Group Risk Management
The Board acknowledges its overall responsibility for the company’s system of internal control and for reviewing its effectiveness, whilst the role of Executive Management is to implement Board policies on risk and control.
Executive Management has implemented an internal control system designed to facilitate the effective and efficient operation of GIC and its business units and aimed at enabling management to respond appropriately to significant risks to achieving GIC’s business objectives. It should be noted that the system is designed to manage, rather than eliminate, the risk of failure to achieve GIC’s business objectives, and can only provide reasonable, and not absolute, assurance against material misstatement or loss.
This system of internal control helps to ensure the quality of internal and external reporting, compliance with applicable laws and regulations, and internal policies with respect to the conduct of business.
The Board is of the view that there is a sufficient on-going process for identifying, evaluating, and managing the significant risks faced by Global.
The Board is responsible for the total process of risk management and the system of internal control. Executive Management is responsible for identifying risks and implementing appropriate mitigation and controls within their businesses. An independent Group Risk Management department, which is directly accountable to the Board Risk Committee and has unrestricted access to the Chairman of the Committee, is responsible for designing and reviewing the process of risk management.
Group Internal Audit
GIC has an Internal Audit function that is commensurate with the size, nature and extent of business conducted by the Company. Group Internal Audit reports to the Board Audit Committee and has unrestricted access to the Chairman of the Board Audit Committee. A risk based audit approach is followed and the Board Audit Committee approves annual audit plans.
The scope of work of the Internal Audit department is to determine whether GIC’s network of risk management, control and governance processes, as designed and represented by management, is adequate and functioning.
The Internal Audit function verifies the adequacy and effectiveness of internal controls from operation, financial and statutory compliance point of view through a blend of process and transactional audits. Group Internal Audit
GIC has a well-established compliance function which is based on Basel’s Consultative document titled “The compliance function in banks”. The function is an independent function, accountable to the Board. The function identifies, assesses, and monitors its compliance risk covering regulatory sanctions, financial loss, or reputation loss which may come as a result of failure to comply with all applicable laws, regulations, and codes of conduct and standards of good practice. The compliance function has designed a generic compliance program to provide reasonable assurance that the company is in compliance with applicable laws and regulations issued by the applicable Central Banks, Capital Market Authorities and Stock Exchanges.
Anti-Money Laundering Monitoring
GIC has established a Board approved Anti-Money Laundering Policy to ensure compliance with high standards of anti-money laundering and combating terrorism financing practices. The Policy applies equally to Kuwait as well other jurisdictions where GIC has presence.
The Board of Directors is responsible for monitoring and reviewing the reliability of the financial statements, accounting policies and the information contained in the Annual Report. In undertaking this responsibility, the Directors are supported by on-going processes for identifying, evaluating and managing risks we face. The processes are implemented by management and independently monitored for effectiveness by Group Internal Audit, Group Risk Management and other sub-committees of the Board.