Bribery is often seen as a “necessary” evil that makes business easier and faster. This perception is incorrect and places a heavy burden on people, the economy and society as a whole. Business losses and fines resulting from bribery and fraud and the associated reputational damage can have severe consequences for companies, causing billions of dollars in lost revenue. Taking measures to prevent unethical practices within the ranks of employees is therefore essential to building trust.
Anti-Bribery Management System based on ISO 37001
ISO 37001 is designed to help an organisation establish and maintain a proactive anti-bribery system. Its core guidelines represent globally recognised best practices for preventing, detecting and addressing bribery at all levels of an organisation. However, the standard’s requirements go beyond the organisation’s activities and cover all aspects of its global value chain.
Benefits of ABMS for the organisation
- Reducing the risk of bribery in connection with the organisation’s activities
- Strengthening the organisation’s reputation and brand and contributing to its sustainability
- Demonstrating that the organisation has taken reasonable steps to prevent, detect and respond to bribery and has established recognised anti-bribery controls
- Creating a culture of transparency and integrity within the organisation
- Compliance with legal, regulatory, contractual and other societal needs and expectations
Subject of our professional services
1 | Analysis of the existing system and ABMS project planning
Analysis of the context of the organisation and gap analysis of the current state • Development of an ABMS project plan
2 | Establishment and implementation of the ABMS
Identification and description of the boundaries and scope of the ABMS • Definition of the organisational structure, roles and responsibilities of individuals and relevant committees • Design of the anti-bribery policy • Setting up and documenting ABMS processes
3 | Bribery risk management and controls management
Selection and documentation of bribery risk management methodology • Identification, analysis and evaluation of risks • Selection of risk treatment options and controls • Management of risk treatment plans
4 | Documentation of topic-specific policies and procedures
ABMS documentation structure design and management • Design and documentation of topic-specific policies and procedures • Support for the implementation of specific measures • Design and performance of training and awareness-raising activities
5 | Internal audit, supplier audit and certification audit support
Draft and documentation of the ABMS internal audit charter • Draft ABMS audit programe and planning of audit activities • Implementation of internal audit and supplier audit • Support follow-up activities and actions after the audit • Preparation for and support during the certification audit
Advanced GRC applications
The difficulty of executing ABMS processes increases with the size of the organisation and the maturity of the management system. For complex organisations with complex management systems, we recommend using advanced modular tools.
More information can be found in the Applications section.
Quality of our services
During the provision of consulting services, the standards of quality of service consultancy based on ISO 20700, information security based on ISO/IEC 27001 and project management based on ISO 21500 are applied.
Competences of our consultants:
- Certified ISO 37001 Lead Implementer
- Certified ISO 37301 Lead Implementer
When conducting an internal audit (first-party audit) or second-party audit, the best practice of auditing management systems, as defined in ISO 19011 and other relevant standards, is applied.
Competences of our auditors:
- Certified ISO 37001 Lead Auditor
- Certified ISO 37301 Lead Auditor