Compliance is a reaction to both internal and external requirements. Compliance requirements can best be met by modifying an organization's current RIM state into a more compliant state.
A first step in this process is to design a customized strategic information management plan and roadmap. One key objective of this process is to transfer information management design from the vendor back to the client.
The SIM plan and roadmap can be best developed using existing Strategic Information Management tools such as the GARP principles, the Maturity Model for information governance, and a number of supporting SIM tools.
The term 'Information Governance' has been used to define this whole process. The problem with information governance is that it means different things to different people. To Legal it means to develop and implement policy and procedures. To Information Technology it means to implement software and hardware. To the Business Units it means to re-design processes. To H/R it means to organize 'control' departments and to provide additional training.
Perhaps the following Information Governance definition best encompasses all of these views:
'An accountability framework that includes the people, processes, policy, and technology, that ensure the effective management of information, to enable the organization to achieve its strategic goals and business programs.'
A proven design process currently exists that allows an organization to document its current state, determine an acceptable desired future state, conduct a gap analysis, determine areas for improvement, identify required RIM projects, and then complete a SIM plan and roadmap for consideration by senior management.
The result of this step by step process is a clear, multi-year plan that provides management with a RIM strategy that allows for effective decision making.