client login    languages

Policy Management Software Helps You Maintain Good Policies

Request A Demo of Our Ethics And Compliance Solution

Policy Management Software Helps You Maintain Good Policies

The third webinar we conducted with the Open Compliance and Ethics Group for the “Policy Management Illustrated” series dealt with policy maintenance through proper measurement and evaluation. In my previous blogs, I discussed best practices around policy enforcement, including how behavior and enforcement go hand in hand, dealing with policy exceptions, and policy compliance across the extended enterprise. In my next couple of blogs, we’ll look at ways to maintain effective policies. First up: how proactive policies help keep you defensible against risk.

All too often, organizations fall into the trap of creating policies and even distributing them to the workforce, but then allow the policies to stagnate as the business environment changes. Then, when trouble comes along and the organization looks back at the policy, it’s revealed that the policy no longer applies to the current operating conditions, and the issue at hand has not been addressed.

Michael Rasmussen, in his article in Compliance Week, is adamant about maintaining a regular maintenance schedule for polices: “My recommendation is that every policy goes through an annual review process to determine if the policy is still an appropriate policy for the organization.”

Effective policy management requires a proactive, “evergreen” approach. You can’t just create policies, write them down, and let them gather dust on a shelf until something happens. By keeping policies fresh and current, you’re proving your commitment to the policy process – and really, your entire compliance initiative – and showing that the policies matter, that you didn’t just go through some checkbox exercise in writing them in the first place.

Most organizations can see the need for policy maintenance, but many aren’t doing it. According to the survey conducted during the OCEG webinar, less than half of those polled said they require that policies be reviewed on a regularly scheduled basis. Policy management software will send you automatic reminders to review policies.

As your business environment changes, your policies very likely will need to change to keep up. Otherwise, you risk the possibility of having your concerned employees refer to a policy only to find outdated guidance. Well-maintained policies keep you out of hot water and increase your position of defensibility. By having current policies and being able to show that your workforce is current on those policies, your organization can defend itself against “rogue” operators who violate those policies (e.g., Morgan Stanley and the Garth Peterson case).

Next time, we’ll look at measuring and evaluating policy through the use of metrics.

About the Author

John Peltier, Product Marketing Manager. John leads the product marketing efforts for The Network’s integrated governance, risk and compliance software suite and previously led the strategy and development efforts of our Policy Management and Learning Management Systems. He is an accomplished product professional, with over a decade of experience delivering solutions to business problems. He has spent three years in ethics and compliance, and previously spent nine years in healthcare.

Leave a Comment

We would be glad to get your feedback. Take a moment to comment and tell us what you think.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

Awards & Certifications 2013 GRC 20/20 Technology Innovation Award 2013 TAG Top 40 Innovative Company 2012 IABC Gold Quill Award 2012 MarCom Award We self-certify compliance Safe Harbor Safe Harbor Certification SOC 2 Certification