Information Systems Audit and Control Association (ISACA®)

​​https://www.isaca.org/Pages/default.aspx


Note: ​ISACA® ​developed and maintains the Control Objectives for Information and Related Technology (COBIT®) framework as well as other frameworks to assist in IT governance and security.

California Office of Administrative Law (OAL)

http://www.oal.ca.gov/


Note: ​OAL oversees the rulemaking process for all California agencies that are required to comply with the Administrative Procedures Act (APA). The Office provides instructional materials on how to participate in the rule making process as well as publications documenting the rule making of all state agencies.

​GRC LINKS

Being aware of the legal and regulatory environment in which you operate your business is a key component of an effective GRC program.

Analysis + Answers = Advocacy  

Many California state agencies, including the Division of Workers' Compensation and the Department of Insurance, conduct "forums" or "workshops" to hear from stakeholders prior to the start of formal rulemaking. Be sure to check with these agencies periodically to see what pre-rulemaking activities have been calendared.

California Labor & Workforce Development Agency - AB 5 Guidance

https://www.labor.ca.gov/employmentstatus/

Committee of Sponsoring Organizations (COSO)

http://coso.org/default.htm


Note: ​COSO is an organization of accounting, audit and financial associations that develops frameworks and guidance on enterprise risk management, internal control and fraud deterrence. Their work has been critical in the area of SOX compliance. Please note their Policy for Acceptable Use of COSO Materials when accessing their materials.

California Department of Justice - Privacy Regulations

https://oag.ca.gov/privacy/ccpa


California Department of Fair Employment and Housing

http://www.dfeh.ca.gov/Publications_LegisSumm.htm


Note​: This link is to summaries of new laws regarding various anti-discrimination issues, including discrimination in employment.  

National Association of Insurance Commissioners (NAIC) 

http://naic.org/cipr_key_issues.htm


Note: ​This link is to the NAIC Center for Insurance Policy & Research (CIPR) which provides details on initaitives in insurance regulation, information on Model Acts and Regulations, and other important information, including the new requirements for Corporate Governance and the Corporate Governance Annual Disclosure (CGAD) and the Insurance Data Security Model Law.


United Sates Department of Labor

Employee Benefits Security Administration (EBSA):

http://www.dol.gov/ebsa/


Occupational Safety and Health Administration (OSHA):

https://www.osha.gov/


Wage and Hour Division (WHD):

http://www.dol.gov/whd/