OCEG | Open Compliance and Ethics Group

The briefing applies generally to all IT best practices but focuses on three specific practices and standards that are becoming widely adopted around the world. It has been updated to reflect the latest versions: • ITIL V3—Published by the UK government to provide a best practice framework for IT service management • Cobi T 4.1—Published by ITGI and positioned as a high-level governance and control framework

In these changing times the constantly evolving challenges facing corporations are giving rise to ongoing turbulence in the corporate world, and there are indications of ominous times ahead. Defending a corporation requires far more than simply concentrating on security or legal defence, to help ensure survival contemporary corporate defence requires a far more comprehensive brief.

Rapidly accelerating pressures fuel the need for internal audit to transform its thinking from financial controls-centric to shareholder value-centric—and to drive efficiency into traditional internal audit processes. This PwC whitepaper examines key topics for internal audit transformation:

• It’s time to question the internal audit status quo
• The shareholder value challenge
• How to unleash the power of internal audit

October 2008

The Board of Directors has adopted the Aon Code of Business Conduct which sets forth the minimum standard of conduct required of all employees, officers and directors. The Code as well as other corporate policies form the foundation of a comprehensive corporate compliance program. The Code and our policies cover many topics, including antitrust and competition law, conflicts of interest, anti-bribery, privacy, financial reporting, OFAC compliance, protection of confidential information, and compliance with all laws and regulations applicable to the conduct of our business.