Risk management is integrated in the Ericsson Group Management System (EGMS) and business processes. It covers risks related to corporate responsibility, such as regulatory compliance and possible reputational risks, as well as environmental and social responsibility risks. Risks are continously assessed and managed in the supply chain as an integrated part of all supply processes and are controlled by the corporate audit function. Risks are dealt with on three levels: in the strategy process, in annual target setting and within ongoing operations.

A central security and risk management unit coordinates the handling of certain risks, such as business interruption, information security/IT risks and physical security as well as insurable risks. A crisis management council deals with ad hoc events of a serious nature. The Annual Report provides additional information on financial risk and operational risks.