BASIC PRINCIPLES OF DUE DILIGENCE (ON TROUBLED COMPANIES)
DueDiligence Audit RiskAssessment RiskManagement
Kelantanese, Alumni of Sultan Ismail College Kelantan (SICA), IT Competency Cert, Certified Written English Professional US. Has participated in many seminars/conferences (local/ international) in the capacity of trainer/lecturer and participant.
Affiliations :- Network Member of Gerson Lehrman Group, Institute of Quality Malaysia, Auditor ISO 9000 IRCAUK, Auditor OHSMS (SIRIM and STS) /EMS ISO 14000 and Construction Quality Assessment System CONQUAS, CIDB (Now BCA) Singapore),
* Possesses almost 30 years of experience/hands-on in the multi-modern management & technical disciplines (systems & methodologies) such as Knowledge Management (Hi-Impact Management/ICT Solutions), Quality (TQM/ISO), Safety Health Environment, Civil & Building (Construction), Manufacturing, Motivation & Team Building, HR, Marketing/Branding, Business Process Reengineering, Economy/Stock Market, Contracts/Project Management, Finance & Banking, etc. He was employed to international bluechips involving in national/international megaprojects such as Balfour Beatty Construction/Knight Piesold & Partners UK, MMI Insurance Group Australia, Hazama Corporation (Hazamagumi) Japan (with Mitsubishi Corporation, JA Jones US, MMCE and Ho-Hup) and Sunway Construction Berhad (The Sunway Group of Companies). Among major projects undertaken : Pergau Hydro Electric Project, KLCC Petronas Twin Towers, LRT Tunnelling, KLIA, Petronas Refineries Melaka, Putrajaya Government Complex, Sistem Lingkaran Lebuhraya Kajang (SILK), Mex Highway, KLIA1, KLIA2 etc. Once serviced SMPD Management Consultants as Associate Consultant cum Lecturer for Diploma in Management, Institute of Supervisory Management UK/SMPD JV. Currently – Associate/Visiting Consultants/Facilitators, Advisors for leading consulting firms (local and international) including project management. To name a few – Noma SWO Consult, Amiosh Resources, Timur West Consultant Sdn. Bhd., TIJ Consultants Group (Malaysia and Singapore) and many others.
* Ex-Resident Weekly Columnist of Utusan Malaysia (1995-1998) and have produced more than 100 articles related to ISO-9000– Management System and Documentation Models, TQM Strategic Management, Occupational Safety and Health (now OHSAS 18000) and Environmental Management Systems ISO 14000. His write-ups/experience has assisted many students/researchers alike in module developments based on competency or academics and completion of many theses. Once commended by the then Chief Secretary to the Government of Malaysia for his diligence in promoting and training the civil services (government sector) based on “Total Quality Management and Quality Management System ISO-9000 in Malaysian Civil Service – Paradigm Shift Scalar for Assessment System”
Among Nik Zafri’s clients : Adabi Consumer Industries Sdn. Bhd, (MRP II, Accounts/Credit Control) The HQ of Royal Customs and Excise Malaysia (ISO 9000), Veterinary Services Dept. Negeri Sembilan (ISO 9000), The Institution of Engineers Malaysia (Aspects of Project Management – KLCC construction), Corporate HQ of RHB (Peter Drucker's MBO/KRA), NEC Semiconductor - Klang Selangor (Productivity Management), Prime Minister’s Department Malaysia (ISO 9000), State Secretarial Office Negeri Sembilan (ISO 9000), Hidrological Department KL (ISO 9000), Asahi Kluang Johor(System Audit, Management/Supervisory Development), Tunku Mahmood (2) Primary School Kluang Johor (ISO 9000), Consortium PANZANA (HSSE 3rd Party Audit), Lecturer for Information Technology Training Centre (ITTC) – Authorised Training Center (ATC) – University of Technology Malaysia (UTM) Kluang Branch Johor, Kluang General Hospital Johor (Management/Supervision Development, Office Technology/Administration, ISO 9000 & Construction Management), Kahang Timur Secondary School Johor (ISO 9000), Sultan Abdul Jalil Secondary School Kluang Johor (Islamic Motivation and Team Building), Guocera Tiles Industries Kluang Johor (EMS ISO 14000), MNE Construction (M) Sdn. Bhd. Kota Tinggi Johor (ISO 9000 – Construction), UITM Shah Alam Selangor (Knowledge Management/Knowledge Based Economy /TQM), Telesystem Electronics/Digico Cable(ODM/OEM for Astro – ISO 9000), Sungai Long Industries Sdn. Bhd. (Bina Puri Group) - ISO 9000 Construction), Secura Security Printing Sdn. Bhd,(ISO 9000 – Security Printing) ROTOL AMS Bumi Sdn. Bhd & ROTOL Architectural Services Sdn. Bhd. (ROTOL Group) – ISO 9000 –Architecture, Bond M & E (KL) Sdn. Bhd. (ISO 9000 – Construction/M & E), Skyline Telco (M) Sdn. Bhd. (Knowledge Management),Technochase Sdn. Bhd JB (ISO 9000 – Construction), Institut Kefahaman Islam Malaysia (IKIM – ISO 9000 & Internal Audit Refresher), Shinryo/Steamline Consortium (Petronas/OGP Power Co-Generation Plant Melaka – Construction Management and Safety, Health, Environment), Hospital Universiti Kebangsaan Malaysia (Negotiation Skills), Association for Retired Intelligence Operatives of Malaysia (Cyber Security – Arpa/NSFUsenet, Cobit, Till, ISO/IEC ISMS 27000 for Law/Enforcement/Military), T.Yamaichi Corp. (M) Sdn. Bhd. (EMS ISO 14000) LSB Manufacturing Solutions Sdn. Bhd., (Lean Scoreboard (including a full development of System-Software-Application - MSC Malaysia & Six Sigma) PJZ Marine Services Sdn. Bhd., (Safety Management Systems and Internal Audit based on International Marine Organization Standards) UNITAR/UNTEC (Degree in Accountacy – Career Path/Roadmap) Cobrain Holdings Sdn. Bhd.(Managing Construction Safety & Health), Speaker for International Finance & Management Strategy (Closed Conference), Pembinaan Jaya Zira Sdn. Bhd. (ISO 9001:2008-Internal Audit for Construction Industry & Overview of version 2015), Straits Consulting Engineers Sdn. Bhd. (Full Integrated Management System – ISO 9000, OHSAS 18000 (ISO 45000) and EMS ISO 14000 for Civil/Structural/Geotechnical Consulting), Malaysia Management & Science University (MSU – (Managing Business in an Organization), Innoseven Sdn. Bhd. (KVMRT Line 1 MSPR8 – Awareness and Internal Audit (Construction), ISO 9001:2008 and 2015 overview for the Construction Industry), Kemakmuran Sdn. Bhd. (KVMRT Line 1 - Signages/Wayfinding - Project Quality Plan and Construction Method Statement ), Lembaga Tabung Haji - Flood ERP, WNA Consultants - DID/JPS -Flood Risk Assessment and Management Plan - Prelim, Conceptual Design, Interim and Final Report etc., Tunnel Fire Safety - Fire Risk Assessment Report - Design Fire Scenario), Safety, Health and Environmental Management Plans leading construction/property companies/corporations in Malaysia, Timur West Consultant : Business Methodology and System, Information Security Management Systems (ISMS) ISO/IEC 27001:2013 for Majlis Bandaraya Petaling Jaya ISMS/Audit/Risk/ITP Technical Team, MPDT Capital Berhad - ISO 9001: 2015 - Consultancy, Construction, Project Rehabilitation, Desalination (first one in Malaysia to receive certification on trades such as Reverse Osmosis Seawater Desalination and Project Recovery/Rehabilitation)
* Has appeared for 10 consecutive series in “Good Morning Malaysia RTM TV1’ Corporate Talk Segment discussing on ISO 9000/14000 in various industries. For ICT, his inputs garnered from his expertise have successfully led to development of work-process e-enabling systems in the environments of intranet, portal and interactive web design especially for the construction and manufacturing. Some of the end products have won various competitions of innovativeness, quality, continual-improvements and construction industry award at national level. He has also in advisory capacity – involved in development and moderation of websites, portals and e-profiles for mainly corporate and private sectors, public figures etc. He is also one of the recipients for MOSTE Innovation for RFID use in Electronic Toll Collection in Malaysia.
Note :
BASIC PRINCIPLES OF DUE DILIGENCE (ON TROUBLED COMPANIES)
Branding is the process of creating a unique identity and image for a :
a) product,
b) service,
c) company, or organization in the consumer's mind.
It involves the use of names, logos, slogans, designs, and other elements to distinguish a brand from its competitors and to establish a presence in the market. The goal of branding is to build recognition, trust, and loyalty among customers.
The evolution of Knowledge Management requires adapting knowledge to fit the present landscape. Big data and data mining might soon yield to the capabilities of Artificial Intelligence, Quantum Computers, and even blockchain. However, it's crucial not to undermine the core principles of KM; otherwise, we risk losing our sense of direction.
Popularity alone doesn't guarantee respect; it must be earned. It's not always about skill or intelligence but about one's character. I know several renowned individuals who aren't actively seeking fame but are consistently praised for their admirable qualities.
Conversely, many bright minds face rejection, likely due to tendencies toward arrogance. The key lies in balancing intelligence with humility—a blend that embodies true wisdom.
Organization should have a clear policy outlining how they collect, use, store and protect personal information of individual. Policy; in this context; must be deemed as a legal statement not simply a written policy pasted on the wall. It must be something that inform users about their rights regarding their personal data.
Data Privacy should take into account :
a) Information collected - details on types of data collected from users/customers - such as names, email, addresses, phone numbers, addresses, even birthdays etc. As such any typical CRM system that collects such data MUST BE protected at the front office level or quality assurance level or public relation level (do not overlap one another)
Three examples :
i) if birthdays are revealed to third parties, it may pave to way to corruption. Or;
ii) like what's happening today; phone numbers are being collected by scammers and conners. There are rumours that these information are being sold internally to 3rd parties - what is the top management action on this issue?
iii) How secure is the protection of the collection system? How good is the firewall or other anti-hacking facilities?
b) Purpose of Data Collection - There should be jsutifications of why the data is being collected especially when being asked by users/customers. This can range from processing orders to improving services or marketing purposes.
c) How will the Data be Used - Information on how the collected data will be utilized by the organization.
d) Data Sharing - Disclosure about whether the organization shares user data with third parties and the reasons for doing so.
e) User Rights - Explanation of users' rights regarding their data, such as the right to access, rectify, or delete their information.
f) Data Security Measure - Details about the security measures in place to protect the collected data from unauthorized access or breaches.
g) Contact Information - Information on how users can contact the organization regarding their data privacy concerns or requests.
h) If there is a breach, exposure, or hacking of the collected data, will there be a specific investigation or special enquiry? What penalties might the organization face if found responsible for such a breach?
(Are our strategies for witness protection, anti-corruption, and governance/transparency proving effective?)
Data Privacy Policies are important for transparency and compliance with data protection laws (such as GDPR in Europe or CCPA in California). They help users understand how their personal information is handled and provide them with a level of assurance about its protection.
Networking in in solar systems design has always been a topic that is "easier said than done". But with proper guideline, the networking has a big future potential to open up a network of business.
I personally believe that building connections is extremely important within the industry to enhance collaboration.
We also need to stay updated on advancements, and create opportunities for professional growth.
Here are some useful tips :
a. Get the knowledge by attending events such as conferences, trade shows, and seminars related to solar energy and systems design. These events provide excellent opportunities to meet professionals, learn about new technologies, and stay updated on industry trends. Remember solar system design is a very unique scenario. You may think that you have what it takes but you need others to provide other expertise that you may not possess.
b. Affiliate with the right professional organizations - don't be afraid or timid to become a member of organizations like the Malaysian Photovoltaic Industry Association, Solar Energy Industries Association (SEIA) or the International Solar Energy Society ISES. These groups offer networking events, forums, and access to valuable resources.
c. LinkedIn is a great online platform that I know of connecting with professionals in the solar energy field. Join relevant groups, participate in discussions, and share your knowledge and experiences.
d. Seek Opportunity to collaborate on solar projects. Working with others not only enhances your skills but also expands your network within the industry.
e. Stay Informed - on the latest developments of solar technology by taking courses, attending webinars, or pursuing certifications. This not only enhances your knowledge but also connects you with like-minded professionals.
f. Be part of Local Networking by attending local events and meetups related to renewable energy. Building connections within your geographic region can lead to valuable partnerships and opportunities.
g. Find the right Mentor - from experienced professionals in the solar industry. A mentor can provide guidance, share insights, and introduce you to their network.
h. Write Blog Post or articles about solar systems design and contribute them to industry publications. This can help establish you as an authority in the field and attract networking opportunities.
i. Maintain a Professional Presence on Social Media - especially those popular within the industry. Share relevant content, engage with others, and build a reputable online presence.
j. Reach Out - be proactive - take the initiative to reach out to professionals you admire or want to connect with. Be clear about your goals and how you can contribute to the solar energy community.
Remember, effective networking is about building genuine relationships, sharing knowledge, and being open to collaboration. It's not just about what you can gain, but also about what you can contribute to the community.
Question : Mr. Nik, I saw your YouTube video on Industrial Symbiosis. Are you familiar with carbon credits and its process such as application etc. (Top management of MNC)
Not limited to the following; where applicable and customized to the nature of industry; here are the general steps that an organization can follow to apply for carbon credits (exclude any elements where necessary) :
1.0 Measure the Carbon Footprint
The first step for any organization is to calculate its carbon footprint. This involves assessing the amount of greenhouse gases emitted directly and indirectly from its operations, including energy use, transportation, waste generation, and other relevant activities.
Calculating your carbon footprint involves assessing the amount of greenhouse gases, primarily carbon dioxide, that you directly or indirectly produce. The carbon footprint is usually measured in units of carbon dioxide equivalents (CO2e). Here's a general approach to calculating it:
a. Determine the Scope of Your Calculation
There are typically three scopes of emissions that you should consider:
b. Calculate Home/Office/Site Energy Use:
Determine your energy use including electricity, heating, and cooling. You can usually find this information on your utility bills. Use conversion factors to convert the energy use into CO2e emissions.
By following these steps, companies can get a general idea of the carbon footprint. Reducing the carbon footprint can involve various lifestyle changes, such as using more energy-efficient appliances, using public transportation, reducing meat consumption, and supporting sustainable products.
2.0 Implement Carbon Reduction Strategies
After identifying the sources of emissions, organizations should implement strategies to reduce their carbon footprint. This can include adopting energy-efficient technologies, using renewable energy sources, optimizing transportation, and improving waste management practices.
e.g. adopting an environmental management strategy; avoid unnecessary printing; recycle; incentives for public and sustainable transport; reduce energy consumption, and define renewable energy use targets.
e.g. Energy Efficiency
Implementing energy-efficient measures, such as insulation, efficient HVAC systems, and LED lighting, can significantly reduce energy consumption and operational carbon emission
3.0 Assessment and Certification
Scheduled or non-scheduled inspection, risk assessment and internal audit should be conducted by the organization. Auditors should possess the necessary training, competency and experience without elements of partiality.
3rd party audit will look into :
e.g. wind or solar farm - to ascertain actual generation and renewable energy are measured including emission of Greenhouse Gases (GHG) such as Water Vapour (H2O), Carbon dioxide (CO2), Methane (CH4), Ozone (O3), Nitrous Oxide (N2O), Chlorofluorocarbon (CFC), Hydrochlorofluorocarbon (HCFC), Carbon tetrachloride (CCl4)
Organizations can get their emissions reduction projects certified by accredited certification bodies or relevant agencies. The certification process typically involves verification of the emission reduction methods and the actual reduction achieved. Common certification standards include the Clean Development Mechanism (CDM), Verified Carbon Standard (VCS), and Gold Standard.
4.0 Apply for Carbon Credits
Once the emission reduction project is certified, the organization can apply for carbon credits. This involves submitting the necessary documentation and data to the relevant carbon credit registry or authority. The application process may vary depending on the specific requirements of the carbon credit program or market.
5.0 Verification and Validation
The carbon credit application is usually subject to verification and validation by independent auditors or certification or regulatory bodies. This step ensures that the emission reduction claims are accurate and meet the standards set by the specific carbon credit program.
6.0 Issuance and Trading
Upon successful verification, the organization will receive carbon credits for the verified amount of emission reductions. These carbon credits can then be traded on the carbon market or used to offset the organization's own carbon footprint. Organizations can sell their excess carbon credits to other entities looking to offset their emissions.
7.0 Compliance and Reporting
Organizations are often required to comply with reporting requirements, providing regular updates on their carbon reduction efforts and the utilization or trading of carbon credits. Compliance helps ensure transparency and accountability in the carbon credit market.
It's essential for organizations to stay informed about the evolving standards and regulations related to carbon credits, as they may vary across different jurisdictions and markets. Engaging with experienced consultants or carbon management firms can also help streamline the process of applying for and managing carbon credits.
In Malaysia, Bursa Carbon Exchange ( BCX ), Malaysia’s voluntary carbon market (VCM) exchange, is part of the nation’s commitment towards achieving net zero greenhouse gas (GHG) emissions as early as 2050.
BCX is a spot exchange that facilitates the trading of high-quality carbon credits via standardised carbon contracts. Corporates may purchase these credits to offset their carbon footprint while the sale of carbon credits, in return, will help to finance and drive the development of domestic GHG emission reduction and removal solutions and projects.
Please contact Bursa Malaysia and BCX for more information