GLBA Program Analysis Process

Improved Essays
5. GLBA Program Analysis
For a program to be effective it must demonstrate robust features in accuracy, usage, and performance. For the initial phase of this program I started by reviewing last year’s material and contacting the people involved. Meetings were conducted directly with the coordinators to find out what worked and what didn’t in the past years assessments. Many had the same observation on issues that could be improved upon.
To understand the process, the compliance matrix is the source of record for this step of the GLBA process. The document demonstrates the capabilities of the company’s IS structure and how it aligns to the GLBA requirements. Each Citi policy, standard, and guideline that aligns the IS programs to GLBA requirements
…show more content…
It must be updated with changes that occur from year to year. Any policy, standard, guideline utilized to demonstrate the company’s IS capabilities must be referenced and documented in the compliance matrix. The SPG team reviews each reference in the document and makes changes as necessary then sends the updated document to the compliance team. Once the document is reviewed and validated by the compliance team, they will provide their endorsement so the document can be submitted for final approval.
In conjunction with the compliance matrix process, the SPG team works with the coordinators to make sure they have the correct people identified who provide signoff of the compliance matrix. The process requires that there must be a minimum of two approvals needed for each business, the first one from the BISO and the second from the Sector Head. The coordinators provide the updated list of people to the SPG team.
Since the compliance matrix document is the source of record for the whole process, it must be approved by the ISROC committee before it can be distributed to the coordinators. The approved compliance matrix, along with the coordinator, BISO, Sector Head identification list is presented to the ISROC committee for
…show more content…
Many hours are consumed with working with new coordinators, fixing the Archer tool, and monitoring the process.
5.2 Coordinator Role
The coordinators play an important role in the GLBA process. Since this is a global company effort, there are many regions and businesses that must be accounted for and documented during this process. The coordinators are the people that perform the function of obtaining the signatures for the compliance matrix for the regions in scope.
After receiving the approved matrix from the SPG team, the coordinators work to obtain the signatures from the appropriate people. The first approval is the BISO of the business, and then the final attestation which comes from the regional Business Head of that specific region. The coordinators do all of the work obtaining the signatures from the BISOs and Sector Heads from their respectable regions. The difficult process is getting time with the BISO and the Sector Heads to review the matrix and obtain their

Related Documents

  • Decent Essays

    In addition to the above list of procurement items, the following individuals are authorized to approve purchase funding levels for the project team: List - Procurement Funding Approvers Name Role Perry Norton Program Manager Debra German Finance Manager Contract type All materials procured for LAW prototype bicycle will be solicited under Firm Fixed Price (FFP) contracts. All services are to be procured under Firm Fixed Price – Not To Exceed (FFP-NTE) contracts. The project team will work with Estimating and Procurement staff to define the item types, quantities, services and required delivery dates. The Buyer will then issue Request for Proposals (RFP) to solicit bids from various vendors at a Firm Fixed Price rate, within the time period needed, and at the…

    • 477 Words
    • 2 Pages
    Decent Essays
  • Decent Essays

    Is3350 Unit 1

    • 190 Words
    • 1 Pages

    1. Critically evaluate information gathered from multiple sources, reconcile conflicts, decompose high-level information into details, abstract up from low-level information to a general understanding, and distinguish user requests from the underlying true needs using tools such as Entity relationship diagram, Flow charts, workflow modelling. 2. Investigate and analyze business processes, organization & services. 3.…

    • 190 Words
    • 1 Pages
    Decent Essays
  • Improved Essays

    The cmpany that I currently work for is Cracker Barrell Old Country Store INC. As the lead TOGO server I am responsible for implementing changes to the TOGO processes as well as training all new TOGO hires and furthered training of current employees on any new processes or changes that are implemented. The change that will be taking place in the near future is a new TOGO and catering process, which includes many changes to the current process as well as the addition of new steps, services and menu choices to the process. The change goal is the new TOGO procedures and Catering introduction being implemented effectively. The purpose of the change and introduction of the new process is to increase the amount of TOGO order volumes, increase simplicity…

    • 552 Words
    • 3 Pages
    Improved Essays
  • Decent Essays

    Evcba Memo Summary

    • 123 Words
    • 1 Pages

    On February 6, 2015, the EVCBA sent a memo to all UT System Chief Business Officers regarding the implementation of Governor Abbott's January 28, 2015 letter. Basically directives in the memo addressed the Governor’s request for more transparency with key points such as: • Public disclosure of all no bid contracts and public justification of those methods. • Require agency employees to disclose possible conflicts of interest, including prohibiting contracts with business entities in which leadership or staff have a financial interest. • Require that the agency's board chair or designee sign any contract valued at more than $1 million and for procurements of more than $5 million, require the agency’s central office or procurement director to…

    • 123 Words
    • 1 Pages
    Decent Essays
  • Decent Essays

    Psproc508a Case Study

    • 483 Words
    • 2 Pages

    Question.1 - PSPPROC508A – Make procurement decisions, and PSPPROC507A – Plan for procurement outcomes What legislative and policy requirements do you need to consider when planning for procurement and making procurement decisions? When planning doing a major Procurement the Department Official needs to consider the following Legislative and Policies: • Public Governance, Performance and Accountability Act 2013 Section 15 and 21 • Privacy Act 1988 • Freedom of Information Act 1982 • Australian Government Protective Security Policy Framework • Commonwealth Procurement Rules issued under section 105B (1) PGPA Act • Must conduct Procurements in accordance with the Departments Accountable Authority Instructions and relevant Operational Guidelines and is consistent with CPRs. •…

    • 483 Words
    • 2 Pages
    Decent Essays
  • Improved Essays

    To assume responsibility for all aspects in the running of the home in its entirety and ensure that every service user has an allocated key worker. Be responsible for one or more allocated service users and take the lead in all aspects of the care and support of the service user To assume responsibility for the monitoring of every service user in the home and ensure that any mental or physical health progress is communicated, documented and followed up where appropriate To ensure person centred care plans and risk assessments are drafted and reviewed regularly within the home. To ensure regular reports and daily progress notes are completed accurately and made available when required by staff. To oversee that all staff convey weekly 1:1 review meetings with allocated service user.…

    • 621 Words
    • 3 Pages
    Improved Essays
  • Decent Essays

    When determining if a program is eligible to receive funding from the USDA, there is a four part process that the auditor must verify; 1) background, purpose, and applicability of the program. 2) Matrix of compliance requirements. 3) The Compliance requirements of which the follow are most important; activities that are allowed or unallowed, eligibility, matching, level of effort, earmarking, reporting and special tests and provisions. 4)…

    • 211 Words
    • 1 Pages
    Decent Essays
  • Great Essays

    What do I need to do? What resources do I need? Who can help me? What is my timescale? Read up and understand all essential standards set out by CQC Read ‘guidance of compliance – Essential standards of quality and…

    • 4027 Words
    • 17 Pages
    Great Essays
  • Improved Essays

    There are several people involved in the internal and quality assurance process, these are the candidates, Assessors IQA and EQA Role & the learner The role of the learner is required to demonstrate the knowledge and skills outlined within the unit or qualification specification. This includes demonstrating performance of tasks and activities to the required standard and showing the required level of knowledge and understanding. This is normally done through the completion of work related tasks/activities; and/or through the successful achievement of an examination Roles & Responsibilities of Assessor The role of the assessor is to make an informed judgement about the range of evidence a learner may produce to demonstrate their competence…

    • 504 Words
    • 3 Pages
    Improved Essays
  • Improved Essays

    Suspension And Debarring

    • 129 Words
    • 1 Pages

    Provides procedures for the suspension or debarment for entities for serious acts of wrongdoing. Provides that grantees may not use contractors that have been suspended or debarred under these regulations until the suspension or debarment is lifted. Under 2 CFR Part 180, Sponsors cannot be suspended or debarred, only contractors, subcontractors or individuals involved in the wrongdoing. Sponsors must assure that potential contractors, subcontractors and associated individuals are not on the Federal government’s suspension and debarment list through all of the following: Verifying that the firms and individuals are not included in the list of suspended and debarred entity list in the federal government’s System for Award Management (www.SAM.gov);…

    • 129 Words
    • 1 Pages
    Improved Essays
  • Decent Essays

    In healthcare, compliance means meeting all applicable healthcare compliance and regulatory requirements, e.g. CMS, OIG, DOJ, TJC, HFAP, NCQA, DNV GL, etc. Organizations essentially meet all requirements set forth and applicable to them based on a broad scope of criteria. The continual changes in healthcare often cause struggle for organizations to understand every element of compliance. Saint Luke’s well-defined policy provides the processes for verifying and monitoring different types of sanctions, the systems used to carry out the functions, and the methodology for investigating practitioner alerts during ongoing monitoring.…

    • 89 Words
    • 1 Pages
    Decent Essays
  • Great Essays

    The Special Operations Combat Medic Course (SOCM) is a nine month long course consisting of six training blocks and a one-month long hospital rotation. The design of the course progresses the students from the fundamentals of medicine to advanced combat casualty management over its duration. The SOCM leadership is responsible for ensuring continuity of instruction, but there is a lack of interaction among the leadership of the individual blocks and their instructors. More intimate integration and knowledge sharing between the blocks would create a holistic training environment that would seamlessly blend training into a contiguous process capable of producing an even higher quality of combat medic.…

    • 1912 Words
    • 8 Pages
    Great Essays
  • Improved Essays

    In accounting terms, the process to harmonize the prevailing accounting standards that are issued by different regulatory bodies is called convergence. Although it is a known fact that the variety of accounting rules and practices around the world is due to the differences in culture, language, religion, education, and ideology and politics. However, the need of a single set of standards for the reporting of financial statements is becoming inevitable. With the significant growth of the cross-border business and trade, it is essential for the companies to be equipped with a set of high-quality accounting standards that will not only improve financial reporting across the globe but also enhance the consistency, comparability and efficiency of…

    • 718 Words
    • 3 Pages
    Improved Essays
  • Improved Essays

    Policy and Procedure Developing policies and procedures is an integral step to the success of any business. Policies are designed to address a specific issue and ensure that it is handled consistently in the future. It is imperative that businesses have a true understanding of the specific issues that they are trying to improve upon or correct when writing and developing a policies and procedures (Vardiman, Shepherd, Jinkerson 32-43). In order to develop an effective policy and procedure document for a business or organization, it is important to have a basic understanding of both policy writing and procedure writing.…

    • 1049 Words
    • 4 Pages
    Improved Essays
  • Decent Essays

    1. Public policy can be defined as steps that the government or any other organisation takes to achieve a certain goal. In this context, it is the government’s decision to act or not to act on an issue. Governments are able to get guidance and accountability from it. Various factors affect decision making, such as values.…

    • 871 Words
    • 4 Pages
    Decent Essays

Related Topics