in

smartercommunity

Bringing policyIQ users together

This Blog

Syndication

Tags

policyIQ Blog

June 2010 - Posts

  • Celebrating the Forms of July!

    The majority of policyIQ customers begin using policyIQ to capture, manage, communicate and report on content. Often, once users refine their initial use of policyIQ, they begin exploring other uses, features and possibilities. About 60 percent of policyIQ clients have realized significant time and cost savings by automating processes using policyIQ’s Forms functionality.

    Are you among them?

    If not, we will present a number of ideas and examples in our training sessions and blog posts this month that may pique your interest. Even if you are among them and you’re already using policyIQ’s Forms, I’ll bet we’ll have something of value for you woven in here this month, too! Here is a sample of ways that policyIQ customers are making use of policyIQ’s Forms Management functionality:

    • Many organizations have begun utilizing policyIQ’s Forms to make their process for gathering annual sign-offs on corporate policies more efficient.
    • Do you have employees that have to certify to their correct performance of various procedures for your Quality System? This is another use of policyIQ’s Forms.
    • Have to comply with SOX, PCI, NAIC, NRC, HIPAA, Title 31 or any number of other regulations or requirements? Use policyIQ to automate and simplify self assessments, certifications, and assertions.
    • The variety of possible field types makes policyIQ Forms a great option for sending out employee, customer satisfaction and other surveys.
    • Use policyIQ’s Forms to create a simple and automated means for employees to submit requests for access to systems, maintenance, vacation, or approval to perform any number of tasks.

    The number of possible applications is limited only by your imagination!

    Our July Focus: We will provide you with guidance on how to implement policyIQ’s Forms Management functionality for many of these uses. We’ll help you to assess the benefits of automating your processes such as simplified access for your employees, powerful management by your process administrators, and effortless—yet secure—access to pertinent information for your approvers.

    Mark your calendar!

    On July 27th, 3pm ET, our live CPE session will walk through the complete account reconciliation process and the automation of this process in policyIQ using Forms. Register now for Managing your Account Reconciliation Process in policyIQ.

    If you have an idea or manual process that you would like to automate and want to brainstorm with a policyIQ expert, please contact us at support@policyIQ.com.

     

    Posted Jun 29 2010, 03:13 PM by stepheniebuehrle with 1 comment(s)

  • Lessons Learned in Model Audit Rule training apply to any compliance initiatives!

    A huge thanks to everyone who joined us last week for our training session on how to use policyIQ to implement an effective and efficient Model Audit Rule (MAR) compliance program!  Co-presented by Jenny Hergenrother, the Internal Control Senior Analyst at USAble Life, this session was aimed at insurance organizations who are subject to the National Association of Insurance Commissioners' (NAIC) compliance requirements. 

    Model Audit Rule, while specifically required of US insurance companies, was based on the Sarbanes-Oxley requirements and therefore the lessons that Jenny shared apply to a much broader spectrum of clients.  We'd like to share a few of those highlights below.

     

    Tracking multiple compliance efforts?  Use Folders or a Multi-Select field to minimize duplication

     

    For organizations that are required to be compliant with multiple regulatory or legislative directives, policyIQ offers some unique capabilities to more efficiently manage documentation.  Does your organization fall under Sarbanes-Oxley, Title 31's Anti-Money Laundering, and Payment Card Industry Data Security Standards?  Controls may be the same across all compliance requirements - so why document three times? 

    - Create unique Folder structures for each compliance initiative, with sub-Folders for the critical areas or Processes in scope.  Index Risks, Controls and even Testing into all applicable Folders - but document each just once. 

    - Add a Multi-Select field to your Risk and Control Template with all of the relevant compliance areas in your business.  When documenting a Control, select all of the compliance areas to which that Control applies.  Reporting on a specific compliance initiative is simple - filter the appropriate area using the field you've created.

     

    Document your critical System Applications on their own Pages

    A new best practice emerged as we learned more about how USAble Life and Blue Cross Blue Shield of Florida have implemented policyIQ.  Both organizations have their critical System Applications documented as Pages in policyIQ, with fields that outline key pieces of information about that system.  The System Applications are linked to Controls where the application is used, and indexed into the Process Folders where those applications play a role.  If a system is updated or replaced, it is easy to find the affected Processes and Controls to verify that all appropriate changes have been made to the documentation.  SAS 70 reports are also uploaded to the System Application pages where appropriate, keeping that critical control information easily accessible.

     

    Use policyIQ to keep notes whenever possible

    Jenny introduced training attendees to the concept of Watch Out pages - her simple but effective way to keep notes in policyIQ, rather than keeping lists of things to watch out for on Post-It notes or in separate files.  When an issue comes up, she simply adds a Watch Out page - and indexes it to the Process folder where she'll need to go back and take care of it.  We love the idea – and we love Jenny’s philosophy: it’s really best to keep as much of your documentation and notes in one place so that it is easy to find and keep track of things and policyIQ can be used to document most anything.

     

    Collaboration is key!

    If there was one lesson that attendees walked away from this session having learned, it was the value of collaborating with a peer who has already been through the process.  As a new employee of USAble Life, Jenny sought assistance from Pam Tripp at Blue Cross Blue Shield of Florida, whose organization already had a mature compliance process in place.

    Check back at this blog later this week, as we will explore their collaboration and give you tips on how to build your own network and learning experiences.

     

    Want to check out the session for yourself?

    The Model Audit Rule training session is now available on-demand from our training page.  You can also go to your policyIQ online Help for more information about how to implement policyIQ for Model Audit Rule, or click here to be taken directly into the online Help guide.

     

    If you have any questions about how to use policyIQ for MAR compliance - or how to combine your existing compliance efforts more efficiently, please contact us at support@policyIQ.com.  We're always happy to talk through your needs and help you to better utilize policyIQ!

    Posted Jun 28 2010, 10:30 AM by chrisburd with no comments
    Filed under: , , , , , , , ,

  • Participate in a survey on International Alignment of Risk Management and Internal Control

    A recent blog post on the Big Fat Finance blog caught our attention.  A survey is being conducted by Professional Accountants in Business (PAIB) Committee of the International Federation of Accountants (IFAC).  (Yes, that's a lot of letters.)  The survey aims to determine the need for international alignment of various national guidelines and standards that exist in the area of risk management and internal control.

    Read more about it on the Big Fat Finance blog.  Click on the survey and add your own voice to this research!

    Posted Jun 24 2010, 07:47 AM by chrisburd with no comments
    Filed under: , ,

  • Delegate to get things done, but retain control with these “Check Out to Others” tips!

    You have a LOT going on, and there are only so many hours in your day. But of course, more work piles up on your desk - and you need to get all of your department's policies and procedures updated and reviewed in policyIQ by the end of the summer.  How are you going to get everything done?

    DELEGATE!

    If you are managing a project to update all of your departmental content, you have probably been given Administrator permissions on the relevant pages. (If you haven't, you may need to check with a Site Administrator to be sure you have the permissions you need!) But just because you are the Administrator doesn't mean you have to do all of the work. Check pages out to members of your team - those individuals who are best suited to update a specific policy or procedure.

    But you ARE the Administrator - and you need to ensure that the project gets finished - so you want to retain some measure of control over the process.  Did you know that, as the Page Administrator, you can check a Page out to a user and then have that Page automatically checked back out to you once they've made their edits? This allows you to delegate the editorial responsibility, while allowing you to maintain control over the next step of the review process.

    Here's how!

    In Create & Edit, you would select the policy from one of the relevant menus (Checked Out To Me, Available For Check Out, etc.). Then from the Check In/Out menu on the Toolbar, you would select the option Check Out to Others.

    The Check Out To Others window opens, and you'll notice the Checkout To dropdown. Click on the down arrow and you'll see a list of all the people to whom you could check out the Page (the other Page Administrators and the page Editors). Select the user that you would like to update the Page. Below that, you'll see the option, "When this user is ready to check this item back in, automatically check the page back out to me for my review." Check that checkbox and the Page will checked back out to you automatically when the user checks it back in.

    This feature will come in handy when you're managing a large number of Pages. Instead of needing to remember to circle back around on a Page, you can use this feature to make sure it's checked directly back out to you.

    Your policyIQ Account Manager can share even more timesaving tips with you. Send us an email at support@policyIQ.com, and let us know what areas of your process you wish were more efficient!

    Posted Jun 22 2010, 07:45 AM by scottpalermo with no comments

  • Meet Roberta, one of our MVP’s

    When Roberta McEniry first walked through the doors for her most recent consulting engagement, her understanding of the project before her was that she was needed to help implement policyIQ.  The client who had enlisted her assistance was implementing policyIQ for the management of their internal controls, and they sought out an experienced consultant to lead their project.  As a Resources Global Professionals consultant, however, Roberta knew that her experience and expertise could lend far more to her client than a typical implementation project manager.

    Drawing on a Diverse Background

    Ms. McEniry has been in the business of solving problems since her days as an auditor at Touche Ross, a predecessor of Deloitte.  Since her beginnings as an auditor, Roberta has gone to serve as a Controller in the construction industry; Director of Internal Audit, SVP of Investor Relations and Corporate Communications and Strategic Planning in the finance industry; and a CFO in the technology industry.  She has also served in the role of CFO/CIO for a large Housing Authority, where she was instrumental in designing an application to manage the business of the Housing Authority - a system that continues to be widely used by many housing authorities across the US today.  Roberta is also both a CPA and a CIA.

    Why Resources?

    With all of that experience under her belt, what brought Roberta to Resources approximately nine years ago?

    "Resources was started by a group from Deloitte and Touche and I knew several of the early management group.  I liked what I saw and heard about the work they were doing."

    Resources Global Professionals is a different kind of consulting firm - recruiting highly experienced professionals (with an average of over 20 years of experience) to partner with clients who need specific expertise, or who may just need an experienced individual to fill a gap in their own internal resources.  Whatever the need, Resources can provide individuals with the experience to move a company forward.

    Which brings us back to that most recent engagement for Roberta...

    So while Roberta was working on her approach to help her latest client implement policyIQ, her experience with change management, process optimization and Sarbanes-Oxley allowed her to see areas where her client could improve the documentation that they had - and expand their understanding of their internal controls.  She brought value that went far above and beyond the expectations of her client.

    Roberta's advice?  Explore policyIQ's various capabilities!

    With a large number of policyIQ implementation engagements under her proverbial belt, we asked Roberta if she had any advice for policyIQ clients. 

    "I encourage clients, once they are well settled in using the system for their original purpose, to continue to explore all the potential uses of the system in their organization.  policyIQ offers so many opportunities to streamline, simplify and standardize processes and tasks in any business."

    We, of course, couldn't agree more.  In fact, Roberta has consistently provided the policyIQ team with terrific feedback to improve our application as she works with clients to optimize their business processes using policyIQ.  (She even presented with us several years ago on how to use policyIQ for Account Reconciliations.)

    Want to learn more about Resources and our professional services?

    If your organization could use some assistance, contact us and we'll get you in touch with your local office of Resources Global Professionals.  There are over 3000 consultants like Roberta waiting to exceed your expectations and bring value to your business!

    Posted Jun 17 2010, 08:47 AM by chrisburd with no comments
    Filed under: , , , , , ,

  • IASB and the FASB "slows the pace" on IFRS

    The International Accounting Standards Board (IASB) and the US Financial Accounting Standards Board (FASB) recently agreed to slow down their schedule of activity intended to ultimately lead to the adoption of International Financial Reporting Standards (IFRS) here in the U.S. 

    Resources' own Colleen Cunningham provides her take on this slower pace in a recent article she has written for the AICPA.

    Posted Jun 16 2010, 07:02 AM by chrisburd with no comments
    Filed under: , , , ,

  • Administrators versus Editors on your policyIQ Pages

    policyIQ provides a set of configurable security options that let you specify how your content is managed. One of the decisions you'll want to make is whether a user who has access to a Page should be given rights as an Administrator or an Editor. What's the difference? Why would I want to use both settings? Let's explore!

    A Page Administrator is responsible for the overall development of a Page. This includes setting the Page's local permissions (who are the Editors, the Viewers, and are there other Administrators for this Page?) and also determining when the Page is ready to be published. Administrators can edit any of the fields on a Page, even when there are other Editors involved in the process. If there is no approval process in place (i.e., no Content Approvers specified at the Template level), a Page will be Published when the Administrator publishes it. If Content Approvers are specified, the Page is of course routed to those Approvers for their review.

    Who should be Page Administrators? This will vary depending on your usage. Using an example of a Sarbanes-Oxley (SOX) Compliance application, the Administrator of a Control page might be a Process Owner. This is the person who is responsible for determining that Controls exist to effectively mitigate identified Risks. These users may grant Editor rights to individual Control Owners, but these Process Owners are ultimately responsible for the Controls. When a Control can be published, they either publish it, or if there is an approval process in place (which is what we recommend!), the Page would be sent off for review, likely to a SOX Management team.

    A Page Editor is able to make changes to the fields on a Page, but that's pretty much the extent of what they can do on a Page. They have to first check the Page out via the Available for Check Out menu in Create & Edit, or have a Page checked out to them by the Page's Administrator. When they have made their edits to a Page, they check the Page back in. The Administrator then determines if it's ready to be Published, or if further edits are required.

    Who should be Page Editors? Users who are best positioned to provide the information being tracked on a Page should be given Editor rights at a minimum. As we noted in our SOX example above, a Control Owner may be given limited Editor access to a Page, while the overall Process Owner has the ultimate responsibility for it. Control testers are also frequently added as Editors on test pages. When a Control is ready to be tested, the Administrator will typically assign the Test Page to the Tester by adding them as an Editor and then checking the page out to them. The Tester fills in information related to the Test, then checks the Page back in.

    How do I review my current Page Administrators and/or Editors? To quickly review the Administrator or Editor settings on Pages of a certain type, it's best to create a Page report for that type of Page.

    In the example image above, we've created a Detail report with a filter selection of Template -> Financial Control. We've also included Administrators as one of our column selections. In the image below, you can see the list that our report returned. The results include all of our Financial Control Pages, with the Administrators listed in the right column. Note that you can review your Editors by creating a similar report - just add Editors as a column selection.

    Once you've reviewed the report results, you may realize that there are some instances where the user listed as an Editor on your Pages should really be given Administrator rights. Or you may determine that additional users should be added as Administrators on certain pages. Making these changes is a snap - even if you want to make multiple adjustments at once. Simply shift-click to select multiple Pages from your results table. Then click on Edit in the toolbar. You'll see options for changing both the Editors and the Administrators.

    Remember that taking full advantage of policyIQ's flexible security setting will help you more effectively manage your content. If you'd like to get more information on your configuration options, contact your policyIQ Account Manager or send us an email at support@policyIQ.com!

    Posted Jun 15 2010, 01:44 PM by scottpalermo with no comments

  • Expanding to take on a new division? Adding a new department? Follow these steps for a smooth expansion!

    In our last blog post, we explored the various ways that security is maintained in policyIQ – how you limit or give access to users to see, edit, or administer the various items in the application.  When expanding to encompass a new division or a new department, understanding that security can help to ensure that your users continue to retain their rights to only the appropriate information. 

    There are some best practices to keep in mind when bringing a new area into policyIQ.  Your goal will be to allow your existing users to retain all of their current capabilities, while at the same time adding new users  with the necessary permissions in their area.   

    No problem. 

    Don’t worry.  We have a checklist for you. 

    We have outlined some steps below that will help you get from where you are to where you want to be. Not only are these the recommended actions, this is also the recommended order to avoid a lot of back and forth between the different areas of the Setup Module.    (The steps below will typically be performed by a user with a Site Administrator, a Role which gives the user the ability to view and administer all elements of policyIQ.)  

    1.)   Make a Plan
    You probably get sick of hearing us recommend starting with a plan, but unfortunately for you, we’re not going to stop saying it.

    2.)   Add New Groups
    Determine what new Groups you will need to accommodate the additional users.  Do you already have a structure for Departments?  Do you need to add something under Locations?  Is this a project team that should have its very own top level group?  Add any needed new Groups to accommodate any the new users who will be added.

    3.)   Restrict existing content
    Is your content currently visible to the top level Groups in your site (and therefore visible to all users)? Will this continue to be appropriate if you add new users?  Run reports of your content (adding in the Viewers property as a column in your results) to evaluate the current restrictions.  If content should be restricted, simply highlight all Pages that require those restrictions and use the toolbar to Edit     à Change Viewers.

    4.)    
    Note – it’s not always about making sure content is restricted.  Sometimes you need to make sure that content is available to the new users.  If you added a new Group at the very top level of your Group structure, those users are not able to see any content by default.  You may need to add in the new Groups as viewers on the essential content.

    5.)   Add New Users
    Once your Groups are in place, it is time to add the new users.  Consider which Roles the new users should have.  (Refer to our blog post on Security     for more information on Roles.) 

    Should any of the new users be added as Site Administrators?  Site Administrators have the ability to view and administer all content and structural elements of policyIQ.  There is a careful balance between having enough Site Administrators to create redundancy and efficiency -  and creating a “too-many-cooks-in the-kitchen” scenario.  Remember that you are able to establish users as Administrators of specific Folders, Templates, Groups and Content.  With these more specific local rights, you can allow an individual to Administer his/her department, while not providing access to all of your policyIQ site.   

    6.)   Add new Folders and Templates
    The new area will need Folders in which to organize their content, and may even need new content Templates to use as a basis for their documentation.  If you have not established Site Administrators within the new set of users, you will want to create the Templates and top level Folders to get them started.  Be sure you add the appropriate new group members as administrators of Folders, Templates, and (potentially) Groups to empower them to maintain their new area.  This will allow them to make the initial configuration decisions as well as the ability to maintain the structure going forward. 

    7.)   Don’t forget training. 
    Of course training on how to utilize policyIQ, but also training on your organization’s standards on how often to update their content, approval chains, formatting and more.   



    Feel free to contact your policyIQ Account Manager or our support team with any additional questions you may have during this process.  

    Posted Jun 10 2010, 08:18 AM by carolinevillella with no comments

  • Security: Understanding who can do what in policyIQ

    Are you expanding or considering expanding your use of policyIQ and wondering how to determine whether content is available and viewable by only the appropriate personnel? Your understanding of the three key influences on policyIQ Security will help you to make the appropriate adjustments to your pages and personnel.

    Before we really dig into these influences on security, let’s revisit some policyIQ basics.

    policyIQ has 5 Main Modules:

    Home: Read-only access to published content and Forms which you are permitted to see (by local right or global permission).
    Create And Edit: Generate new content, delegate content, update content or submit for publishing approval.
    Approve: Review and Approve content, or send content back to Create And Edit for further development.
    Reports: Find a needle in a haystack or perform broad analysis across the business by creating detail or summary reports with a wizard interface for online viewing, printing, and exporting.
    Setup: Manage the layout of content, organization of content, user accounts and users’ Global Permissions among other system settings.

    The three influences on accessing content in policyIQ are (drum roll, please):
    1. The Stage of an item’s development; where it is in the workflow
    2. The Local Rights granted at the object level in policyIQ
    3. The Global Permissions or Role assigned to each user

    Each of these influences is distinct and separate from the other influences, and each influences a user’s interaction with an object in policyIQ.  If an individual is having difficulty locating, editing, or accessing an object, please consider the following questions:
     
    Is the stage of an object affecting my ability to perform an action?
    An item could be in one of a number of stages of development including Checked Out To Me, Available For Check Out, or Awaiting My Approval.  Folders also have workflow including Draft (found only in Create And Edit or Setup) or Visible (found in Home).  The stage of development affects what actions can be performed on an object. 

    Here are some examples for consideration:

    • If I am navigating through Folders in the Home module, I will not see any content that has not yet been published.  In Home, I have read only access to published content.
    • If I am viewing a Page that is published and need to make changes, I first must choose to “unpublish” the Page and check it out to myself before I am able to edit the item. 
    • If am in the Home module, I will see only those Folders with a stage of Visible.  Draft Folders can be seen only in Create And Edit or Setup.

    Do I have a Local Right to this object?
    Examples of Local Rights include Administrator, Editor, Viewer, Indexer, etc.  If you do have a Local Right to an object, is it the correct Local Right to perform the action needed?  Local Rights provide the ability to perform different actions on an object, and you must have the correct rights to perform these actions. 

    Examples:

    • If I am an Editor on a Page, I do not have the ability to delegate the Page to another or to publish the Page—these capabilities are reserved for the Page Administrators.
    • It is not necessary to add the Page Administrators to the Viewers field on a Page—of course they have the right to see the Page if they have been granted the right to administer it.
    • If I make another user an Administrator of a Folder, he or she is then permitted to edit the properties (such as Name or Viewers) and to add sub-Folders under it.

    Do I have a Global Permission that pertains to this object?
    Global Permissions are combined to form Roles, and Advanced Users in policyIQ are each assigned a Role as a part of his/her profile.  If you cannot perform an action, consider whether you have permission, based on your assigned Role, to perform an action on the object. 

    More on Roles:
    *Default User: The default Standard user does not have any “permissions” enabled. The Standard User has read-only access to content, plus the ability to respond to Forms.

    The other roles that are pre-set for any new policyIQ client are additive--meaning they build on one another. Each one can do what lower Roles can do, plus they have additional global capabilities.

    Notice that the Default User is represented by the base or the broadest portion of the image below. This it to help visualize that the Reporting User has the same capabilities that the Default User has, plus more.

    This image is also a good representation of how an organization may distribute users; the majority of your users may be Default Users (in other words, Standard Users), you'll likely have a smaller number of Reporting Users, fewer Managers, even fewer Project Managers or Group Administrators, and only a very small number of Site Administrators. Read on for more detailed descriptions of the pre-set policyIQ Roles:

    Reporting User: So, the Reporting User has read-only access to content and the ability to respond to Forms as the Default user has, PLUS, a user with this Role can access and add Reports in the Reports Module.

    Manager    : Building on the Reporting User, the Manager can Add Content—this is the lowest Role that has the permission to Add Content and, therefore, to access content that is in development within the Create And Edit module. A user with the Manager role can also Add Form Templates and Form Lists.

    Group Administrator    : The Group Administrator builds on the Manager—not on the Project Manager. In addition to what the Manager can do, a user with this Role can Add Users

    Project Manager    : Building on the Manager, a user with this Role also has the permission to view and take over the administration of any content in the site. The Project Manager Role also allows a user to view and index to any Folder as well as to Administer any Form Template and any Form List.

    Site Administrator    : A user with this Role has all permissions enabled. In addition to all of the permissions discussed in lower Roles, the Site Administrator can administer all Setup items.

    Expanding to more users or using policyIQ for a new purpose?
    If you are considering expansion, you may need to make adjustments related to the three influences described above. Stay tuned the policyIQ blog – later this week, we will provide some best practices and steps to take when expanding your policyIQ site.

    If you have any questions about security or making the best decisions as you consider expansion, please contact us for assistance—we’d be glad to schedule a free planning or working meeting with you.

    Posted Jun 08 2010, 10:37 AM by stepheniebuehrle with 2 comment(s)

  • Insurance Companies use policyIQ to pull together various compliance programs. So can you.

    policyIQ customers can be found in practically every industry – and every industry is unique.  One common thread that runs through all policyIQ customers, however, is the desire to better manage organizational content to build more efficient and more effective compliance programs.

    When you think about an industry that requires strong compliance programs, the insurance industry is likely top of mind for many.  Few industries are more regulated. For U.S. insurance companies, there are both federal and state-level regulations that must be met, with each state often implementing slightly different requirements. Just some of the requirements at a national level include:
    1.)   Sarbanes-Oxley – for all publicly traded companies, including any publicly traded insurance organization.
    2.)   Model Audit Rule – the National Association of Insurance Commissioners’ regulations that are very similar to those in the Sarbanes-Oxley Act, but apply to both public and private insurance companies.
    3.)   US Patriot Act’s Anti-Money Laundering requirement – required for any insurance company that deals in certain types of transactions, such as long-term life insurance.

    4.) HIPAA - required for health insurance organizations to protect the private health information of their customers.

    For insurance companies, policyIQ offers a compliance management solution that can pull those efforts together and make the process more efficient.

    Managing multiple compliance efforts in one policyIQ site isn’t rocket science.

    Here are just a few of the policyIQ features that provide efficient compliance management for the insurance industry or for ANY organization struggling with multiple compliance efforts:

    §  Create Folder hierarchies for each area of compliance

    Each regulatory body may want to look at your information in a slightly different way.  Use policyIQ Folders to create an organizational structure for each area of compliance that corresponds to the way their auditors will most likely want to review it.  Would that be by physical location?  By major business area?  By type of insurance policy? 

    Remember that policyIQ content (Pages and Files) can be indexed into multiple Folders.  If procedures or controls apply to more than one compliance program – don’t document and test them twice.  Simply index the control and test results into each folder where appropriate.  This will save time (and money!) – while reducing the possibility of conflicting documentation.

    §  Use a Multi-Select List field to check off the compliance programs to which the documentation applies

    When you are looking at any given document or Page in your compliance program, you may need to know which of the other compliance programs this item relates to.  You might consider having a multi-select list field that allows the individual creating and editing the information to check off other compliance programs the item applies to.  When testing – or creating test plans – the team will know immediately what testing standards they should consider based on which regulatory bodies will be doing the audit.

    §  Link items together – even across compliance programs

    Linking Pages in policyIQ is a critical function that allows you to report on – for example – which Controls you have in place that mitigate a specific Risk, or which Policies govern a specific Regulation.  Link your Controls to Risks – even if they are documented for different compliance programs.  Your reporting function can always bring those linked documents back together for you to gain a complete picture of your organization.

    §  Use policyIQ to manage your Strategic Planning and Enterprise Risk Management program

    Compliance programs might seem like they are an effort in documentation, but the underlying advantage is to be more aware of what happens in the organization on a daily basis – and to make better decisions.  Expand that effort to your Strategic Planning and Enterprise Risk Management programs, as well.  With all of the information in one central place, you can provide a clear picture across all areas of risk and compliance.

    §  Don’t forget to document Corporate Policies and Procedures

    Of course, compliance starts with the basics – solid corporate policies and documented procedures.  Do your employees clearly understand their expected behavior?  Is your Code of Conduct and Ethics Policy clearly stated and available to all?  Use policyIQ to document those aspects of your Corporate Governance program – and use free read-only access to make it available to all of your employees worldwide! 
     The insurance industry may be unique in that it is highly regulated, with decentralized regulatory bodies.  But it’s not alone.  All organizations, regardless of their industry, are likely to be subject to a variety of compliance regulations.  Pull it all together for efficiency and build a highly effective program in policyIQ!

    If you have any questions about how to implement such a program in your organization – or if you’d like to know more about how Resources can help your organization pull together multiple compliance programs – contact us at support@policyIQ.com.
    Posted Jun 03 2010, 11:15 AM by chrisburd with 1 comment(s)
    Filed under: , , , , , ,

  • New FASB proposals on Financial Instruments and OCI Statement


    Resources Global Professionals' Global Managing Director, Colleen Cunningham, explains new FASB proposals that:

    a.) Could change the way companies report certain financial instrument tranasctions.

    b.) Recommend combining the Income Statement with the Statement of Other Comprehesive Income (OCI).

    Read her blog post for more information on the two new Exposure Drafts released for comment.

    Posted Jun 01 2010, 07:03 AM by chrisburd with no comments
    Filed under:
© 2011 Resources Global Professionals