D2. Notification

Order by:Group by:
FILTER BY:
SAS Enterprise GRC

SAS Enterprise GRC strengthens governance and trust with systematic management of risk. It detects and helps prevent violations, allowing you to align strategy with risk appetite. The solution builds a reliable view of risk compliance, facilitates collaboration between GRC teams and reduces the cost of risk management through automation. Some Distinctive Features Include: Creates a common and integrated repository of all critical GRC components (e.g., risks, controls, policies, audits, etc.). Facilitates collaboration between various GRC teams, which will be difficult when the GRC components are in multiple systems. Reduces cost of risk management and compliance by reducing duplication of data and processes. Links all critical GRC elements, enabling you to easily visualize and assess the impact of a business decision in one part of the organization over other parts of the organization.

  • IT.01 - Audit and Assurance Management
  • IT.03 - Brand and Reputation Management
  • IT.05 - Compliance Management
  • IT.07 - Control Activity, Monitoring, and Assurance
  • IT.12 - Finance/Treasury Risk Management
  • IT.13 - Fraud and Corruption Detection, Prevention & Mgmt
  • IT.16 - Information/IT Risk & Security
  • IT.19 - Issue and Investigations Management
  • IT.22 - Policy Mgmt, Communication & Training
  • IT.24 - Quality Management and Monitoring
  • IT.26 - Risk Management
  • IT.26 - Regulatory Intelligence and Monitoring
  • IT.27 - Strategy, Performance, and Business Intelligence
  • A1. Identification
  • D1. Detective Actions & Controls
  • I1. Info Management
  • M1. Context Monitoring
  • P1. Proactive Actions & Controls
  • R1. Responsive Actions & Controls
  • A2. Analysis
  • D2. Notification
  • M2. Performance Monitoring
  • R2. Internal Investigation
  • A3. Planning
  • D3. Inquiry
  • I3. Technology
  • P3. Policies
  • R4. Crisis Response
  • P7. Risk Financing
Read more
SAI Global GRC Software

SAI Global’s GRC Platform provides a flexible software solution to manage and profile risks, compliance obligations, incidents and cases, policies, and learning across the organization. Specific applications include configurations for environmental, health and safety use and for bribery and corruption risk management. A full utilization of SAI Global's software enables integration with SAI Global's Learning & Communication Platform and a single view across highly decentralized global operations. This inevitably results in better use of human capital, reduced costs, increased transparency and improved business results. A partial list of solution components, deployable as standalone elements or integrated, include risk assessment and profiling; obligations management; case and incident management; policy management; registries to manage gifts, hospitality, entertainment, facilitation payments and conflicts of interests; audit management; integration with hotline; and a fully configurable GRC Dashboard that integrates with learning and communication.

  • IT.02 - Board and Entity Management
  • IT.05 - Compliance Management
  • IT.11 - Environmental, Health, and Safety
  • IT.14 - Global Trade Compliance/International Dealings
  • IT.15 - Hotline/Helpline
  • IT.19 - Issue and Investigations Management
  • IT.22 - Policy Mgmt, Communication & Training
  • IT.23 - Privacy Management
  • IT.26 - Risk Management
  • IT.26 - Regulatory Intelligence and Monitoring
  • IT.28 - 3rd Party/Vendor Risk & Compliance
  • (C) Context
  • M1. Context Monitoring
  • P1. Proactive Actions & Controls
  • R1. Responsive Actions & Controls
  • D2. Notification
  • M2. Performance Monitoring
  • P2. Codes Of Conduct
  • R2. Internal Investigation
  • D3. Inquiry
  • P3. Policies
  • R3. 3rd Party Inquiry & Investigation
  • M4. Assurance
  • P4. Education
  • (O) Organize
  • (A) Assess
  • (I) Interact
Read more
Why is GRC important? blog
Submitted by nmarks on May, 17 2010

I have been blogging about what GRC is, advocating the definition developed by the Open Compliance and Ethics Group, OCEG (see this and subsequent posts). But, I haven’t really talked about why the concept of GRC has value.

Read more
OCEG One Minute Poll: Worry About Retaliation? resource OMP - One Minute Poll OCEG Reviewed
Thumbnail

A quick research poll of the OCEG worldwide membership. June 2009

 

 

 

 

Read more
NIST, Computer Security Incident Handling Guide (2008) resource Agency Guidances OCEG Reviewed
Computer security incident response has become an important component of information technology (IT) programs. Security-related threats have become not only more numerous and diverse but also more damaging and disruptive. New types of security-related incidents emerge frequently.
Read more
Issue and Incident Investigation resource Articles OCEG Reviewed
Submitted by OCEG Staff on Sep, 20 2008
By Tim Strong and Shaheen Javadizadeh
Read more
Judicial Council proposes new electronic discovery rules (2008) resource Articles OCEG Reviewed
California Bar Journal, March 2008   The California proposal requires a responding party to seek a protective order to avoid producing information on the grounds that it is inaccessible or unreasonably burdensome to obtain.
Read more
California, Electronic Discovery: Legislation and Rules (2008) resource State / Provincial Laws OCEG Reviewed
The California Judicial Council is proposing new statutes and rules that address production of electronically stored information. The committee will likely revise the proposals based on the public comment and new rules are expected to take effect early next year.
Read more
2006 Corporate Governance and Compliance Hotline Benchmarking Report (Deloitte) resource Research / Studies OCEG Reviewed
Assessing organizational health is a challenging, ongoing process – one that requires vigilant monitoring. Countless organizations have found hotlines and helplines to be invaluable tools in this process; as such mechanisms generate critical employee feedback and information.
Read more
Examining E-Discovery Chain of Custody (2007) resource Articles OCEG Reviewed
Though a simple concept, chain of custody can be challenging to uphold for electronic data. Potential electronic evidence must be accounted for from the moment of discovery until admittance at trial to prove its authenticity. Documenting the chain of custody of potential, relevant evidence to disprove tampering or alteration is critical to admissibility at trial.
Read more
Syndicate content
Related terms
D2. Notification
D3. Inquiry
D1. Detective Actions & Controls