Quick Bytes: Governance best practices

Published on Security Management (http://www.securitymanagement.com)

By Peter Piazza

Print Edition Only:

Beyond Print?:

Weight:

Teaser:

Author:

Peter Piazza

Governance, risk management, and compliance (GRC) have become buzzwords since the passage of legislation like the Sarbanes-Oxley Act. But what exactly do they mean? And how should companies promote their effective use? A white paper from The Compliance Consortium, a year-old international group working to create GRC best practices, answers these questions. In the paper the group defines seven operational concerns, from establishing policies, procedures, and controls to implementing continuing process improvement. It also provides a dozen questions for board members and senior managers to consider.

@ Governance, Risk Management, and Compliance: An Operational Approach is at SM Online.

Attachment	Size
compliance_consortium0805.pdf [1]	187.34 KB

Comments

Security Management is the award-winning publication of ASIS International, the preeminent international
organization for security professionals, with more than 38,000 members worldwide.

ASIS International, Inc. Worldwide Headquarters, 1625 Prince Street, Alexandria, Virginia 22314-2818 U.S.A.
703.519.6200 | fax 703.519.6299 | www.asisonline.org

© 2013 Security Management
This site is protected by copyright and trade mark laws under U.S. and International law.
No part of this work may be reproduced without the written permission of Security Management.

Source URL: http://www.securitymanagement.com/article/quick-bytes-governance-best-practices

Links:
[1] http://www.securitymanagement.com/sites/securitymanagement.com/files/compliance_consortium0805_0.pdf