Course Content
Introduction to Policy and Compliance Management
- Top Policy and Compliance Management Issues
- Policy and Compliance Processes in a Nutshell
- Policy and Compliance Key Components
RSA Archer Policy Management Solution
- RSA Archer Interface
- RSA Archer Policy Structure Components
- Phased Implementation Approach
- Post-Implementation Processes
Policy Management Exercises
- Exercise: Analyze Existing Policy
- Exercise: Define Scope
- Extraction & Mapping
- Exercise: Policy Extraction
- Exercise: Control Standard Extraction & Mapping
- Exercise: Format/Import Content
- Exercise: Perform a Gap Analysis
- Exercise: Import Provided Content
- Exercise: Approve a Policy Change
- Exercise: Policy Awareness Campaign
RSA Archer Compliance Management Solution
- Sarbanes-Oxley Act Concerns
- RSA Archer Compliance Structure Components
- How Compliance is Rated
- Exception Requests Workflow
Compliance Management Exercises
- Exercise: Review Control Procedure Mapping
- Exercise: Assess a Process Control
- Exercise: Assess a Technical Control
- Exercise: Address Findings - Remediation Plan
- Exercise: Address Findings - Exception Request
Compliance Strategies
- Control-Based Compliance
- Asset-Based Compliance
- Compliance Testing Cycle
- Round Table Discussion
- Additional Resources