Securing Executive Buy-in for Your Policy Management Program
We have heard from many clients that while everyone understands how critical having a vigorous policy management program and process is, few have the ability to make a case that puts policy management at the top of the priority list. It’s not defensible to simply write policies and store them on a drive somewhere and look at them every other year. It’s not defensible to lack ownership of the policy process, program and employee awareness and communications. Having a robust solution that lets you manage your entire policy process is absolutely key to proactively mitigating risk, driving a culture of ethics and compliance, and keeping your organization defensible.
Join Lisa Hill, Policy Pundit for GRC 20/20, and John Peltier, Product Marketing Manager at The Network, for this complimentary webinar as they discuss the key components you need to build a case for establishing a formal policy management program, ways to determine proper designation of responsibly and the key criteria to consider when evaluating technology partners. Lisa and John will discuss the key steps to take to build a case and gain executive buy-in for a formal policy management program.
YOU WILL LEARN
- The corporate impact and ROI of an effective policy management process
- Why ‘policy storage’ isn’t enough for a defensible compliance program
- Key criteria used to evaluate the right technology for your program
- Benefits of integrating policy management practices with ethics and compliance training
Lisa Bennett-Hill, Policy Pundit (GRC 20/20 Research)
Lisa Hill is an experienced Policy Management and GRC professional with specialist expertise in corporate governance, corporate policy management and framework/process development. In addition to acting as the Policy Pundit for GRC 20/20, she also co-chairs the OCEG Policy Management Group.
For the past decade, Lisa was a Senior Business Leader and Global Corporate Policy Manager at Visa Inc. She developed the corporate policy management program to support Visa after its IPO in 2008. She implemented the board-supported Global Meta-Policy and brought together local, regional and global policies for all functions (Communication, Finance, HR, IT, Legal, Marketing, and Risk), forming a unified library of Corporate Policy under centralized management on a GRC tool that she extensively configured to provide robust authoring capabilities.
Lisa also managed Visa’s pre-IPO global IT Information Security Policies program and chaired the Global Policy Forum, which reviewed and approved all changes to these policies. Under her management, the Information Security Policies program achieved an A+ “best of class” rating – the second highest rating ever given such programs by a leading cyber risk and network security assurance service.