Crisis Management / Business Continuity Management
Crisis Management Structure on a Consolidated Basis
MC has built up a structure for securing the lives and safety of employees and their families as we respond on a consolidated basis to all crises that impact our profit and business continuity (all-hazard approach) by linking together each Business Group and Regional and National Crisis Management Offices under the management and supervision of the Emergency Crisis Management Officer.
All-Hazard Approach
Based on the all-hazard approach, MC has built up an internal structure that anticipates all kinds of risks, such as major natural disasters, acts of terrorism, riots, emerging infectious diseases, supply chain disruptions, legal transgressions, and cyber incidents, etc. Under usual conditions, we build up and establish various crisis management measures and structures needed in the event that a crisis does occur, so that we can ensure the safety and ascertain the status of all concerned as part of our initial response, and then act promptly to maintain and recover the infrastructure necessary for business continuity.
In particular, in the event of a serious incident impacting the lives and safety of our employees, as well as continuity of critical business operations, we will respond under the companywide direction of the Emergency Crisis Management Officer, while moving forward with our consolidated Business Continuity Management (BCM) process established for major crises.
Business Continuity Management (BCM) on a Consolidated Basis
In 2018, MC adopted “Business Continuity Management (BCM)” for its core business companies (selected from among MC Group companies) to establish and strengthen our consolidated framework designed to equip us with the business continuity capabilities needed to respond appropriately to major crisis situations.
BCM refers to the comprehensive management and implementation of a continuous PDCA cycle, including the formulation of a first response and Business Continuity Plan (BCP) based on risk/impact analysis of each crisis, the establishment of appropriate systems, and education/training. It takes into account the specific local conditions, operational circumstances and business characteristics of operational companies.
* Business impact analysis framework
We conduct analyses of the “cause incidents” that disrupt core operations and trigger “result incidents,” while taking into consideration the characteristics of operations at each company.
Cause incidents | Natural disasters, infectious diseases, technology-related, external incidents, internal faults, legal issues, third-party related |
---|---|
Result incidents | Human resources (death/unconfirmed safety, inability to report/commute to work), physical resources (damage of manufacturing/distribution or other facilities), supply chains (disruption of distribution channels, disruption of material/fuel supply), information (breakdown of IT systems or damage to electronic data, data manipulation/ alteration, information leakage), reputation (product or service quality issues, environmental problems, administrative penalties), money (suspension of cash withdrawals, suspension of remittance or payments) |