Risk Governance Model

This page has a spanish version

EDPR governance model is fully aligned and integrated in the EDP group risk governance model based on the concept of 3 internal lines of defence to the organization, complemented by a fourth external line of defence, in the figure of external audit and regulation/supervision.

Three Lines of Defence Risk Governance Model

The diagram shows three lines: Business, Risk, and Audit, with external auditing and regulation or supervision shown in vertical side columns. At the bottom, Operative Committees and Risk Committees feed into BD and then MT via FMC.

1st line: Business
(responsibility for risk)

2nd line: Risk
(support in risk analysis & monitoring)

3rd Line: Audit
(independent supervision)

4^th Line:
External Supervision

Mission

Rational

Involved
areas
(not
exhaustive)

Daily business conduct, including proactive risk management, in line with the established risk policies

Support in risk identification, analysis, strategy and monitoring (to support the business)

Carrying out and coordinating audits, with a view to improving risk management, control and corporate governance processes

Those who benefit most from risk-taking are those who should be held accountable for their risks

Given the tendency to encourage business risk-taking, it is advantageous to have a specialised and independent risk function

It is advantageous to have an independent entity responsible for verifying and evaluating the risk management and control processes

Platforms and Regions
Business Enablement Functions (with decision responsibilities)

Risk
Ethics & Compliance
Investor Relations & ESG
Safety, Security & Business Continuity

Internal Audit

External Auditing

Regulation/ Supervision

Operative Committees

Risk Committees

BD

MT via FMC

Risk management is embodied by the Risk Business Enablement Function (RISK), encompassed by overarching Centres of Excellence and Platform Business Partners (including EDPR RISK responsible), ensuring fluid articulation and communication throughout EDP Group regarding the main sources of exposure and risk mitigation measures.

Carbon impact evaluator

This web page produces:

per Byte

0.000

g CO2

▲

per Visit

0.000

g CO2

▲

Risk Governance Model

Risk Governance Model

Three Lines of Defence Risk Governance Model

Learn more about risk management at EDPR

Headquarters - EDPR