Enterprise ESG, centralised data, consolidated real-time view

Secure, confidential, multilingual information collection

Management System Design & Build

Messaging, reports, SMS

Surveys, primary research, feelings, thoughts

Deploy modular training

Enterprise ESG, centralised data, consolidated real-time view

Confidential, need to know, protect

ESG initiatives inside

Risk areas, assess, receive guidance

Assess procedures, policies, programmes

Obtain ranking, validation, compliance

Attain verification, certification, recognition

Communicate, build trust

Roles we support

Reduce risk. Avert

Implement ESG initiatives. Drive

Effect change. Culture-first

Identify issues. Resolve

Analyse root cause. Rectify

Alignment with partners, resilience

Our Expertise across 19 key ESG Focus Areas

ABMS series, part 9 | The compliance function

A challenge for any company with an embedded anti-corruption compliance programme is implementing an anti-bribery management system as required by the ISO 37001 standard. Part of this challenge is ‘retrofitting’ some of your programme into the structure of a management system. While there are very significant similarities between an anti-corruption compliance programme and an anti-bribery management system, there are some areas that make a management system capable of being certified.

The main thing to remember is that a management system relies on documented evidence. You may ‘do something’, but you need to be able to prove it – especially if your management system is the subject of a certification audit.

Out of all of the areas that are covered as part of an ABMS, we often find that the compliance function is the strongest. It is typically staffed with dedicated compliance experts who are doing their best (often under challenging circumstances).

However, areas for improvement that we often identify when reviewing an anti-bribery management system as part of an ISO 37001 standard audit are the competencies and training requirements of the compliance function.

The competencies should be well thought out, and should include change management, legal knowledge and investigations experience. The training should be regular and include both ISO management system training and specific anti-bribery training. We expect to see that every member involved in the ABMS has achieved a high level of proficiency, and we look for records to prove this or will otherwise assess it through interviews.

> Click here to download a visual summary of the compliance function <

While the compliance function is very often the strongest when it comes to knowledge and competence, we need to prove that as part of a certification audit.

Download your visual summary of the compliance function