SUSTAINABILITY

World’s most admired company, CJ Logistics is actively involved in global standard CRS and CSV activities.

Governance

Risk Governance Structure

In strengthening our enterprise-wide risk resilience rooted in ESG principles, we have implemented an expanded risk governance framework that incorporates frontline risk sensing and double materiality assessment as core elements preceding the traditional Three Lines of Defense model. This integrated approach allows us to proactively identify and address stakeholder-specific impact issues, establishing a comprehensive, impact-driven risk management system that reinforces the effectiveness of conventional defense structures. Under this model, the first line of defense consists of operational departments that manage specific risk categories through direct, business-centered response activities. The second line comprises the enterprise risk management departments and executive leadership, who are responsible for strategic oversight and supervisory functions. The third line is composed of the internal audit unit and independent assurance bodies, which carry out objective evaluations and performance assessments. Together, these lines form a layered, accountable system that ensures both the integrity and completeness of our organization-wide risk response. Stakeholder feedback is continuously integrated into our risk management processes. ESG-related risks and mitigation activities are transparently disclosed through our Annual Report and Sustainability Report, reinforcing trust and accountability with stakeholders. Through this advanced and integrated risk governance system, we continue to enhance our ability to manage risks in alignment with long-term sustainability objectives.

[Risk Management Governance Structure]
In strengthening our enterprise-wide risk resilience rooted in ESG principles, we have implemented an expanded risk governance framework that incorporates frontline risk sensing and double materiality assessment as core elements preceding the traditional Three Lines of Defense model. Under this model, the first line of defense consists of operational departments that manage specific risk categories through direct, business-centered response activities. The second line comprises the enterprise risk management departments and executive leadership, who are responsible for strategic oversight and supervisory functions. The third line is composed of the internal audit unit and independent assurance bodies, which carry out objective evaluations and performance assessments. Together, these lines form a layered, accountable system that ensures both the integrity and completeness of our organization-wide risk response.
In strengthening our enterprise-wide risk resilience rooted in ESG principles, we have implemented an expanded risk governance framework that incorporates frontline risk sensing and double materiality assessment as core elements preceding the traditional Three Lines of Defense model. Under this model, the first line of defense consists of operational departments that manage specific risk categories through direct, business-centered response activities. The second line comprises the enterprise risk management departments and executive leadership, who are responsible for strategic oversight and supervisory functions. The third line is composed of the internal audit unit and independent assurance bodies, which carry out objective evaluations and performance assessments. Together, these lines form a layered, accountable system that ensures both the integrity and completeness of our organization-wide risk response.

You can zoom in or out of an image with two fingers.

In strengthening our enterprise-wide risk resilience rooted in ESG principles, we have implemented an expanded risk governance framework that incorporates frontline risk sensing and double materiality assessment as core elements preceding the traditional Three Lines of Defense model. Under this model, the first line of defense consists of operational departments that manage specific risk categories through direct, business-centered response activities. The second line comprises the enterprise risk management departments and executive leadership, who are responsible for strategic oversight and supervisory functions. The third line is composed of the internal audit unit and independent assurance bodies, which carry out objective evaluations and performance assessments. Together, these lines form a layered, accountable system that ensures both the integrity and completeness of our organization-wide risk response.

Risk Management Governance Structure Layer close

Enterprise Risk Response Process

We operate an expanded risk governance framework that enhances the efficiency and transparency of our enterprise risk management system by evolving the traditional Three Lines of Defense model into an impact-based risk management framework aligned with ESG principles. This advanced approach goes beyond control-centered responses, enabling proactive identification and strategic management of negative impact factors across the business.
Specifically, we conduct a double materiality assessment incorporating ESG stakeholder input, focused on the three core impact domains of People, Planet, and Prosperity. Through our Frontline Risk Sensing System, we have established an integrated response structure that facilitates early detection, assessment, and mitigation of not only short-term financial risks but also long-term and less visible non-financial risks.
Each risk, evaluated based on its likelihood and severity, is shared company-wide via a continuous reporting system hosted on our intranet. These risks are regularly reviewed and prioritized as agenda items at the weekly Risk Management Council meetings. Furthermore, key risk matters are formally reported to the Board at least twice a year, ensuring oversight at the highest executive level.
The effectiveness of risk management and enterprise-wide processes, as well as performance reviews, are independently evaluated at least once annually by both the internal audit unit and external assurance bodies, focusing on the level of risk control and achievement of key performance indicators (KPIs).

[Integrated Process for Risk Response]

CJ Logistics has established a risk response process encompassing issue management, impact management, risk management, and crisis management. For issue management, we conduct a double materiality assessment that reflects the perspectives of ESG stakeholders to identify material issues, which are then reviewed and reported to the Board-level ESG Committee and the ESG Management Council. In impact management, we strengthen proactive risk response capabilities by incorporating risk/opportunity factors for each material issue and stakeholder communication outcomes. For risk and crisis management, key risk matters are formally reported to the Board of Directors at least twice a year, ensuring oversight at the top management level. In addition, the effectiveness of our risk management and company-wide processes is independently evaluated at least once a year by both internal audit functions and external audit organizations, accompanied by performance reviews on risk control levels and achievement of key KPIs.
CJ Logistics has established a risk response process encompassing issue management, impact management, risk management, and crisis management. For issue management, we conduct a double materiality assessment that reflects the perspectives of ESG stakeholders to identify material issues, which are then reviewed and reported to the Board-level ESG Committee and the ESG Management Council. In impact management, we strengthen proactive risk response capabilities by incorporating risk/opportunity factors for each material issue and stakeholder communication outcomes. For risk and crisis management, key risk matters are formally reported to the Board of Directors at least twice a year, ensuring oversight at the top management level. In addition, the effectiveness of our risk management and company-wide processes is independently evaluated at least once a year by both internal audit functions and external audit organizations, accompanied by performance reviews on risk control levels and achievement of key KPIs.

You can zoom in or out of an image with two fingers.

CJ Logistics has established a risk response process encompassing issue management, impact management, risk management, and crisis management. For issue management, we conduct a double materiality assessment that reflects the perspectives of ESG stakeholders to identify material issues, which are then reviewed and reported to the Board-level ESG Committee and the ESG Management Council. In impact management, we strengthen proactive risk response capabilities by incorporating risk/opportunity factors for each material issue and stakeholder communication outcomes. For risk and crisis management, key risk matters are formally reported to the Board of Directors at least twice a year, ensuring oversight at the top management level. In addition, the effectiveness of our risk management and company-wide processes is independently evaluated at least once a year by both internal audit functions and external audit organizations, accompanied by performance reviews on risk control levels and achievement of key KPIs.

Integrated Process for Risk Response Layer close

Risk types and Factors

CJ Logistics is establishing an integrated Risk Management system to cope with company-wide risks that may occur during management activities. Risk Management includes management of operational risks, market risks, regulatory risks, labor-management problems, illegalities, safety environments, etc. And the company manage the risks of customer complaints and information leakage, collect stakeholder feedback to further manage non-financial risks identified in the criticality assessment. In addition, to systematically respond to risks by risk factor, the company categorizes risk into three stages (R1, R2, R3) and establish response guidelines including management processes and action guidelines for each response stage. CJ logistics is making efforts to effectively respond to risks by introducing a mobile reporting system that enables immediate reporting and response regardless of location and time.

Risk types and Factors
Category Risk type Risks
Business Operational Risk Investments, business plans, internal processes
Financial Risk Interest rates, liquidity, non-performing loans (NPLs)
Regulatory Risk Changes in relevant systems and government policies
Compliance Risk Violations of applicable laws and regulations, including the Capital Markets Act and financial legislation
Employees and Partners Labor relations risk Strikes, work stoppages and slowdowns, labor-management conflicts
Supplier risk ESG risks of suppliers (environmental regulation violations, strikes, work stoppages and slowdowns)
Ethical misconduct risk Unfair trade practices, embezzlement, bribery, sexual harassment
Occupational health and safety risk Personnel incidents, equipment accidents, fires, infectious diseases
Environmental risk Climate change, biodiversity loss, environmental pollution, natural disasters, sea level rise
Customer Customer satisfaction risk Handling of complaints and grievances
Information security risk Data breaches and external cyberattacks

Settings for optimization in printing

* Internet Explorer should be set as below in [Print Preview].

1. Required items
- Please check that you can print the background graphics and images in [Seinttings]

2. Selections
- Please set Margins to 'None' or '0'
- Please set the scale of the screen to 65% (recommended)

打印

SNS 공유 및 프린트 영역

转到页面顶部