As a leading Managed IT service provider, Office360 has developed policies and procedures to identify, manage and monitor business risks and has ensured that all management and reporting systems contain risk management controls. These include:
A formal planning process of preparing and annually reviewing strategic plans for all parts of the group
Annual budgeting and monthly reporting systems for all businesses, to enable progress to be evaluated against performance targets and trends to be identified
Guidelines and limits for capital expenditure and investment approval
Due diligence procedures for acquisitions and divestments
Policies and procedures to manage financial risk, including treasury operations such as exposure to movements in interest rates
A comprehensive insurance programme including external risk management surveys
A regulatory compliance programme supported by approved guidelines and standards covering such key areas as disclosure, legal and insurance
Directors’ financial due diligence questionnaires
Risk Assessment and management systems for all the activities in the group
Management is responsible to the Board through the Audit and Risk Committee for Office360s system of internal control and risk management