, etc., with respect to export transaction screening)

5. Risks related to natural disasters

  • Make major facilities and buildings, such as factories, etc., earthquake-proof, set up power and communication networks for emergencies, and stockpile emergency supplies. Implement an employee safety confirmation system, create initial response guidelines to ensure safety at each location, and conduct periodic disaster drills and initial firefighting drills
  • Formulate and continuously refine BCPs to address business interruptions and impediments
  • Secure necessary funds and inventories of products and parts, and establish alternative locations and systems for continuing the highest priority operations
  • Reduce the risk of concentration by dispersing production bases through reorganization of production and R&D divisions and transferring major production items to other regions in Japan and to overseas factories in China and Thailand
  • Formulate a production response plan that assumes a situation similar to a lockdown, such as restrictions on activities in the Tokyo metropolitan area, etc.

6. Risks related to human resources

  • Reassign and reskill the workforce in response to changes in business structure
  • Survey the transfer intentions of all employees, introduce an open challenge program (a program for transferring employees to the department of their choice) and assign the right people to the right jobs
  • Implement a succession plan for veteran employees with advanced skills and knowledge levels so that they can pass on their skills and know-how
  • Strengthen recruiting activities based on a workforce plan that integrates the business and HR departments in response to changes in the recruiting environment
  • Improve productivity by using DX for business restructuring, allocating workload appropriately using outsourcing, extending the employment of those aged 65 and above, re-skilling veteran employees, and introducing a system of shorter days and shorter working hours
  • In addition to hiring new graduates and mid-career hires, hire persons recommended by employees, rehire experienced employees, and hire personnel from overseas as 10% of new graduate hires to secure the human resources needed to develop business overseas and new business
  • Develop recruitment methods and know-how at the head office and acceptance of interns at home and abroad as measures to strengthen recruitment at overseas subsidiaries and affiliates

Improving Disaster Prevention Capabilities and Business Continuity Plan (BCP)

BCP

The azbil Group takes various disaster prevention measures to minimize potential damage to its operations and improve its disaster response capabilities. For example, we regularly verify the earthquake resistance levels of our buildings and work to strengthen them. We also conduct hazard inspections, stockpile inspections, and disaster prevention drills, and we are developing an emergency communication infrastructure. Through our BCP, we aim to fulfill our responsibility to society by ensuring that the survival of the entire azbil Group is not threatened, while also preventing serious suspensions and delays in operations, with a top priority of guaranteeing the safety of human life. Our basic policy is to normalize corporate activities without causing delays to the restoration of society. We have created various disaster scenarios, based on which we analyze the current situation and formulate countermeasures for each business, production, and administrative function while conducting relevant training. We have also secured offices, restored important systems and networks, and performed financial simulations. With respect to the COVID-19 pandemic, we are making Group-wide responses based on plans that we have prepared so far, with a top priority on ensuring the safety and security of customers and employees. We will also continue working to improve our BCP responses.

Reinforcing Our Information Management System

We are using IT systems in various ways, such as enhancing the environments in which employees can work safely from external locations. Our aim is to maintain high levels of safety and security even for employees working from home.In addition, we conduct information security training annually for all Group employees. We also address information management issues identified via our compliance awareness survey, and we have a system to ensure proper compliance with laws and regulations on the protection of important information, including personal information, in each country/region. In these and other ways, we are working to improve and strengthen our Group-wide information management system.