BUSINESS CONTINUITY MANAGEMENT UEM Edgenta maintains an unwavering commitment to fortifying organisational resilience through the implementation of a robust Business Continuity Management (“BCM”) programme. This strategic initiative aligns with the organisation’s ongoing efforts to ensure the sustainability of operations and the seamless delivery of essential services, even in the event of crisis or disasters. In 2024, UEM Edgenta achieved the prestigious ISO 22301:2019 Business Continuity Management System (“BCMS”) certification, a globally recognised benchmark for operational resilience. This significant accomplishment reinforces the company’s dedication to safeguarding critical business functions, minimising downtime and ensuring seamless service delivery to clients and stakeholders. The certification reflects UEM Edgenta’s strategic commitment to delivering innovative, reliable and resilient solutions across all aspects of its operations. Looking ahead, UEM Edgenta remains steadfast in its efforts to maintain and enhance its BCMS framework, ensuring adaptability to emerging risks and future challenges while upholding the highest standards of business continuity. HUMAN RESOURCES MANAGEMENT UEM Edgenta’s internal controls are realised and supported by a formal organisational structure. This official structure is made of defined lines of authority, responsibility and accountability. These lines of authority, responsibility and accountability are continuously updated and improved to demonstrate good governance. The above is further reinforced with functional charts and clearly defined authority limit to ensure consistency, clarity, and structured decision-making. Talent’s selection and appointment is guided by standard operating procedures and guidelines to ensure the selection of suitable candidates meet the job requirements. Potential candidates will go through a structured recruitment process which includes interviews by the hiring manager and relevant stakeholders; and for certain roles, additional assessments would be applicable. A thorough and complete pre-employment background screening which includes medical screening, checks on past employment records, education and qualification records, credit records, criminal records, directorship and reference check, would be performed before the job offers are issued. This is a control measure to minimise the risk to the Company, guided by pre-employment matrix. A performance framework is established which serves as a guide for performance setting and monitoring process at various level covering key financials, customers, internal processes and learning and growth indicators. The performance outcomes are directly linked to UEM Edgenta’s compensation and rewards framework designed as an internal control to maintain consistency through a structured evaluation process. In addition, benefits available for employees are defined and made accessible by all employees, and managed according to each employee’s entitlement. To ensure that we are able to develop a capable, agile and competitive workforce, employees are provided with structured internal technical and soft skills training, mobility opportunities and external development programmes, as well as professional certification opportunities for identified employees. Technical skills training is also prioritised through the development of a technical competency framework and subsequent development interventions. These interventions are tied back to the individual development plan of our employees. Other targeted development programmes include Executive Education programme for Senior Leadership focusing on practical, leadership-specific skills and strategic networking opportunities. The programme also offers pathways for obtaining professional qualifications. MANAGEMENT INFORMATION SYSTEM (“MIS”) UEM Edgenta places a paramount emphasis on prioritising cyber security to safeguard its digital infrastructure and incorporates effective governance measures. This commitment is reflected in the implementation of robust access controls and the execution of security audits, which form integral components of the governance framework. By adopting this proactive approach, the Group aims to not only meet industry best practices but also fortify its defence against the evolving and often unforeseen cyber vulnerabilities, especially those related to sensitive data. These vulnerabilities, if not continuously addressed, could expose critical data to risks, reinforcing the need for vigilance in identifying and mitigating such threats. The Group employs a discerning strategy that strikes a delicate balance between harnessing the advantages of cloud technology and ensuring the utmost confidentiality and integrity of its data assets. This entails a continuous cycle of assessments and updates, where the Group meticulously evaluates the evolving landscape of cyber risks and adjusts its security measures accordingly. This ongoing vigilance acknowledges that even with advanced technologies, there are always risks of unknown vulnerabilities that necessitate a proactive and adaptive security posture. In essence, the Group’s comprehensive approach to cyber security underscores its dedication to not only meeting compliance standards but also staying at the forefront of technological advancements, thereby fostering a resilient and secure digital environment that mitigates the risks of evolving threats to its most critical assets. 251 GOVERNANCE
RkJQdWJsaXNoZXIy NDgzMzc=