SlideShare a Scribd company logo

Standing Up A Holistic And World Class Information Governance Program

Rafael Moscatel CRM, IGP, profile picture
Rafael Moscatel CRM, IGP

The document outlines best practices for establishing a modern information governance (IG) program, focusing on building strategies, fostering collaboration, and effectively presenting plans to leadership. It emphasizes the importance of a holistic approach to IG, simplifying retention challenges while ensuring compliance with new privacy laws. Common pitfalls in implementing IG initiatives are also discussed, alongside the value of relationships and communication in driving success.

Leadership & Management
1 of 19
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
Standing Up A Holistic And World Class Information Governance Program Rafael Moscatel, CRM, IGP Managing Director, Compliance & Privacy Partners LLC www.CAPP-LLC.com Rafael@capp-llc.com @Rafael_Moscatel
Agenda In this session, we’ll cover best practices to build, execute, and deploy a modern IG program including: / How to build and automate your Information Governance strategy using the right policies, technology, and stakeholders / How to recognize the right collaboration opportunities and strategically partner on the projects most likely to support and advance your agenda / What approaches to take when introducing your plans to senior leadership and how to effectively manage the optics around your contributions to your company’s bottom line
A holistic approach to IG LESS IS MORE GAPS ARE OPPORTUNITIES Help reshape the optics around a problem by encouraging colleagues to help build a better future state instead of harping on old pain points and finger pointing. RELATIONSHIPS MATTER Focus on facilitating environments and spirited organic discussions that support IG dialogue and help determine consensus. An effective Information Governance framework must aim to mitigate risks related to records retention, legal holds, privacy and other challenges with clear, digestible policies and well defined initiatives.
Less is more “It is not important to make many pictures, but that I have one picture right.” -Piet Mondrian When employees are inundated with information in both their professional and personal lives, less is often a more effective strategy…
Measured program cadence ASSESSMENT & PLAN YEAR 1 BUILD TEAM & EXPERTISE YEARS 1 -2 YEARS 2-3 POLICY & ASSURANCE YEARS 2-3 INTEGRATED GOVERNANCE ▪ Analysis and Roadmap ▪ Org Realignment ▪ Roadshows ▪ InfoGov Committee ▪ Compliance Manager ▪ Litigation Support Manager ▪ Records Analysts ▪ Records Coordinators ▪ Retention Policy ▪ Retention Schedule ▪ Privacy Policy ▪ Training and Awareness ▪ Compliance Review ▪ Technology Push ▪ Upgrades & AI Integration ▪ IT Collaboration
Big buckets The Big Bucket strategy is leveraged to simplify retention challenges while meeting business, compliance and legal obligations. Yet new privacy laws are increasing pressure on retention managers to not only better retain records but also defensibly destroy them. Field Records Customer Records Common Records Finance Government & Community Relations Human Resources Information Technology Legal & Compliance Marketing Operations Product Sales
Common pitfalls Third party / cloud software retention: Capabilities are still limited but don’t lose control over your records Sticky granularity: Balance regulatory frameworks and obligations with program priorities, risk appetite and board level expectations Rushing game: IG isn’t a race, it’s a journey Indecisiveness: May or may not be your problem (wishy/washy) Overcommitting: Under promise, over deliver – manage expectations
Develop: a practical roadmap with tangible milestones Implement: simple and easy to follow policies Apply: big bucket retention schedules Is less more?
Gaps are opportunities “A funny thing happened on the road to Albuquerque.” After the first World War, a young GI hopped a train to Boston from California. In a twist of fate, he was thrown from the train outside of Albuquerque. He never quite made it home, but he sure did make a fortune…
Discovering opportunities in the EDRM model
Cloud based solutions like Legal Hold Pro from Zapproved provide organizations with an opportunity to enhance technology and refine best practices. Legal holds and data preservation software example ✓ Issue litigation holds and custodian questionnaires ✓ Track custodian compliance ✓ Trigger data collection of custodians ✓ Built-in metric tracking/reporting Why does it matter? ✓ Improves defensibility ✓ Efficient ✓ One system for all team members Automating legal holds (example)
Common pitfalls Gathering requirements: Don’t expect software vendors to know your environment better than your own people Migrations from hell: Lift and shift, shared drives, SharePoint Retention event triggers: Consider feasibility, impact to metadata No silver bullets: Even the most successful implementations need quality assurance and monitoring
Find: critical compliance or legal processes in need Identify: a toolset that is efficient and defensible Market: cost and risk mitigation benefits Fill the gaps
Relationships matter A lesson from the 1952 Seattle Chieftains It’s a shame the Seattle sportswriter, Jack Gordon, isn’t around anymore to tell his tale about those 1952 Chieftains…
Source: documentmedia.com Who is your IG strategy leader? Information Governance programs enable organizations to leverage their best minds and resources to make effective decisions, mitigate significant risks and protect vital assets. But this relatively new cross-functional discipline is built on relationships and communication.
Know your business partners INTERNAL AUDIT COMPLIANCE FINANCE / TAX INFORMATION TECHNOLOGY SERVICE OPERATIONS OFFICE OF THE GC COMMUNICATIONS PROJECT MANAGEMENT
Common pitfalls Undervaluing: the importance of marketing your message and change management resources Underestimating: your organizations aptitude for understanding key concepts around IG
Build: relationships with IT, risk, legal, compliance Plant: seeds and be the gardener not the flower Nurture: the right talent to execute the vision Value your relationships
CONTACT US TODAY TO LEARN MORE 323-413-7432

More Related Content

PDF
DGIQ 2018 Presentation: How to be successful in the post GDPR landscape – bui...
DATUM LLC
 
PDF
DGIQ 2018 Presentation: A Lawyer, a Salesperson and the Operations Guy Walk ...
DATUM LLC
 
PPTX
Evolution of Records Management in Law Firms
Jim Merrifield, IGP, CIP
 
PPTX
Moving from passive to active data governance
Gary Allemann
 
PDF
IG-101
Nicholas Lough
 
PDF
A Lawyer, a Salesperson and the Operations Guy Walk into a Bar . . .
jadams6
 
PPTX
Architecting the Framework for Compliance & Risk Management
jadams6
 
PPTX
Developing & Deploying Effective Data Governance Framework
Kannan Subbiah
 
DGIQ 2018 Presentation: How to be successful in the post GDPR landscape – bui...
DATUM LLC
 
DGIQ 2018 Presentation: A Lawyer, a Salesperson and the Operations Guy Walk ...
DATUM LLC
 
Evolution of Records Management in Law Firms
Jim Merrifield, IGP, CIP
 
Moving from passive to active data governance
Gary Allemann
 
IG-101
Nicholas Lough
 
A Lawyer, a Salesperson and the Operations Guy Walk into a Bar . . .
jadams6
 
Architecting the Framework for Compliance & Risk Management
jadams6
 
Developing & Deploying Effective Data Governance Framework
Kannan Subbiah
 

What's hot (20)

PPTX
Cyber fraud and Security - What risks does family office's face in today's wo...
Kannan Subbiah
 
PPTX
Big data governance as a corporate governance imperative
Guy Pearce
 
DOCX
Article in Techsmart
Antionette van Zyl
 
PPTX
Understanding Regulation Best Interest
NICSA
 
PDF
Data Warehouse - a Fit-For-Purpose Approach
John Bao Vuu
 
PDF
RSA-Iceberg Seminar: Building an effective supplier risk management program
Iceberg Networks Corporation
 
PDF
What is an IANS Connector Event? - Factor 3
IANS
 
PDF
Why data governance is the new buzz?
Aachen Data & AI Meetup
 
PDF
Business impact without data governance
John Bao Vuu
 
PDF
Profiling bank risk DNA: Bcbs 239 infographic
Markit
 
PPTX
Making Advanced Analytics Work for You
poojaKeserwani
 
DOC
Longo, Dave MULTIPURPOSE RESUME
David Longo
 
PDF
7 critical elements of a data strategy.
Objectivity
 
PPTX
Data governance
MD Redaan
 
PDF
What is Data Governance?
CSpring
 
PPTX
Understanding ROI: The Real Impact of Data Quality
NICSA
 
DOCX
Highlights of IBM Analytics Research Report
Paul Gillin
 
PPTX
How versus what
Thomas Lord
 
PDF
How Should You Manage Data Governance During Coronavirus?
Vivek Mishra
 
PPTX
3 Executive Strategies to Reduce Your IT Risk
Lumension
 
Cyber fraud and Security - What risks does family office's face in today's wo...
Kannan Subbiah
 
Big data governance as a corporate governance imperative
Guy Pearce
 
Article in Techsmart
Antionette van Zyl
 
Understanding Regulation Best Interest
NICSA
 
Data Warehouse - a Fit-For-Purpose Approach
John Bao Vuu
 
RSA-Iceberg Seminar: Building an effective supplier risk management program
Iceberg Networks Corporation
 
What is an IANS Connector Event? - Factor 3
IANS
 
Why data governance is the new buzz?
Aachen Data & AI Meetup
 
Business impact without data governance
John Bao Vuu
 
Profiling bank risk DNA: Bcbs 239 infographic
Markit
 
Making Advanced Analytics Work for You
poojaKeserwani
 
Longo, Dave MULTIPURPOSE RESUME
David Longo
 
7 critical elements of a data strategy.
Objectivity
 
Data governance
MD Redaan
 
What is Data Governance?
CSpring
 
Understanding ROI: The Real Impact of Data Quality
NICSA
 
Highlights of IBM Analytics Research Report
Paul Gillin
 
How versus what
Thomas Lord
 
How Should You Manage Data Governance During Coronavirus?
Vivek Mishra
 
3 Executive Strategies to Reduce Your IT Risk
Lumension
 
Ad

Similar to Standing Up A Holistic And World Class Information Governance Program (20)

PDF
Automated Compliance: How to Create an IG Program that Manages Itself
Jim Merrifield, IGP, CIP
 
PDF
(eBook PDF) Information Governance: Concepts, Strategies, and Best Practices
nelisrabelys
 
PPTX
ACEDS Information Governance Webcast 3-11-15
Logikcull.com
 
PDF
The Whole is Greater than the Sum of its Parts with IG
Ronke Ekwensi
 
PPTX
ACEDS-Zylab 4-3-15 Webcast
Logikcull.com
 
PDF
Return on Investment of Diversity and Inclusion Initiatives in Information Go...
International Journal of Modern Research in Engineering and Technology
 
PPTX
Become an Information Governance Superhero in 2015 - Lunch Keynote ARMA Houst...
Jim Merrifield, IGP, CIP
 
PDF
Information Lifecycle Governance Leader Reference Guide
Dan D'Angelo
 
PDF
Info Gov and Digital Solutions - Digital Brochure - Overview
Sally Hunt
 
PDF
Information Governance – What Does a Modern Program Look Like?
Winston & Strawn LLP
 
PPTX
Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...
David Kearney
 
PPTX
Jim Merrifield - Moving Forward: The Application of Information Governance - ...
ARMA International
 
PPTX
Moving Forward: The Application of Information Governance
Jim Merrifield, IGP, CIP
 
PDF
ACEDS Dallas - Back to School Lessons on the EDRM
PatrickBilgere
 
DOCX
71 Information Governance Policy Development .docx
sleeperharwell
 
DOCX
assign - id = exprid - A B Cexpr - id + .docx
festockton
 
PPT
Mwlug Compliance And E Discovery Policies
LotusDR
 
DOCX
CHAPTER 8INFORMATION GOVERNANCEInformation Governance & .docx
mccormicknadine86
 
PDF
Cor concepts information governance-protection-of-personal-information-act-popi
Robust Marketing & Consulting (Pty) Ltd
 
PDF
Information Governance Strategy Powerpoint Presentation Slides
SlideTeam
 
Automated Compliance: How to Create an IG Program that Manages Itself
Jim Merrifield, IGP, CIP
 
(eBook PDF) Information Governance: Concepts, Strategies, and Best Practices
nelisrabelys
 
ACEDS Information Governance Webcast 3-11-15
Logikcull.com
 
The Whole is Greater than the Sum of its Parts with IG
Ronke Ekwensi
 
ACEDS-Zylab 4-3-15 Webcast
Logikcull.com
 
Return on Investment of Diversity and Inclusion Initiatives in Information Go...
International Journal of Modern Research in Engineering and Technology
 
Become an Information Governance Superhero in 2015 - Lunch Keynote ARMA Houst...
Jim Merrifield, IGP, CIP
 
Information Lifecycle Governance Leader Reference Guide
Dan D'Angelo
 
Info Gov and Digital Solutions - Digital Brochure - Overview
Sally Hunt
 
Information Governance – What Does a Modern Program Look Like?
Winston & Strawn LLP
 
Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...
David Kearney
 
Jim Merrifield - Moving Forward: The Application of Information Governance - ...
ARMA International
 
Moving Forward: The Application of Information Governance
Jim Merrifield, IGP, CIP
 
ACEDS Dallas - Back to School Lessons on the EDRM
PatrickBilgere
 
71 Information Governance Policy Development .docx
sleeperharwell
 
assign - id = exprid - A B Cexpr - id + .docx
festockton
 
Mwlug Compliance And E Discovery Policies
LotusDR
 
CHAPTER 8INFORMATION GOVERNANCEInformation Governance & .docx
mccormicknadine86
 
Cor concepts information governance-protection-of-personal-information-act-popi
Robust Marketing & Consulting (Pty) Ltd
 
Information Governance Strategy Powerpoint Presentation Slides
SlideTeam
 
Ad

Recently uploaded (20)

PPTX
power of team work; how to develop team work
gkhatiwada999
 
PPTX
Course Overview of the Course Titled.pptx
anticybercrimeregion
 
PPTX
Principles & Theories of Mgt-Master in PM.pptx
lelouchvikim
 
PDF
JOB APPLICATION AND RESUME WRITING IN MANAGEMENT
HARINIS967745
 
PPTX
2. CYCLE OF FUNCTIONING RIFLE -PP Presentation..pptx
Ernesto Valenton
 
PDF
CHAPTER 14 Manageement of Nursing Educational Institutions- planing and orga...
anu7thomas
 
PDF
CHAPTER 15- Manageement of Nursing Educational Institutions- Staffing and st...
anu7thomas
 
PPT
Project Management - Scope Management.ppt
Prashanth259415
 
PPTX
MY GOLDEN RULES la regla de oro jhonatan requena
jhonatanrequena058
 
PDF
ORGANIZATIONAL communication -concepts and importance._20250806_112132_0000.pdf
preethijothivel2006
 
PPTX
Self-Awareness and Values Development presentation
KhanfromInfitel
 
PPTX
The Sustainable Site: Boosting Productivity in Construction – Pipe Dream or P...
PMIUKChapter
 
PDF
CISSP Domain 6: Security Assessment and Testing
VICTOR MAESTRE RAMIREZ
 
PDF
1_Corporate Goverance presentation topic
ergvedfvef sdvsfvdvd
 
PDF
Phillips model training for evaluation pdf
Akshathaa21
 
PPTX
Improved_Leadership_in_Total_Quality_Lesson.pptx
scrrbd478
 
PDF
CISSP - Domain 7: Security Operations - InfoSec Institute
VICTOR MAESTRE RAMIREZ
 
PPTX
INTELLECTUAL PROPERTY LAW IN UGANDA.pptx
ssuser0dda571
 
PPTX
Human Resource Management | Introduction,Meaning and Definition
sriinotez
 
PPTX
_ISO_Presentation_ISO 9001 and 45001.pptx
nadianisar5
 
power of team work; how to develop team work
gkhatiwada999
 
Course Overview of the Course Titled.pptx
anticybercrimeregion
 
Principles & Theories of Mgt-Master in PM.pptx
lelouchvikim
 
JOB APPLICATION AND RESUME WRITING IN MANAGEMENT
HARINIS967745
 
2. CYCLE OF FUNCTIONING RIFLE -PP Presentation..pptx
Ernesto Valenton
 
CHAPTER 14 Manageement of Nursing Educational Institutions- planing and orga...
anu7thomas
 
CHAPTER 15- Manageement of Nursing Educational Institutions- Staffing and st...
anu7thomas
 
Project Management - Scope Management.ppt
Prashanth259415
 
MY GOLDEN RULES la regla de oro jhonatan requena
jhonatanrequena058
 
ORGANIZATIONAL communication -concepts and importance._20250806_112132_0000.pdf
preethijothivel2006
 
Self-Awareness and Values Development presentation
KhanfromInfitel
 
The Sustainable Site: Boosting Productivity in Construction – Pipe Dream or P...
PMIUKChapter
 
CISSP Domain 6: Security Assessment and Testing
VICTOR MAESTRE RAMIREZ
 
1_Corporate Goverance presentation topic
ergvedfvef sdvsfvdvd
 
Phillips model training for evaluation pdf
Akshathaa21
 
Improved_Leadership_in_Total_Quality_Lesson.pptx
scrrbd478
 
CISSP - Domain 7: Security Operations - InfoSec Institute
VICTOR MAESTRE RAMIREZ
 
INTELLECTUAL PROPERTY LAW IN UGANDA.pptx
ssuser0dda571
 
Human Resource Management | Introduction,Meaning and Definition
sriinotez
 
_ISO_Presentation_ISO 9001 and 45001.pptx
nadianisar5
 

Standing Up A Holistic And World Class Information Governance Program

  • 1. Standing Up A Holistic And World Class Information Governance Program Rafael Moscatel, CRM, IGP Managing Director, Compliance & Privacy Partners LLC www.CAPP-LLC.com Rafael@capp-llc.com @Rafael_Moscatel
  • 2. Agenda In this session, we’ll cover best practices to build, execute, and deploy a modern IG program including: / How to build and automate your Information Governance strategy using the right policies, technology, and stakeholders / How to recognize the right collaboration opportunities and strategically partner on the projects most likely to support and advance your agenda / What approaches to take when introducing your plans to senior leadership and how to effectively manage the optics around your contributions to your company’s bottom line
  • 3. A holistic approach to IG LESS IS MORE GAPS ARE OPPORTUNITIES Help reshape the optics around a problem by encouraging colleagues to help build a better future state instead of harping on old pain points and finger pointing. RELATIONSHIPS MATTER Focus on facilitating environments and spirited organic discussions that support IG dialogue and help determine consensus. An effective Information Governance framework must aim to mitigate risks related to records retention, legal holds, privacy and other challenges with clear, digestible policies and well defined initiatives.
  • 4. Less is more “It is not important to make many pictures, but that I have one picture right.” -Piet Mondrian When employees are inundated with information in both their professional and personal lives, less is often a more effective strategy…
  • 5. Measured program cadence ASSESSMENT & PLAN YEAR 1 BUILD TEAM & EXPERTISE YEARS 1 -2 YEARS 2-3 POLICY & ASSURANCE YEARS 2-3 INTEGRATED GOVERNANCE ▪ Analysis and Roadmap ▪ Org Realignment ▪ Roadshows ▪ InfoGov Committee ▪ Compliance Manager ▪ Litigation Support Manager ▪ Records Analysts ▪ Records Coordinators ▪ Retention Policy ▪ Retention Schedule ▪ Privacy Policy ▪ Training and Awareness ▪ Compliance Review ▪ Technology Push ▪ Upgrades & AI Integration ▪ IT Collaboration
  • 6. Big buckets The Big Bucket strategy is leveraged to simplify retention challenges while meeting business, compliance and legal obligations. Yet new privacy laws are increasing pressure on retention managers to not only better retain records but also defensibly destroy them. Field Records Customer Records Common Records Finance Government & Community Relations Human Resources Information Technology Legal & Compliance Marketing Operations Product Sales
  • 7. Common pitfalls Third party / cloud software retention: Capabilities are still limited but don’t lose control over your records Sticky granularity: Balance regulatory frameworks and obligations with program priorities, risk appetite and board level expectations Rushing game: IG isn’t a race, it’s a journey Indecisiveness: May or may not be your problem (wishy/washy) Overcommitting: Under promise, over deliver – manage expectations
  • 8. Develop: a practical roadmap with tangible milestones Implement: simple and easy to follow policies Apply: big bucket retention schedules Is less more?
  • 9. Gaps are opportunities “A funny thing happened on the road to Albuquerque.” After the first World War, a young GI hopped a train to Boston from California. In a twist of fate, he was thrown from the train outside of Albuquerque. He never quite made it home, but he sure did make a fortune…
  • 11. Cloud based solutions like Legal Hold Pro from Zapproved provide organizations with an opportunity to enhance technology and refine best practices. Legal holds and data preservation software example ✓ Issue litigation holds and custodian questionnaires ✓ Track custodian compliance ✓ Trigger data collection of custodians ✓ Built-in metric tracking/reporting Why does it matter? ✓ Improves defensibility ✓ Efficient ✓ One system for all team members Automating legal holds (example)
  • 12. Common pitfalls Gathering requirements: Don’t expect software vendors to know your environment better than your own people Migrations from hell: Lift and shift, shared drives, SharePoint Retention event triggers: Consider feasibility, impact to metadata No silver bullets: Even the most successful implementations need quality assurance and monitoring
  • 13. Find: critical compliance or legal processes in need Identify: a toolset that is efficient and defensible Market: cost and risk mitigation benefits Fill the gaps
  • 14. Relationships matter A lesson from the 1952 Seattle Chieftains It’s a shame the Seattle sportswriter, Jack Gordon, isn’t around anymore to tell his tale about those 1952 Chieftains…
  • 15. Source: documentmedia.com Who is your IG strategy leader? Information Governance programs enable organizations to leverage their best minds and resources to make effective decisions, mitigate significant risks and protect vital assets. But this relatively new cross-functional discipline is built on relationships and communication.
  • 16. Know your business partners INTERNAL AUDIT COMPLIANCE FINANCE / TAX INFORMATION TECHNOLOGY SERVICE OPERATIONS OFFICE OF THE GC COMMUNICATIONS PROJECT MANAGEMENT
  • 17. Common pitfalls Undervaluing: the importance of marketing your message and change management resources Underestimating: your organizations aptitude for understanding key concepts around IG
  • 18. Build: relationships with IT, risk, legal, compliance Plant: seeds and be the gardener not the flower Nurture: the right talent to execute the vision Value your relationships
  • 19. CONTACT US TODAY TO LEARN MORE 323-413-7432