Professional Documents
Culture Documents
Type of Risk
Hazard Risks
Catastrophic natural event (earthquake, fire, flood, explosion, etc.) and
Property Hazard RIsks for Building, Contents, Business Interruption,
Extra Expense, Leasehold Interest, Accounts Receivable, Valuable
Papers, Fine Arts (if any), Computer breakdown, including loss of data,
arising from first party accidental or malicious incidents.
Pandemic
Financial Risks
Conflicts of Interest in financial transactions and agreements.
Reputational Risk
Policy not set annually
Partners go bankrupt
Breach resulting in lack of confidence and lose customer base.
Budget impairment
Non-compliant cost transfers
Insufficient oversight over third-party vendors
Improper governmental activities including bribes
Improper use of funds
Contract Review
Obsolescence of systems/technology
Research Risks
Research misconduct, such as falsification of data or results, or non-
disclosure of research dangers
Travel Insurance
Health travel information
Compliance Risks
Regulatory Fines or Penalties
Non-compliance with National Research Foundation, the Government of
Singapore
Laboratory safety
Facilities and Grounds Safety
Property Damage/Loss from fire
Management and Mitigation
(1) Transfer the risk to insurance,(2) Business Continuity Planning, (3) Crisis
Management, (4) Communication and response protocals.
(1) Review contracts for Vendors, Contractors & SubContractors to be sure that
there is a clause requiring that they furnish a certificate of insurance before the
start of work. (2) Request Certificates of Insurance in advance of starting work.
(1) Cyber Safety Programs, (2) Regular Penetration Reporting & Analysis
(1) System performance monitoring, (2) Systems life cycle management, (3) Help
desk reports
(1) Systems Development reviews and approvals, development and
maintenance standards, (2) Electronic Information Security and Change
Management
(1) Disaster Recovery Plans, (2) Business Continuity Plan, (3) Systemwide and
local backup and recovery policies and procedures, (4) Incident Response
Planning and Notification Procedures, (5) Emergency Plan testing
(1) Policies and Training, (2) Employee Assistance Programs, (3) Mediation
Services, (4) Workplace Violence Prevention
(1) Intellectual property management policies and programs, (2) Innovative
Access Programs
http://irc.nacubo.org/legal/Pages/default.aspx
(1) To Report Serious Injuries, please report by Internet for both domestic and
foreign injuries at website ops@eruopassistance-usa.com or call 1-866-451-
7606 (inside USA) or 1-202-828-5896 (outside USA call collect).
(1) Statement of Ethical values and Standards of Ethical Conduct, (2) Work-Life
Balance, Wellness, and Training & Development
(1) Research Compliance Policies, (2) Ethics Compliance and Audit Program, (3)
Internal Control Program, (4) Whistle Blower Program, (5) Mandatory Ethics
Training
http://irc.nacubo.org/reportingcompliance/Pages/CompensatingHumanSubjectsforResearchStudiesConductedAbroad.aspx an
(1) Ethics Compliance and Audit Program, (2) Internal Control Program, (3)
Whistle Blower System, (4) Administrative Responsibilities Handbook - Principles
of Regulatory Compliance
(1) Routings of transaction for approval before payment, (2) Certification of
payment in ledgers, (3) Whistle Blower System, (4) Ethics Compliance and Audit
Program, (5) General and Payroll Ledger Reviews, (6) PI Ledger Review
(1) Whistle Blower System, (2) Ethics Compliance and Audit Program, (3) Internal
Control Program, (4) Administrative Responsibilities Handbook - Principles of
Regulatory Compliance, (5) General and Payroll Ledger Reviews, (6) PI Ledger
Review
(1) Fire Prevention Plans and Policies, (2) Fire Drills, (3) Duplicate Records
Backup