The Network Policy Management
- IT.22 - Policy Mgmt, Communication & Training
- M1. Context Monitoring
- P1. Proactive Actions & Controls
- I2. Communication
- M2. Performance Monitoring
- P2. Codes Of Conduct
- C3. Culture
- M3. Systemic Improvement
- P3. Policies
- R3. 3rd Party Inquiry & Investigation
- M4. Assurance
- P4. Education
- P5. Incentives
GRC Illustrated Series: #11 How Do I Design, Launch And Manage A Code Of Conduct? resource GRC Illustrated OCEG Reviewed
WYSIATI - Jumping to Conclusions with Limited Evidence blog
Over confidence in our ability to assess risks has led to more mistakes than we care to admit. WYSIATI - "What You See Is All There Is" describes a set of biases that prevents us from becoming better risk managers. Why is this the case? Because we jump to conclusions based on weak evidence and confuse correlation with causation.
ISO 26000 – Social responsibility resource Standards and Guidelines OCEG Reviewed
The International Standards Organization (ISO) website on ISO 26000:2010 Guidance on social responsibility. This site contains a project overview, summary of the standard, resources and FAQs. ISO 26000 was finalized in 2010.
The Business Case for Corporate Social Responsibility (June 2011) resource Articles OCEG Reviewed
Introduction: This report discusses the business case for CSR—that is, what justifies the allocation of resources by the business community to advance a certain socially responsible cause. The business case is concerned with the following question: what tangible benefits do business organizations reap from engaging in CSR initiatives?
NASDAQ OMX Group, Inc. Corporate Governance Guidelines (April 2010) resource Examples OCEG Reviewed
The Board of Directors of The NASDAQ OMX Group, Inc. (the "Company") sets high standards for the Company's employees, officers and directors. Implicit in this philosophy is the importance of sound corporate governance. It is the duty of the Board of Directors to serve as a prudent fiduciary for shareholders and to oversee the management of the Company's business.
Mitratech TeamConnect® Policy Management
TeamConnect manages policies throughout their lifecycle, from creation to retirement, while enabling collaboration and providing accountability in every phase. Proactively protect your organization by reconciling multiple regulations and requirements. Communicate and enforce procedures throughout your organization and beyond. Gain insights into policy violations and assess the impact of new or changing regulations on your business. TeamConnect’s policy lifecycle management approach delivers business agility, efficiency, and effectiveness in meeting requirements. Collaborate on policy creation and improve compliance through a single authoritative source to consolidate, maintain, and manage your policies and procedures. Publish policies enterprise-wide through online Web access. Defend your organization with a detailed trail of all policies and procedures, receipts, trainings, attestations, exceptions, and violations.
- IT.22 - Policy Mgmt, Communication & Training
- I1. Info Management
- P1. Proactive Actions & Controls
- R1. Responsive Actions & Controls
- I2. Communication
- P2. Codes Of Conduct
- C3. Culture
- P3. Policies
- M4. Assurance
