No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home Featured

The Organizational Risk of Ineffective Compliance Plans

CROs’ Unique Role in Responding to the Pandemic

by Guy Underwood
October 22, 2020
in Featured, Risk
man standing at bridge crossing, concept of business opportunity and decision

Historically, the Chief Risk Officer’s role has been to ensure that companies meet their regulatory and compliance obligations. Guy Underwood, CRO at Vital4, discusses how that is changing in the context of a global pandemic.

Nearly five years ago, I was awarded the Certified Chief Risk Officer (CCRO) certification by the Risk Management Institution of Australasia. As part of the application process, I was asked to answer a number of questions relating to elements of a Chief Risk Officer’s role. I was also interviewed by a panel as they sought to ascertain whether I had the necessary skills and experience to gain the CCRO accreditation.

My answers then have caused me to reflect on what they would be now in the context of the COVID pandemic and where the world is in 2020, as opposed to circa 2016 when I gained this certification.

Times are Changing, and Risk is Increasing

There are substantial penalties for organizations as well as individuals that don’t manage risk. Most businesses have programs and policies in place that are meant to ensure that they are compliant with relevant regulations.

Internal auditors go through the prescribed process and check off the items in the program, but checking off the boxes on an in-place program is not the same as effectively managing risk. Every check may “pass,” but if the program has not been implemented properly, has not been updated to reflect recent regulatory changes or has critical failings in data or process, the organizational risk may still be substantial.

Data and how you use it is key to any compliance program. Many organizations are “data rich” but “information poor.” Combing through mountains of data can lead to missing key information, and outdated data or poorly curated datasets can lead to false positives or other forms of risk.

Risk is not limited to substantial fines by regulators. Organizational risk also encompasses the reputation loss that can dramatically impact the ability of the business to operate normally, acquire new customers or retain existing accounts. It is critical that organizations ensure they are not engaging in operations with sanctioned countries or facilitating bad actors after ample information is available of their criminal actions.

Viewing risk only through the lens of accounting losses misses the larger picture of opportunity costs that surround a loss of trust or respect; these can be even more devastating for an entity than the fines themselves.

Historically, the role of the CRO was limited to ensuring that the organization met its regulatory and compliance obligations – a sort of failsafe to protect the business in the event of adverse scenarios. However, the modern CRO now appears to have more influence across organizations, although there is still some way to go in terms of getting the right seat at the table to ensure compliance processes are more than just ticking boxes.

Having been involved in the risk management industry for over 25 years, I have seen many changes, including a move away from the dominance of insurance professionals at risk-related events and a younger and more diverse number of risk professionals in the marketplace.

The rapid digitization of many industries during the COVID pandemic is only accelerating this trend. Yet as risk professionals, quite often we still have to justify our existence to the organization and demonstrate that we add value and are not just a cost center.

A Few Key Takeaways

The pandemic has provided an opportunity for companies to review their risk framework to ascertain whether they have captured the risks presented by the pandemic (e.g., teams working remotely, interruption of supply chain, dealing with clients remotely).

In my opinion, now is the perfect time to recast the role of risk management and the CRO in particular. With events such as the worldwide financial crisis, terrorism, political uncertainty and a global pandemic impacting society and changing how business is conducted, CROs have a crucial role in helping guide organizations in the right direction.

CROs have the opportunity to shape the future strategic direction of their organization through identifying new risks that have presented during the pandemic and designing strategies to ensure that the business takes advantage of the new risk environment.

Whether you are a not-for-profit seeking to remain relevant and financially viable or a fintech company seeking to become the next “unicorn” company, your organization will benefit from engaging closely with your CRO and members of the risk management team.

Compliance Innovation

As a CRO, you must have a role in helping set the strategic direction for your organization. No entity can embark on a course of action without understanding the underlying risk exposure and rewards that the changes entail. Additionally, executives and senior management require your wise and knowledgeable counsel when making decisions that can impact the company and its key stakeholders, including staff and shareholders.

The post-pandemic world will favor organizations collaborating in a range of areas; therefore, it is important that any new collaborations are approached with an understanding of not only the opportunities that are present, but risks that may arise due to this new relationship.

It is important that, as CROs, we seek to continue to increase our profiles and demonstrate the value we can add to our employers and all their constituents. We must not only protect the organization and its management (including, sometimes, from itself), but also provide the expertise and skills required to deliver value for the business and the broader community.

I believe the way the world responds to the current pandemic – and the role we as Chief Risk Officers play in helping businesses in this response – will be a watershed for our profession. I look forward to seeing what the next generation of risk professionals can do for a post-pandemic society.


Tags: COVID-19Reputation Risk
Previous Post

ACA Aponix® Launches New Cybersecurity Offering, Aponix Protect™

Next Post

Using AI and ML to Detect Corruption and Fraud Schemes

Guy Underwood

Guy Underwood

Guy Underwood is the Chief Risk Officer and Board Advisor for Vital4, which specializes in AI-based global risk management screening and due diligence for a variety of compliance functions. In this capacity, he helps to ensure that the company meets its regulatory and compliance obligations, as well as helping establish the strategic direction for the organization. Guy has been in the compliance and risk management field for more than 20 years and possesses a unique understanding of the roles that data and technology can play in managing organizations’ risk environments. He is often sought out by senior management when addressing potentially serious compliance breaches or acts of fraud or corruption. Guy has held a number of risk and advisor positions for a range of companies, including as founder of Complitech, as well as developing the Enterprise Risk Management Framework for an Australian government body and a not-for-profit organization. He was also appointed to the Audit and Risk Committees of Rugby Victoria and Cycling Victoria. In his spare time, Guy is an avid runner and cyclist, participating in races across the world and fundraising for worthy causes along the way.

Related Posts

uvalde crosses

Will 2023 Bring More ‘Permacrisis’ Culture?

by Lisa Schor Babin
January 4, 2023

While 2022 had no shortage of chaotic events, ethics columnist Lisa Schor Babin shares her hopes for 2023 — and...

red flag warnings

Fostering Risk Transparency in the Organization

by Jim DeLoach
November 9, 2022

Serious risks to your company’s financial and reputational health probably aren’t going to walk up and introduce themselves. Protiviti’s Jim...

parametric insurance esg

Exploring Parametric Insurance as an ESG Authentication Tool

by Nir Kossovsky and Denise Williamee
November 9, 2022

Parametric insurance, which has long been popular in disaster recovery, is gaining steam as a proxy for proving the effectiveness...

trade secrets

Inside Job: How Businesses Can Protect Valuable Trade Secrets

by María Amelia Calaf
October 5, 2022

A relatively new law (the Defend Trade Secrets Act) aims to give businesses a legal framework to fight against theft...

Next Post
artificial intelligence

Using AI and ML to Detect Corruption and Fraud Schemes

Compliance Job Interview Q&A

Jump to a Topic

AML Anti-Bribery Anti-Corruption Artificial Intelligence (AI) Automation Banking Board of Directors Board Risk Oversight Business Continuity Planning California Consumer Privacy Act (CCPA) Code of Conduct Communications Management Corporate Culture COVID-19 Cryptocurrency Culture of Ethics Cybercrime Cyber Risk Data Analytics Data Breach Data Governance DOJ Download Due Diligence Enterprise Risk Management (ERM) ESG FCPA Enforcement Actions Financial Crime Financial Crimes Enforcement Network (FinCEN) GDPR HIPAA Know Your Customer (KYC) Machine Learning Monitoring RegTech Reputation Risk Risk Assessment SEC Social Media Risk Supply Chain Technology Third Party Risk Management Tone at the Top Training Whistleblowing
No Result
View All Result

Privacy Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2022 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe

© 2022 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT