About Stephenie Buehrle

Stephenie is the “solutions” expert on the policyIQ team. With RGP since 2004, she designs and develops solutions that capitalize on the best practices of the hundreds of companies that she has touched, while tailoring each configuration to meet the unique needs of each client. Before joining RGP and the policyIQ team, Stephenie enjoyed working as an independent consultant in the non-profit sector. Stephenie also previously performed analyst services for a major brewer ranging from roles in biological and chemical services to analytical roles in business process improvement and innovation. Stephenie quips that she still doesn’t know what she wants to be when she grows up, but hopes to spend her days helping others (companies, individuals, and communities) to realize their full potential.

Not all roads lead to successful IPO

Welcome guest blogger, Jason Chiang. With RGP for nearly 8 years, Mr. Chiang has more than 20 years of experience and expertise in Audit, Risk and Compliance. He has consulted with a range of companies from financial services, biotech, manufacturing, healthcare and other industries. Mr. Chiang is a Certified Public Accountant (inactive) and Certified Internal Auditor. He has served on both sides of the house as a senior audit manager and senior auditor as well as a risk manager. It is evident that he understands the motivations and hurdles facing these organizations and approaches their complex issues with integrity and professionalism.

The following article was written by Jason Chiang (with editing support from Stephenie Buehrle). The approach and recommendations are his.


Not all roads lead to successful IPO

When a company approaches their initial public offering (IPO), it enters a very different arena. Having access to public funds, that is the retirement savings of Main Street USA, the company must meet quarterly SEC filing requirements. This is a significant amount of work. An investment in the people experienced with technical accounting, SEC financial reporting, and Sarbanes Oxley Compliance (SOX) evaluations combined with an investment in systems and tools to do the work efficiently and with completeness and accuracy is crucial to meet the filing deadlines.

One cannot audit all internal controls over financial reporting (ICFR). Thus, performing a SOX risk assessment is necessary to identify the significant accounts and their relevant assertions. If you happen to be one of these companies developing a road-map to your IPO, SOX may not be the place where you want to focus significant time and financial resources, but you realize that it has to get done. Be sure that you consider, at minimum, these critical components:

Risk Assessment                                  

A risk assessment is the process of identifying significant accounts and disclosures and their respective relevant assertions as they relate to financial statements. A properly done risk assessment will allow the company work smart by focusing its internal controls evaluation on the areas where there is a possibility of a material error.

The Risk Assessment must include:

  • Quantitative factors such as account balance, frequency of transactions, dollar value of each transaction; and
  • Qualitative factors such as complexity of related transactions, subjectivity of accounting rules over related transactions, and fraud considerations.
  • As business and risks change, the risk assessment needs to be updated.

Narrative                                                                

A narrative provides mid-level detail of the transactions and internal controls within a business process and includes who, how frequent, and in what location the transactions and controls are being performed. The initial creation of narratives provides the process owners an opportunity to revisit and reflect on the current processes, and make improvements for operational efficiency or control effectiveness. It is a written document that can be read by internal employees, internal auditors, and external consultants and auditors to gain a preliminary understanding of the process. As processes change, the narrative provides a format to document the change.

What critical things must be considered regarding Narratives?

  • The narrative should be written knowing that auditors will be a primary reader and will be looking for controls that mitigate risks.
  • When describing management review processes in the narrative, articulating how the manager gains assurance of the completeness and accuracy of the supporting evidence before signing off. If the manager is using judgment, describing the factors considered.
  • Narratives should be updated as changes are implemented in the organization. The updates should follow a workflow where there is a review process for significant changes.

Control Matrix                                      

A control matrix lists the controls the company has identified to mitigate risks. The control matrix serves as evidence that identified risks are mapped to controls which are to be evaluated for management’s assessment of internal controls. The control matrix also is a primary client document auditors leverage to perform their independent test of controls.

Take care to ensure that:

  • The controls in the Controls Matrix are mapped to risks.
  • The Controls Matrix is in a format where it is sortable or reportable by controls mapped to risks for test of controls purposes, and risks are mapped to controls for an evaluation whether risks are mitigated by controls.
  • Controls in the Controls Matrix should be labeled and provided an abbreviated title (10 words max) for ease of reporting and reference purposes.

Testing                                                                      

Testing is the evaluation of design and operating effectiveness of the company’s controls. The results of testing of controls provide company management with a baseline to that might have impacts to strategic and operational decisions. For publicly held companies, testing is an SEC requirement.

Critical considerations for testing:

  • Important, if deemed necessary, to be able to re-perform the actual control performed by the employee (e.g. for 3-way match of purchase order, invoice, and shipping docs, test that an employee had performed this and has evidence of such, rather than the auditor requesting the 3 docs and testing oneself).
  • When testing management review controls, cannot just accept sign-off, but need to understand the steps and judgments used by the manager, and test accordingly.
  • The documentation of testing should allow someone else to reasonably re-perform the testing. If testing is being relied upon by external auditors, then the breadth of documentation is more important. If not, not all needs to be retained, but should be readily retrievable when needed.

Certifications                                        

Control owners certify to the CFO and CEO that controls are operating effectively on a quarterly basis, and if not operating effectively, the remedial action plans. The control owners are held directly accountable for their controls as they are certifying to the top two officers of the company.

Recommendations for certifications:

  • The number and level of person certifying to the CFO and CEO should be carefully considered. The level should be their direct reports and one level removed to maintain the efficiency and integrity of the certification. If it is a larger organization, there can also be sub-certifications up to the senior manager level.
  • The certification questions should have a combination of checklist questions, as well as, open ended questions to encourage a thoughtful process.
  • Utilizing software for tracking, follow-up, and retention purposes is advised.

Depending on the number of people involved with the inputs into the various components, one might decide that performing and capturing the work in Excel is sufficient, while others might prefer utilizing a SOX tool where there are extra protections in version control while allowing multiple users to perform inputs simultaneously in multiple locations. A SOX tool may also provide management with options for review, analysis and oversight that are not available in Excel.

To avoid unexpected setbacks, be sure to plan enough time into your IPO readiness map for SOX evaluations. The initial SOX program development and implementation is likely to require six months and can vary depending on your access to subject matter experts. Coordination and alignment of the SOX efforts and objectives among the audit committee, senior management, process owners, and internal and external auditors is paramount for a successful implementation.


If your organization is approaching your initial public offering and you’re interested in learning more about how RGP can support you with subject matter expertise and a tailored technology solution to help ensure that you are prepared for your SEC filing and financial reporting requirements, reach out to us (Information@policyIQ.com, 412.263.3330) and we’ll connect you with our RGP colleagues near you!

This Audit Trail will Reduce Organization Liability

Many organizations have pockets of well-developed and maintained policies and procedures. Leaders in various business units might have overseen the development of certification processes (“I have read and understood the policy…”, “I have not observed fraud…”). Fewer, though, are the number of organizations that have a coordinated enterprise strategy on policies.

GRC 20/20’s Michael Rasmussen had this to say about a strategy on policies:

We could write a series of posts delineating how policyIQ provides powerful technology support for a coordinated enterprise Policy Management strategy. For this post, however, let’s focus on Rasmussen’s last sentence in the paragraph above. policyIQ houses a comprehensive audit trail comprised of a number of features that allow the history of changes and versions to be examined from a variety of perspectives.

Historical Review

Version History is retained on all policyIQ content. It is possible to examine exactly what was presented in any version at any point in the content’s history. Attachments to documentation (evidence, forms, supplier documentation, etc) are also retained for historical review.

Change History is even more specific than Version history. This feature of policyIQ tracks specifically who made changes to content, what change was made, and when—dating all the way back to the inception of the documentation.

The viewing history of each page in policyIQ is also tracked. Do you want to know if that employee or the external auditor accessed the content last week as was reported? policyIQ can tell you.

Certifications

The ability to create and tailor certifications, attestations, and questionnaires and to customize how they are made available or scheduled for delivery leaves endless possibilities for organizations wishing to gather information from employees (and third parties) on their commitments, agreements, observations, performance, opinions and on and on. The “Forms” functionality in policyIQ eliminates the risk that an employee’s response will be overlooked in the sea of email.

Reporting Capability

All of these changes are made evermore valuable with the associated reporting features. Do you want to know who made changes to Accounting policies in the most recent quarter? Maybe you escalate a monthly review of any Exceptions documented on Information Security policies. Can you easily identify all procedures, projects, divisions or positions that will be impacted by the technology that you’re scheduled to replace? Yes—with policyIQ, you can.

Snapshot at a Point in Time

And if all of that wasn’t enough, policyIQ also allows organizations to schedule the capture of a complete backup of their database, called a Snapshot, containing all data at the time the Snapshot was captured.  Snapshots are a free benefit to policyIQ clients. While it is not common, it is an invaluable service to be able to present and review content as it was two years ago on that day in May, let’s say. For a small fee, clients also have the option to request an electronic extract of all content from their policyIQ site that they may provide in the event of an investigation or audit.

Safe and Direct Access

If the need presents itself, it is possible to provide investigators, auditors, litigators or other specified parties with direct access to your policyIQ site. This type of access would allow them to review documentation in the application and save on legal fees or administrative fees for copying or making information

RGP has received positive reviews for the breadth and depth of the audit trail provided in policyIQ. And while we have a number of testimonies to value that these features and services have yielded for various functions and divisions of our clients, that value is exponentially greater when applied enterprise-wide.

Maybe we’ll have to circle back to talk more about Michael Rasmussen’s related blog post and how policyIQ can help you to combine Case Management and Policy Management without sinking a huge investment of time and money into a big GRC platform. RGP has you covered with the subject matter expertise and technology there, too. Feel free to reach out to us directly if you’d like to know more or explore your options sooner than later!

How many spreadsheets are you trying to manage for ASC 606?

RGP is hearing from Public and Private companies who are working to get a handle on their Revenue Recognition compliance efforts. As with many new initiatives, most of those tasked with the responsibility of rolling out a contract review process began with authoring the process in Excel. This particular process, more than some, requires a number of people with varying technical skills and technical accounting expertise to work through a long checklist or multiple spreadsheets full of questions and considerations. And, like many others, these teams are racked with frustration over the common ills of spreadsheet-based processes:

  • Almost as soon as the tool is put to use, the version is out of date and the data does not reconcile with other versions.
  • It is difficult to track and understand which version is the latest or the “best”.
  • Often, spreadsheets are not properly secured and suffer unintended changes.
  • Changes to data attributes in the spreadsheets can have significant impact on conclusions.
  • Sharing and communicating lessons and conclusions is a massive and disjointed effort.
  • It is difficult to roll-up the results from multiple spreadsheets for analysis and reporting to management and auditors.
  • If multiple people must work in and make adjustments to the spreadsheet, it can be remarkably challenging to trace the changes back to the appropriate party.
  • It is virtually impossible to dictate order of responsibilities and to consistently communicate and enforce an approval process.

RGP has a few remedies that can help you to treat or avoid these ills.

Private Companies –  RGP has a proven Revenue Recognition solution that can help companies from your early assessment through planning how you will fill gaps in policies and systems and can aid your team with the implementation of agreed upon solutions, controls, policies and associate training and communication.

Public Companies – Those who worked to tackle ASC 606 compliance on your own in year one can certainly still call on us to evaluate your program and to identify and guide you to address and close gaps.

All Companies can take advantage of RGP’s proprietary tool, policyIQ, to remedy the ills associated with spreadsheet based processes. Companies have the option of

  1. leveraging the flexible and configurable policyIQ to automate your own checklist or questionnaire or
  2. you can adopt the RGP solution with pre-built templates that guide the reviewers through the contract review process.

In either case, you can put your spreadsheet worries to rest and bring centralized access, version control, workflow, reporting for analysis and management review to your Revenue Recognition program.

Contact us to learn more about our technical accounting expertise, project support, and proprietary technology: support@policyIQ.com.

Suffering low morale and a disconnect between executives and those doing the work every day?


 

 

 

 

Art Weeast has helped a number of organizations to “think beyond the task of documenting policies and procedures to the intelligence of the information that is in those documents.” In other words, think of the value or purpose that the documents serve. One of his objectives, as he trains organizations on how to create valuable documentation, is to “keep what’s in it for me, from the end user’s or the employee’s perspective, in mind as you develop content”. The end user and all stakeholders might consider, “What problems and questions can this documentation solve?”

To demonstrate the application of Process Intelligence practices (as Mr. Weeast termed his work), consider three common problems:

  1. Employees and Management do not value the documentation (mainly the procedures).
  2. Work tasks are not clearly connected to executive priorities.
  3. Business Units/Departments/Functions do not collaborate on cross-functional processes, often leading to tension and decreased productivity.

With Art Weeast’s help, let’s tackle each of these problems one at a time.

The problem faced by many (maybe most) organizations: Employees and Management do not value the documentation.

Consider how you can make your documentation useful. Follow this three step process:

  1. Set a course to establish more comprehensive documentation. Rather than tracking just the steps of the procedure, frequency, who performs…think of all of the everyday business questions that come up related to the procedures. Add Roles and Responsibilities, Applications Used, Definitions, Procedure Input and Output–these fields will help you to address common problems. Read further to see how.
  2. Make it easy for process owners and your front-line doers to capture the documentation. You don’t have to complete the fields in consecutive order. Starting with the procedure, then considering what leads into the procedure and what the outcome of the procedure is before moving on to the purpose and other data is a much easier thought process.
  3. Make use of the intelligence that is inherent in your documentation to solve business problems. With updated, comprehensive procedures, you can address common problems…effectively and efficiently!

Put your information to work for you!

Another common problem: Work tasks are not clearly connected to executive priorities. 

The front line doers, on a day to day basis, do more repeatable processes than executives do. At the executive level, it is unlikely that you will see procedures. This is the root cause of the disconnect between the tasks and executive priorities. It’s no wonder that executives generally don’t feel the value of the documentation and therefore, the employees don’t feel the priority from the executives to create and maintain the documentation. So, per human nature, documentation becomes an unwelcome task to do, and usually it is tackled at the last minute with a mad rush to get it done.

The solution?

Help your organization to establish the connection between top priorities of the business and the tasks that hardworking employees carry out day after day.

A master at translating the complex into simple steps, Art Weeast developed a method for creating this connection. He calls it an Operational Map. To build your Operational Map you will:

  • Interview the Business Owner and document Primary Functions and Sub-functions from her perspective
  • Prepare List of Procedures for each Process Owner’s Area
  • Create a visual representation of Functions and their related Sub-functions
  • Map Procedures to related Sub-Function by playing “Operational Bingo” with Process Owners—you hold and call out the Procedures while she identifies the related Sub-function.
  • Validate the mapping with the Business Owner.

The result?

  • Executives come down to a level that they rarely visit—they better understand what it takes to get things done! They begin to appreciate the value—and the NECESSITY—of the documentation in a more highly regulated and complex world.
  • Process Owners (the everyday do-ers) appreciate the collaboration with executives. They sense the tone from the top and the priority becomes clear. The do-ers begin to understand the bigger picture—the risks that the organization faces and the importance of what they’re being asked to do. And they are very curious about what other departments do!

The final problem we aim to address: Breakdown in cross-functional processes.

Frustrations build in an organization when communication and collaboration breaks down or does not exist among certain parties. You can tell this is happening when you or others can easily blame someone for inadequate, inconsistent or untimely inputs into your process—or others who put disruptive demands on you to produce an output with a nearly impossible delivery date and provide inadequate information needed to meet the demand. It is natural for all of us to personalize the process under these circumstances.

The art of establishing collaboration among cross-functional parties can be reduced to four main steps. The following steps serve to “de-personalize” the process and issues, and allow parties to focus on the desired end result.

  1. Meeting: Bring functional representatives together for a collaborative process review mediated by a neutral party.
  2. Current state: Have them describe the standard process; first without the history, exceptions or problems. Then revisit the standard process with issues.
  3. Future state: What does it look like? How is it better?
  4. Transition state: Outline steps to get from where we are today to where we need to be.

Think about what’s happening here. Typically, if anyone ever does dare to address the communication breakdown among parties, what do they typically do? They work to identify the issue(s) and to problem solve against those issues. The process outlined by Mr. Weeast, an expert in operational and change management, takes an opposite approach; helping parties to very quickly begin working together effectively.

Applying these practices outlined by Art Weeast results in an efficient and effective organization that can:


Art Weeast has decades of impressive experience in enterprise-wide leadership, technology & data expertise, Lean Six Sigma methodologies, organizational change management, and in defining and refining operational processes. Art has been a client of policyIQ with three different organizations. When I met Art, I had been involved in the work of streamlining, refining, re-engineering, and automating processes for many years, myself, and—while it was my responsibility and mission to help him in any way that I could to solve his organization’s business problems using our software—I was forever changed by what he taught me!

This post was originally shared following a policyIQ-sponsored webinar in which Mr. Weeast shared his Process Intelligence practices. The policyIQ team continues to share the lessons of his Process Intelligence session year after year. If you’re interested in more information or hands-on support with applying Mr. Weeast’s methodology, reach out to us and we’ll connect you with the appropriate tools, information, and resources!

Support@policyIQ.com, 866.753.1231

Enterprise-wide GRC made more powerful *and* simple with our new list fields!

By now, you likely are aware that policyIQ is a flexible GRC platform that can be easily configured and customized into various GRC and other solutions. One of policyIQ’s strengths is the ability to tailor security at a broad and granular level allowing organizations to implement policyIQ in many areas without stepping on each other’s toes, so to speak. Because of this security capability, with our user-based pricing (rather than the common software model of pushing multiple products or add-on modules), our clients have long been able to leverage policyIQ throughout the organization for multiple initiatives at a reasonable cost.

The latest release of policyIQ includes features that support robust enterprise-wide applications of policyIQ for a range of initiatives. In the past, users in different areas of the organization would create a folder, manual, dropdown or multi-select list to track different critical pieces of information pertinent for their documentation. And while this setup could have been perfect for the audit team’s testing documentation, the same location list, for example, would have to be recreated by the technical accountants performing ASC 606 contract reviews. That was then. Clients leveraging policyIQ’s version 7.8 are able to create and manage Global Lists that can be shared across the organization. If your list of Field Offices is leveraged in various types of content throughout the organization, it can now be centrally maintained and updated rather than having to be updated in several department-specific templates.

Similarly, clients historically had to create independent dropdown fields to track people or responsibilities in their content (i.e. Control Owners, testers, contract reviewers). Now, the lists of users created under Groups and Users and established as a part of user profiles can be leveraged as fields within templates. Once and done.

Here are more examples of where this might be pertinent to you. If you have fields or folders tracking these things and would like to save time and sanity managing them, we recommend looking into the new shared fields (Global Lists, Users Lists):

  • Currency
  • Location
  • Revenue Stream
  • Process Area
  • Business Unit
  • Control Owners
  • Significant Accounts
  • System Applications
  • Relevant Compliance Area
  • Prepared By

Of course, reach out to us if you have questions on how to make the adjustments to your policyIQ site.

Do you consider your organization to be agile?

  • Has your organization recently engaged in merger or acquisition activity?
  • Was a valid and somewhat likely risk of financial statement misstatement discovered?
  • Has your organization recently become subject to Sarbanes Oxley requirements?
  • Did your auditor advise you to formalize your FCPA program?

If faced with one of these (or another) critical governance, risk, and compliance issue, are you prepared with appropriate subject matter expertise and systems to respond? Because you are here and these are examples of circumstances where RGP and our GRC Technology (policyIQ) excel, you are prepared, now!

With more than 70 wholly owned offices around the globe and professionals with 10-20 years’ experience and expertise in a range of subject matters, RGP is prepared to hit the ground running. What our clients quickly learn is different about us is that we build long-term, trusted partnerships by engaging top talent to impart knowledge and expertise—leaving our clients’ employees better equipped while meeting the business’ objectives. Rather than a binder, we leave you with a job well-done and a reliable contact for future reference.


 

 

 

Dictionary.com defines agility as “the power of moving quickly and easily; nimbleness”. GRC Analyst, Michael Rasmussen, says that agility in a GRC technology provider also means being “adaptable to a changing business environment.” Here are some of the characteristics of policyIQ that allow our clients the flexibility to quickly adapt to changing needs:

  • Easy to setup and implement (average 4-6 weeks—rather than months or years)
  • Familiar look and feel means little to no training required for users
  • Flexibility to customize configuration as needs change (in your hands)
  • Security control allows multiple entities, departments and priorities in one platform
  • Affordable to implement enterprise-wide for a variety of solutions

The greatest testimony we have to policyIQ’s flexibility is our clients! While policyIQ started in Policy Management and Risk and Compliance plus certifications fifteen years ago, our clients began applying the easy-to-employ technology for things like Account Reconciliation Management and Capital Appropriations Approvals.

Click to zoom in and check out a sample of our clients’ policyIQ applications:

Are you tasked with having to respond to changing business needs? Are you interested in seeing solid improvements and results in about a month? Of course, you are! Reach out today: Info@policyIQ.com, 866-753-1231.

Need help getting a handle on your lease data?

The consensus is that the task of data collection to implement the new accounting standards is a daunting one.

Where are you at in your leases project? Have you settled on a lease accounting system? Do you have a plan for how you will gather all of your leases and begin pulling the critical data together? How confident are you that you’ve identified all of hiding places in your organization for the lease information including shared folders, binders, SharePoint sites, filing cabinets, spreadsheets, George’s desk, and even camouflaged within other agreements?

One thing we can be confident about—if the new accounting standards have highlighted your organization’s critical need to better manage all of your contracts and agreements, you’re not alone.

Of course, I’m about to tell you that we can help!

  • policyIQ is centrally accessible and easy to populate—helping you to bring order to all of your decentralized structured and unstructured lease data.
  • Easily customize templates and standardize the approach to capturing lease data (and complement your lease accounting tool).
  • Use reports within/across leases to examine data and identify gaps.
  • Customize workflow and leverage policyIQ’s secure platform to request specific data from specific individuals and fill gaps.
  • Attach reference materials or supporting documentation, as needed.
  • Customize policyIQ for each area to store executed leases and track lease data on an ongoing basis.
  • Simplify oversight for management review at a high level.
  • Implement controls and data governance providing evidence of entire data collection process and resulting data.

And if you’re not sure that you have adequate leasing talent on staff, RGP can support you with subject matter expertise to lead and/or support your team and ensure successful implementation of the new standards. If you haven’t worked with us in the past, what you will experience is a different level of professional partnership. We will transfer knowledge and leave your team better equipped to address challenges that arise in the future.

Contact us to learn more about our talent and technology to support your data collection, contract review, compliance, audit, policy management and other initiatives. We’re looking forward to working with you!

RGP engaged with audit professionals in Orlando


The policyIQ team joined our RGP colleagues at the Institute of Internal Auditors’ 2017 General Audit Management (GAM) Conference in Orlando, Florida on March 20th-22nd. Once again, this was a great event packed with learning and networking opportunities!

Representatives from RGP included:

The conference was attended by more than a thousand audit professionals and we were only able to speak to about 200 of them. If we didn’t get to have a conversation with you, here’s what might have transpired had we connected:


The conference sessions inspired some great discussions!

We carried on the conversations started by the keynote speakers and others. We talked about the hats that auditors are asked to wear, the importance of the internal audit function and profession, and the value of independence, maintaining integrity and having the courage to do the right thing against, sometimes, great personal risk. With integrity being among the core values at RGP and 20+ years’ experience serving as a professional services firm in this field, we are charged by discussions in this vein and by the opportunity to encourage our clients and peers in the audit profession.

We talked about how the times have changed. Once upon a time, we recognized that not all companies were performing regular risk assessments and we were encouraging them to get started with annual risk assessments. In the last few years, we see that the demands of business, technology, competition, culture and so many more are requiring companies to be more nimble and to both assess and respond to risk on a continuous basis. We participated in discussions around what it takes to be prepared and resilient in these times and how RGP’s Data Solutions practice can help companies to better collect, manage, secure and leverage their data.

Cyber security was a hot topic again this year! We discussed the struggles that some companies experience in identifying and developing the necessary expertise to address the present and growing need to address cyber security. We heard that companies are looking across various functions to address their security concerns. RGP’s maturity in integrated solutions, leveraging expertise across information security, audit, data solutions, process improvement (and more) allows us to be responsive, provide a high quality service and to tailor comprehensive solutions to each client’s needs.


We shared our story…how RGP and policyIQ stand out from the pack.

Another theme in our conversations with other professionals at GAM: how RGP is different. There’s certainly no shortage of consulting firms and technology providers at these things, right? The vendor hall can be a little bit intimidating for the introverts among us. At the RGP booth and throughout the conference, we worked to jump quickly to how we at RGP and our GRC Technology are different from most others.

Our consultants have 10-20 years’ experience. They are true subject matter experts who can lead your initiative or project and work alongside your team with valuable knowledge to share and teach. Rather than the checklist approach, our consultants build tailored solutions and collaborative partnerships. Remember the mention of integrity being a core value? We have a track record of long-term, trusted partnerships, evidenced by a 100% retention rate of our top 50 clients.

RGP also has 70+ offices around the globe—these are our offices, not affiliates. This means our people, our culture, and our standards; therefore, we deliver consistently high quality results worldwide.

And our GRC technology, policyIQ, packs a powerful punch in a nimble and affordable, centrally accessible platform. We serve companies from risk assessment through compliance initiatives, testing, reporting of findings and remediation like many other enterprise GRC tools. We also provide solutions for ASC 606 contract review, lease data capture, contract administration, policy management, automation of evidence request and collection, 302 certifications, legal and data room, support for integration with mergers and acquisitions, account reconciliation management and many more ALL IN ONE TOOL. It’s a matter of security configuration (part of the information governance planning that we guide you through as a matter of course at no additional charge). People find it amazing that they can do so much in one easy to use tool.

What’s more, a solution or initiative can be implemented in policyIQ in 4-6 weeks—not months or years, like most other products. And policyIQ is so easy to setup and use that NO IT RESOURCES ARE REQUIRED. We like to include and engage IT in the early conversations because a company can better leverage policyIQ for various departments and initiatives when the IT department includes it among their suite of solutions for their stakeholders. (Pssst—it saves time and money for IT departments, too!)


Next year, we’re going to have the biggest booth and the loudest parties!

Just kidding. You know, I often start off feeling a little bit small at these huge conferences. We don’t have the biggest booth or the most extravagant events to woo attendees to come and visit with us. (Although we heard from a bunch of folks that we did have the best swag this year with our super cool phone charger pens.)

Still, every year, I leave energized!

We deliver excellence! We have amazing clients and valuable partnerships and we build on them every year. I don’t have to feel pressure to be bigger and flashier to land sales. The truth of who we are and what we have to offer at RGP holds tremendous value, builds solid relationships and is a great story to share.

If we didn’t get to shake hands at GAM or elsewhere, yet, and you’d like to hear the good news first-hand, please reach out to any of us. We’d love to buy you a cup of coffee and learn about your business issues that we’ll help to remedy.

 

 

ASC 606, can your contract review tool do this?

Spreadsheets, email, shared network drives…

…this is where most of our critical work starts! With the deadline to comply with the Revenue Recognition Standard now in our sights, many of your corporate accounting peers have met the harsh reality that these commonly used tools are not meeting their contract review needs. Disconnected spreadsheets do not keep their reviewers in-step with each other’s developments. They are habitually shared via insecure channels and we often find, even with the best of intensions and development, breakfreelists, formulas, and formatting within a spreadsheet can be compromised resulting in an unreliable tool. Aggregation of data for analysis and consolidation of conclusions for management review are nearly impossible feats with dozens (or, certainly, thousands) of manual spreadsheets.

For those of you who are relatively new to the policyIQ community, you might not have heard that policyIQ has been a constant in the RGP toolbox, serving to solve our clients’ problems for nearly 15 years.  We don’t make commission on software sales and are not incentivized to upsell you or to sell you a new tool or module. In fact, we work hard to make it possible to serve all areas of your business within one platform—we don’t have extra modules to sell you!

The flexibility of policyIQ to be easily customized for various initiatives has made it possible for our clients to hit the ground running in applying our web-based technology to their pressing Revenue Recognition needs.

A company may utilize policyIQ for the full contract cycle or simply as a contract repository, centralizing access and simplifying assignment of contracts to reviewers for ASC 606 analysis. In addition to guiding the reviewer through the 5 Steps outlined in ASC 606 required for each detailed review of contracts that are in scope, policyIQ also provides a place to document evidence of the reviewer’s considerations and tools to leverage that information for necessary analysis. Key conclusions from each step are automatically pulled out into a summary. Reviewers add final notes to the summary and systematically route all related content for review and approval, as desired and customized for each client.

piq_benefitsforrevrecThe ability to report on results of contract reviews in aggregate gives way to analyses not possible in spreadsheets. Look across all Performance Obligations by Revenue Stream, Geography, Business Division, Over Time vs Point in Time, Sales Channel, or Reviewer, for example. Reports also aid in the management of contract reviews—in the assessment phase and with ongoing reviews. Report on issues as they are being identified, assignment of contract reviews, progress of reviews, and impact of the standard on various divisions or revenue streams. Use reports to easily identify those contracts that warrant follow-up action.

plansforleasesWe delivered many new features in 2016 and some were developed specifically to sharpen the Revenue Recognition solution. We are wrapping up another release for spring and have an impressive road map that will go into development while the spring release is undergoing formal testing. And did you hear that upgrades are included free-of-charge?

We’re here to serve and grow with you.

Can you say that about your Revenue Recognition tool? Reach out to schedule a tour of policyIQ’s capabilities for ASC 606, compliance, audit, policy management or your other pressing information management needs!