Security

Security

Identifying, assessing and managing physical security risks is critical to the protection of BHP’s people, assets and reputation.

The security risks we face are complex, constantly evolving, and we seek to understand the physical security threats we face, to inform the development of security programs that protect our people within a dynamic and constantly changing external environment.

We use security controls and mandatory minimum performance requirements to reduce the likelihood of security risks materialising and mitigate their impact if they do. We support this with external environment monitoring, including through our enterprise emerging risk process, to identify changes in the external environment that could shift our exposure to security threats across the jurisdictions where we operate.

During FY2022, the Group Security team continued to evolve BHP’s security, crisis and emergency management frameworks to adapt to the changing external environment and support our strategic objectives.

The team is continuing to enhance our security framework, including to refresh BHP's mandatory minimum global security requirements and developing a consistent taxonomy for defining and categorising security threats. This is designed to support robust security risk identification across our operated assets and functions.

In FY2023, the Group Security team intends to establish an integrated approach to threat intelligence to provide decision makers with security insights and support risk-informed decisions. It intends to also implement a structured global assurance program and improved reporting.