The Open Compliance and Ethics Group (OCEG) is a non-profit organization that developed the OCEG Framework for Principled Performance (commonly known as the OCEG Framework) which is centered on the GRC Capability Model (commonly known as the Red Book). The Red Book describes key parts of an effective GRC system “that integrate the principles of good corporate governance, risk management, compliance, ethics and internal control.”
The OCEG Framework is made up of 8 integrated Components: Culture and Content; Inform and Integrate; Organize and Oversee; Monitor and Measure; Respond and Resolve; Assess and Align; Prevent and Promote; Detect and Discern.
Each Component has several Elements; each Element has its related Principles (what the Element should accomplish), Sources of Failure, Practices, Requirements (specific actions required by either law or another authority document external to OCEG), Key Deliverables, and Technology Components.
The OCEG Framework has 8 Universal Outcomes: achieve business objectives; enhance organizational culture; increase stakeholder confidence; prepare and protect the organization; prevent, detect and reduce adversity; motivate and inspire desired conduct; improve responsiveness and efficiency; and optimize economic and social value.