Risk Management

The goal of Fortaco’s risk management

Fortaco promotes a company culture focused on continuously monitoring own operations, those of business partners, and the overall development in the market and world. This is done in order to quickly notice potential changes in the operating environment, which might have either positive or negative consequences to the company.

The goal of Fortaco’s risk management approach is to notice and mitigate the impact of negative developments to the operations. As importantly, it is also about seizing opportunities for the benefit of the company and customers.

A pair of safety glasses and a padlock.

On a strategic level, Fortaco categorizes risks in five categories

Strategic risks

Financial risks

Operational risks

Cyber and technological risks

Regulatory risks

Effective risk management strategies at Fortaco

Each identified risk is analyzed based on its probability of occurrence and business impact.

Risk management is integrated in Fortaco’s daily operations and business management, and it is performed on all organization levels. Each Fortaco’s employee is responsible for identifying and managing risks in the area of his/her responsibility.

Realized risk reporting is managed through the Risk Classification and Elimination (RCE) process. The objective of RCE is to simplify the identification of issues, classify their seriousness and clarify the progress reporting. The RCE process is applied to safety, quality, delivery, cost, and financials, as well as business continuity issues. Supervisory Board has the accountability to stakeholders for organization oversight.

Internal audit

Internal audit evaluates the effectiveness and efficiency of Fortaco risk management, internal control, and governance processes. Fortaco utilizes an external service provider to conduct the internal audit activities.