Benchmarking Your Policy Management Program

$100.00

Policy matters; however, when you look at the typical organization you would think policies are irrelevant and a nuisance. Organizations often lack an auditable means of policy maintenance, communication, attestation, and training. Without policy, there is no written standard for acceptable and unacceptable conduct — an organization can quickly become something it never intended. Corporate policies define boundaries for the behavior of individuals, business processes, relationships, and systems. With today’s complex business operations, global expansion, and the ever-changing legal, regulatory and compliance environments, a well-defined policy management program is vital. GRC 20/20’s Effective Policy Management Benchmark provides a framework for an organization’s policy management program to be measured against peers within industry as well as organizations of similar size and structure across industries. 

Have a question about policy management?

[button link=”http://grc2020.com/ask-a-question/”]Ask GRC 20/20[/button]

Description

Benchmarking Your Policy Management Program

Effective, Efficient & Agile Policy Management

[tabs style=”default”] [tab title=”Executive Summary”]

Policy matters; however, when you look at the typical organization you would think policies are irrelevant and a nuisance. Organizations often lack an auditable means of policy maintenance, communication, attestation, and training. Without policy, there is no written standard for acceptable and unacceptable conduct — an organization can quickly become something it never intended. Corporate policies define boundaries for the behavior of individuals, business processes, relationships, and systems. With today’s complex business operations, global expansion, and the ever-changing legal, regulatory and compliance environments, a well-defined policy management program is vital. GRC 20/20’s Effective Policy Management Benchmark provides a framework for an organization’s policy management program to be measured against peers within industry as well as organizations of similar size and structure across industries.

The benchmark synthesizes GRC 20/20 research and analysis of the following key Policy Management Program components:

  • Governance of Policy Management Program
  • Metapolicy
  • Supporting Policy Management Resources
  • Policy Management Lifecycle
  • Operational Effectiveness of Policy Management Program
  • Technology Enablement of Policy Management Program  

[/tab] [tab title=”Table of Contents”]

  1. Why Policy Matters
    • Hordes of Policies Scattered Across the Organization
    • Lack of Accountability in Policy Management
  2. Effective Policy Management Benchmark
    • Governance of Policy Management Program
    • Metapolicy
    • Supporting Policy Management Resources
    • Policy Management Lifecycle
    • Operational Effectiveness of Policy Management Program
    • Technology Enablement of Policy Management Program
  3. GRC 20/20’s Final Perspective
    • Getting to the Head of the Class: Advancing Your Policy Management Program
    • Fundamental Steps to Establishing Effective Policy Management Strategy
  4. About GRC 20/20 Research, LLC
  5. Research Methodology

[/tab] [tab title=”Author”]

rasmussenMichael Rasmussen – The GRC Pundit @ GRC 20/20 Research, Michael Rasmussen is an internationally recognized pundit on governance, risk management, and compliance (GRC) – with specific expertise on the topics of GRC strategy, process, information, and technology architectures and solutions. With 23+ years of experience, Michael helps organizations improve GRC processes, design and implement GRC architectures, and select solutions that are effective, efficient, and agile. He is a sought-after keynote speaker, author, and advisor and is noted as the “Father of GRC” — being the first to define and model the GRC market in February 2002 while at Forrester Research, Inc.

[/tab] [/tabs]


©GRC 20/20 Research, LLC. All Rights Reserved.

No part of this publication may be reproduced, adapted, stored in a retrieval system or transmitted in any form by any means, electronic, mechanical, photocopying, recording or otherwise, without the prior permission of GRC 20/20 Research, LLC. If you are authorized to access this publication, your use of it is subject to the Usage Guidelines established in client contract. The information contained in this publication is believed to be accurate and has been obtained from sources believed to be reliable but cannot be guaranteed and is subject to change. GRC 20/20 accepts no liability whatever for actions taken based on information that may subsequently prove to be incorrect or errors in analysis. This research contains opinions of GRC 20/20 analysts and should not be construed as statements of fact.  GRC 20/20 disclaims all warranties as to the accuracy, completeness or adequacy of such information and shall have no liability for errors, omissions or inadequacies in such information.  Although GRC 20/20 may include a discussion of related legal issues, GRC 20/20 does not provide legal advice or services and its research should not be construed or used as such.