Friday, December 13, 2019
Corporate Compliance Insights
  • Home
    • Home
  • About
    • About CCI
    • Writing for CCI
    • Advertise With Us
  • Articles
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Industry News
  • Jobs
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
  • Home
    • Home
  • About
    • About CCI
    • Writing for CCI
    • Advertise With Us
  • Articles
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Industry News
  • Jobs
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home Compliance

Compliance and Mastering Strategy

by Thomas Fox
February 22, 2016
in Compliance
The best CCOs are strategists

This article was republished with permission from Tom Fox’s FCPA Compliance and Ethics Blog.

It’s often difficult for Chief Compliance Officers (CCOs) to look at compliance strategy rather than the tactical aspects of compliance. This is because it is usually the day-to-day aspects of doing compliance that are your full time job. However, the more you can think strategically about your compliance program, the more you and your company will benefit going forward. I thought about this as I read an article in the MIT Sloan Management Review entitled “Mastering Strategy,” in which Editorial Director Martha Mangelsdorf spoke with David Yoffie and Michael A. Cusumano, who recently released the book, “Strategy Rules: Timeless Lessons From Bill Gates, Andy Grove and Steve Jobs.” These men headed Microsoft, Intel and Apple, respectively.

One of the more interesting initial observations was “that strategic thinking is a capability that leaders develop over time — and that these executives, whom we know as having made some great decisions, didn’t necessarily start off as such accomplished strategists.” Grove began as a scientist, working in a laboratory, then moved into operations and became Intel’s Chief Executive Officer (CEO). The authors viewed Gates as a natural strategist, yet he learned about “execution and organization. He learned he couldn’t personally run whole areas of the company.” The authors viewed Jobs as having “great product instincts, but he had to learn to master strategy in a high tech world.”

The meat of the book is five important strategic lessons the authors learned from studying these individuals. I will use them as a jumping-off point for their application for the CCO or compliance practitioner.

Strategy Rule #1: Look Forward, Reason Back

As a lawyer, I certainly understand studying the past to try and learn about the future, or at least prevent the mistakes of the past. However, the authors believe “real strategists are like great chess players or great game theorists: They need to think several steps ahead towards the end of the game and then reason back to what that means about what they need to do today. As a strategist, you need to think about where you want your business to be two, three, five, seven years down the road and then figure out what are the priorities and boundaries of what you need to do as a company today to get there.”

Stephen Martin, now a partner at Arnold & Porter LLP, often talks about having a 1-3-5 year compliance strategic plan. He says this gives you a guidepost to aim for and a track record for documentation purposes. Martin believes this is a disciplined way of thinking through both several steps ahead and what they might mean for the company.

Strategy Rule #2: Make Big Bets Without Betting the Company

The authors note that all three executives made “big bets, but they never really bet the company.” For the CCO or compliance practitioner, the corollary is that with an effective compliance program, the business can move very fast and take risks it might not otherwise be able to do so safely. I once heard former Citibank CEO John Reed say the reason you have brakes on a car is so you can go fast, not simply to slow the car down. This is what compliance can provide if you not only think strategically, but also manage your compliance program thoroughly.

Strategy Rule #3: Build Platforms and Ecosystems – Not Just Products

For the CCO or compliance practitioner, I can think of no better example here than to cite to Jon Rydberg, head of Orchid Advisers, and his innovations around the term “compliance ecosystem.” Rydberg developed a lifecycle of compliance around the integration of written policies and procedures, personnel and technologies. While this sounds close to a formulation such as the 10 Hallmarks of an Effective Compliance Program, Rydberg takes the concept into the realm of strategic thinking by demonstrating that by putting an entire ecosystem in place, a company could move towards replicating each step in the process without reinventing the wheel or with additional costs. The authors point to Gates, who understood that a computer was a platform and that Microsoft operating system was the key element of that platform.

The Volkswagen (VW) emissions-testing scandal is the most current example I can posit where if an effective compliance program had been in place it may well have helped to prevent, detect and remediate the issues, which came before the company. However, for any competitor, compliance would have been required to demonstrate, with transparency, compliance with applicable laws. That is using compliance strategically.

Strategy Rule #4: Exploit Leverage and Power – Play Judo and Sumo

I found this rule quite interesting as it might apply to the compliance arena. The authors noted, “If you’re going to be a great strategist, you’ve got to be able to execute at the tactical level. The things that you do every day, day-to-day with your customers, with your competitors and with your partners become critical in your ability to execute your longer-term strategy.” For the CCO or compliance practitioner, I think this translates into the requirement that you deliver on the tactical or day-to-day slogging of compliance. You have to work to put the written code of conduct, policies and procedures in place, train on them and monitor them going forward. This gives you the ability to move forward strategically because you will have the strength of credibility.

Strategy Rule #5: Shape the Organization Around Your Personal Anchor

Here the authors noted a distinct paradox: “You want to dive deep into the things you’re really good at, but at the same time stay at a high level and always keep the big picture in mind. You have to know yourself, know what you are good at and know your weak spots. It doesn’t matter whether you’re an entrepreneur or running a $50 billion company; the key thing is figuring out how to compensate for your weaknesses in order to make the organization execute effectively. We think that’s true regardless of company size; any CEO has to do that. In the case of Grove and Gates, they knew very early on in their careers what they were good at and what they weren’t; their crisp execution depended on finding ways to get the right people around them to compensate for areas that weren’t their personal strengths.”

For many CCOs or compliance practitioners who came to the role from the in-house legal department or with a legal training, this is particularly true. The legal department is more generally focused on protecting the company. The compliance department is more generally focused on preventing, finding and fixing problems. Second is the use of technology and, more particularly, data analytics. When asked about the COSO 2013 Framework and its application, you cannot simply point down the hall and say something like “I am a lawyer, those people in internal audit use COSO, not me.” If you cannot or do not work well with numbers, pair up with someone in your organization or company who does. Usually that is finance, internal audit or some other corporate discipline. The same is true for the COSO Framework.

Last week, I wrote that management≠leadership. One of the other key differences is that managing is about executing tactical concerns. Leadership is more about strategy. As you move to leadership in your compliance function, these lessons on strategy from some very good leaders over the past 25 years are excellent guideposts for you to incorporate into your skill set.

This publication contains general information only and is based on the experiences and research of the author. The author is not, by means of this publication, rendering business advice, legal advice or other professional advice or services. This publication is not a substitute for such legal advice or services, nor should it be used as a basis for any decision or action that may affect your business. Before making any decision or taking any action that may affect your business, you should consult a qualified legal advisor. The author, his affiliates and related entities shall not be responsible for any loss sustained by any person or entity that relies on this publication. The author gives his permission to link, post, distribute or reference this article for any lawful purpose, provided attribution is made to the author. The author can be reached at [email protected]


Previous Post

STOPit Introduces Risk Mitigation Tool to Prevent & Mitigate Costly Workplace Misconduct

Next Post

New DOL Guidance Seeks to Expand FLSA Liability to More "Joint" Employers

Thomas Fox

Thomas Fox has practiced law in Houston for 25 years. He is now assisting companies with FCPA compliance, risk management and international transactions.

He was most recently the General Counsel at Drilling Controls, Inc., a worldwide oilfield manufacturing and service company. He was previously Division Counsel with Halliburton Energy Services, Inc. where he supported Halliburton’s software division and its downhole division, which included the logging, directional drilling and drill bit business units.

Tom attended undergraduate school at the University of Texas, graduate school at Michigan State University and law school at the University of Michigan.

Tom writes and speaks nationally and internationally on a wide variety of topics, ranging from FCPA compliance, indemnities and other forms of risk management for a worldwide energy practice, tax issues faced by multi-national US companies, insurance coverage issues and protection of trade secrets.

Thomas Fox can be contacted via email at [email protected] or through his website www.tfoxlaw.com.

Follow this link to see all of his articles.

Related Posts

change is coming text on city background at sunset

Future-Proofing the Compliance Professional

December 13, 2019
new york city skyline at sunset

The Early Days: The Birth of the Independent Monitoring Concept

December 11, 2019
job candidates awaiting inerview

An Unconventional Interview Question: “Do You Have an HR Department?”

December 5, 2019
closeup of magnifying glass on gray background

DiCianni’s Idea: How It All Got Started

December 4, 2019
Next Post
New DOL guidance to impact wage and hour compliance

New DOL Guidance Seeks to Expand FLSA Liability to More "Joint" Employers

Free Downloads

OFAC whitepaper cover
Compliance Job Interview Q&A
Reputation Risk Management Research

RSS SEC Litigation News

  • John Special, Defendant, and Michael Murphy, Relief Defendant, John Kenneth Davidson December 12, 2019
    SEC Obtains $3 Million Settlement in Insider Trading Action
  • Palm Beach Atlantic Financial Group, LLC and William A. Smith December 11, 2019
    SEC Charges Florida Resident and His Corporate Entity for Fraudulent Securities Offerings
  • Nanotech Engineering, Inc., Michael James Sweaney (also known as Michael Hatton), David Sweaney, and Jeffery Gange December 11, 2019
    SEC Obtains Asset Freeze to Halt Alleged Offering Fraud

Jump to a Topic:

anti-corruption anti-money laundering/AML Artificial Intelligence/A.I. automation banks Big Data blockchain board of directors board risk oversight bribery CCPA/California Consumer Privacy Act Cloud Compliance communications management corporate culture corporate governance culture of ethics cyber risk data analytics data breach data governance decision-making Dodd-Frank DOJ due diligence fcpa enforcement actions GDPR GRC HIPAA information security internal audit internet of things (IoT) KYC/know your customer machine learning monitoring regtech reputation risk risk assessment Sanctions SEC social media risk technology third party risk management tone at the top training whistleblowing
No Result
View All Result

Privacy Policy

Follow Us

  • Facebook
  • Twitter
  • LinkedIn
  • RSS Feed

Category

  • Audit
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • HR Compliance
  • Leadership and Career
  • News
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Whitepapers

© 2019 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
  • Articles
  • News
  • Podcasts
  • Videos
  • Whitepapers
  • eBooks
  • Events
  • Jobs
  • Subscribe

© 2019 Corporate Compliance Insights