Categories
31 Days to More Effective Compliance Programs

Day 15 | How do you evaluate a risk assessment?

After you complete your risk assessment, you must then translate it into a risk profile. If your estimate of where your bribery risk is greatest is wrong, it will be an effort to address it. As Ben Locwin explained in his  BioProcess International article, entitled “Quality Risk Assessment and Management Strategies for Biopharmaceutical Companies”:
Once we have assessed risks and determined a process that includes options to resolve and manage those risks whenever appropriate, then we can decide the level of resources with which to prioritize them. There always will be latent risks: those that we understand are there but that we cannot chase forever. But we need to make sure we have classified them correctly. With a good understanding of each of these, we are in a better position to speak about the quality of our businesses.

A way to evaluate risks as determined by the company’s risk assessment is through a risk matrix. Once risks are identified, they are then rated according to their significance and likelihood of occurring, and then plotted on a heat map to determine their priority. The most significant risks with the greatest likelihood of occurring are deemed the priority risks, which become the focus of your remedial efforts or for continuous auditing. A variety of solutions and tools can be used to manage these risks going forward, but the key step is to evaluate and rate these risks. All your actions should flow from the risk ranking.
Three key takeaways:

  1. Even after you complete your risk assessment, you must evaluate those risks for your company.
  2. The DOJ and SEC are looking for a well-reasoned approach on how you evaluate your risk.
  3. Create a risk matrix and rank your risks; then remediate and monitor as appropriate.
Categories
Compliance Into the Weeds

Compliance Issues in 2020, Part 2

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Welcome to the first Into the Weeds podcast of the new decade and the new year. In this Part 2 of a two-part podcast series, Matt Kelly and I take a look at ten issues that we think will be significant for the compliance professional in the upcoming year.

Some of the highlights include:

  • The Institutional Shareholder Services lawsuit against the SEC. What will this and other court cases against the Trump Administration’s attempt to gut shareholder protects by the SEC?
  • Effective sanctions compliance programs. Will there be congruity or discrepancies in the interpretation of what constitutes a best practices compliance program by the DOJ and OFAC.
  • Compliance convergence. We are moving to do away with anti-corruption compliance, trade sanction and export control compliance, AML compliance to a role which is simply compliance.
  • Data, data and more data. Regulators now expect data analytics, continuous monitoring and continuous improvement in your compliance program.
  • The ethical edge. How more effective compliance creates more efficient business process equating to greater profitability.

Resources
Matt’s blog post 7 Compliance Items to Watch in 2020 in Radical Compliance.
Tom’s blog post 4 Compliance Insights for 2020 and Beyond in the FCPA Compliance and Ethics Blog.

Categories
Daily Compliance News

January 15, 2020, the Bridge of Sighs edition


In today’s edition of the Daily Compliance News:

  • Businesses take the lead in response to climate change. (NYC)
  • Wells Fargo CEO admits he doesn’t have the answers yet. (Washington Post)
  • Trump Administration orders no discussion of climate change in allowing drilling in national forests. (Houston Chronicle)
  • Will Supreme Court further gut domestic corruption law? (Politico)
Categories
Great Women in Compliance

Kim Yapchai-Transforming Compliance

Welcome to the Great Women in Compliance Podcast, co-hosted by Lisa Fine and Mary Shirley.

In this episode of GWIC, Lisa speaks with Kim Yapchai, who is the Chief Ethics and Compliance Officer for Tenneco.  Kim did not start in the ethics and compliance field by choice – she became responsible for ethics and compliance during the 2008-2009 recession as part of a large staff reduction.
Kim went from an involuntary compliance officer to a leader in the ethics and compliance community by developing a program based on “transformational leadership” – developing a holistic program, working with her team and achieving results in both her prior and current role, both in E&C and in corporate social responsibility.
A great deal of Kim’s career has been in the automotive and manufacturing industries, two  male-dominated industries.  She discusses how she has thrived in these industries as a woman, and a person with a blended heritage.
Kim is also a great supporter of ethics and compliance professionals and discusses how she uses LinkedIn and building her network to help others…and how that is something she enjoys.
Join the Great Women in Compliance community on LinkedIn here.