Silo Compliance Risk vs. Enterprise Compliance Risk Presented to: ORIMS PD Day By: Joe Hardy & Tony Carlisle

Silo Compliance Risk vs. Enterprise Compliance Risk What is Compliance? Is Compliance a risk? Identify Compliance Risk? (Case Study) Future of Enterprise Compliance Risk Agenda

Silo Compliance Risk vs. Enterprise Compliance Risk What is compliance? Compliance is the act of adhering to and demonstrating adherence to or submission to the prevailing rules, internal policies, regulations and laws, which come with fines, and criminal or civil penalties if found non-compliant.

Silo Compliance Risk vs. Enterprise Compliance Risk Is Compliance a risk? Compliance risk encompasses a spectrum of exposures and the process of identifying those exposures starts with the principles of risk management: Identifying your company compliance risk, analyzing, measuring, implementing risk controls and monitoring the process.

Silo Compliance Risk vs. Enterprise Compliance Risk Compliance Risk Identification Ethical Corporate Culture Accounting & Reporting Financial Integrity and Fiduciary Trust Antitrust and Unfair Selling Practice

Silo Compliance Risk vs. Enterprise Compliance Risk Conflicts of interest, Bribes, and Gifts Employee rights and working conditions Health & Safety Environmental Protection

Silo Compliance Risk vs. Enterprise Compliance Risk Privacy Intellectual Property & Security Consumer Protection Government Investigation and Controls

Silo Compliance Risk vs. Enterprise Compliance Risk Criminal Checks Credentials Driver Abstracts Health & Safety ID Badges Information Security Contracts Credit Workers Comp Insurance (Liab.) Auto Insurance Case Study

Silo Compliance Risk vs. Enterprise Compliance Risk Enterprise Compliance Risk Questions: Who is accountable for compliance risks? How does compliance risk effect your department? Does your risk management report to the board include compliance risk?

Silo Compliance Risk vs. Enterprise Compliance Risk Is compliance linked closely to risk and governance? Do you have a compliance risk committee? Do you view risk across the enterprise or in a silo manner? Are there written compliance policies?

Silo Compliance Risk vs. Enterprise Compliance Risk Who manages compliance risk in your organization? What indicators are used when assessing the quantity of compliance risk management? What indicators are used when assessing the quality of compliance risk management?

Silo Compliance Risk vs. Enterprise Compliance Risk Is your compliance risk management program effective? How do you know if you are meeting compliance risk requirements? Do you have a enterprise-wide compliance –risk management platform?

Silo Compliance Risk vs. Enterprise Compliance Risk An effective enterprise-wide compliance-risk management program should : be flexible respond to change tailored to corporate strategies tailored to internal and external environment Must have strong board and senior management support.

Enterprise compliance risk management will continue to evolve and expand in response to the vase amount of information required to manage compliance risk, business managers, auditors, and regulators need a process to assess the full state of corporate governance, risk and compliance. Silo Compliance Risk vs. Enterprise Compliance Risk Future of Enterprise-compliance risk management? Risk and regulatory intelligence. Compliance risk analytics and visualization Enterprise integration Here’s how!

Silo Compliance Risk vs. Enterprise Compliance Risk Questions?????