

Sitowise’s risk management is integrated into the Groups’ management, monitoring and reporting systems. Risk management covers the identification of risks, the assessment of the magnitude of risks and the definition of the necessary management measures, and if necessary, separate contingency plans. In accordance with the Group’s risk framework, risks are divided into strategic, financial, operational, and damage.
The objectives of Sitowise’s risk management:
Actions based on the risk management are targeted on the most significant risks on each level. The necessary actions are decided case-by-case. For each case, there is a person pointed responsible of the planning, implementation, and monitoring of the actions and their effectiveness.
Sitowise's Board of Directors discusses e.g. matters related to the Group's strategy, business organization and significant investments. In addition, it approves the main principles of the Group's risk management and directs and supervises the planning and implementation of it.
The Group CEO has overall responsibility for risk management. CEO is responsible for organizing operations and implementing the main principles of risk management, as well as reporting to the Board.
The Group Management Team is responsible for the implementation of risk management, meaning the identification of the Group's risks, the monitoring and assessment of risks and measures related to risks. Management of the business area is responsible for managing the risks in each business, as well as the risks of tender and project activities. Actions include ensuring adequate insurance to cover project assignmenets.
HSEQ Director is responsible for the planning, development and guidance of the risk management and its implementation. HSEQ Director reports to the Group CEO.
Risk management procedures have been discussed and their adequacy has also been assessed in connection with internal and external audits. In addition, the management of tender and project operations risks, and complaints are developed together with the insurance company, e.g. through training. In project operations, risk management measures are implemented together with customers, if needed.