|Publications and Whitepapers|
Page 1 of 19
Procedure Guidelines and Controls Documentation December 11, 2005 © Robin Basham, M.Ed., M.IT, CISA, ITSM, CGEIT, CRISC, ACC
Want to implement your own Process Program? Contact EnterpriseGRC Solutions, Inc.. Try our FREE PROCESS ASSET LIBRARY
Sample Document for use as model for corporate process guidelines and procedures Content is protected by Copyright, ALL RIGHTS RESERVED
[This is a prototype for the benefit of persons seeking a model for an overall compliance program.]
Procedure Guidelines and Controls Documentation outlines how to create and modify procedures, work instructions, policies, and RunBooks as they currently exist in their correct location and format and as aligned to the requirements of document security.
Change control, information asset location, and documentation format standards are the combined responsibility of Security Management, Quality Assurance, and Process Engineering. In the context of creation, iteration, approval, and posting, the Process Librarian manages documentation.
Process Engineering manages quality over documentation as demonstrated by document templates.
Security Management defines policy and access rules for the recording, adherence to, and monitoring of procedures involving data integrity, privacy, and security across any enterprise-level configuration.
All changes, additions, and deletions to the production documentation library require management approval. Managers should notify Process Engineering of changes to production process.
The primary security elements of any document library management process are:
Documentation strategies need to:
|Last Updated on Thursday, 03 May 2012 17:29|
The GRC Buzz
Holistic Information Security Practitioner Institute (HISPI) welcomes EnterpriseGRC Solutions as member of their HISP Certification Board/Committee Read More
ITpreneurs is proud to name EnterpriseGRC Solutions as its newest certified partner. ITpreneurs and EnterpriseGRC Solutions will collaborate to increase Cloud and Virtualization concepts and controls, ISO 27001, COBIT and ITIL courses offered through EnterpriseGRC Solutions. “Every member of my organization has achieved at least one certification through ITpreneurs, and this is the second company that I’ve founded with that same promise. [...] It is a proud day, that we can be a part of ITpreneurs’ landmark efforts to bring forward CompTIA Cloud Essentials training and certification. - Robin Basham, Managing Partner.
Spontaneous Kudos - We've really been digging our digest from The Compliance Exchange
Partners and Client Information
Ryma Technology Solutions names EnterpriseGRC Solutions as an Affiliate Partner. More. Recent Wins: EnterpriseGRC Provides IS0 27001 Policy and SOA readiness for NetSuite Inc. EnterpriseGRC Solutions Sponsor to ISACA ITGI. Recent Partner Alignments include ITpreneurs, Control Solutions International
Request For Information? Please fill out our Wufoo form.