The Impact of Auditing on Records Management Risk and Compliance Susan B. Whitmire, CRM, FAI Manager, Enterprise Records and Information Management BlueCross.

Slides:



Advertisements
Similar presentations
Why an international standard on Record Management?
Advertisements

Fe Angela M. Verzosa1 Effective Records Management.
2009 Data Protection Seminar
Introduction to Records Management Policy
Presentation by Priyanka Sawarkar
What is GARP®? GARP® is an Acronym for Generally Accepted Recordkeeping Principles ARMA understands that records must be.
E-Commerce and Evidence: Standards for Recordkeeping in the Electronic Environment Quick Start Program World Bank May 22, 2001 Michael L. Miller, Director.
Records Management for UW-Madison Employees – An Introduction UW-Madison Records Management UW-Archives & Records Management 2012 Photo courtesy of University.
Alaska Chapter of ARMA International Presented by: Dawn Kewan, ARMA Board Member & Treasurer February 6, 2014 Based on Generally Accepted Recordkeeping.
How a Large Company Used the Principles to Establish its Corporate Information Governance Robin Woolen, MBA, IGP President / Principal.
Effective Information Governance Legal Tech Asia Technology Summit March 3, 2014 Marilyn Bier, CEO ARMA International.
John L. Baines OIT Security and Compliance Retention: Preserving Public Records.
Records Management What to Keep and What to Toss.
Coping with Electronic Records Setting Standards for Private Sector E-records Retention.
EDiscovery and Records Management. Records Management- Historical Perspective- Paper Historically- Paper was the “Corporate Memory” – a physical entity.
1 ELECTRONIC MAIL RETENTION & DISPOSITION D. Dawson, CRM State Records Manager Dept. of Education & Early Development.
Developing a Records & Information Retention & Disposition Program:
1 E-Discovery Changes to Federal Rules of Civil Procedure Concerning Discovery of Electronically Stored Information (ESI) Effective Date: 12/01/2006 October,
ISO 17799: Standard for Security Ellie Myler & George Broadbent, The Information Management Journal, Nov/Dec ‘06 Presented by Bhavana Reshaboina.
Author(s): David A. Wallace and Margaret Hedstrom, 2009 License: Unless otherwise noted, this material is made available under the terms of the Creative.
RECORDS MANAGEMENT City of Oregon City “ That was then… this is now!”
Kevin M. O’Sullivan Head of Records Management Texas A&M University Libraries An Introduction to Records Management.
Caroline J. Walters, MA, MLS University Records Officer.
The Principles: How we incorporated them into our Business Process by Lawrie Barroner.
Grant S. Cowan Information Management & eDiscovery Practice Group.
Class 14: Information Governance Jason R. Baron UMD Seminar on Ediscovery LBSC 708X/INFM 708X May 3, 2012.
Why Information Governance….instead of Records & Information Management? Angela Fares, RHIA, CRM, CISA, CGEIT, CRISC, CISM or
ECM and Compliance Marcelle Blasl ECMm² (AIIM)
Creating and Maintaining Proper Systems for Electronic Record Keeping
1 EDMS 101 Speaker: Monica Crocker, DHS EDMS Coordinator Overview of current project(s) Objective of this section: This session outlines EDMS fundamentals.
1 The History of Records Management Part 1 The Sumerians, Incas and the Dead Sea Scrolls.
Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.
Mary Ott RIM Specialist NE SOS-Records Management Division March 20, 2012.
Records Liaison Training City of Oregon City. The Role of Records Liaisons As Records Liaison you will:  Be your department’s “point person” for records.
Principle of Protection By C’Les Jensema About ARMA International and the Generally Accepted Recordkeeping Principles® ARMA International (
Generally Accepted Recordkeeping Principles Generally Accepted Recordkeeping Principles ® Registered Trademark of ARMA International.
RECORDS MANAGEMENT Office of Compliance. OBJECTIVES Four main objectives of a Records Management Program: –Increase efficiency of record keeping. –Protection.
Ecords Management Records Management Paul Smallcombe Records & Information Compliance Manager.
Assess Your Organization's Information Governance using the Generally Accepted Recordkeeping ® Principles September,
Records & Information Management (RIM) Risk: Is Your Company Exposed? March 19, 2013.
Records Management Is Not an Option Anymore
M a k i n g w o r k e r s ’ c o m p w o r k ® Content Management & Records Retention “A RIM Perspective” Nancy M. Maglothin, Records and Information Manager.
Presented to AIIM William Penn Chapter Meeting 5/13/08.
1.Summary of Needs Analysis 2.Summary of Action Plan 3.Systems Analysis between Microsoft SharePoint® and OpenText Content Server 4.System Recommendation.
An introduction to records management at Clemson University Records Management Office 139 Anderson Hwy, Suite 100 Clemson, S.C
ILTA – Insight 2007 E-Disclosure --Preparing for Compliance-- Moderator: Sally Gonzalez, Director, Navigant Consulting, Inc. Panelists: Oz Benamram, Director.
Information and Records Management INFM 718X/LBSC 708X Seminar on E-Discovery.
1 Records Management Organization The Committee provides guidance on operating the company’s records management program.
All Employee Basic Records Management Training. Training Overview 1.Training Objectives 2.Clark County RIM Program 3.Key Concepts 4.Employee Responsibilities.
An introduction to records management at Clemson University Records Center is located at the Library Depot 103 Clemson Research Blvd Anderson, S.C
Generally Accepted Recordkeeping Principles Generally Accepted Recordkeeping Principles ® Registered Trademark of ARMA International.
Generally Accepted Recordkeeping Principles: The Principle of Transparency Alaska Chapter of ARMA International Presented by: Tara Carey, ARMA Board Member.
A New Standard for Disposal Mark Crookston Senior Advisor Appraisal Government Recordkeeping Group.
Checking and Corrective Action EPA Regions 9 & 10 and The Federal Network for Sustainability 2005.
RECORDS MANAGEMENT Office of Business Affairs. OBJECTIVES Four main objectives of a Records Management Program: –Increase efficiency of record keeping.
Information Resource Stewardship A suggested approach for managing the critical information assets of the organization.
Records Management: An Introduction LBSC/INFM 708X Dr. Jean Dryden 2 February 2009.
RIM Presentation Records & Info Management by Sandra M. Taggart.
Maximizing the Value of Information Information Governance As A Strategic Framework Presenter: Margaret Hermesmeyer, MLIS, IGP, CRM Division Chief Information.
Presenters: Margaret Hermesmeyer, MLIS, CRMKevin Waldrup, MBA, CRM Chief, Records Management Division Records Management Administrator Office of the Attorney.
ARMA VI - NANAIMO 2016 David Young Records Management Archivist University of Victoria Electronic Records as Documentary Evidence CGSB‐72.34‐2015 (To supersede.
UW-Madison Guidelines for Managing the Records of Departing Employees*
RECORDS MANAGEMENT Judith Read and Mary Lea Ginn
Leveraging the Data Map – A Case Study November 15, 2016
Records Retention and Disposition Naugatuck Valley Community College
Records Management Program Deliverables
RECORDS AND INFORMATION
Information Governance Part 2
IUC Records Retention Tool: Zasio’s Versatile Retention
CGSB and Electronic Records
Presentation transcript:

The Impact of Auditing on Records Management Risk and Compliance Susan B. Whitmire, CRM, FAI Manager, Enterprise Records and Information Management BlueCross BlueShield of Tennessee

Agenda Definitions Risks Compliance Auditing

Records Management Definitions Records and Information Management Generally Accepted Recordkeeping Principles ISO Retention Schedule

Definitions - RIM Records and Information Management Systematic control of all recorded information an organization needs to do business. creation, maintenance, use, preservation, protection and disposition information may reside on various forms of media RIM is designed to support the records management requirements of business processes and to reduce risks associated with litigation, investigation or audit through the proper management, protection and retention of information.

Definitions – ISO This standard defines records management as "The field of management responsible for the efficient and systematic control of the creation, receipt, maintenance, use and disposition of records, including the processes for capturing and maintaining evidence of and information about business activities and transactions in the form of records".

Definitions – Retention Schedule An established timetable for maintaining an organizations records Establishes uniform retention practices and avoids duplication of effort Application of retention Context Grouping of related documents = Record Typically not a single , word document or excel spreadsheet Folders provide context Event Based Retention Closed + 5 years Superseded + 10 years

Why is it important? Information is an asset; holds value for the organization RIM ensures that needed information is retrievable, authentic and accurate, which requires: Setting and following organizational policies and best practices Identifying who is responsible and accountable for managing records Integrating best practices and process flows for information management throughout the organization Creating, communicating and executing procedures consistently

Records Management Risks Risks Too long or too short Protection Security Privacy Where to look? Unstructured electronic information Content in systems and applications Back up and archive media

Records Management Risks Keeping information too long or too short Consistent practices according to policy (and retention schedule) Demonstration to regulatory authorities Protection from accidental or intentional events Restoration

Records Management Risks Security Access to information beyond system access Privacy Destruction standards Proper disposal of various forms of media with content

Records Management Risks Classifying and ranking records and information management risks o Content o Policies and Controls o E-Discovery o Generally Accepted Recordkeeping Principles (GARP) Maturity Model

GARP Generally Accepted Recordkeeping Principles Accountability Integrity Protection Compliance Availability Retention Disposition Transparency

Records Management Compliance Everyone is responsible for managing records and information Creating, using, retrieving, and disposing of records in accordance with the organizations established policies and procedures

Records Management Auditing Mitigate records management risks Compliance with policies and procedures Compliance with the records retention schedule ISO 15489

Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.