Annual Report 2025 101 Non-Financial Risks Material Risks Key Mitigating Actions Climate-related Physical risks include coastal and fluvial flooding, tropical cyclones, extreme cold, extreme heat and wildfire. Transition risks encompasses the potential impact of more stringent regulations, carbon price shifts, changes in electricity prices and increased expectations from customers and stakeholders. • Conduct an assessment of physical and transition risks and opportunities, and health and safety related risks in the evaluation of new investments/ capital expenditure decisions. This includes implementing a shadow internal carbon price. • Review the mitigation and adaptation efforts, which include futureproofing the portfolio, enhancing the operational efficiency of its properties and implementing measures to drive decarbonisation across CICT Group’s value chain. Cybersecurity and Information Technology Ongoing business digitalisation exposes the business to IT-related threats, which may result in compromising the confidentiality, integrity and availability of CICT Group’s information assets and/or systems. • Outsourced execution of Cyber Security Strategy to Digital and Technology (DT) team from CLI by continuously review threat landscapes, and institute measures to minimise vulnerability exposure and manage threat vectors, including enhanced protection controls for systems that hold personal data. • Conduct regular mandatory IT Security Awareness Training to minimise human-related risks in the information security chain. • Conduct IT Security Incident Management Procedure test, third-party vulnerability test and annual Disaster Recovery Plan exercise to validate IT infrastructure/management system security resilience and ensure timely recoverability of business-critical IT systems. • Provide periodic updates to Audit and Risk Committee on the state of Cyber Security risk activities and key control improvement. Fraud, Bribery and Corruption Any forms of fraud, bribery and corruption that could be perpetuated by employees, third parties or collusion between employees and third parties. • Foster a culture of ethics and integrity in CICT Group. • Adopt a zero-tolerance stance against fraud, bribery and corruption (FBC) across its businesses. • Communicate our commitment to integrity from the top through policies and practices, such as the FBC Risk Management Policy, Whistle-blowing Policy, Ethics and Code of Business Conduct Policies and Anti-Money Laundering and Countering the Financing of Terrorism Policy. • Conduct mandatory trainings to enhance awareness among employees.
RkJQdWJsaXNoZXIy NTkwNzg=