MISO Annual Compliance Program Update



Similar documents
A. Introduction. B. Requirements. Standard PER System Personnel Training

Top 10 Compliance Issues for Implementing Security Programs

NPCC Implementation of the NERC Compliance Monitoring And Enforcement Program (CMEP)

Compliance Management Systems (CMS) Division of Depositor and Consumer Protection

Regulatory Compliance Framework An Electric Utility Model. Abstract. Grier Consulting Group LLC

Breaking Down the Silos: A 21st Century Approach to Information Governance. May 2015

Top Ten Compliance Issues for Implementing the NERC CIP Reliability Standard

Essentials Elements of an Effective Ethics Compliance Program Submitted to Senate- Government Operations Committee January 26, 2016

I. Policy Purpose. II. Policy Statement. III. Policy Definitions: RESPONSIBILITY:

MEMORANDUM OF UNDERSTANDING THE INDEPENDENT ELECTRICITY SYSTEM OPERATOR THE NORTH AMERICAN ELECTRIC RELIABILITY CORPORATION

Third-Party Risk Management: Busting Myths and Telling Truths

Title: False Claims Act & Whistleblower Protection Information and Education

California Mutual Insurance Company Code of Business Conduct and Ethics

3 rd Party Vendor Risk Management

Governance Principles

North American Electric Reliability Corporation. Compliance Monitoring and Enforcement Program. December 19, 2008

UNITED STATES OF AMERICA FEDERAL ENERGY REGULATORY COMMISSION

Governance Principles

Certified Identity and Access Manager (CIAM) Overview & Curriculum

PHI Air Medical, L.L.C. Compliance Plan

DELEGATION AGREEMENT

JACK IN THE BOX INC. CORPORATE GOVERNANCE PRINCIPLES AND PRACTICES. Amended and Restated November 12, 2015

California ISO Audit of the Financial Statements for the Year Ending December 31, 2015 December 18, 2015

WMACCA Small Law Department Initiative. Scaling a Compliance Program To Your Organization And Small Law Department

Risk Management Services

Public Private Partnerships in Water - Contract Management and Regulation

Regulatory Compliance - What You Need to Know. John Zasada Principal CliftonLarsonAllen John.zasada@claconnect.com

Regulatory Compliance Management for Energy and Utilities

WEST LOTHIAN COUNCIL RECORDS MANAGEMENT POLICY. Data Label: Public

ELECTRIC POWER RESEARCH INSTITUTE BOARD OF DIRECTORS CONFLICT OF INTEREST POLICY. Article I: Purpose

The PNC Financial Services Group, Inc. Business Continuity Program

NERC CIP VERSION 5 COMPLIANCE

The problem of cloud data governance

Design and Development of Dallas/Fort Worth International Airport s [DFW s] Compliance-Focused Environmental Management System [EMS] 1

CIP Cyber Security Security Management Controls

Generally Accepted Recordkeeping Principles

COMPLIANCE CHARTER 1

Broker-Dealer and Investment Adviser Compliance Programs

Securities Whistleblower Incentives and Protection

PART I - PRELIMINARY...1 Objective...1 Applicability...2 Legal and Regulatory Provision...2

The PNC Financial Services Group, Inc. Business Continuity Program

White Paper: The Seven Elements of an Effective Compliance and Ethics Program

BlueScope Steel Limited Audit and Risk Committee Charter

Strategies to Evaluate the Effectiveness of Your Compliance Program. Compliance Program Check-up

Leading Practices in Business Transformation

INSIDER TRADING POLICY

How an I-9 Self Audit Will Save you Money. The I-9 Form, the Risks, and Protecting your Company

Evergreen Solar, Inc. Code of Business Conduct and Ethics

Reports of Compliance Concerns and Violations

Mission/Purpose: Committee Responsibilities:

Corporate Compliance and Ethics

NERC Cyber Security. Compliance Consulting. Services. HCL Governance, Risk & Compliance Practice

POLICY INVESTIGATIONS OF LEGAL AND ETHICAL MISCONDUCT

MACQUARIE TELECOM GROUP LIMITED AUDIT COMMITTEE CHARTER

EURIBOR - CODE OF OBLIGATIONS OF PANEL BANKS

Aligning Compliance Program Priorities with Business Objectives

FEDERAL LAWS RELATING TO FRAUD, WASTE AND ABUSE

Compliance Requirements for Healthcare Carriers

GROUP POLICY MANUAL CODE OF CONDUCT AND ETHICS POLICY

SUPERVISION GUIDELINE NO. 9 ISSUED UNDER THE AUTHORITY OF THE FINANCIAL INSTITUTIONS ACT 1995 (NO. 1 OF 1995) RISK MANAGEMENT

ގ ވ އ ދ ނ ނ ބ ރ : 170-R/2015

Best Practice Board Reporting

TransAlta Corporation Energy Trading Compliance Program Assessment

JUDICIAL BRANCH OF THE NAVAJO NATION. Affirmative Action Plan. Navajo Preference in Employment Act

Corporate Governance Report

Who needs caffeine when you have the stimulus bill? WHISTLEBLOWER IMPLICATIONS. Frank E. Sheeder, Esq.

RISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY

INTEGRITY & FRAUD RISK POLICY

CORPORATE CREDIT UNION GUIDANCE LETTER

VCU HEALTH SYSTEM Compliance Program. Updated August 2015

The Electric Reliability Council of Texas (ERCOT) manages the flow of electric power to approximately 22 million Texas customers representing 85

GREAT PLAINS ENERGY INCORPORATED BOARD OF DIRECTORS CORPORATE GOVERNANCE GUIDELINES. Amended: December 9, 2014

Control Environment Questionnaire

Privacy Governance and Compliance Framework Accountability

Sempra Energy Utilities response Department of Commerce Inquiry on Cyber Security Incentives APR

American Bankers Association. Sample Glossary of Collective Investment Fund Terms for Disclosures to Retirement Plan Participants

Governance Principles

BROCK UNIVERSITY FINANCIAL PLANNING AND INVESTMENT COMMITTEE CHARTER

CIP Cyber Security Configuration Change Management and Vulnerability Assessments

Standard CIP 007 3a Cyber Security Systems Security Management

Fraud-Related Compliance

Corporate Governance Code for Captive Insurance and Captive Reinsurance Undertakings Guidelines on the Annual Compliance Statement in accordance with

FINANCIAL INSTITUTIONS: MANAGING OPERATIONAL RISK WITH RSA ARCHER

North American Electric Reliability Corporation (NERC) Cyber Security Standard

The Board s role in anti-corruption compliance

PRESENTATION TOPICS 2/27/2014. Why Update Policies? 21st Century Best Practices for Information Governance & Policies. Why update policies??

Sempra Energy Corporate Compliance and Ethics Plan This page is managed by the Director of Business Conduct (Last revised on )

ALLINA HOSPITALS & CLINICS System-wide Policy

Records and Information Management

POLICY SUBJECT: EFFECTIVE DATE: 5/31/2013. To be reviewed at least annually by the Ethics & Compliance Committee COMPLIANCE PLAN OVERVIEW

CORPORATE COMPLIANCE PROGRAM

POUGHKEEPSIE CITY SCHOOL DISTRICT PUPIL PERSONNEL DEPARTMENT S MEDICAID BILLING COMPLIANCE PROGRAM AND PROCEDURES

HALOGEN SOFTWARE INC. HUMAN RESOURCES COMMITTEE CHARTER

ASTRAZENECA GLOBAL POLICY SAFEGUARDING COMPANY ASSETS AND RESOURCES

BPA Policy Contract Lifecycle Management

Information Management: Today s Reality

UNIVERSITY COMPLIANCE PLAN

Cyber Security Risk Management

ADMINISTRATIVE POLICY MANUAL

PROCEDURE. Ontario Technical Feasibility Exception PUBLIC. Issue 0.2 IESO_PRO_0680

Transcription:

MISO Annual Compliance Program Update Corporate Governance & Strategic Planning Committee April 2013 Presented by Lori A. Spence 0

Table of Contents TOPIC SLIDES General Board Obligations 2 Board Compliance Obligations 3-4 Elements of Internal Compliance Programs 5 -NERC -FERC Benefits of Internal Compliance Programs 6 MISO s Internal Compliance Program 7 MISO s Compliance Program Models 8-11 - Operational Excellence Model - Process Driven Compliance Model - Three Lines of Defense Model What s Next for Compliance at MISO 12 1

Board Obligations - Generally Primary duties are fiduciary Fiduciary duties are: 1. The duty of care Board actions and conduct are informed and considered; decisions made must be with requisite care Inform itself of all material information reasonably available to it; Carefully consider that information and all reasonable alternatives; Act with requisite care in discharging its duties. 2. The duty of loyalty Board acts in good faith, in a manner it reasonably believes is in: The best interests of the corporation; The interests of the corporation and the stakeholders; and Above any personal interest. 2

Board Obligations - Compliance Governing Authorities * shall: [B]e knowledgeable about the content and operation of the [compliance] program to prevent and detect violations of the law; Periodically receive information on the implementation and effectiveness of the program; [E]xercise reasonable oversight with respect to the implementation and effectiveness of the program; and Periodically receive training on the program and on its responsibilities. * Can be delegated to Board committees. 3

Board Obligations Compliance (cont d) Duty of oversight requires: Exercise of a good faith attempt to be well-informed of relevant facts; A good faith attempt to assure that a reasonable information and reporting system exists for detecting/preventing corporate wrongdoing; Appropriately monitoring the effectiveness of these internal reporting and compliance systems. 4

What is an Internal Compliance Program? NERC A Corrective Action Program including effective incentives to promote compliant behaviors A Culture of Compliance Existence of Internal Controls FERC Senior Management Leadership Prompt detection/cessation/self-reporting Preventative Measures In Place Effective remediation 5

Benefits of an Internal Compliance Program 1. Provides framework for MISO employees to: Incorporate compliance into their everyday job responsibilities Detect, stop, and remediate identified issues Achieve Operational Excellence 2. Facilitates reliability of the Bulk Electric System 3. A vital source of protection against monetary penalties imposed by the regulators Up to 95% reduction allowed by FERC Improvements to an Internal Compliance Program can be seen as above and beyond for credit toward penalty 6

MISO s Internal Compliance Program Five Five compliance Compliance Areas areas FERC NERC SSAE16 Financial Corporate (Records Retention, Human Resources, etc.) Seven Seven elements Elements of of compliance Compliance 1. Oversight 5. Monitoring and Auditing 2. Policies and Procedures 6. Enforcement and Discipline 3. Reporting and Communication 7. Corrective Action 4. Education and Training Other Program Requirements Identification and maintenance (lifecycle) of regulatory requirements Assigns responsibility for requirements to Owner 7

MISO s Compliance Program Models 1. Operational Excellence Model 2. Process-Driven Compliance Model 3. Three Lines of Defense Model 8

9

Process-Driven Compliance Model 10

Three Lines of Defense Model 1. Direct Management Control Business Areas 2. Supporting Controls Risk Management, Compliance Services, Performance Improvement, Business Continuity 3. Independent Assurance Internal Audit Executive Management and Committees Board/Corporate Governance & Strategic Planning and Audit & Finance Committees 1 st Line of Defense Management Process Ownership & Controls Process & Internal Control Measures 2 nd Line of Defense Risk Management Compliance Services Performance Improvement 3 rd Line of Defense Internal Audit External Audit Regulator Business Continuity 11

What s Next for Compliance at MISO Continuous evaluation of business maturity in line organizations relative to compliance (processes and controls) Ongoing improvements to lifecycle management of compliance obligations Evaluate Internal Compliance Program against Best Practices Building process-based compliant activities into every day operational management practices (first line of defense) 12

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information