Académique Documents
Professionnel Documents
Culture Documents
QUINTILES
Headquarters: United States
Global revenues (in millions): $3,000
The health care/services company was mentioned as a great place to work on lists in Canada,
Germany, Italy, Mexico, Spain, and the United Kingdom.
Great Place to Work determined rankings based on the average score from surveys sent to
employees. Countries must be mentioned on lists from at least five countries to be considered a
best multinational company.
Uncover the knowledge and attitudes of patients, caregivers and healthcare providers.
as
the
Develop, pilot test, refine and field Knowledge, Attitude and Behavior (KAB) surveys.
Approach Specialized benefit-risk approach: Quintiles' strategies and data-driven safety and risk
minimization programs demonstrate or enhance appropriate and safe use of drugs, biologics and
devices. Multi-tiered programs range from education and behavior evaluation to postauthorization safety studies (PASS), and safety registries to performance-linked and controlled
access programs.
Reach Global and local operational and regulatory expertise: With over 32,000 employees in more than
100 countries, Quintiles has extensive global reach. We have the insight to apply local solutions
and the depth and breadth of knowledge to help mitigate risk and maximize global markets.
Insight Deep therapeutic insights: More effective and specialized programs along with a greater
understanding of risks are possible with the expertise of Quintiles 900 PhDs, 950 medical
doctors and 13 therapeutic centers of excellence.
Technology Industry-leading technology: Quintiles' industry-leading and patented technologies provide
global workflow management, operational metric reports for productivity, quality and
compliance analyses, full global aggregate reporting capabilities, PSUR/PBRER, expedited
report submissions (E2B and paper), and signal detection and data mining. Our technology
platform facilitates seamless delivery across the drug development lifecycle using the Quintiles
Infosario Outcome technology suite to accelerate implementation of modules, such as web
portals, eCRF, patient and physician safety surveys, real-time reporting, ADR/SADR and
workflows.
Partnership -
Collaborative partnerships for the future: Reflecting our deep methodological expertise and
interest in shaping the future of safety and risk management, Quintiles participates in a number
of collaborative initiatives, including the European Medicine Agencys PROTECT-EU and
ENCePP projects and the US FDAs Sentinel Initiative.
See
more
at:
management#sthash.jsrh6xhp.dpuf
http://www.quintiles.com/services/safety-and-risk-
Novo Nordisk
Headquarters: Denmark
Global revenues (in millions): $11,100
The pharmaceuticals company was named in lists from Italy, Mexico, Switzerland, the
Netherlands, and the United States.
Great Place to Work determined rankings based on the average score from surveys sent to
employees. Countries must be mentioned on lists from at least five countries to be considered a
best multinational company.
Risk management is part of good corporate governance
Novo Nordisk has developed a dynamic approach to risk management to ensure that key risks
are effectively identified, assessed and managed so that they will not affect the companys ability
to achieve our business objectives. Maintaining and monitoring a systematic integrated process
to continually assess business risks is the responsibility of Executive Management. The Risk
Management Board, with representatives of Senior Management from relevant parts of the
business and chaired by the chief financial officer, sets the strategic direction for the risk
management process and challenges the overall risk and control profile for Novo Nordisk.
Our policy for risk management is to proactively manage risk to ensure continued growth of our
business and to protect our people, assets and reputation. This means that we:
utilise an effective and integrated risk management system while maintaining business
flexibility
Our risk willingness is not one specific figure or formula, but varies depending upon the specific
category of risk. The main characteristics of Novo Nordisks risk willingness are:
We make every effort to reduce safety risks to the lowest level possible in both clinical
trials and already marketed products as the safety of patients is paramount to us.
The Risk Office challenges business areas on reported risks and encourages exploration of
longer-term concerns. Reported risks are then consolidated into a corporate risk profile
containing an assessment of the company's key risks. This information is presented to the Risk
Management Board, which challenges the overall risk and control profile of Novo Nordisk. The
final profile is reviewed by Executive Management, the Audit Committee and the Board of
Directors.
All assessments of risk take into account the likelihood of an event and its potential impact on
the business. Impact is quantified and assessed in terms of potential financial loss or reputational
damage. Risks are assessed both as gross risk and net risk. The assessment of gross risk assumes
that no mitigating actions have been implemented, whereas net risk assessment takes into
account mitigation actions and their anticipated effect.
Roche
Headquarters: Switzerland
Global revenues (in millions): $52,901
The pharmaceuticals company was mentioned on lists from Central America, Colombia,
Denmark, Ecuador, Portugal, Uruguay, and Venezuela.
Great Place to Work determined rankings based on the average score from surveys sent to
employees. Countries must be mentioned on lists from at least five countries to be considered a
best multinational company.
Risk management and compliance
Identifying, analysing and responding appropriately to business risks is vital to attaining Roches
business objectives, protecting the interests of stakeholders and meeting legal requirements.
Managing risk
The Roche Risk Management Policy sets out our approach for managing material risks the
possibility that an event will occur and adversely affect the achievement of Roches objectives.
Risks are managed locally where they arise and where appropriate expertise is present to manage
them. The line managers are responsible for ensuring that effective internal controls are in place
and appropriate action is taken to respond to them.
Therefore, every business unit and global function must conduct at least once a year a risk
assessment and develop processes for identifying and managing material risks. These risk plans
are integral to our overall business plans, which we review together with the risk management
environment in regular performance assessments.
Group Risk Advisory annually compiles and analyses an inventory of major Group-wide risks.
This analysis is published in the Group Risk Report and distributed for review to the Corporate
Executive Committee and the Audit Committee of the Board of Directors.
We continue to strenghten our business continuity management (BCM) to ensure that all our sites
respond effectively to catastrophic events and deliver a minimum, acceptable level of key
products and services. A Group BCM policy and guideline is in place, facilitating a consistent
and aligned local implementation. We are currently rolling out the new BCM framework across
the Group to make sure Roches operations are resilient and capable to effectively responding to
major disruptions.
We seek to avoid situations where personal interests conflict, or even appear to conflict, with the
interests of Roche. If a conflict of interest arises, the employee must immediately inform his/her
line manager to find an appropriate solution.
Sustainability risks and opportunities
The Corporate Sustainability Committee is responsible for assessing social, environmental and
ethical risks, referred to as Business Sustainability Risks. These are identified through regular
workshops involving a wide range of employees, who use their expertise and experience, as well
as stakeholder feedback, to identify emerging risks.
In 2014, Roche enhanced its Business Sustainability Risk Assessment approach, which allows us
to assess emerging risks on an annual basis and to integrate these into our existing Group Risk
Management Process. Using this approach potential business sustainability risks were identified
from literature review, risk intelligence sources and workshops. Each of these risks were then
assessed by an expert cross-functional team resulting in a short list of five risks that have now
been integrated into our 2014 Group Risk Management Process.
The five business sustainability risks identified are:
Inadequate strategies for Cloud, mHealth (use of mobile devices), eHealth (use of
electronic devices) and social media
Cyber attack
Third-party relationships
Maintaining compliance
The Chief Compliance Officer serves as a contact person for Roche employees, as well as for
shareholders, business partners, customers and the general public on issues relating to the
implementation of and compliance with the Roche Group Code of Conduct.
Our comprehensive Compliance Officer Network includes also more than 140 local Compliance
Officers located at our affiliates worldwide. These officers liaise with the Chief Compliance
officer and have in particular following responsibilities:
In addition, Roche uses a Marketing and Sales Compliance questionnaire to help local line
managers assess compliance with and awareness of responsible marketing practices. All general
managers, moreover, must sign annually an assurance declaration on compliance
acknowledging compliance with these practices.
Reporting incidents
Anyone who becomes aware of a potential violation of the Roche Group Code of Conduct can
and should bring it to the attention of their line manager or supervisor, to the local Compliance
Officer or the Chief Compliance Officer (Urs Jaisli, direct phone number: +41(0) 61 688 40 18).
Roche employees can also use the following reporting channels:
The Roche Group Code of Conduct Help & Advice Line in case of compliance
questions or uncertainties
The Roche Group SpeakUp Line to report in good faith a suspected violation, including
a person they believe has done, is doing or may be about to do something that violates the
Roche Group Code of Conduct. Launched in 2009, the system comprises a web and
telephone service that enables employees to report compliance concerns confidentially
and anonymously. The SpeakUp Line operates in 100 countries and 53 languages,
making it available to over 70,000 employees. All reports will be treated as confidential
and the reporting employees will not be penalised by the company for doing so, however,
they are not immune from prosecution for legal violations.
Every Speak Up report is taken serious. Any alleged violation is diligently investigated in order
to evaluate whether or not the reported behaviour or activity violates our standards or applicable
laws and regulations. Where appropriate, the alleged violation will result in corrective measures
or sanctions, or both.
Our Business Ethics Incident Reporting (BEIR) system enables the Top Management, the Chief
Compliance Officer and the Chief Group Audit and Risk Advisory Executiveto capture, track and
monitor alleged violations, from initial reports through to resolution.
The number and related characteristics of non-compliance cases which occurred during a
reporting year will be published in the annual report of Roche Holding Ltd.
In 2014 we received 512 reports relating to alleged violations of the Code of Conduct. Out of
512 allegations, 104 were unfounded, 164 are still under investigation, and 244 were founded.
157 employment contracts were terminated on the grounds of unethical behaviour. 13
agreements with business partners were also terminated for the same reason.
INTEL
Headquarters: United States
Global revenues (in millions): $43,600
The information technology company was mentioned on lists from Argentina, France, India,
Ireland, Japan, and the United States.
Great Place to Work determined rankings based on the average score from surveys sent to
employees. Countries must be mentioned on lists from at least five countries to be considered a
best multinational company.
and how the company is seeking to control risk if and when appropriate. In some cases, as with
risks of new technology and risks related to product acceptance, risk oversight is addressed as
part of the full Board's engagement with the CEO and management. In other cases, a Board
committee is responsible for oversight of specific risk topics. For example, the Audit Committee
oversees issues related to internal control over financial reporting, the Compliance Committee
oversees issues related to significant pending and threatened litigation, the Finance Committee
oversees issues related to the company's risk tolerance in cash-management investments, and the
Compensation Committee oversees risks related to compensation programs, as discussed in
greater detail below. Presentations and other information for the Board and Board committees
generally identify and discuss relevant risk and risk control; and the Board members assess and
oversee the risks as a part of their review of the related business, financial, or other activity of the
company. The full Board also receives specific reports on enterprise risk management in which
the identification and control of risk are the primary topics of the discussion.
Risk Assessment in Compensation Programs
We annually assess the company's compensation programs and have concluded that our
compensation policies and practices do not create risks that are reasonably likely to have a
material adverse effect on the company. Intel management assessed the company's executive and
broad-based compensation and benefits programs on a worldwide basis to determine if the
programs' provisions and operations create undesired or unintentional risk of a material nature.
This risk assessment process included a review of program policies and practices; program
analysis to identify risk and risk control related to the programs; and determinations as to the
sufficiency of risk identification, the balance of potential risk to potential reward, risk control,
and the support of the programs and their risks to company strategy. Although we reviewed all
compensation programs, we focused on the programs with variability of payout, with the ability
of a participant to directly affect payout and the controls on participant action and payout.
Based on the foregoing, we believe that our compensation policies and practices do not create
inappropriate or unintended significant risk to the company as a whole. We also believe that our
incentive compensation programs provide incentives that do not encourage risk-taking beyond
the organization's ability to effectively identify and manage significant risks; are compatible with
effective internal controls and the risk management practices of Intel; and are supported by the
oversight and administration of the Compensation Committee with regard to executive
compensation programs
Diageo
Headquarters: United Kingdom
Global revenues (in millions): $15,746
The products, beverages, and tobacco company was mentioned on lists from Argentina,
Australia, Brazil, Canada, Central America, Colombia, Ireland, Mexico, Portugal, The
Netherlands, the United Kingdom, Uruguay, and Venezuela.
Great Place to Work determined rankings based on the average score from surveys sent to
employees. Countries must be mentioned on lists from at least five countries to be considered a
best multinational company.
compliance. This will help them lead their teams in a way that sets a clear tone from the top and
act as role models to employees in remaining faithful to our purpose and values.
Risk management
Great risk management drives better commercial decisions, creating a growing, resilient and
sustainable business. Our risk management global standard requires all markets and functions to
perform two risk assessments at least annually: first, a general assessment of business risk, to
consider the operational, financial, and reputational risks of running the local business; second, a
compliance risk assessment, to consider risks concerning human rights, bribery and corruption,
anti-money laundering, and all other relevant laws and regulations, as well as our own Code,
policies and standards and to ensure that mitigation plans for the most significant risks have
been established. Markets are then responsible for reviewing their risk assessments and progress
against the mitigation plans at their local risk management committee meetings.
The annual certificate of compliance (ACC) is an important measure of the effectiveness of our
compliance and ethics programme. It includes questions that are designed to confirm that
managers have fulfilled their duties with regard to compliance, and have read and understood our
Code and the global policies most important to their roles. It requires people managers to
confirm that they have had conversations with their direct reports about our Code, and about the
policies that are most important to their respective roles.