As a result of the recently introduced legislations and supply chain issues following Russia’s invasion of Ukraine, Kopenhagen Konsulting was engaged to support the client in evaluating the risk exposure from its business operations, technology design, and activities in Russia. After the invasion, the client has implemented various information security controls in Russia to protect against potential threats and wanted to specify the risk picture and outline risk mitigation strategies for executive leadership based on their risk appetite.

Over a three-month period, Kopenhagen Konsulting led an extensive analysis covering the security, information, and compliance risks associated with the clients operating model in Russia. A notable focus was on supply chain risks, particularly in relation to the imposition of sanctions, such as the Russian ban on Western IT solutions, and newly enacted non-cyber legislations.Kopenhagen Konsulting provided the client with a factual overview of the current situation, high-risk challenges, and suggested three distinct solution scenarios and a recommended high-level plan of action. As a result, executive leadership chose the recommended solution, and Kopenhagen Konsulting was further assigned to prepare a plan and in-depth analysis for this scenario.

• The client gained in-depth understanding of the operating risks and legal implications in Russia.
• Based on the analysis, executive leadership approved a range of strategic activities to ensure appropriate risk mitigation.
• Kopenhagen Konsulting was engaged to support the execution of the recommended solution as part of a larger organizational governance setup.