This Malaysian Standard provides guidelines on managing corruption risks exposed by organisations. The application of these guidelines through a systematic, comprehensive and practical step-by-step methodology can be customised to any organisation and its context.
This document provides guidelines on the selection and application of techniques for assessing potential corruption risk in a wide range of situations. The techniques are used to assist in making decisions where there is uncertainty regarding particular corruption risks and as part of a process for managing corruption risk.
The document provides summaries of a range of techniques, with references to other documents and other inputs where the techniques are described in more detail.
The purpose of corruption risk management is to provide assessment of corruption risk in a given context in order to formulate anti-corruption strategies and policies. It can also serve as a baseline for anti-corruption work to track changes in risks over time. Corruption risk management can be applied to all organisations in the public, private, professional and voluntary sectors of all sizes, including SMEs and those with international operations.
Corruption risk management is a management process that helps to identify potential corruption risks in an organisation, assess those identified risks in terms of severity to the organisational performance, goal and image, analyse its causes and ultimately help in bringing about corrective measures to minimise or eradicate those risks. Therefore, it is about identifying, treating and managing corruption risks.
Corruption risk management aims to identify structural weaknesses in an organisation that can facilitate corruption. It provides a risk-based framework for identifying the risk factors and thereafter the treatments and embeds corruption prevention within a well-established governance framework. It is a management tool that helps management to develop corruption risk profiles and risk action plans that effectively minimise the exposure of corruption risks.
This document provides a common approach to managing any type of corruption risk and is not industry or sector-specific.
This document can be used throughout the life of the organisation and can be applied to any activity, including decision-making at all levels.
