CIOReview
CIOREVIEW >> Compliance >>

Linking With Partners To Make Compliance Work

Damian Sepanik, Chief Compliance Officer, Zurich North America
Damian Sepanik, Chief Compliance Officer, Zurich North America

Damian Sepanik, Chief Compliance Officer, Zurich North America

Data security may be the biggest risk facing business today. I view it metaphorically as the back door that may allow an intruder into the house, gaining access to our most valuable possessions. The IT team can supply a strong door, deadbolt locks and an alarm. But even then, a thief can break in. Compliance creates a critical link with the business by providing the response to deal with the intruder.

A robust compliance infrastructure will have written policies in place that are easily accessible and understood by employees. It will communicate key points and train employees so they understand how the policies impact their roles. It will advise the business as it creates new products and processes so that risks are identified and addressed. Finally, it will provide management with assurance by monitoring ongoing compliance risk and providing leadership with a view of the compliance health of the organization. If the intruder never gets in, the preventative service provided by compliance to the organization will still be valued.

“A robust compliance infrastructure will have written policies in place that are easily accessible and understood by employees”

However, if the unthinkable happens, the organization can rely on the compliance infrastructure to react to the incident promptly and thoroughly and to prove to their customers, regulators, trading partners and the public that all reasonable steps were taken to avoid the intrusion from occurring.

Read Also

Looking Closer At Compliance In Healthcare

Looking Closer At Compliance In Healthcare

William Gedman , Vice President, Quality Audit, Fraud & Abuse, Chief Compliance Officer, UPMC Health Plan
test

test

Jonathan Lister, VP, LinkedIn's North American Sales
The Intersection of Privacy and IT

The Intersection of Privacy and IT

Dana Louise Simberkoff, JD, CIPP/US, Chief Compliance and Risk Officer, AvePoint
Stay Connected with Your Stakeholders

Stay Connected with Your Stakeholders

Matt Lepore, SVP, General Counsel & CCO, BASF Corporation
Essential to Recognize  Traditional and Non-traditional  Regulations

Essential to Recognize Traditional and Non-traditional Regulations

John D. Rhea, Compliance Officer & Attorney, OGE Energy
Regulatory Scrutiny of  Business: Unavoidable

Regulatory Scrutiny of Business: Unavoidable

Mabel Wilson, CCO, Blackhawk Network