Operating division
The first line of defence is formed by the operating divisions, including managers, who, as risk owners, are independently responsible for the operational management of risks, countermeasures and controls.
Governance-, Risk- and Compliance
The second line of defense is governance, risk and compliance, which supports the divisions in the context of operational risk management as an advisory function, among other things.
Internal Revision
The third line of defence is provided by the internal auditing department of the AUDI AG as an independent entity responsible for auditing the systemic and operational risk management and control activities.