Have You Done your Policy Enforcement Push-ups?

The GRC PunditWritten by
Published onUpdated onDiscussionLeave a Comment on Have You Done your Policy Enforcement Push-ups?
Man doing pushups on his desk, his business coworkers clapping in the background.

I love teaching my By Design” Workshops! This past Monday it was Policy Management by Design, my favorite of all of them, in New York City. It is great to be back live teaching these interactive workshops, and it was a great day in New York with engaged attendees from a range of organizations.

The Policy Management by Design Workshop has a lot of new content. Including the Policy Management Capability Model that I worked hard on publishing with OCEG in our joint venture with www.PolicyManagementPro.com. It also includes my new Policy Management Maturity Model.

In discussing Policy Enforcement, one of the 5 components of the Policy Management Capability Model, one organization in attendance stated how they increased policy awareness and compliance by getting creative in policy enforcement. The example this person gave was in the context of their Background Check Policy. If an employee does not follow the background check policy then they and their manager have to do push-ups in front of others. That is one example of creatively building a culture of integrity and policy compliance.

In a previous workshop, before lockdowns, a global software firm stated they take their inclusion, diversity, equality, harassment, and discrimination policies very seriously. If an employee gets behind in their policy acknowledgment and required related training in these areas . . . they go to log in to their computer and they will find all they can access is the policy management portal with the policy acknowledgment and training they have to complete. Another example of policy enforcement.

This is what I love about these workshops. I can lecture and teach all day, but attendees learn from each other as much as they do from me.

Myself teaching on the Policy Management Capability Model in the New York Policy Management by Design Workshop this week.

Upcoming Workshops . . .

November 30

Enterprise GRC Management by Design – Minneapolis

Blueprint for an Effective, Efficient & Agile Enterprise GRC Program Governance, risk management & compliance (GRC) is something an organization does and not something an organization buys. GRC, done properly, is what is achieved throughout the business and its operations. By definition, GRC is “a capability to reliably achieve objectives  while addressing uncertainty  and acting with integrity .” This requires that GRC needs […]December 2021THU2

December 2

Compliance Management by Design – New York

Blueprint for an Effective, Efficient & Agile Compliance Management Program Compliance is not easy. Organizations across industries have global clients, partners, and business operations. The larger the organization the more complex its operations. Complicating matters, today’s organization is dynamic and constantly changing. The modern organization adjusts by the minute. New employees come, others leave, roles change. […]March 2022THU10

March 10 

Risk Management By Design Workshop – New York

Risk is pervasive throughout business strategies, operations, and processes. Siloed approaches to risk management leave the organization not seeing the big picture of risk. The reaction is often to centralize risk management which forces different areas of the organization into a one-size-fits-all risk management model that fails to adequately manage and monitor risk. Defining strategy, […]

Leave a Reply

Your email address will not be published. Required fields are marked *