Compliance & Ethics Professional - Society of Corporate ...

More documents

Recommendations

Info

Featureby Steve McGrawGRC focus: Keep youremployees close and yourauditors closer»»With regulatory attention continuing to focus on GRC results, corporations need to focus on ensuring compliance is up to par.»»Corporations need to show employees that all internally reported issues will be taken seriously.»»Sharing compliance self-assessments and mitigation programs with auditors can help corporations establish a strong reputation.»»GRC should be viewed as increasingly beneficial, especially when preparing for mergers and acquisitions.»»GRC systems can provide information to show trend lines and correlations to address root-cause issues before regulators ask.Compliance & Ethics Professional March/April 2012McGrawAs we continue through 2012, the focusof regulatory bodies continues to befirmly focused on Governance, Riskand Compliance (GRC) results. Corporationsand their boards of directors need to payincreasing attention to reducing compliancethreats. This task often falls on theshoulders of the compliance officer,along with the need to ensure thatcompliance programs adhere to themost current versions of ever-changinglaws and regulations.What many corporations havelearned already is that the best way toprotect a company’s interests is to ensure thatcompliance is up to par internally, before theregulators come calling. This said, there are afew areas that corporations should pay veryclose attention to as we move through the year.Bounty hunter threats are increasingPersonal greed has long been the primarymotivator behind fraud and abuse, and regulatorsare now increasingly using a varietyof greed-oriented rewards to help identifyand prosecute offenders. The Securities andExchange Commission (SEC) and CommoditiesFutures Trading Commission (CFTC) now haveformal whistleblower bounty hunter programs,using a percentage of the sanctions as rewards.As these and similar programs begin to hittheir strides, compliance officers and theirboards of directors will face increasing threatsto their internal compliance programs and,ultimately, their institutional brands.Corporations also need to show theiremployees that the Compliance departmentwill follow up on issues that are reported internally.For example, a corporation can removeidentifying facts from the reported claims, thenpost them on in-house blogs to show employeesexamples of what is being reported andthat each claim is being taken seriously.Demonstrating compliance effectiveness iscriticalHistorically, regulators have been satisfiedwith companies that have implemented complianceprograms, but now they want proofthat the programs are actually working. Moreregulatory authorities will begin to require aprocess that distills data and demonstrates theoverall effectiveness of a company’s complianceprogram.28 www.corporatecompliance.org +1 952 933 4977 or 888 277 4977
FeatureAs an offshoot of this growing requirement,progressive corporations are taking stepsto “keep their friends close and their auditorscloser.” By proactively sharing their complianceself-assessments and mitigation programs withauditors, companies can establish a strong reputationwith their auditors and regulators anduse that reputation to minimize the likelihoodand impact of potential compliance breakdownsand whistleblower allegations.Growing importance of the “G” in GRCBoards are more sophisticated than ever before,and many are demanding processes and tools tofacilitate and streamline their oversight responsibilities.For example, many board membersare now using iPads and related portal productsto review enterprise risk management (ERM)programs in much more timely detail to bettermonitor a broad range of risk indicators. Theyare also taking a more active role in confirmingmanagement’s assertions on the company’sethics and regulatory compliance posture.Viewing GRC as strategic tool can haveother benefits for a company, especially whenit comes to mergers and acquisitions. Whenbeing scrutinized by regulators before a mergeror acquisition, demonstrating that an effectivecompliance program is in place can makethe regulators more comfortable. An effectivecompliance program can also make a companymore attractive to a likely acquirer, thus puttingthe company a step ahead of competitors.“For example, a corporationcan remove identifying factsfrom the reported claims,then post them on in-houseblogs to show employeesexamples of what is beingreported and that each claimis being taken seriously.”The rise of analyticsGRC systems collect enormous amounts ofdata. From the board down, GRC users needto see trend lines and correlations to identifyand address root-cause issues beforeauditors come calling. As examples, theadditional insight corporations can glean bylinking training programs to the types ofissues received via a whistleblower hotline, ormining various systems to determine how tochange audit plans for the next cycle, can behighly valuable.The compliance landscape is changingfor many regulated industries. It’s criticalthat internal teams keep on top of changesin regulations and maintain their company’scompliance and ethics programs, becausewaiting until the regulators show up can oftenbe too late. ✵Steve McGraw is President and CEO of Compliance 360 out of Atlanta. Hemay be reached at steve.mcgraw@compliance360.com.Compliance & Ethics Professional March/April 2012+1 952 933 4977 or 888 277 4977 | www.corporatecompliance.org 29
Page 2 and 3: 2012BasicCompliance& EthicsdoN’t
Page 5 and 6: “ ”You tell the truth, youdon
Page 7: NewsSEC changes policy onadmission
Page 10 and 11: SCCE NewsSCCE website NewsContact T
Page 12 and 13: People on the MoveCompliance & Ethi
Page 14 and 15: FeatureQ & Apictured from right to
Page 16 and 17: FeatureQ & ACompliance & Ethics Pro
Page 18 and 19: FeatureQ & ACompliance & Ethics Pro
Page 20 and 21: SCCE welcomes New MembersAlabamaGeo
Page 22 and 23: Featureby Cynthia Scavelli, Esq., C
Page 24 and 25: FeatureCompliance & Ethics Professi
Page 26 and 27: Feature Boehme of Contentionby Donn
Page 30 and 31: 11 th AnnualSAVE THENEW DATEAND $57
Page 32 and 33: Featureby Michele Abely, CCEPCompli
Page 35 and 36: View from the Front Linesby Meric C
Page 38 and 39: FeatureCompliance & Ethics Professi
Page 40 and 41: y Dan Small and Robert F. RoachPowe
Page 42 and 43: they don’t stumble upon them blin
Page 44 and 45: y Frank J. NavranNuts & bolts for b
Page 46 and 47: Compliance & Ethics Professional Ma
Page 54 and 55: CongratulationsNew CCEP © designee
Page 56: Compliance & Ethics Professional Ma
Page 59 and 60: y Thomas W. KirbyComputers and copy
Page 61 and 62: important message is the size of th
Page 63 and 64: y Charles RuthfordIs your ethics an
Page 65 and 66: ··Scarcity and Authority. The inf
Page 67 and 68: smartphones. Although the phone is
Page 69 and 70: sTakeawaysMarch/April 2012Complianc
Page 71 and 72: Your Guide to Becoming an Effective

Compliance & Ethics Professional - Society of Corporate ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?