Let us help you manage the development, hand-offs, review and approval of your GRC content more efficiently! Have you designated the parties responsible for updating your Process Narratives and Control documentation? Do you have a process defined for who captures testing details and who performs the final review of audits?
The workflow features in policyIQ support multiple levels of authoring, reviewing, and final approval by individuals or groups, such as one of two line staff or any of 3 auditors. These features allow you to institute your expectation for updates and hand-offs so that those actually responsible for performing various duties are prompted by the system to properly wrap up their work and to establish a defensible audit trail with appropriate documentation and evidence.
Is your team utilizing the Check-in/Check Out capability to collaborate with fellow contributors? Have you added external auditors and other stakeholders as Viewers on your documentation? Rest assured that Viewers will have Read-only access only after your content has completed your designated approval process.
We are standing by ready to talk through your options on how to transition from manual maintenance to automated workflows. It’s 2019! Time for a fresh start and more efficient and effective processes. Talk to you soon!
Is your organization still struggling with manual audit processes? Do you have audit projects, past audits, and workpapers strewn about in various shared network folders (or worse, on various hard drives)? Do your auditors have to rely on email to collaborate and share documents? How about your naming convention—has your audit group standardized the way that documentation is labeled to help you to keep the information organized and easy to reference? Speaking of standardization, have audit processes been standardized across the organization or does each location or division manage their own audit program? And what would you say about your review and approval process? Is it clearly mapped, followed, and approvals communicated? Are audit findings routinely rolled up and reported?
RGP’s policyIQ addresses each of these challenges so that you can realize more effective and efficient management of your organization’s audit function. Leverage predefined Templates, Folders, Workflow, Reports, and Audit Trail for your compliance, audit, or policy management documentation. It is also simple to customize the structure to accommodate ongoing changes or characteristics that are unique to your organization, program, or team.
Configuration adjustments are at your fingertips. You do not have to reach out to a support desk or technical team to add templates for specialized workpapers, IPEs (Information Provided by Entity), or for your PBC (Provided by Client) process. Adjustments can be made directly by users authorized in your organization. If you haven’t yet incorporated those templates into the flow of your work and want some help getting them set up, we do have support and configuration specialists who are happy to walk you through the setup of your custom program.
We expect all of RGP’s policyIQ audit clients to be enjoying these benefits in your audit program:
Consistent enterprise-wide audit process
Centralized access to workpapers and IPEs
Simplified administration of PBCs and audit process
Ability to easily locate and leverage audit templates/projects and previous audits
Streamlined communication among management, auditors (internal and external), and approvers
Real-time monitoring capability and status reporting
Simplified management and audit committee reporting
We’re ready to help you reach your goals!
Whether you are an existing policyIQ user or a new one, we want to help you to improve and automate your audit program. Perhaps you are new to the administration of your site or you are not sure how to make adjustments to the configuration of your site’s templates or structure. Reach out to us and we’ll be happy to help you get started or to optimize your implementation. Support@policyIQ.com.
Are you paying employees to inventory email responses or spend hours in update meetings to accomplish tasks that can be automated? With the application of policyIQ forms, your employees can take back time that was spent on tedious tasks and focus on work that matters.
If your team is still using Word, Excel, and email to manage 302 Certifications, Control Self Assessments and Narrative Reviews, they are engaging in the frustrating task of having to inventory the responses from their inbox and then babysit and pester people to complete their work. As responses do arrive, they evaluate who they’ve heard from, who hasn’t responded, and evaluate whether/which follow-up activities are warranted. They are likely also having to pull together routine assessments regarding the status of responses to share with management and others.
Before anyone invests another minute on the effort of pulling together the Narrative Reviews for next quarter, contact us to help your team realize these benefits right away:
Simplified roll-out of questions/certifications each quarter
Easy access to real-time information for monitoring of status
Automation of reminders going out to outstanding respondents
Automated compiling of results
Effortless reporting for management
There are lots of products out there that will set you back $50-$500k annually that promise efficiency gains in your compliance processes. For a fraction of that cost, we’ll deliver on that promise in a matter of weeks—not months or years. Work smarter. Spend smarter. Contact us today to schedule your configuration session.
Soup to nuts—or Risk Assessment to Review of Evidence, we are ready to help you make your 2016 Sarbanes Oxley compliance work more efficient than ever! You will notice that we have another post this month that talks about rolling forward last year’s SOX work to create the baseline for your 2016 work. Some of you might not want to repeat last year’s work. Maybe you didn’t use policyIQ last year or you’d like to make improvements on what was done in previous years and take advantage of all that policyIQ has to offer. We have some tips and tools to help you:
Risk Assessment – We previously shared a sample template with you that you might want to implement for 2016. If you already have your Financial Statement Risk Assessment complete, we can help you with your plan to import and tie the results of that assessment to relevant assertions and controls. Capturing the full cycle in one place will not only help your organization to be much more efficient, it will also save time and money when your external auditors are looking to connect.
Link related compliance elements and utilize various reports to monitor progress, analyze performance, and stay on top of your program. We have lots of ideas about SOX reporting. Check out you online Help manual and this post for some ideas.
Automate supporting processes – are you still using Word, Excel, and email to manage your 302 Certifications, Control Self Assessments and Narrative Reviews? One of the most frustrating parts of this work is having to inventory the responses and pester people to get their work done. You can literally perform the setup of these tasks one time and then consider it complete forever after using policyIQ’s Forms functionality to automate the inventory and reminders.
Grant External Auditors access to only that content which you want them to see! Have you done this yet? I recall being scolded by a client who told me that we don’t brag about this benefit enough. He felt that he could have saved a significant amount of time and money over the years and wished he had granted their external auditors access much sooner. It’s really easy to bring them into the fold and show them only what you want them to be able to review. Here’s how.
We hope that this list of resources is helpful to you or at least has you thinking about things that you’d like to manage more efficiently. We often work with people who feel like they just don’t have time to figure out how to save time! We get it. That’s what we’re here for! If you don’t have time to read posts and play around in policyIQ, but want to realize the benefits sooner than later, reach out to us and we’ll walk you through some simple adjustments that you can make to gain relief and command over your information right away!
Sounds like a fairy tale, right? The best part of the story is that it is true! Every story has to start somewhere. And, like all great stories, the potential “beginning” for a policyIQ client can look different from one company to the next. The majority of policyIQ stories have started in the areas of compliance or policy management, but some have jumped right into the plot twist from the beginning with a launch in automation of certifications, account reconciliations, or contract management.
Wherever you started, it is simple to take your story in any number of directions and realize more and more efficiency by automating processes that relate to your work. It is as simple as ensuring that you are capturing necessary information in your Page or Form Templates or, in some cases, adding a new Page or Form Template and using links and reports to oversee and analyze relationships from one process to another. Here are some examples of how your story could play out:
Add a “Position Responsible” field to a “Procedure” Page Template. The ability to quickly create a complete Procedure Manual for any position greatly expedites the onboarding process of new employees.
Add a new Page Template to keep track of all of your Systems and related critical information such as versions, ownership, contracts/terms, and the like. Create a link from each of your procedures to any of the relevant Systems pages and easily identify all procedures, positions and departments that may be impacted by system changes, upgrades, downtime or retirements.
Give your auditors a one-stop shop by keeping the results of your Financial, Operational, Fraud and Enterprise Risk Assessments in policyIQ. You can then capture the identified risks alongside your controls, tests, evidence, issues and remediations.
Quarterly review of compliance documentation (Process Narratives, Procedures, Controls) can be made more efficient using Forms. Associate questionnaires with the content, assign to responsible parties, automate reminders and monitor real-time information on who you have heard from and who you have not. You can do all of this while also noting any outliers in the report results that are emailed to you weekly (or on whatever interval you desire).
It’s a little bit like the Field of Dreams story…“if you build it, [they] will come”. Consider all of the different places that you go to search for information or to complete a process or task, then create the opportunity to make the next search more efficient by building it in policyIQ. If you’re not sure where to begin, reach out to us (support@policyIQ.com) and we’ll be happy to co-author or write the introduction to your next best-seller.