This is a summary of Control Objectives for Information and related Technology audit framework. Anyone can understand COBIT-19 framework within few slides. COBIT was published by ITGI, a nonprofit research entity created by ISACA
On the 23rd Nov 2015 the British Computer Society (BCS) Enterprise Architecture Specialist Group (which I co-chair) held a practitioners evening.
These are my Slides for the ICT Strategy Session - Setting context and highlighting an approach delivering a ICT strategy rapidly.
This is a summary of Control Objectives for Information and related Technology audit framework. Anyone can understand COBIT-19 framework within few slides. COBIT was published by ITGI, a nonprofit research entity created by ISACA
On the 23rd Nov 2015 the British Computer Society (BCS) Enterprise Architecture Specialist Group (which I co-chair) held a practitioners evening.
These are my Slides for the ICT Strategy Session - Setting context and highlighting an approach delivering a ICT strategy rapidly.
DevOps, BA and COBIT don’t really align, or do they?IIBA-Canberra
n November 2018, ISACA launched COBIT 2019.
From its foundation in the IT audit community, COBIT has over the years become broader and more comprehensive.
COBIT is a framework for the governance and management of enterprise information and technology, providing guidance of what (strategic, transition, operational and monitoring) IT enablers to establish in order to achieve enterprise goals.
COBIT 2019 provides best practice guidance for 35 ICT Management Processes and 5 ICT Governance processes, including processes for:
• Managed Architecture (APO03)
• Managed Requirements Definition (BAI02)
• Managed IT Changes (BAI06)
• Managed Configuration (BAI10)
• Managed Security Services (DSS05)
This presentation provides a high level overview of:
• The COBIT 2019 Framework,
• DevOps in relation to the COBIT framework,
• Implementing and aligning frameworks and best practices.
Speaker Biography: Harold Petersen, north BDT
Harold Petersen is a management consultant for north BDT with over 25 years of experience, specialising in areas of Digital Strategy, DevOps, SIAM, ITSM, ICT Governance and Project, Programme, Portfolio Management.
He holds the ITIL Master certificate (one of only three in Australia) and is a DevOps, COBIT, MSP, P3O, PRINCE2 and PRINCE2 agile accredited trainer and implementer.
Harold has lived and worked in Asia Pacific, Australia, New Zealand, Europe and Africa.
#iibacanberrabranch #eventsincanberra #professionallyadventurous
Presentation by Christina Foo, Member, IFAC SMP Committee, and Mark Koziel, Vice President, Firm Services & Global Alliances at AICPA, at IFAC SMP Forum, March 2012
An introduction to AmplioGroup's offerings.
AmplioGroup is a specialized boutique consultancy focused on excellence in working capital performance (order-to-cash and procure-to-pay).
With 20 years of global experience, AmplioGroup’s practitioners have assisted over 700 clients to generate more than $35 Billion in cash flow improvement.
Our expertise is global in reach – we have extensive experience in all the key industrialized nations and all the major business and industrial segments.
Our approach is data and metrics driven yet with deep focus on the people in the O2C and P2P processes. Practical skills sets, knowledge bases and communication capabilities drive working capital performance and we empower process stakeholders through augmented abilities and ongoing results measurement.
We believe that optimized cash performance and effectively managed customer satisfaction go hand in hand. Our approach enhances both performance and satisfaction.
Enterprise Financial Management: Solutions for the Office of the CFOCatalyst Investors
Catalyst Investors has a long-standing history investing in businesses at the intersection of SaaS and financial services & technology, with most recent examples including MINDBODY (payments & business management SaaS for health & wellness businesses), Clinicient (revenue cycle management collections, EMR, and practice management SaaS for physical & occupational therapists), and Fusion Risk Management (business continuity SaaS sold to financial institutions and other F1000 enterprises). Lately, Catalyst has spent more time researching the FinTech sector and has published two reports to broadcast the team’s findings:
• FinTech Market Overview – a primer that segments the FinTech ecosystem based on end-market and business model (e.g., enablers vs. replacers)
• Enterprise Financial Management: Solutions for the Office of the CFO – a deeper look into software and tech-enabled services enabling businesses and their finance function to work more efficiently
DevOps, BA and COBIT don’t really align, or do they?IIBA-Canberra
n November 2018, ISACA launched COBIT 2019.
From its foundation in the IT audit community, COBIT has over the years become broader and more comprehensive.
COBIT is a framework for the governance and management of enterprise information and technology, providing guidance of what (strategic, transition, operational and monitoring) IT enablers to establish in order to achieve enterprise goals.
COBIT 2019 provides best practice guidance for 35 ICT Management Processes and 5 ICT Governance processes, including processes for:
• Managed Architecture (APO03)
• Managed Requirements Definition (BAI02)
• Managed IT Changes (BAI06)
• Managed Configuration (BAI10)
• Managed Security Services (DSS05)
This presentation provides a high level overview of:
• The COBIT 2019 Framework,
• DevOps in relation to the COBIT framework,
• Implementing and aligning frameworks and best practices.
Speaker Biography: Harold Petersen, north BDT
Harold Petersen is a management consultant for north BDT with over 25 years of experience, specialising in areas of Digital Strategy, DevOps, SIAM, ITSM, ICT Governance and Project, Programme, Portfolio Management.
He holds the ITIL Master certificate (one of only three in Australia) and is a DevOps, COBIT, MSP, P3O, PRINCE2 and PRINCE2 agile accredited trainer and implementer.
Harold has lived and worked in Asia Pacific, Australia, New Zealand, Europe and Africa.
#iibacanberrabranch #eventsincanberra #professionallyadventurous
Presentation by Christina Foo, Member, IFAC SMP Committee, and Mark Koziel, Vice President, Firm Services & Global Alliances at AICPA, at IFAC SMP Forum, March 2012
An introduction to AmplioGroup's offerings.
AmplioGroup is a specialized boutique consultancy focused on excellence in working capital performance (order-to-cash and procure-to-pay).
With 20 years of global experience, AmplioGroup’s practitioners have assisted over 700 clients to generate more than $35 Billion in cash flow improvement.
Our expertise is global in reach – we have extensive experience in all the key industrialized nations and all the major business and industrial segments.
Our approach is data and metrics driven yet with deep focus on the people in the O2C and P2P processes. Practical skills sets, knowledge bases and communication capabilities drive working capital performance and we empower process stakeholders through augmented abilities and ongoing results measurement.
We believe that optimized cash performance and effectively managed customer satisfaction go hand in hand. Our approach enhances both performance and satisfaction.
Enterprise Financial Management: Solutions for the Office of the CFOCatalyst Investors
Catalyst Investors has a long-standing history investing in businesses at the intersection of SaaS and financial services & technology, with most recent examples including MINDBODY (payments & business management SaaS for health & wellness businesses), Clinicient (revenue cycle management collections, EMR, and practice management SaaS for physical & occupational therapists), and Fusion Risk Management (business continuity SaaS sold to financial institutions and other F1000 enterprises). Lately, Catalyst has spent more time researching the FinTech sector and has published two reports to broadcast the team’s findings:
• FinTech Market Overview – a primer that segments the FinTech ecosystem based on end-market and business model (e.g., enablers vs. replacers)
• Enterprise Financial Management: Solutions for the Office of the CFO – a deeper look into software and tech-enabled services enabling businesses and their finance function to work more efficiently
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in SocietyLockheed-Martin
We are increasingly connected through, and reliant on, digital infrastructure to drive innovation and expedite efficiency. Yet the digital age has also accelerated the threat of cyber disruptions and increased the available attack surface of critical assets, networks and systems that sustain a nation’s safety and prosperity.
With the increasingly interconnected nature of our critical national infrastructure, the impact of a cyberattack on a power distribution network could be wide-ranging and costly for both society and the economy.
The Cambridge Centre for Risk Studies at the University of Cambridge Judge Business School and Lockheed Martin have been working together on the first study of its kind to explore the effect that a coordinated cyberattack on the UK’s power distribution network could have.
Building the Bridge Between Airports and Air Traffic ManagementLockheed-Martin
The term CDM is thrown around the industry in the same way that the IT industry uses “Cloud”, “Big Data” & “Mobile”. CDM as a concept can be a true value add…not only for ATC, but for airports, airlines and the wider range of aviation stakeholders. In many cases community, rather than collaboration, is key to the accuracy and effectiveness of any efficiency effort. The role of the airport is often overlooked in the efficiency of this whole process, despite operators being responsible for the handling and processing of the two key components: passengers and aircraft. In this session we will examine the role of the airport and, specifically, their operating systems and platforms to demonstrate the benefits of a fully integrated end-to-end solution encompassing airport and air traffic systems.
BSCI (Business Social Compliance Initiative) Code of Conduct & it’s practical...Amatun Noor
A guide-line is prepared according to BSCI Code of Conduct & Check list, update amendment, 2014 which may be needful for RMG factories to implement BSCI standard.
The new draft of ISO14001 makes some fundamental changes to the current standard. This presentation explores the key strategic changes and legal compliance aspects.
Client Evaluation and Planning the Audit Lecture slide chapter 8
Describe the steps involved in client acceptance and continuance.
State the purpose and content of an engagement letter.
Explain the steps in planning an audit.
Identify the risks of misstatement through understanding the entity and its environment.
Explain the role of analytical procedures in audit planning.
Describe the requirements to consider the risk of fraud in the audit planning process.
Explain the purpose and function of audit working papers.
Baldrige Leadership Criteria And Regulatory EnvironmentKuldeep Badoniya
1. Summary of Leadership Criteria
2. Comparison of Medrad Industry & VA Clinical Research Pharmacy Coordinating Center
3. Compliance of Baldrige Leadership Criteria with FDA Quality Requirements
NOTE - This presentation was made as part of an assignment for a Course PME 560 (Quality in Pharmaceutical Manufacturing) at Stevens Institute of Technology, Hoboken, New Jersey
Prepared By - Sneha Chauhan, Dhaval Bhanushali, Jahin Amin and Kuldeep Badoniya
Identify and define top management’s
responsibility for the QMS, including
establishing policies and objectives, setting
organization-wide goals, and supporting
quality initiatives.
The #DROOS_FLGAWDA channel is dedicated to providing scientific content that effectively contributes to building knowledge among interested and quality workers as well as manufacturers and service providers so that they can achieve their products better, faster and at the lowest cost.
Simply channel #DROOS_FLGAWDA... will change your life for the better
JOIN-US FOR FREE
https://goo.gl/4S8PQ8
Compliagent is a consulting firm with a singular mission – guiding our healthcare provider clients in designing, managing and maintaining compliance infrastructure.
Serving over one-hundred healthcare facilities, providers, and business associates, we view compliance as an opportunity to partner with our healthcare provider clients to mitigate regulatory risk proactively and to build stronger organizations in a cost-effective way, ultimately leading to profitability increases and cost savings.
How to Develop Compliance with Sustainable Practice in RMG IndustryAmatun Noor
As, Compliance is most essential term in RMG industry, it is required to maintain in sustainable way, to increase Global Image & Recognition for the Performance, which requiring for doing business in long term. This presentation has been stating on how company can co-relate the compliance practices with the Sustainability.
Any suggestion/guideline would be highly appreciated.
Similar to Supplier Mentoring Program Checklist (20)
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Search and Society: Reimagining Information Access for Radical FuturesBhaskar Mitra
The field of Information retrieval (IR) is currently undergoing a transformative shift, at least partly due to the emerging applications of generative AI to information access. In this talk, we will deliberate on the sociotechnical implications of generative AI for information access. We will argue that there is both a critical necessity and an exciting opportunity for the IR community to re-center our research agendas on societal needs while dismantling the artificial separation between the work on fairness, accountability, transparency, and ethics in IR and the rest of IR research. Instead of adopting a reactionary strategy of trying to mitigate potential social harms from emerging technologies, the community should aim to proactively set the research agenda for the kinds of systems we should build inspired by diverse explicitly stated sociotechnical imaginaries. The sociotechnical imaginaries that underpin the design and development of information access technologies needs to be explicitly articulated, and we need to develop theories of change in context of these diverse perspectives. Our guiding future imaginaries must be informed by other academic fields, such as democratic theory and critical theory, and should be co-developed with social science scholars, legal scholars, civil rights and social justice activists, and artists, among others.
2. Guidelines
for Program Requirements
• Federal Sentencing Guidelines (FSG)
– Last amended 2010
– Effective Compliance and Ethics Program (Chapter 8, Part B, Section 2)
• Due diligence to prevent and detect criminal conduct
• Promote organizational culture encouraging ethical
conduct and compliance with law
• Defense Industry Initiative on BUSINESS ETHICS AND CONDUCT (DII)
– Creating and Maintaining an Effective Ethics and Business
Conduct Program
• Suggestions for each element of an effective program
• Good resource for possible additions / enhancements
2
3. Guidelines
for Program Requirements (cont’d)
• FAR Clause 52.203-13 “Contractor Code of Business
Ethics and Conduct”
– Requires government contractors to:
• Exercise due diligence to prevent and detect criminal
conduct
• Promote an organizational culture that encourages ethics
and compliance
• Submit mandatory disclosures to the government
– Mandates:
• Code of Business Ethics and Conduct
• Business Ethics Awareness and Compliance Program
• Internal Control System
– Subcontract Flowdown
3
4. Checklist
• Checklist maps requirements of FSG and FAR, as well
as DII recommendations, against program elements
• Reviewers should refer to the source documents for
more detail
• Links to Source Documents
– Federal Sentencing Guidelines §8B2
– FAR Clause 52.203-13 “Contractor Code of
Business Ethics and Conduct”
• DII Creating and Maintaining an Effective Ethics and Business
Conduct Program
• Note both potential gaps and highlights/best practices
4
5. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
Standards and procedures
Code of Conduct
Distribution/Access
Internal Control Procedures
FAR Requirement*
Code of Conduct made available to each
employee working on the contract
Corporate Policy Statements:
_______________________________
_______________________________
_______________________________
Internal Control System
Defense Industry Initiative
Written policy signed by top official
providing for key elements of program
Code of Conduct, including potential
content
*for contracts of more than $5M and period of performance > 120 days
Note: Bold text indicates minimum program requirement
5
6. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
Board knowledge and oversight
Certifications of training
Frequency of reports to Board:
Quarterly
Bi-yearly
Yearly
Other: _____________
Oral report to Board
Written report to Board
6
7. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
High-level person responsible for program
• Report to executives and Board
• Resources, authority and access
Access to company resources
FAR Requirement
Assignment of responsibility at sufficiently
high level with adequate resources to ensure
effectiveness of program (ICS)
Budget
Staff
Level of person responsible for
ethics__________________________
Report to CEO
Hard line
Dotted line
Defense Industry Initiative
• Defined organizational structure
Report to Board of Directors
Hard line
Dotted line
Steering Committee
7
8. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
Due diligence for substantial authority
positions
Sources of information:
Background Checks
Ethics database check
FAR Requirement
Reasonable efforts not to include individual
as a principal, whom due diligence would
have exposed conduct in conflict with Code
(ICS)
HR hiring processes
Frequency of checks once in position:
Upon offer only
Once a year
Other _____________________
8
9. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
Communication and training
Board of Directors training
FAR Requirement
Employee training
Ongoing ethics awareness and compliance
program
•
•
Reasonable steps to communicate periodically and
in practical manner Contractor’s standards and
procedures by
– conducting effective training programs
– otherwise disseminating information
appropriate to individual’s respective roles
and responsibilities
Training for contractor’s principals and employees
and, as appropriate, contractor’s agents and
subcontractors
Defense Industry Initiative
Code of Conduct (or general
ethics) Training
Compliance Training
Training for agents and
subcontractors
Ethics staff training
Employee communications
Ethics messages integrated
Standalone ethics
communications
• Rules-based compliance training based on
risk assessment
• Ethics awareness training and discussion
• Comprehensive communication plan
9
10. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
Monitoring, auditing, and periodic
evaluation
Annual internal controls audit
Employee survey
Ethics program assessment
Frequency:
Once a year
FAR Requirement
Periodic reviews of business practices,
procedures and internal controls (ICS)
Every other year
Other __________________
External benchmarking
Ethics metrics review
Frequency:
Defense Industry Initiative
Monthly
Regular program assessments,
employee survey, metrics reporting,
internal and external audits
Quarterly
Bi-Yearly
Yearly
Other __________________
General internal and external audits
10
11. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
System for reporting misconduct or
seeking guidance, without fear of
retaliation
Anonymous reporting
FAR Requirement
Help/hotline
Standards and procedures to facilitate
timely discovery of improper conduct
(internal controls)
Internal reporting mechanism, such as
hotlines, to report suspected misconduct
and instructions that encourage employees
to make reports (ICS)
Ethics Officers
Other _________________________
Protection against retaliation
System to report
System to seek guidance
System for tracking contacts
Defense Industry Initiative
Place for employees, suppliers,
customers and business relations to
raise concerns / ask questions
11
12. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
Consistent enforcement
Disciplinary process for violations
FAR Requirement
Disciplinary actions for improper conduct or
failing to take reasonable steps to prevent
or detect improper conduct (ICS)
Discipline review committees
Internal investigations
12
13. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
Response to criminal activity
Audits
Corrective action analysis
FAR Requirement
Discipline
Corrective measures are promptly instituted
and carried out (internal controls)
Internal investigations
Mandatory Disclosure policy
Voluntary Disclosure policy
13
14. Ethics & Business Conduct Program
Sentencing Guideline Requirement
Ethics & Business Conduct Program
NEW (as of 2010): Obligation to
communicate directly with the Board or a
sub-group of the Board
Periodic reports (oral and written) to
Board committee:
_______________________________
Frequency of reports to Board:
Quarterly
Bi-yearly
Yearly
Other: _____________
Communication with board
documented in company
policy/procedure:
_______________________________
14
15. Ethics & Business Conduct Program
FAR Requirement
Ethics & Business Conduct Program
Disclosures of violations of the civil False
Claims Act or Federal criminal law shall be
directed to the agency Inspector General,
with a copy to the Contracting Officer
Process for making disclosures
Policy stating expectations for full
cooperation
Timely disclosure to the agency Inspector
General of certain violations of law by
principal, employee, agent or subcontractor
Full cooperation with government agencies
for audits, investigations and actions
15
16. Ethics & Business Conduct Program
Defense Industry initiative
Ethics & Business Conduct Program
Leadership Commitment
Tone at the top
Engaged middle management
Reinforcing messages
16