In 2022, the Corporate Governance & Compliance function of Duferco Energia chose to adopt the ARIS Business Process Analysis (BPA) and Governance Risk & Compliance (GRC) platform, in order to integrate the management of its activities into a single digital platform, such as the governance of the Internal Procedural Regulatory Framework, Internal Audit processes, Risk Management, and HSE.

The activity was carried out using a project approach organized in phases, during which functional requirements for each project stream were identified through thematic workshops.

In defining the solution, attention was paid to the standardization of activities to support the simplification of operations for Corporate Governance & Compliance function referents through the use of ARIS methodologies and functionalities appropriately configured by the IMC consulting team.

We defined the process taxonomy, the representation methods for organizational structures, roles, and responsibilities, the application systems supporting activity execution, and the methods for representing process flows, as well as the risks and controls associated with them. The processes for governing information and procedures were defined and digitalized, both for the collaborative content creation phase and for the authorization phase for publishing procedures on the internal portal.

The ARIS Risk & Compliance, Internal Audit, and Risk Assessment modules were implemented and customized, configuring risk assessment metrics according to specific requirements.

Furthermore, the IMC team, leveraging the ARIS platform functionalities, implemented a customization capable of supporting the HSE referent in organizing Medical Examinations and HSE Training.

Similarly, a specific module was developed for the management of the census and assignment of PPE to personnel based on the role associated with each employee. Through this module, the assignment workflow, deadline monitoring alerts, and printing of PPE delivery documentation were implemented.