Mastering ISO 37001 Anti-Bribery Management Systems
You’re under pressure. Compliance risks are rising, regulators are watching, and the cost of non-compliance isn’t just financial - it’s reputational, operational, and existential. One breach can trigger investigations, loss of contracts, and irreversible damage to stakeholder trust. Yet most organizations still treat anti-bribery as a box-ticking exercise - reactive, fragmented, and disconnected from real business strategy. You know that’s not enough. You need a systematic, auditable, and globally recognised framework that doesn’t just protect your organisation, but strengthens it. Mastering ISO 37001 Anti-Bribery Management Systems is your definitive roadmap to building a proactive, resilient, and certification-ready anti-bribery programme aligned with the world’s leading international standard. This isn’t theoretical. It’s the exact blueprint used by compliance leaders in Fortune 500s, multinationals, and high-growth firms navigating complex global markets. Imagine going from uncertainty to confidence: within weeks, you’ll design, implement, and govern an ABMS that meets ISO 37001 requirements, withstands third-party audits, and becomes a strategic asset. One graduate, Maria T., Senior Compliance Officer at a major infrastructure firm, applied the course framework to lead her company’s certification process - reducing third-party due diligence time by 40% and securing a critical government contract that required ISO 37001 compliance. This course gives you more than knowledge - it delivers authority, alignment, and career leverage. You’ll finish with a structured implementation plan, complete documentation templates, and the verified expertise to lead anti-bribery initiatives with credibility. Here’s how this course is structured to help you get there.COURSE FORMAT & DELIVERY DETAILS Fully Self-Paced, On-Demand & Lifetime Access
Enrol once, learn for life. This course is designed for high-performing professionals who need flexibility without compromise on quality. From the moment you enrol, you gain immediate online access to the full curriculum - no waiting, no schedule conflicts. The self-paced structure allows you to progress at your own speed, whether you’re aiming to complete the programme in 4 weeks or integrate learning over several months. Most learners report seeing practical results in under 21 days - from drafting policy frameworks to initiating gap assessments. You receive lifetime access to all course materials, with ongoing updates included at no extra cost. As ISO 37001 interpretations and regulatory expectations evolve, your materials evolve with them - ensuring your knowledge remains current, compliant, and credible. 24/7 Mobile-Friendly Access Across Devices
Access your learning anytime, anywhere. Whether you're preparing for an audit on a plane, refining your compliance strategy during a commute, or reviewing implementation steps before a board meeting, the platform is fully optimised for smartphones, tablets, and desktops. No downloads, no installations. Just seamless, responsive access through any modern web browser - with full progress tracking so you can pick up exactly where you left off. Direct Instructor Guidance & Implementation Support
You’re not learning in isolation. This course includes structured pathways to engage with expert-led support for implementation queries, documentation feedback, and strategy refinement. Our instructor support system is designed for clarity, not noise - focused on helping you overcome real operational hurdles. Submit questions through the learning portal and receive detailed, role-specific guidance grounded in audit experience and certification best practices. Certificate of Completion Issued by The Art of Service
Upon successful completion, you’ll receive a Certificate of Completion issued by The Art of Service - a globally recognised name in professional certification and standards implementation. This credential is trusted by compliance teams, auditors, and HR departments worldwide. It verifies your mastery of ISO 37001 requirements, your ability to structure an ABMS, and your readiness to lead certification efforts. Many graduates report using the certificate to support internal promotions, win client tenders, and strengthen governance reporting. No Hidden Fees. Transparent, Upfront Pricing.
You pay one straightforward fee - with zero hidden charges, recurring subscriptions, or upsells. What you see is exactly what you get: full access, lifetime updates, mobile compatibility, and certification eligibility included. Secure payment is accepted via Visa, Mastercard, and PayPal - with encrypted processing to protect your data. Enrol with complete confidence. 100% Satisfied or Refunded Guarantee
We eliminate risk with a powerful promise: if you’re not completely satisfied with the course content and practical value, contact us within 14 days for a full refund - no questions asked. This isn’t just a policy. It’s our commitment to delivering material that works in the real world - not just in theory. Post-Enrolment: What Happens Next
After enrolment, you’ll receive a confirmation email acknowledging your registration. Your access details and learning portal credentials will be sent separately once your course materials are prepared - ensuring a smooth, secure, and error-free onboarding experience. “Will This Work For Me?” - Addressing the Real Doubt
You might wonder: “I’m not a full-time compliance officer. Will this still work?” Yes - and here’s why. This course was built for cross-functional applicability. We’ve had success with legal counsel rolling out ABMS in manufacturing firms, risk managers in fintech startups, procurement leads in NGOs, and ESG consultants guiding clients through certification. The frameworks are role-adaptable, sector-agnostic, and implementation-tested. This works even if: You’ve never led a management system before, your organisation lacks resources, you’re operating in a high-risk jurisdiction, or you’re starting from only a basic understanding of compliance. One recent learner, David R., a mid-level auditor with no prior ISO experience, used the course to pass an internal certification project review - and was fast-tracked into a leadership role on his company’s ABMS initiative. Clarity. Confidence. Credibility. This course is engineered to give you all three - with zero guesswork, maximum trust, and actionable outcomes from day one.
Module 1: Foundations of Anti-Bribery and ISO 37001 - Understanding bribery: definitions, forms, and real-world implications
- Global bribery risks and high-exposure industries
- The financial and reputational cost of non-compliance
- Why bribery persists in complex organisations
- Overview of international anti-bribery conventions
- Role of the UN Convention against Corruption
- OECD Anti-Bribery Convention and enforcement trends
- Introduction to management system standards
- How ISO 37001 fits within the ISO family
- Benefits of certification: legal, operational, strategic
- Differentiating ISO 37001 from other compliance standards
- Myths and misconceptions about anti-bribery systems
- Key stakeholders in an ABMS: roles and responsibilities
- Board-level accountability and governance expectations
- Cultural drivers of bribery and ethical erosion
Module 2: ISO 37001 Structure and Core Principles - Detailed breakdown of ISO 37001:2016 clauses
- The High-Level Structure (HLS) and Annex SL alignment
- Understanding Clause 4: Context of the organisation
- Identifying internal and external issues affecting ABMS
- Determining interested parties and their requirements
- Scope definition: what to include and exclude
- Clause 5: Leadership and top management commitment
- Establishing anti-bribery policy and objectives
- Demonstrating leadership engagement through actions
- Assigning responsibility and authority across roles
- Clause 6: Planning for risks and opportunities
- Establishing risk assessment methodology
- Setting measurable anti-bribery objectives
- Planning actions to address risks and opportunities
- Aligning ABMS with overall strategic direction
Module 3: Anti-Bribery Risk Assessment Methodology - Principles of a credible risk assessment
- Quantitative vs qualitative risk evaluation approaches
- Defining risk appetite and tolerance levels
- Mapping organisational functions and exposure points
- Identifying high-risk locations and jurisdictions
- Analysing high-risk business processes
- Assessing third-party bribery risks
- Reviewing customer and supplier relationships
- Evaluating joint ventures and intermediaries
- Assessing gifts, hospitality, and promotional expenses
- Political and charitable contributions risk screening
- Digital and remote transaction monitoring
- Legacy practices and cultural norms assessment
- Using risk scoring matrices and heat maps
- Documenting and justifying risk decisions
- Validating risk assessments with audit trails
- Frequency and triggers for reassessment
Module 4: Developing the Anti-Bribery Policy - Purpose and scope of an effective anti-bribery policy
- Key components required by ISO 37001
- Drafting a clear, enforceable policy statement
- Aligning policy with corporate values and mission
- Prohibiting facilitation payments explicitly
- Defining acceptable and prohibited conduct
- Incorporating whistleblower protections
- Language accessibility and translation requirements
- Policy approval and publication process
- Distribution and attestation procedures
- Maintaining version control and update logs
- Reviewing policy effectiveness annually
- Using policy as a communication and training tool
- Linking policy to disciplinary measures
- Ensuring consistency across global operations
Module 5: Roles, Responsibilities, and Accountability Frameworks - Establishing an ABMS leadership team
- Defining the Anti-Bribery Management Representative role
- Separation of duties and conflict of interest controls
- Reporting lines and escalation pathways
- Internal audit function integration
- Establishing an Ethics and Compliance Committee
- Board oversight responsibilities and reporting frequency
- Functional roles: Legal, HR, Procurement, Finance
- Third-party accountability mechanisms
- Succession planning for key ABMS roles
- Performance metrics tied to anti-bribery outcomes
- Role-specific responsibility matrices (RACI)
- Operating model for decentralised organisations
- Ensuring cross-functional collaboration
- Documenting role descriptions and mandates
Module 6: Due Diligence and Third-Party Management - Why third parties pose the highest bribery risk
- Classifying third parties by risk level
- Developing a third-party risk matrix
- Standard due diligence checklist components
- Collecting and verifying identification documents
- Screening against sanctions and watch lists
- Conducting adverse media screening
- Assessing financial stability and ownership structure
- Reviewing past litigation and regulatory actions
- Interview protocols for high-risk intermediaries
- Drafting anti-bribery clauses in contracts
- Ensuring flow-down of obligations to sub-vendors
- Managing consultants, agents, and distributors
- Approval workflows for onboarding
- Continuous monitoring and periodic re-screening
- Red flags and escalation triggers
- Using digital tools to automate checks
- Managing exceptions and risk acceptances
Module 7: Financial and Commercial Controls - Key financial gatekeepers in bribery prevention
- Segregation of duties in procurement and payments
- Validating legitimate business purposes for expenses
- Controlling cash and petty cash access
- Monitoring off-cycle and manual payments
- Analysing journal entries for anomalies
- Monitoring bank accounts and signatory rights
- Travelling and subsistence policy enforcement
- Luxury travel and entertainment controls
- Pricing analysis for inflated invoicing detection
- Managing shell companies and nominee arrangements
- Monitoring related-party transactions
- Verifying goods and service delivery
- Audit trails for expense claims
- Automated red flag detection in ERP systems
- Setting approval thresholds and hierarchies
- Handling donations and sponsorships
Module 8: Training and Awareness Programmes - Principles of effective compliance training
- Segmenting audiences by risk and role
- Developing training objectives aligned with ISO 37001
- Creating engaging, non-generic content
- Delivering training in multiple formats
- Ensuring accessibility across languages and regions
- Frequency requirements: new hires, annual refreshers
- Mandatory training for high-risk roles
- Content for board members and executives
- Training for procurement and sales teams
- Third-party training requirements
- Certifying completion and maintaining records
- Evaluating training effectiveness
- KPIs for awareness and knowledge retention
- Using real-world scenarios and case studies
- Gamification and interactive learning techniques
- Privacy and data handling in training systems
Module 9: Whistleblowing and Reporting Mechanisms - Legal and ethical foundations of whistleblower systems
- Designing confidential, anonymous reporting channels
- Recommended reporting methods: hotline, email, portal
- Ensuring 24/7 availability and global access
- Protecting reporter anonymity and data security
- Anti-retaliation policies and enforcement
- Communication plans for reporting availability
- Handling reports: triage, investigation, response
- Assigning investigations to qualified personnel
- Maintaining investigation logs and records
- Timeframes for acknowledging and resolving reports
- Reporting to senior management and the board
- Integrating findings into risk assessments
- Audit readiness for reporting systems
- Training case handlers and investigators
- External reporting to regulators (when required)
- Measuring reporting volume and resolution times
Module 10: Monitoring, Measurement, and Audit - Distinguishing monitoring from auditing
- Operational monitoring of high-risk processes
- Key performance indicators for ABMS
- Key risk indicators and early warning signals
- Establishing audit frequency based on risk
- Planning internal anti-bribery audits
- Drafting audit checklists aligned with ISO 37001
- Selecting and training internal auditors
- Conducting opening and closing meetings
- Reporting audit findings clearly and objectively
- Classifying nonconformities: minor vs major
- Root cause analysis for audit failures
- Developing corrective action plans
- Tracking corrective actions to closure
- Management review of audit results
- Engaging external auditors for certification
- Digital audit tools and evidence collection
- Preparing for surveillance and recertification audits
Module 11: Continuous Improvement and Management Review - Principles of continual improvement in ABMS
- Conducting regular management reviews
- Agenda items for ABMS management meetings
- Reporting on policy effectiveness
- Reviewing risk assessment outcomes
- Evaluating audit and monitoring results
- Analysing whistleblower report trends
- Assessing training completion and effectiveness
- Monitoring third-party compliance performance
- Reviewing changes in internal and external issues
- Adjusting objectives and controls accordingly
- Documenting management review minutes
- Tracking decisions and follow-up actions
- Using PDCA cycle for improvement planning
- Integrating feedback from stakeholders
- Updating the ABMS based on lessons learned
Module 12: Documentation and Record Keeping - Required documentation under ISO 37001
- Determining which records to maintain
- Creating a document control procedure
- Version control, approval, and distribution
- Retention periods for compliance records
- Secure storage and access restrictions
- Digital vs physical record management
- Backup and disaster recovery planning
- Handling documentation in multiple jurisdictions
- Privacy and data protection compliance
- Archiving and destruction procedures
- Preparing documentation for audits
- Audit trail requirements for key decisions
- Checklist for documentation completeness
- Using templates to ensure consistency
Module 13: Certification Process and Audit Preparation - Understanding the ISO 37001 certification process
- Selecting an accredited certification body
- Verification of accreditation and scope
- Stages of certification: Stage 1 and Stage 2 audits
- Preparing for the documentation review
- Conducting internal readiness assessments
- Running a mock certification audit
- Identifying common audit findings and how to avoid them
- Preparing staff for interview questions
- Compiling evidence binders for auditors
- Responding to nonconformities effectively
- Negotiating corrective action timelines
- Obtaining certification and public announcement
- Maintaining certification through surveillance audits
- Handling complaints or challenges post-certification
- Preparing for recertification every three years
Module 14: Integration with Other Management Systems - Benefits of integrating ABMS with other standards
- Aligning with ISO 31000 (Risk Management)
- Integrating with ISO 9001 (Quality Management)
- Linking to ISO 14001 (Environmental)
- Connecting to ISO 27001 (Information Security)
- Harmonising policies and documentation
- Consolidating internal audit schedules
- Unifying management review meetings
- Sharing risk registers and KPIs
- Efficiencies in training and awareness
- Creating a unified compliance culture
- Using integrated corrective action systems
- Reporting to the board on combined performance
- Avoiding duplication and resource waste
- Establishing a central compliance function
Module 15: Advanced Implementation Strategies - Scaling ABMS across multinational operations
- Handling jurisdictional and legal conflicts
- Cultural adaptation without compromising standards
- Managing resistance to change
- Building buy-in at all organisational levels
- Communicating the business case for ABMS
- Leveraging early wins to drive momentum
- Developing a multi-year implementation roadmap
- Budgeting for ABMS resources and tools
- Outsourcing vs in-house ABMS management
- Using technology to scale controls
- AI and data analytics in monitoring
- Benchmarking against industry leaders
- Sharing best practices across divisions
- Establishing centres of excellence
Module 16: Real-World Implementation Projects - Case Study 1: Implementing ABMS in a mining company
- Case Study 2: Certification journey of a healthcare provider
- Case Study 3: Third-party risk overhaul in logistics
- Project 1: Draft your organisation’s anti-bribery policy
- Project 2: Conduct a mini risk assessment for procurement
- Project 3: Design a due diligence checklist for agents
- Project 4: Develop a whistleblower communication plan
- Project 5: Create an internal audit checklist
- Project 6: Simulate a management review meeting
- Template Library: Ready-to-customise documents
- Checklist: Pre-certification readiness assessment
- Toolkit: Risk scoring matrix and heat map generator
- Workbook: Step-by-step implementation planner
- Guide: Responding to audit nonconformities
- Framework: ABMS rollout timeline (12-month plan)
- Handbook: Quick reference for day-to-day decisions
- Understanding bribery: definitions, forms, and real-world implications
- Global bribery risks and high-exposure industries
- The financial and reputational cost of non-compliance
- Why bribery persists in complex organisations
- Overview of international anti-bribery conventions
- Role of the UN Convention against Corruption
- OECD Anti-Bribery Convention and enforcement trends
- Introduction to management system standards
- How ISO 37001 fits within the ISO family
- Benefits of certification: legal, operational, strategic
- Differentiating ISO 37001 from other compliance standards
- Myths and misconceptions about anti-bribery systems
- Key stakeholders in an ABMS: roles and responsibilities
- Board-level accountability and governance expectations
- Cultural drivers of bribery and ethical erosion
Module 2: ISO 37001 Structure and Core Principles - Detailed breakdown of ISO 37001:2016 clauses
- The High-Level Structure (HLS) and Annex SL alignment
- Understanding Clause 4: Context of the organisation
- Identifying internal and external issues affecting ABMS
- Determining interested parties and their requirements
- Scope definition: what to include and exclude
- Clause 5: Leadership and top management commitment
- Establishing anti-bribery policy and objectives
- Demonstrating leadership engagement through actions
- Assigning responsibility and authority across roles
- Clause 6: Planning for risks and opportunities
- Establishing risk assessment methodology
- Setting measurable anti-bribery objectives
- Planning actions to address risks and opportunities
- Aligning ABMS with overall strategic direction
Module 3: Anti-Bribery Risk Assessment Methodology - Principles of a credible risk assessment
- Quantitative vs qualitative risk evaluation approaches
- Defining risk appetite and tolerance levels
- Mapping organisational functions and exposure points
- Identifying high-risk locations and jurisdictions
- Analysing high-risk business processes
- Assessing third-party bribery risks
- Reviewing customer and supplier relationships
- Evaluating joint ventures and intermediaries
- Assessing gifts, hospitality, and promotional expenses
- Political and charitable contributions risk screening
- Digital and remote transaction monitoring
- Legacy practices and cultural norms assessment
- Using risk scoring matrices and heat maps
- Documenting and justifying risk decisions
- Validating risk assessments with audit trails
- Frequency and triggers for reassessment
Module 4: Developing the Anti-Bribery Policy - Purpose and scope of an effective anti-bribery policy
- Key components required by ISO 37001
- Drafting a clear, enforceable policy statement
- Aligning policy with corporate values and mission
- Prohibiting facilitation payments explicitly
- Defining acceptable and prohibited conduct
- Incorporating whistleblower protections
- Language accessibility and translation requirements
- Policy approval and publication process
- Distribution and attestation procedures
- Maintaining version control and update logs
- Reviewing policy effectiveness annually
- Using policy as a communication and training tool
- Linking policy to disciplinary measures
- Ensuring consistency across global operations
Module 5: Roles, Responsibilities, and Accountability Frameworks - Establishing an ABMS leadership team
- Defining the Anti-Bribery Management Representative role
- Separation of duties and conflict of interest controls
- Reporting lines and escalation pathways
- Internal audit function integration
- Establishing an Ethics and Compliance Committee
- Board oversight responsibilities and reporting frequency
- Functional roles: Legal, HR, Procurement, Finance
- Third-party accountability mechanisms
- Succession planning for key ABMS roles
- Performance metrics tied to anti-bribery outcomes
- Role-specific responsibility matrices (RACI)
- Operating model for decentralised organisations
- Ensuring cross-functional collaboration
- Documenting role descriptions and mandates
Module 6: Due Diligence and Third-Party Management - Why third parties pose the highest bribery risk
- Classifying third parties by risk level
- Developing a third-party risk matrix
- Standard due diligence checklist components
- Collecting and verifying identification documents
- Screening against sanctions and watch lists
- Conducting adverse media screening
- Assessing financial stability and ownership structure
- Reviewing past litigation and regulatory actions
- Interview protocols for high-risk intermediaries
- Drafting anti-bribery clauses in contracts
- Ensuring flow-down of obligations to sub-vendors
- Managing consultants, agents, and distributors
- Approval workflows for onboarding
- Continuous monitoring and periodic re-screening
- Red flags and escalation triggers
- Using digital tools to automate checks
- Managing exceptions and risk acceptances
Module 7: Financial and Commercial Controls - Key financial gatekeepers in bribery prevention
- Segregation of duties in procurement and payments
- Validating legitimate business purposes for expenses
- Controlling cash and petty cash access
- Monitoring off-cycle and manual payments
- Analysing journal entries for anomalies
- Monitoring bank accounts and signatory rights
- Travelling and subsistence policy enforcement
- Luxury travel and entertainment controls
- Pricing analysis for inflated invoicing detection
- Managing shell companies and nominee arrangements
- Monitoring related-party transactions
- Verifying goods and service delivery
- Audit trails for expense claims
- Automated red flag detection in ERP systems
- Setting approval thresholds and hierarchies
- Handling donations and sponsorships
Module 8: Training and Awareness Programmes - Principles of effective compliance training
- Segmenting audiences by risk and role
- Developing training objectives aligned with ISO 37001
- Creating engaging, non-generic content
- Delivering training in multiple formats
- Ensuring accessibility across languages and regions
- Frequency requirements: new hires, annual refreshers
- Mandatory training for high-risk roles
- Content for board members and executives
- Training for procurement and sales teams
- Third-party training requirements
- Certifying completion and maintaining records
- Evaluating training effectiveness
- KPIs for awareness and knowledge retention
- Using real-world scenarios and case studies
- Gamification and interactive learning techniques
- Privacy and data handling in training systems
Module 9: Whistleblowing and Reporting Mechanisms - Legal and ethical foundations of whistleblower systems
- Designing confidential, anonymous reporting channels
- Recommended reporting methods: hotline, email, portal
- Ensuring 24/7 availability and global access
- Protecting reporter anonymity and data security
- Anti-retaliation policies and enforcement
- Communication plans for reporting availability
- Handling reports: triage, investigation, response
- Assigning investigations to qualified personnel
- Maintaining investigation logs and records
- Timeframes for acknowledging and resolving reports
- Reporting to senior management and the board
- Integrating findings into risk assessments
- Audit readiness for reporting systems
- Training case handlers and investigators
- External reporting to regulators (when required)
- Measuring reporting volume and resolution times
Module 10: Monitoring, Measurement, and Audit - Distinguishing monitoring from auditing
- Operational monitoring of high-risk processes
- Key performance indicators for ABMS
- Key risk indicators and early warning signals
- Establishing audit frequency based on risk
- Planning internal anti-bribery audits
- Drafting audit checklists aligned with ISO 37001
- Selecting and training internal auditors
- Conducting opening and closing meetings
- Reporting audit findings clearly and objectively
- Classifying nonconformities: minor vs major
- Root cause analysis for audit failures
- Developing corrective action plans
- Tracking corrective actions to closure
- Management review of audit results
- Engaging external auditors for certification
- Digital audit tools and evidence collection
- Preparing for surveillance and recertification audits
Module 11: Continuous Improvement and Management Review - Principles of continual improvement in ABMS
- Conducting regular management reviews
- Agenda items for ABMS management meetings
- Reporting on policy effectiveness
- Reviewing risk assessment outcomes
- Evaluating audit and monitoring results
- Analysing whistleblower report trends
- Assessing training completion and effectiveness
- Monitoring third-party compliance performance
- Reviewing changes in internal and external issues
- Adjusting objectives and controls accordingly
- Documenting management review minutes
- Tracking decisions and follow-up actions
- Using PDCA cycle for improvement planning
- Integrating feedback from stakeholders
- Updating the ABMS based on lessons learned
Module 12: Documentation and Record Keeping - Required documentation under ISO 37001
- Determining which records to maintain
- Creating a document control procedure
- Version control, approval, and distribution
- Retention periods for compliance records
- Secure storage and access restrictions
- Digital vs physical record management
- Backup and disaster recovery planning
- Handling documentation in multiple jurisdictions
- Privacy and data protection compliance
- Archiving and destruction procedures
- Preparing documentation for audits
- Audit trail requirements for key decisions
- Checklist for documentation completeness
- Using templates to ensure consistency
Module 13: Certification Process and Audit Preparation - Understanding the ISO 37001 certification process
- Selecting an accredited certification body
- Verification of accreditation and scope
- Stages of certification: Stage 1 and Stage 2 audits
- Preparing for the documentation review
- Conducting internal readiness assessments
- Running a mock certification audit
- Identifying common audit findings and how to avoid them
- Preparing staff for interview questions
- Compiling evidence binders for auditors
- Responding to nonconformities effectively
- Negotiating corrective action timelines
- Obtaining certification and public announcement
- Maintaining certification through surveillance audits
- Handling complaints or challenges post-certification
- Preparing for recertification every three years
Module 14: Integration with Other Management Systems - Benefits of integrating ABMS with other standards
- Aligning with ISO 31000 (Risk Management)
- Integrating with ISO 9001 (Quality Management)
- Linking to ISO 14001 (Environmental)
- Connecting to ISO 27001 (Information Security)
- Harmonising policies and documentation
- Consolidating internal audit schedules
- Unifying management review meetings
- Sharing risk registers and KPIs
- Efficiencies in training and awareness
- Creating a unified compliance culture
- Using integrated corrective action systems
- Reporting to the board on combined performance
- Avoiding duplication and resource waste
- Establishing a central compliance function
Module 15: Advanced Implementation Strategies - Scaling ABMS across multinational operations
- Handling jurisdictional and legal conflicts
- Cultural adaptation without compromising standards
- Managing resistance to change
- Building buy-in at all organisational levels
- Communicating the business case for ABMS
- Leveraging early wins to drive momentum
- Developing a multi-year implementation roadmap
- Budgeting for ABMS resources and tools
- Outsourcing vs in-house ABMS management
- Using technology to scale controls
- AI and data analytics in monitoring
- Benchmarking against industry leaders
- Sharing best practices across divisions
- Establishing centres of excellence
Module 16: Real-World Implementation Projects - Case Study 1: Implementing ABMS in a mining company
- Case Study 2: Certification journey of a healthcare provider
- Case Study 3: Third-party risk overhaul in logistics
- Project 1: Draft your organisation’s anti-bribery policy
- Project 2: Conduct a mini risk assessment for procurement
- Project 3: Design a due diligence checklist for agents
- Project 4: Develop a whistleblower communication plan
- Project 5: Create an internal audit checklist
- Project 6: Simulate a management review meeting
- Template Library: Ready-to-customise documents
- Checklist: Pre-certification readiness assessment
- Toolkit: Risk scoring matrix and heat map generator
- Workbook: Step-by-step implementation planner
- Guide: Responding to audit nonconformities
- Framework: ABMS rollout timeline (12-month plan)
- Handbook: Quick reference for day-to-day decisions
- Principles of a credible risk assessment
- Quantitative vs qualitative risk evaluation approaches
- Defining risk appetite and tolerance levels
- Mapping organisational functions and exposure points
- Identifying high-risk locations and jurisdictions
- Analysing high-risk business processes
- Assessing third-party bribery risks
- Reviewing customer and supplier relationships
- Evaluating joint ventures and intermediaries
- Assessing gifts, hospitality, and promotional expenses
- Political and charitable contributions risk screening
- Digital and remote transaction monitoring
- Legacy practices and cultural norms assessment
- Using risk scoring matrices and heat maps
- Documenting and justifying risk decisions
- Validating risk assessments with audit trails
- Frequency and triggers for reassessment
Module 4: Developing the Anti-Bribery Policy - Purpose and scope of an effective anti-bribery policy
- Key components required by ISO 37001
- Drafting a clear, enforceable policy statement
- Aligning policy with corporate values and mission
- Prohibiting facilitation payments explicitly
- Defining acceptable and prohibited conduct
- Incorporating whistleblower protections
- Language accessibility and translation requirements
- Policy approval and publication process
- Distribution and attestation procedures
- Maintaining version control and update logs
- Reviewing policy effectiveness annually
- Using policy as a communication and training tool
- Linking policy to disciplinary measures
- Ensuring consistency across global operations
Module 5: Roles, Responsibilities, and Accountability Frameworks - Establishing an ABMS leadership team
- Defining the Anti-Bribery Management Representative role
- Separation of duties and conflict of interest controls
- Reporting lines and escalation pathways
- Internal audit function integration
- Establishing an Ethics and Compliance Committee
- Board oversight responsibilities and reporting frequency
- Functional roles: Legal, HR, Procurement, Finance
- Third-party accountability mechanisms
- Succession planning for key ABMS roles
- Performance metrics tied to anti-bribery outcomes
- Role-specific responsibility matrices (RACI)
- Operating model for decentralised organisations
- Ensuring cross-functional collaboration
- Documenting role descriptions and mandates
Module 6: Due Diligence and Third-Party Management - Why third parties pose the highest bribery risk
- Classifying third parties by risk level
- Developing a third-party risk matrix
- Standard due diligence checklist components
- Collecting and verifying identification documents
- Screening against sanctions and watch lists
- Conducting adverse media screening
- Assessing financial stability and ownership structure
- Reviewing past litigation and regulatory actions
- Interview protocols for high-risk intermediaries
- Drafting anti-bribery clauses in contracts
- Ensuring flow-down of obligations to sub-vendors
- Managing consultants, agents, and distributors
- Approval workflows for onboarding
- Continuous monitoring and periodic re-screening
- Red flags and escalation triggers
- Using digital tools to automate checks
- Managing exceptions and risk acceptances
Module 7: Financial and Commercial Controls - Key financial gatekeepers in bribery prevention
- Segregation of duties in procurement and payments
- Validating legitimate business purposes for expenses
- Controlling cash and petty cash access
- Monitoring off-cycle and manual payments
- Analysing journal entries for anomalies
- Monitoring bank accounts and signatory rights
- Travelling and subsistence policy enforcement
- Luxury travel and entertainment controls
- Pricing analysis for inflated invoicing detection
- Managing shell companies and nominee arrangements
- Monitoring related-party transactions
- Verifying goods and service delivery
- Audit trails for expense claims
- Automated red flag detection in ERP systems
- Setting approval thresholds and hierarchies
- Handling donations and sponsorships
Module 8: Training and Awareness Programmes - Principles of effective compliance training
- Segmenting audiences by risk and role
- Developing training objectives aligned with ISO 37001
- Creating engaging, non-generic content
- Delivering training in multiple formats
- Ensuring accessibility across languages and regions
- Frequency requirements: new hires, annual refreshers
- Mandatory training for high-risk roles
- Content for board members and executives
- Training for procurement and sales teams
- Third-party training requirements
- Certifying completion and maintaining records
- Evaluating training effectiveness
- KPIs for awareness and knowledge retention
- Using real-world scenarios and case studies
- Gamification and interactive learning techniques
- Privacy and data handling in training systems
Module 9: Whistleblowing and Reporting Mechanisms - Legal and ethical foundations of whistleblower systems
- Designing confidential, anonymous reporting channels
- Recommended reporting methods: hotline, email, portal
- Ensuring 24/7 availability and global access
- Protecting reporter anonymity and data security
- Anti-retaliation policies and enforcement
- Communication plans for reporting availability
- Handling reports: triage, investigation, response
- Assigning investigations to qualified personnel
- Maintaining investigation logs and records
- Timeframes for acknowledging and resolving reports
- Reporting to senior management and the board
- Integrating findings into risk assessments
- Audit readiness for reporting systems
- Training case handlers and investigators
- External reporting to regulators (when required)
- Measuring reporting volume and resolution times
Module 10: Monitoring, Measurement, and Audit - Distinguishing monitoring from auditing
- Operational monitoring of high-risk processes
- Key performance indicators for ABMS
- Key risk indicators and early warning signals
- Establishing audit frequency based on risk
- Planning internal anti-bribery audits
- Drafting audit checklists aligned with ISO 37001
- Selecting and training internal auditors
- Conducting opening and closing meetings
- Reporting audit findings clearly and objectively
- Classifying nonconformities: minor vs major
- Root cause analysis for audit failures
- Developing corrective action plans
- Tracking corrective actions to closure
- Management review of audit results
- Engaging external auditors for certification
- Digital audit tools and evidence collection
- Preparing for surveillance and recertification audits
Module 11: Continuous Improvement and Management Review - Principles of continual improvement in ABMS
- Conducting regular management reviews
- Agenda items for ABMS management meetings
- Reporting on policy effectiveness
- Reviewing risk assessment outcomes
- Evaluating audit and monitoring results
- Analysing whistleblower report trends
- Assessing training completion and effectiveness
- Monitoring third-party compliance performance
- Reviewing changes in internal and external issues
- Adjusting objectives and controls accordingly
- Documenting management review minutes
- Tracking decisions and follow-up actions
- Using PDCA cycle for improvement planning
- Integrating feedback from stakeholders
- Updating the ABMS based on lessons learned
Module 12: Documentation and Record Keeping - Required documentation under ISO 37001
- Determining which records to maintain
- Creating a document control procedure
- Version control, approval, and distribution
- Retention periods for compliance records
- Secure storage and access restrictions
- Digital vs physical record management
- Backup and disaster recovery planning
- Handling documentation in multiple jurisdictions
- Privacy and data protection compliance
- Archiving and destruction procedures
- Preparing documentation for audits
- Audit trail requirements for key decisions
- Checklist for documentation completeness
- Using templates to ensure consistency
Module 13: Certification Process and Audit Preparation - Understanding the ISO 37001 certification process
- Selecting an accredited certification body
- Verification of accreditation and scope
- Stages of certification: Stage 1 and Stage 2 audits
- Preparing for the documentation review
- Conducting internal readiness assessments
- Running a mock certification audit
- Identifying common audit findings and how to avoid them
- Preparing staff for interview questions
- Compiling evidence binders for auditors
- Responding to nonconformities effectively
- Negotiating corrective action timelines
- Obtaining certification and public announcement
- Maintaining certification through surveillance audits
- Handling complaints or challenges post-certification
- Preparing for recertification every three years
Module 14: Integration with Other Management Systems - Benefits of integrating ABMS with other standards
- Aligning with ISO 31000 (Risk Management)
- Integrating with ISO 9001 (Quality Management)
- Linking to ISO 14001 (Environmental)
- Connecting to ISO 27001 (Information Security)
- Harmonising policies and documentation
- Consolidating internal audit schedules
- Unifying management review meetings
- Sharing risk registers and KPIs
- Efficiencies in training and awareness
- Creating a unified compliance culture
- Using integrated corrective action systems
- Reporting to the board on combined performance
- Avoiding duplication and resource waste
- Establishing a central compliance function
Module 15: Advanced Implementation Strategies - Scaling ABMS across multinational operations
- Handling jurisdictional and legal conflicts
- Cultural adaptation without compromising standards
- Managing resistance to change
- Building buy-in at all organisational levels
- Communicating the business case for ABMS
- Leveraging early wins to drive momentum
- Developing a multi-year implementation roadmap
- Budgeting for ABMS resources and tools
- Outsourcing vs in-house ABMS management
- Using technology to scale controls
- AI and data analytics in monitoring
- Benchmarking against industry leaders
- Sharing best practices across divisions
- Establishing centres of excellence
Module 16: Real-World Implementation Projects - Case Study 1: Implementing ABMS in a mining company
- Case Study 2: Certification journey of a healthcare provider
- Case Study 3: Third-party risk overhaul in logistics
- Project 1: Draft your organisation’s anti-bribery policy
- Project 2: Conduct a mini risk assessment for procurement
- Project 3: Design a due diligence checklist for agents
- Project 4: Develop a whistleblower communication plan
- Project 5: Create an internal audit checklist
- Project 6: Simulate a management review meeting
- Template Library: Ready-to-customise documents
- Checklist: Pre-certification readiness assessment
- Toolkit: Risk scoring matrix and heat map generator
- Workbook: Step-by-step implementation planner
- Guide: Responding to audit nonconformities
- Framework: ABMS rollout timeline (12-month plan)
- Handbook: Quick reference for day-to-day decisions
- Establishing an ABMS leadership team
- Defining the Anti-Bribery Management Representative role
- Separation of duties and conflict of interest controls
- Reporting lines and escalation pathways
- Internal audit function integration
- Establishing an Ethics and Compliance Committee
- Board oversight responsibilities and reporting frequency
- Functional roles: Legal, HR, Procurement, Finance
- Third-party accountability mechanisms
- Succession planning for key ABMS roles
- Performance metrics tied to anti-bribery outcomes
- Role-specific responsibility matrices (RACI)
- Operating model for decentralised organisations
- Ensuring cross-functional collaboration
- Documenting role descriptions and mandates
Module 6: Due Diligence and Third-Party Management - Why third parties pose the highest bribery risk
- Classifying third parties by risk level
- Developing a third-party risk matrix
- Standard due diligence checklist components
- Collecting and verifying identification documents
- Screening against sanctions and watch lists
- Conducting adverse media screening
- Assessing financial stability and ownership structure
- Reviewing past litigation and regulatory actions
- Interview protocols for high-risk intermediaries
- Drafting anti-bribery clauses in contracts
- Ensuring flow-down of obligations to sub-vendors
- Managing consultants, agents, and distributors
- Approval workflows for onboarding
- Continuous monitoring and periodic re-screening
- Red flags and escalation triggers
- Using digital tools to automate checks
- Managing exceptions and risk acceptances
Module 7: Financial and Commercial Controls - Key financial gatekeepers in bribery prevention
- Segregation of duties in procurement and payments
- Validating legitimate business purposes for expenses
- Controlling cash and petty cash access
- Monitoring off-cycle and manual payments
- Analysing journal entries for anomalies
- Monitoring bank accounts and signatory rights
- Travelling and subsistence policy enforcement
- Luxury travel and entertainment controls
- Pricing analysis for inflated invoicing detection
- Managing shell companies and nominee arrangements
- Monitoring related-party transactions
- Verifying goods and service delivery
- Audit trails for expense claims
- Automated red flag detection in ERP systems
- Setting approval thresholds and hierarchies
- Handling donations and sponsorships
Module 8: Training and Awareness Programmes - Principles of effective compliance training
- Segmenting audiences by risk and role
- Developing training objectives aligned with ISO 37001
- Creating engaging, non-generic content
- Delivering training in multiple formats
- Ensuring accessibility across languages and regions
- Frequency requirements: new hires, annual refreshers
- Mandatory training for high-risk roles
- Content for board members and executives
- Training for procurement and sales teams
- Third-party training requirements
- Certifying completion and maintaining records
- Evaluating training effectiveness
- KPIs for awareness and knowledge retention
- Using real-world scenarios and case studies
- Gamification and interactive learning techniques
- Privacy and data handling in training systems
Module 9: Whistleblowing and Reporting Mechanisms - Legal and ethical foundations of whistleblower systems
- Designing confidential, anonymous reporting channels
- Recommended reporting methods: hotline, email, portal
- Ensuring 24/7 availability and global access
- Protecting reporter anonymity and data security
- Anti-retaliation policies and enforcement
- Communication plans for reporting availability
- Handling reports: triage, investigation, response
- Assigning investigations to qualified personnel
- Maintaining investigation logs and records
- Timeframes for acknowledging and resolving reports
- Reporting to senior management and the board
- Integrating findings into risk assessments
- Audit readiness for reporting systems
- Training case handlers and investigators
- External reporting to regulators (when required)
- Measuring reporting volume and resolution times
Module 10: Monitoring, Measurement, and Audit - Distinguishing monitoring from auditing
- Operational monitoring of high-risk processes
- Key performance indicators for ABMS
- Key risk indicators and early warning signals
- Establishing audit frequency based on risk
- Planning internal anti-bribery audits
- Drafting audit checklists aligned with ISO 37001
- Selecting and training internal auditors
- Conducting opening and closing meetings
- Reporting audit findings clearly and objectively
- Classifying nonconformities: minor vs major
- Root cause analysis for audit failures
- Developing corrective action plans
- Tracking corrective actions to closure
- Management review of audit results
- Engaging external auditors for certification
- Digital audit tools and evidence collection
- Preparing for surveillance and recertification audits
Module 11: Continuous Improvement and Management Review - Principles of continual improvement in ABMS
- Conducting regular management reviews
- Agenda items for ABMS management meetings
- Reporting on policy effectiveness
- Reviewing risk assessment outcomes
- Evaluating audit and monitoring results
- Analysing whistleblower report trends
- Assessing training completion and effectiveness
- Monitoring third-party compliance performance
- Reviewing changes in internal and external issues
- Adjusting objectives and controls accordingly
- Documenting management review minutes
- Tracking decisions and follow-up actions
- Using PDCA cycle for improvement planning
- Integrating feedback from stakeholders
- Updating the ABMS based on lessons learned
Module 12: Documentation and Record Keeping - Required documentation under ISO 37001
- Determining which records to maintain
- Creating a document control procedure
- Version control, approval, and distribution
- Retention periods for compliance records
- Secure storage and access restrictions
- Digital vs physical record management
- Backup and disaster recovery planning
- Handling documentation in multiple jurisdictions
- Privacy and data protection compliance
- Archiving and destruction procedures
- Preparing documentation for audits
- Audit trail requirements for key decisions
- Checklist for documentation completeness
- Using templates to ensure consistency
Module 13: Certification Process and Audit Preparation - Understanding the ISO 37001 certification process
- Selecting an accredited certification body
- Verification of accreditation and scope
- Stages of certification: Stage 1 and Stage 2 audits
- Preparing for the documentation review
- Conducting internal readiness assessments
- Running a mock certification audit
- Identifying common audit findings and how to avoid them
- Preparing staff for interview questions
- Compiling evidence binders for auditors
- Responding to nonconformities effectively
- Negotiating corrective action timelines
- Obtaining certification and public announcement
- Maintaining certification through surveillance audits
- Handling complaints or challenges post-certification
- Preparing for recertification every three years
Module 14: Integration with Other Management Systems - Benefits of integrating ABMS with other standards
- Aligning with ISO 31000 (Risk Management)
- Integrating with ISO 9001 (Quality Management)
- Linking to ISO 14001 (Environmental)
- Connecting to ISO 27001 (Information Security)
- Harmonising policies and documentation
- Consolidating internal audit schedules
- Unifying management review meetings
- Sharing risk registers and KPIs
- Efficiencies in training and awareness
- Creating a unified compliance culture
- Using integrated corrective action systems
- Reporting to the board on combined performance
- Avoiding duplication and resource waste
- Establishing a central compliance function
Module 15: Advanced Implementation Strategies - Scaling ABMS across multinational operations
- Handling jurisdictional and legal conflicts
- Cultural adaptation without compromising standards
- Managing resistance to change
- Building buy-in at all organisational levels
- Communicating the business case for ABMS
- Leveraging early wins to drive momentum
- Developing a multi-year implementation roadmap
- Budgeting for ABMS resources and tools
- Outsourcing vs in-house ABMS management
- Using technology to scale controls
- AI and data analytics in monitoring
- Benchmarking against industry leaders
- Sharing best practices across divisions
- Establishing centres of excellence
Module 16: Real-World Implementation Projects - Case Study 1: Implementing ABMS in a mining company
- Case Study 2: Certification journey of a healthcare provider
- Case Study 3: Third-party risk overhaul in logistics
- Project 1: Draft your organisation’s anti-bribery policy
- Project 2: Conduct a mini risk assessment for procurement
- Project 3: Design a due diligence checklist for agents
- Project 4: Develop a whistleblower communication plan
- Project 5: Create an internal audit checklist
- Project 6: Simulate a management review meeting
- Template Library: Ready-to-customise documents
- Checklist: Pre-certification readiness assessment
- Toolkit: Risk scoring matrix and heat map generator
- Workbook: Step-by-step implementation planner
- Guide: Responding to audit nonconformities
- Framework: ABMS rollout timeline (12-month plan)
- Handbook: Quick reference for day-to-day decisions
- Key financial gatekeepers in bribery prevention
- Segregation of duties in procurement and payments
- Validating legitimate business purposes for expenses
- Controlling cash and petty cash access
- Monitoring off-cycle and manual payments
- Analysing journal entries for anomalies
- Monitoring bank accounts and signatory rights
- Travelling and subsistence policy enforcement
- Luxury travel and entertainment controls
- Pricing analysis for inflated invoicing detection
- Managing shell companies and nominee arrangements
- Monitoring related-party transactions
- Verifying goods and service delivery
- Audit trails for expense claims
- Automated red flag detection in ERP systems
- Setting approval thresholds and hierarchies
- Handling donations and sponsorships
Module 8: Training and Awareness Programmes - Principles of effective compliance training
- Segmenting audiences by risk and role
- Developing training objectives aligned with ISO 37001
- Creating engaging, non-generic content
- Delivering training in multiple formats
- Ensuring accessibility across languages and regions
- Frequency requirements: new hires, annual refreshers
- Mandatory training for high-risk roles
- Content for board members and executives
- Training for procurement and sales teams
- Third-party training requirements
- Certifying completion and maintaining records
- Evaluating training effectiveness
- KPIs for awareness and knowledge retention
- Using real-world scenarios and case studies
- Gamification and interactive learning techniques
- Privacy and data handling in training systems
Module 9: Whistleblowing and Reporting Mechanisms - Legal and ethical foundations of whistleblower systems
- Designing confidential, anonymous reporting channels
- Recommended reporting methods: hotline, email, portal
- Ensuring 24/7 availability and global access
- Protecting reporter anonymity and data security
- Anti-retaliation policies and enforcement
- Communication plans for reporting availability
- Handling reports: triage, investigation, response
- Assigning investigations to qualified personnel
- Maintaining investigation logs and records
- Timeframes for acknowledging and resolving reports
- Reporting to senior management and the board
- Integrating findings into risk assessments
- Audit readiness for reporting systems
- Training case handlers and investigators
- External reporting to regulators (when required)
- Measuring reporting volume and resolution times
Module 10: Monitoring, Measurement, and Audit - Distinguishing monitoring from auditing
- Operational monitoring of high-risk processes
- Key performance indicators for ABMS
- Key risk indicators and early warning signals
- Establishing audit frequency based on risk
- Planning internal anti-bribery audits
- Drafting audit checklists aligned with ISO 37001
- Selecting and training internal auditors
- Conducting opening and closing meetings
- Reporting audit findings clearly and objectively
- Classifying nonconformities: minor vs major
- Root cause analysis for audit failures
- Developing corrective action plans
- Tracking corrective actions to closure
- Management review of audit results
- Engaging external auditors for certification
- Digital audit tools and evidence collection
- Preparing for surveillance and recertification audits
Module 11: Continuous Improvement and Management Review - Principles of continual improvement in ABMS
- Conducting regular management reviews
- Agenda items for ABMS management meetings
- Reporting on policy effectiveness
- Reviewing risk assessment outcomes
- Evaluating audit and monitoring results
- Analysing whistleblower report trends
- Assessing training completion and effectiveness
- Monitoring third-party compliance performance
- Reviewing changes in internal and external issues
- Adjusting objectives and controls accordingly
- Documenting management review minutes
- Tracking decisions and follow-up actions
- Using PDCA cycle for improvement planning
- Integrating feedback from stakeholders
- Updating the ABMS based on lessons learned
Module 12: Documentation and Record Keeping - Required documentation under ISO 37001
- Determining which records to maintain
- Creating a document control procedure
- Version control, approval, and distribution
- Retention periods for compliance records
- Secure storage and access restrictions
- Digital vs physical record management
- Backup and disaster recovery planning
- Handling documentation in multiple jurisdictions
- Privacy and data protection compliance
- Archiving and destruction procedures
- Preparing documentation for audits
- Audit trail requirements for key decisions
- Checklist for documentation completeness
- Using templates to ensure consistency
Module 13: Certification Process and Audit Preparation - Understanding the ISO 37001 certification process
- Selecting an accredited certification body
- Verification of accreditation and scope
- Stages of certification: Stage 1 and Stage 2 audits
- Preparing for the documentation review
- Conducting internal readiness assessments
- Running a mock certification audit
- Identifying common audit findings and how to avoid them
- Preparing staff for interview questions
- Compiling evidence binders for auditors
- Responding to nonconformities effectively
- Negotiating corrective action timelines
- Obtaining certification and public announcement
- Maintaining certification through surveillance audits
- Handling complaints or challenges post-certification
- Preparing for recertification every three years
Module 14: Integration with Other Management Systems - Benefits of integrating ABMS with other standards
- Aligning with ISO 31000 (Risk Management)
- Integrating with ISO 9001 (Quality Management)
- Linking to ISO 14001 (Environmental)
- Connecting to ISO 27001 (Information Security)
- Harmonising policies and documentation
- Consolidating internal audit schedules
- Unifying management review meetings
- Sharing risk registers and KPIs
- Efficiencies in training and awareness
- Creating a unified compliance culture
- Using integrated corrective action systems
- Reporting to the board on combined performance
- Avoiding duplication and resource waste
- Establishing a central compliance function
Module 15: Advanced Implementation Strategies - Scaling ABMS across multinational operations
- Handling jurisdictional and legal conflicts
- Cultural adaptation without compromising standards
- Managing resistance to change
- Building buy-in at all organisational levels
- Communicating the business case for ABMS
- Leveraging early wins to drive momentum
- Developing a multi-year implementation roadmap
- Budgeting for ABMS resources and tools
- Outsourcing vs in-house ABMS management
- Using technology to scale controls
- AI and data analytics in monitoring
- Benchmarking against industry leaders
- Sharing best practices across divisions
- Establishing centres of excellence
Module 16: Real-World Implementation Projects - Case Study 1: Implementing ABMS in a mining company
- Case Study 2: Certification journey of a healthcare provider
- Case Study 3: Third-party risk overhaul in logistics
- Project 1: Draft your organisation’s anti-bribery policy
- Project 2: Conduct a mini risk assessment for procurement
- Project 3: Design a due diligence checklist for agents
- Project 4: Develop a whistleblower communication plan
- Project 5: Create an internal audit checklist
- Project 6: Simulate a management review meeting
- Template Library: Ready-to-customise documents
- Checklist: Pre-certification readiness assessment
- Toolkit: Risk scoring matrix and heat map generator
- Workbook: Step-by-step implementation planner
- Guide: Responding to audit nonconformities
- Framework: ABMS rollout timeline (12-month plan)
- Handbook: Quick reference for day-to-day decisions
- Legal and ethical foundations of whistleblower systems
- Designing confidential, anonymous reporting channels
- Recommended reporting methods: hotline, email, portal
- Ensuring 24/7 availability and global access
- Protecting reporter anonymity and data security
- Anti-retaliation policies and enforcement
- Communication plans for reporting availability
- Handling reports: triage, investigation, response
- Assigning investigations to qualified personnel
- Maintaining investigation logs and records
- Timeframes for acknowledging and resolving reports
- Reporting to senior management and the board
- Integrating findings into risk assessments
- Audit readiness for reporting systems
- Training case handlers and investigators
- External reporting to regulators (when required)
- Measuring reporting volume and resolution times
Module 10: Monitoring, Measurement, and Audit - Distinguishing monitoring from auditing
- Operational monitoring of high-risk processes
- Key performance indicators for ABMS
- Key risk indicators and early warning signals
- Establishing audit frequency based on risk
- Planning internal anti-bribery audits
- Drafting audit checklists aligned with ISO 37001
- Selecting and training internal auditors
- Conducting opening and closing meetings
- Reporting audit findings clearly and objectively
- Classifying nonconformities: minor vs major
- Root cause analysis for audit failures
- Developing corrective action plans
- Tracking corrective actions to closure
- Management review of audit results
- Engaging external auditors for certification
- Digital audit tools and evidence collection
- Preparing for surveillance and recertification audits
Module 11: Continuous Improvement and Management Review - Principles of continual improvement in ABMS
- Conducting regular management reviews
- Agenda items for ABMS management meetings
- Reporting on policy effectiveness
- Reviewing risk assessment outcomes
- Evaluating audit and monitoring results
- Analysing whistleblower report trends
- Assessing training completion and effectiveness
- Monitoring third-party compliance performance
- Reviewing changes in internal and external issues
- Adjusting objectives and controls accordingly
- Documenting management review minutes
- Tracking decisions and follow-up actions
- Using PDCA cycle for improvement planning
- Integrating feedback from stakeholders
- Updating the ABMS based on lessons learned
Module 12: Documentation and Record Keeping - Required documentation under ISO 37001
- Determining which records to maintain
- Creating a document control procedure
- Version control, approval, and distribution
- Retention periods for compliance records
- Secure storage and access restrictions
- Digital vs physical record management
- Backup and disaster recovery planning
- Handling documentation in multiple jurisdictions
- Privacy and data protection compliance
- Archiving and destruction procedures
- Preparing documentation for audits
- Audit trail requirements for key decisions
- Checklist for documentation completeness
- Using templates to ensure consistency
Module 13: Certification Process and Audit Preparation - Understanding the ISO 37001 certification process
- Selecting an accredited certification body
- Verification of accreditation and scope
- Stages of certification: Stage 1 and Stage 2 audits
- Preparing for the documentation review
- Conducting internal readiness assessments
- Running a mock certification audit
- Identifying common audit findings and how to avoid them
- Preparing staff for interview questions
- Compiling evidence binders for auditors
- Responding to nonconformities effectively
- Negotiating corrective action timelines
- Obtaining certification and public announcement
- Maintaining certification through surveillance audits
- Handling complaints or challenges post-certification
- Preparing for recertification every three years
Module 14: Integration with Other Management Systems - Benefits of integrating ABMS with other standards
- Aligning with ISO 31000 (Risk Management)
- Integrating with ISO 9001 (Quality Management)
- Linking to ISO 14001 (Environmental)
- Connecting to ISO 27001 (Information Security)
- Harmonising policies and documentation
- Consolidating internal audit schedules
- Unifying management review meetings
- Sharing risk registers and KPIs
- Efficiencies in training and awareness
- Creating a unified compliance culture
- Using integrated corrective action systems
- Reporting to the board on combined performance
- Avoiding duplication and resource waste
- Establishing a central compliance function
Module 15: Advanced Implementation Strategies - Scaling ABMS across multinational operations
- Handling jurisdictional and legal conflicts
- Cultural adaptation without compromising standards
- Managing resistance to change
- Building buy-in at all organisational levels
- Communicating the business case for ABMS
- Leveraging early wins to drive momentum
- Developing a multi-year implementation roadmap
- Budgeting for ABMS resources and tools
- Outsourcing vs in-house ABMS management
- Using technology to scale controls
- AI and data analytics in monitoring
- Benchmarking against industry leaders
- Sharing best practices across divisions
- Establishing centres of excellence
Module 16: Real-World Implementation Projects - Case Study 1: Implementing ABMS in a mining company
- Case Study 2: Certification journey of a healthcare provider
- Case Study 3: Third-party risk overhaul in logistics
- Project 1: Draft your organisation’s anti-bribery policy
- Project 2: Conduct a mini risk assessment for procurement
- Project 3: Design a due diligence checklist for agents
- Project 4: Develop a whistleblower communication plan
- Project 5: Create an internal audit checklist
- Project 6: Simulate a management review meeting
- Template Library: Ready-to-customise documents
- Checklist: Pre-certification readiness assessment
- Toolkit: Risk scoring matrix and heat map generator
- Workbook: Step-by-step implementation planner
- Guide: Responding to audit nonconformities
- Framework: ABMS rollout timeline (12-month plan)
- Handbook: Quick reference for day-to-day decisions
- Principles of continual improvement in ABMS
- Conducting regular management reviews
- Agenda items for ABMS management meetings
- Reporting on policy effectiveness
- Reviewing risk assessment outcomes
- Evaluating audit and monitoring results
- Analysing whistleblower report trends
- Assessing training completion and effectiveness
- Monitoring third-party compliance performance
- Reviewing changes in internal and external issues
- Adjusting objectives and controls accordingly
- Documenting management review minutes
- Tracking decisions and follow-up actions
- Using PDCA cycle for improvement planning
- Integrating feedback from stakeholders
- Updating the ABMS based on lessons learned
Module 12: Documentation and Record Keeping - Required documentation under ISO 37001
- Determining which records to maintain
- Creating a document control procedure
- Version control, approval, and distribution
- Retention periods for compliance records
- Secure storage and access restrictions
- Digital vs physical record management
- Backup and disaster recovery planning
- Handling documentation in multiple jurisdictions
- Privacy and data protection compliance
- Archiving and destruction procedures
- Preparing documentation for audits
- Audit trail requirements for key decisions
- Checklist for documentation completeness
- Using templates to ensure consistency
Module 13: Certification Process and Audit Preparation - Understanding the ISO 37001 certification process
- Selecting an accredited certification body
- Verification of accreditation and scope
- Stages of certification: Stage 1 and Stage 2 audits
- Preparing for the documentation review
- Conducting internal readiness assessments
- Running a mock certification audit
- Identifying common audit findings and how to avoid them
- Preparing staff for interview questions
- Compiling evidence binders for auditors
- Responding to nonconformities effectively
- Negotiating corrective action timelines
- Obtaining certification and public announcement
- Maintaining certification through surveillance audits
- Handling complaints or challenges post-certification
- Preparing for recertification every three years
Module 14: Integration with Other Management Systems - Benefits of integrating ABMS with other standards
- Aligning with ISO 31000 (Risk Management)
- Integrating with ISO 9001 (Quality Management)
- Linking to ISO 14001 (Environmental)
- Connecting to ISO 27001 (Information Security)
- Harmonising policies and documentation
- Consolidating internal audit schedules
- Unifying management review meetings
- Sharing risk registers and KPIs
- Efficiencies in training and awareness
- Creating a unified compliance culture
- Using integrated corrective action systems
- Reporting to the board on combined performance
- Avoiding duplication and resource waste
- Establishing a central compliance function
Module 15: Advanced Implementation Strategies - Scaling ABMS across multinational operations
- Handling jurisdictional and legal conflicts
- Cultural adaptation without compromising standards
- Managing resistance to change
- Building buy-in at all organisational levels
- Communicating the business case for ABMS
- Leveraging early wins to drive momentum
- Developing a multi-year implementation roadmap
- Budgeting for ABMS resources and tools
- Outsourcing vs in-house ABMS management
- Using technology to scale controls
- AI and data analytics in monitoring
- Benchmarking against industry leaders
- Sharing best practices across divisions
- Establishing centres of excellence
Module 16: Real-World Implementation Projects - Case Study 1: Implementing ABMS in a mining company
- Case Study 2: Certification journey of a healthcare provider
- Case Study 3: Third-party risk overhaul in logistics
- Project 1: Draft your organisation’s anti-bribery policy
- Project 2: Conduct a mini risk assessment for procurement
- Project 3: Design a due diligence checklist for agents
- Project 4: Develop a whistleblower communication plan
- Project 5: Create an internal audit checklist
- Project 6: Simulate a management review meeting
- Template Library: Ready-to-customise documents
- Checklist: Pre-certification readiness assessment
- Toolkit: Risk scoring matrix and heat map generator
- Workbook: Step-by-step implementation planner
- Guide: Responding to audit nonconformities
- Framework: ABMS rollout timeline (12-month plan)
- Handbook: Quick reference for day-to-day decisions
- Understanding the ISO 37001 certification process
- Selecting an accredited certification body
- Verification of accreditation and scope
- Stages of certification: Stage 1 and Stage 2 audits
- Preparing for the documentation review
- Conducting internal readiness assessments
- Running a mock certification audit
- Identifying common audit findings and how to avoid them
- Preparing staff for interview questions
- Compiling evidence binders for auditors
- Responding to nonconformities effectively
- Negotiating corrective action timelines
- Obtaining certification and public announcement
- Maintaining certification through surveillance audits
- Handling complaints or challenges post-certification
- Preparing for recertification every three years
Module 14: Integration with Other Management Systems - Benefits of integrating ABMS with other standards
- Aligning with ISO 31000 (Risk Management)
- Integrating with ISO 9001 (Quality Management)
- Linking to ISO 14001 (Environmental)
- Connecting to ISO 27001 (Information Security)
- Harmonising policies and documentation
- Consolidating internal audit schedules
- Unifying management review meetings
- Sharing risk registers and KPIs
- Efficiencies in training and awareness
- Creating a unified compliance culture
- Using integrated corrective action systems
- Reporting to the board on combined performance
- Avoiding duplication and resource waste
- Establishing a central compliance function
Module 15: Advanced Implementation Strategies - Scaling ABMS across multinational operations
- Handling jurisdictional and legal conflicts
- Cultural adaptation without compromising standards
- Managing resistance to change
- Building buy-in at all organisational levels
- Communicating the business case for ABMS
- Leveraging early wins to drive momentum
- Developing a multi-year implementation roadmap
- Budgeting for ABMS resources and tools
- Outsourcing vs in-house ABMS management
- Using technology to scale controls
- AI and data analytics in monitoring
- Benchmarking against industry leaders
- Sharing best practices across divisions
- Establishing centres of excellence
Module 16: Real-World Implementation Projects - Case Study 1: Implementing ABMS in a mining company
- Case Study 2: Certification journey of a healthcare provider
- Case Study 3: Third-party risk overhaul in logistics
- Project 1: Draft your organisation’s anti-bribery policy
- Project 2: Conduct a mini risk assessment for procurement
- Project 3: Design a due diligence checklist for agents
- Project 4: Develop a whistleblower communication plan
- Project 5: Create an internal audit checklist
- Project 6: Simulate a management review meeting
- Template Library: Ready-to-customise documents
- Checklist: Pre-certification readiness assessment
- Toolkit: Risk scoring matrix and heat map generator
- Workbook: Step-by-step implementation planner
- Guide: Responding to audit nonconformities
- Framework: ABMS rollout timeline (12-month plan)
- Handbook: Quick reference for day-to-day decisions
- Scaling ABMS across multinational operations
- Handling jurisdictional and legal conflicts
- Cultural adaptation without compromising standards
- Managing resistance to change
- Building buy-in at all organisational levels
- Communicating the business case for ABMS
- Leveraging early wins to drive momentum
- Developing a multi-year implementation roadmap
- Budgeting for ABMS resources and tools
- Outsourcing vs in-house ABMS management
- Using technology to scale controls
- AI and data analytics in monitoring
- Benchmarking against industry leaders
- Sharing best practices across divisions
- Establishing centres of excellence