1.3. Management plan for mineral supply chain risks
Action plan following risk confirmation and risk management strategy
At this step, responsible parties, including the management team, use the Risk Decision Matrix to decide whether to cooperate with the respective supplier going forward. The decision depends on the level of confirmed risk.
The next step is a Risk Management Plan (the “Plan”) should the risks be confirmed at the previous risk identification and assessment steps. The Plan is required for the supplier to eliminate the risks confirmed.
To start with, Nornickel’s management is notified of risk confirmation following an enhanced due diligence.
Thereafter, the Group develops the Plan in cooperation with suppliers and, where necessary, other stakeholders, such as representatives of local communities. The Plan should clearly specify the risk mitigation goals, timelines and performance indicators, as well as the responsibilities of all the parties involved and possible corrective actions. The Plan needs to be approved by the Company’s management.
Depending on the risk exposure and the decision on cooperation made, the responsible parties determine the response times and the reporting procedures for the management to follow up on the Plan, as well as the list of risk mitigants. Each risk mitigant implies specific actions to be taken and relies on the required internal resources. The Plan prioritises the most efficient solutions taking into account suppliers’ human, logistic and financial resources.