A structured process
The SMRC risk auditing process involves a detailed examination of your organisation including:
- The Board, their knowledge of social media risk, and whether an individual Board member has formal responsibility for overseeing the management of social media risk
- The security of your social media assets including the strength of your social media passwords and the processes for owning and managing social media assets such as Twitter feeds and Facebook pages
- The effectiveness of the processes for listening to social media conversations
- The processes for defining the importance of individual posts and allocating responsibility to individuals, some of whom will (or should) be in different business functions from the people doing the listening
- The training all employees get in their use of social media and the way their use is monitored and managed
- The way that social media risk management activities are monitored and the way that the effectiveness of these processes is measured
The process is designed to identify improvements that can be made to your risk management that will reduce the effect of future risks. These measures shoud reduce risk without damaging the positive benefits that can accrue from social media.
Audits should be conducted on a regular basis, ideally every 6 months, due to the changing nature of the social media environment..