MAN Truck & Bus

Risk management


MAN is exposed to numerous risks, since any corporate activity is impossible without risks. These arise from the corporate activity itself or from external influences. MAN has therefore implemented an effective combination of Risk Management systems that are aligned to the needs of its business activities.

The following management systems rolled out worldwide form the basis for Risk Management at MAN:

  • Business Continuity Management (BCM)
  • Enterprise Risk Management (ERM)
  • Internal Control System (ICS)
  • Continuous Controls Monitoring (CCM)

The information obtained is aggregated, placed in the overall context of the Company, managed by the risk officers, and regularly reported to the Executive Board and relevant decision-making bodies.

  • Business Continuity Management

    BCM ensures that risks with impacts that threaten the company's existence and have a relatively low probability of occurrence are recognised in good time, and that precautionary measures are taken to keep losses as low as possible in the event of their occurrence. The probability of occurrence is also reduced by implementing appropriate countermeasures and by defining contingency plans for crisis management.

  • Enterprise Risk Management

    The ERM is designed to identify and assess acute risks and opportunities in business operations (so-called event risks and opportunities) at an early stage. In addition, measures are defined to manage risks and realize opportunities, and the consequences of possible risk assumption are assessed. The early identification and management of event risks and opportunities is of particular importance so that decision-makers have sufficient time to initiate appropriate countermeasures.

  • Internal Control System

    With the Group-wide implementation of an ICS, MAN Truck & Bus SE uses suitable organizational measures and controls to ensure that business activities are carried out completely, correctly, promptly, and efficiently - in accordance with statutory requirements and internal guidelines.

    The ICS safeguards business processes at function and transaction level and thus reduces process-inherent systemic risks. In this way, material misstatements in financial reporting are to be prevented and risks from non-compliance with laws and internal policies as well as operational economic risks (e.g., from unauthorized operational decisions) are to be minimized.

    The regular review of the ICS for completeness, appropriate design, and effectiveness of the defined controls is intended to ensure compliance with existing regulations to reduce procedural and organizational risks at all levels within the MAN Truck & Bus Group.

  • Continuous Controls Monitoring

    CCM is an IT-based system established in the MAN Truck & Bus Group to constantly monitor business processes and controls and which augments our ICS. MAN introduced the electronic CCM system to ensure that the likes of procurement and payment processes at MAN comply with the guidelines and that compliance risks in these areas are detected at an early stage.

    The CCM system is augmented by general IT controls that mainly monitor the roles and permissions in the core applications. Should certain process test points not correspond to the prescribed procedures set out in the central MAN Truck & Bus Group guidelines on procurement, accounting and payment transactions, then the CCM system automatically generates alarms whose processing by assigned employees is documented in the system.

Governance, Risk & Compliance

Black arrow up