Tag: compliance

Categories
Adventures in Compliance

Adventures in Compliance: The Novels – The Sign of Four, Introduction and Compliance Lessons Learned

In this new season of Adventures in Compliance, host Tom Fox takes a deep dive into the Sherlock Holmes novels. Throughout this season, Tom will explore each novel in a four-part series. The four novels we will consider from the ethics and compliance perspective are A Study in Scarlet, The Sign of Four, The Hound of the Baskervilles, and The Valley of Fear. 

For our second offering this season, we begin with The Sign of Four. In this Part 1 of our four-part exploration, we dive into the synopsis of the story and extract five key compliance lessons: (1) Methodical investigation and attention to detail, (2) The importance of clear and open communication, (3) Understanding human behavior, (4) Vigilance against complacency, and (5) Integrity and ethical fortitude. These lessons underline the timeless relevance of Sherlock Holmes’ methods for modern compliance professionals. Tune in for an engaging blend of classic literature and practical compliance insights. 

Highlights include:

  • Deep Dive into ‘The Sign of Four’
  • Key Compliance Lessons from ‘The Sign of Four’
  • Methodical Investigation and Attention to Detail
  • Clear and Open Communication
  • Understanding Human Behavior
  • Vigilance Against Complacency
  • Integrity and Ethical Fortitude

Resources:

The New Annotated Sherlock Holmes

Sherlock Holmes FAQ by Dave Thompson

Connect with Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
FCPA Compliance Report

FCPA Compliance Report – The Role of Culture and Data in Fraud Risk Management: A Conversation with Vincent Walden

Welcome to the award-winning FCPA Compliance Report, the longest-running podcast in compliance. This is a very special episode. Today, Tom Fox cross-posts an episode from the BCG Podcast. In it, host Hanjo Siebert visits with konaAI CEO Vince Walden. They discuss the critical role of data and culture in achieving effective compliance, exploring the importance of interdepartmental collaboration, the evolving compliance landscape, and real-world examples of fraud detection. Walden emphasizes that while strategy is important, a strong organizational culture is essential for successful execution. He explains how data serves as a transparency agent and outlines the need for a collective approach to managing fraud risk. Listen in to gain insights into the challenges and best practices in modern compliance.

Key highlights:

  • The Importance of Transaction Monitoring
  • Challenges in Fraud Risk Management
  • Collaborative Approaches to Compliance
  • konaAI Role in Modern Compliance
  • Real-World Fraud Cases and Lessons Learned
  • The Impact of Business Culture on Fraud Prevention
  • Fostering a Culture of Transparency

Resources:

Vince Walden on LinkedIn

konaAI

Original Podcast Recording

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

For more information on the use of AI in Compliance programs, see my new book, Upping Your Game. You can purchase a copy of the book on Amazon.com.

Categories
Trekking Through Compliance

Trekking Through Compliance – Episode 1 – Compliance Lessons from The Man Trap

In this episode of Trekking Through Compliance, we examine “The Man Trap,” which aired on September 8, 1966, at Star Date 1515.1.

In this episode, a landing party from the Enterprise beams down to perform an annual checkup of scientist Bob Crater and his wife, Nancy, who have lived on the planet M113 for 5 years. Dr. Crater and Nancy appear to be in good health, but Dr. Crater goes out of his way to request an additional salt supply from the Enterprise’s stores. A crewman wanders off and dies under mysterious circumstances. Further tests show that his body is completely devoid of salt.

Scanning the planet’s surface reveals only a single life form, so Spock and Kirk realize that Nancy must have beamed aboard the Enterprise and start searching for her. They question Dr. Crater and learn that Nancy is dead and that her form has been taken over by the planet’s last remaining indigenous creature, which can assume any form and requires salt to live.

Kirk and Spock then beam Dr. Crater aboard the Enterprise, who prevents Kirk from killing the creature (whom he still sees as Nancy Crater) and then stands idly by as she begins to drain the salt from Kirk’s body. At this juncture, Spock rushes in and demonstrates to McCoy that the woman attacking Kirk could not be Nancy by striking her repeatedly and forcefully. Nancy does not flinch, sending Spock flying across the room with a single counterblow. When the creature attacks Kirk again, its proper alien form is revealed, and Bones kills it with a phaser, even after it reverts to Nancy’s form.

Key highlights:

1. Compliance and Leadership Lessons—The Cost of Denial

🖖 Illustrated by Dr. Crater’s refusal to acknowledge the danger posed by the creature impersonating his wife, Nancy.

Leadership is about facing difficult truths, not indulging in convenient fantasies. Dr. Crater’s emotional attachment blinds him to reality, echoing the risks faced when leaders ignore clear signs of compliance breakdowns. Just as he stalls Kirk and enables the creature’s deception, real-world executives who refuse to confront corruption or misconduct put the entire organization at risk.

2. Character Dynamics—Trust, Bias, and Team Decision-Making

🖖 Illustrated by the landing party’s conflicting views of Nancy, each member sees her in a different light.

This episode reminds us how biases cloud judgment. The creature manipulates the crew’s perceptions, much like a charismatic con artist might deceive auditors or compliance officers. Effective compliance teams must cultivate objectivity and challenge assumptions, especially when red flags appear under familiar disguises.

3. Ethical Decision-Making and Vigilance—When Loyalty Becomes Liability

🖖 Illustrated by McCoy’s inability to act until it’s almost too late.

McCoy’s emotional paralysis shows the danger of misplaced loyalty in corporate settings. Compliance professionals must prioritize facts over feelings. Only when Spock physically assaults the creature and reveals its true nature does McCoy accept the need for lethal action. It’s a painful but powerful lesson in balancing empathy with professional duty.

4. Storytelling and Visual Branding—Make the Message Memorable

🖖 Illustrated by the unforgettable reveal of the creature’s true alien form.

The creature’s transformation is a visual metaphor for uncovering the truth beneath appearances. For compliance programs, this underscores the importance of storytelling, compelling visuals, and emotional engagement. Dry policies don’t stick—memorable messages do. Think of the salt vampire’s final scene as a compliance training module with a bite.

5. Balancing Security and Compassion—Don’t Let the Monster in the Room Stay Hidden

🖖 Illustrated by the crew’s initial desire to give Nancy space, contrasted with the need for containment.

Compassion is vital—but so is security. The crew’s hesitation to confront “Nancy” creates a vulnerability that costs lives. In corporate compliance, this translates to having the courage to investigate suspicions swiftly and without prejudice. The longer you let a problem impersonate a solution, the greater the risk to your organization.

Resources:

Excruciatingly Detailed Plot Summary by Eric W. Weisstein for The Man Trap

MissionLogPodcast.com-The Man Trap

Memory Alpha

Categories
Compliance Tip of the Day

Compliance Tip of the Day – Assessing Internal Controls in International Operations

Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, our goal is to provide you with bite-sized, actionable tips to help you stay ahead in your compliance efforts. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

How should you assess your internal controls in your international operations?

For more information on this topic, refer to The Compliance Handbook: A Guide to Operationalizing Your Compliance Program, 6th edition, recently released by LexisNexis. It is available here.

Categories
Blog

The Future of Compliance: From Risk Management to Strategic Business Partner

Recently, I had the opportunity to visit with John Byrne, the CEO at Corlytics. You can listen to the podcast here. One of the areas we discussed is that the compliance landscape is experiencing a fundamental shift, moving compliance professionals from traditional gatekeeping roles to strategic leadership positions within their organizations. Historically viewed as mere regulatory enforcers, compliance teams are increasingly recognized as essential partners in managing strategic risks. Recent global disruptions, such as unexpected tariffs and political upheavals that impact anti-corruption enforcement, as well as unprecedented events like the COVID-19 pandemic, underscore the inadequacies of traditional, static compliance frameworks.

These events emphasize a crucial truth: compliance must become agile, proactive, and deeply integrated into core business strategies to effectively anticipate and respond to rapidly evolving risks. The compliance function of tomorrow is not simply reactive; it actively shapes organizational resilience and strategic decision-making. By harnessing advanced technologies like artificial intelligence, compliance professionals can significantly enhance their capacity to identify and manage emerging risks rapidly.

In this transformed role, compliance becomes not just a defensive measure but a strategic asset positioned to enable innovation, accelerate growth, and protect organizational integrity. Embracing this vision is essential if compliance teams are to fully realize their potential as indispensable strategic leaders, securing their organizations against unforeseen challenges and positioning them for sustained success.

Lesson 1: Recognizing Compliance as Strategic Risk Management

Compliance is evolving from a purely regulatory-driven necessity into a dynamic strategic asset. At its core, compliance is a risk management process that involves identifying, assessing, managing, and mitigating risks to ensure organizational stability and effectiveness. Traditionally, this process has been laborious, reactive, and often separated from core business functions. Now, aided by technology such as artificial intelligence (AI), compliance professionals can leverage dynamic traceability and advanced analytics to accelerate risk identification and assessment dramatically.

In this rapidly evolving environment, compliance must take an active leadership role. Rather than passively reacting to regulatory requirements, compliance professionals need to proactively anticipate and manage emerging threats, positioning themselves as forward-thinking strategic advisors who protect and enable business growth.

Lesson 2: No More Black Swans—Every Risk Must Be Anticipated

Historically, compliance teams spent significant resources preparing for rare, highly impactful “black swan” events. However, recent history teaches that events previously considered extraordinary, such as pandemics, economic disruptions, or sudden political shifts, are becoming increasingly commonplace. There are no actual black swan events anymore; instead, there are just unexpected events.

Compliance professionals must recalibrate their mindset and methods, accordingly building agile systems capable of rapid adaptation. Compliance frameworks must be resilient, flexible, and proactive enough to manage uncertainties and unexpected scenarios effectively, even those we have not imagined yet. Rather than planning for specific black swans, compliance teams need adaptive frameworks and advanced scenario-planning capabilities to navigate an uncertain future.

Lesson 3: Embedding Compliance Directly into Core Business Operations

One of the most promising evolutions in compliance is its integration directly into the heart of business operations. Traditionally, compliance and operational functions operated in isolation, often misunderstanding or miscommunicating with one another. Compliance would issue requirements, leaving operational teams struggling to interpret and effectively implement directives.

Future-oriented compliance departments must break down these walls. The ideal structure aligns compliance closely with operational teams, creating shared understanding and cooperation. For instance, onboarding a large corporate client at a tier-one bank typically takes 40 days. Embedding compliance directly into the onboarding process and leveraging real-time compliance monitoring and collaboration could dramatically shorten this timeframe, delivering tangible value to customers and the firm.

Lesson 4: Creating a Learning Compliance Organization

A strategic compliance function doesn’t merely enforce rules; it continuously learns and adapts. It asks key questions: How can we improve outcomes? How can compliance processes create greater value for the business and its clients?

To become genuinely strategic, compliance departments must embrace a culture of continuous improvement. They should leverage advanced technologies, foster cross-functional teamwork, and cultivate an open and collaborative learning culture that continually seeks improvement in processes and outcomes. By shifting towards this learning organization model, compliance can better support business growth, enhance customer satisfaction, and foster a competitive advantage.

Lesson 5: Leveraging ‘What If’ Scenario Planning to Enable Business Innovation

A dynamic compliance function can actively support and accelerate business innovation through sophisticated “what if” scenario analysis. Instead of merely assessing past risks, compliance teams equipped with advanced analytical tools can proactively evaluate risks associated with potential future business decisions.

This capability enables compliance professionals to quickly analyze the implications of entering new markets, launching innovative products, or changing business strategies. Imagine compliance contributing proactively during product development, swiftly identifying regulatory or operational roadblocks. This proactive, strategic role not only prevents future compliance issues but also dramatically accelerates innovation, reduces client pain points, and fosters faster, more confident business decisions.

Compliance as a Critical Strategic Partner

The compliance profession stands at a crossroads, with immense potential to redefine itself as a strategic asset essential to organizations. Compliance professionals possess a unique skill set that enables them to lead dynamic risk management efforts—identifying risks, rapidly deploying mitigation strategies, and facilitating proactive decision-making. By leveraging technologies like AI and cultivating deep integration with operational functions, compliance departments can reposition themselves from gatekeepers to strategic business enablers.

The future of compliance lies in proactive leadership, continuous learning, and deep integration within the organization’s strategic fabric. This evolution not only enhances compliance outcomes but also transforms compliance into a mighty, positive contributor to organizational growth, innovation, and success.

Categories
Trekking Through Compliance

Trekking Through Compliance – Episode 0 – Introduction to the Updated 2025 Series

Since 2017, Tom Fox has posted the podcast “Trekking Through Compliance” each summer. Not only is Tom a full-fledged Trekkie, but many of us in the compliance community share this passion as well. To commemorate the 8th anniversary of this series, Tom has updated each episode with new commentary and insights tailored for compliance professionals and business executives. Each episode is relatively short, lasting around 10 minutes. This allows you to grasp the storyline and the lessons learned from it. So, even if you have listened and re-listened over the past summers, you will learn something new and revisit one of the most significant TV series ever.

In this podcast series, Tom Fox explores compliance, leadership, and risk management through the lens of Star Trek: The Original Series, presented in a 79-episode offering. Each podcast reviews the episode’s creative team and story synopsis, highlighting three key lessons learned in the areas of compliance, leadership, and governance. If you love Star Trek as Tom does, this podcast series is for you. He will use three key resources for each offering: (1) Eric’s Excruciatingly Detailed Star Trek (TOS) Plot Summaries, which has plot summaries for every episode; (2) MissionLogPodcast.com, a Rod Roddenberry podcast where John Champion and Ken Ray explored every episode of Star Trek, the Original Series; and (3) Memory Alpha, a great resource for all things Star Trek. Please note that Tom will use the order of release in this podcast series, so the first episode is the premier TV show, “The Man Trap,” which aired on September 10, 1966. This means that both pilots will appear later in the series. Additionally, the TV premieres are on a schedule that differs from the production schedule. So, listen over the next 79 episodes, revisit one of television’s outstanding achievements, and learn how to use Star Trek to improve your corporate compliance program and yourself as a compliance professional. We are going to have some fun.

Categories
Compliance Tip of the Day

Compliance Tip of the Day – Issues for Internal Controls in International Operations

Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, our goal is to provide you with bite-sized, actionable tips to help you stay ahead in your compliance efforts. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Internal controls outside the US present a different set of challenges for compliance professionals.

For more information on this topic, refer to The Compliance Handbook: A Guide to Operationalizing Your Compliance Program, 6th edition, recently released by LexisNexis. It is available here.

Categories
Creativity and Compliance

Creativity and Compliance – Nourish Your Audience: A New Approach to Compliance Training

Where does creativity fit into compliance? In more places than you think. Problem-solving, accountability, communication, and connection – they all take creativity. Join Tom Fox and Ronnie Feldman on the award-winning Creativity and Compliance. Ronnie’s company, Learnings and Entertainment, leverages the entertainment devices people use to consume information in their everyday, non-work lives and applies them to important topics related to compliance and ethics. It’s not just about being funny. It’s about changing the tone of your compliance communications and messaging to make your compliance program, policies, and resources more accessible and engaging.

In this episode, Tom and Ronnie discuss the balance between evidencing compliance training and ensuring its effectiveness through employee engagement. Ronnie expresses concerns about the focus on measurement to the detriment of engagement. He emphasizes the need for training that is engaging, short, and relevant to influence behavior and mitigate risk truly. They suggest approaches to create a compliance program that combines engagement with measurement, including regular and interesting communications, as well as more targeted training. The podcast also explores how to make a compliance calendar and the importance of adjusting content to reflect current events and practical considerations.

Key highlights:

  • The Debate: Evidence vs. Engagement in Training
  • The Importance of Nourishing Your Audience
  • Strategies for Effective Compliance Training
  • Addressing Compliance Fatigue
  • Mapping Out a Compliance Program

Resources: 

Ronnie

  • Learnings & Entertainments (Website)
  • Compliance Confessions – inspired by “Mean Tweets,” these 90-second commercials address misconceptions and excuses to promote a speak up culture and the E&C team as positive and helpful.
  • E&C Training Jams – a soulful singer banters with ethics & compliance explaining policies, sharing examples, and debunking excuses. 
  • Tales from the Hotline – Real speak-up-themed stories about workplace behavior gone wrong.
  • Workplace Tonight Show! – E&C meets SNL Weekend Update, explaining corporate risk topics and why employees should care.
  • 60-Second Communication & Awareness Shorts – A variety of short, customizable, music and multimedia, quick-hitter “commercials” promoting integrity, compliance, speaking up, and the E&C team as helpful advisors and coaches.
  • Custom Live & Digital Programing – Custom creative programming that balances the seriousness of the subject matter with a more engaging delivery. After all, you can’t bore people into learning.

 Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Creativity and Compliance was recently honored as one of the Top 35 Podcasts on Creativity by Feedspot.

Categories
Compliance and AI

Compliance and AI: Using AI for Data Loss Prevention Systems with Vinay Goel

What is the role of Artificial Intelligence in compliance? What about Machine Learning? Are you using ChatGPT? These questions are just three of the many we will explore in this cutting-edge podcast series, Compliance and AI, hosted by Tom Fox, the award-winning Voice of Compliance. In this episode, Tom is joined by Vinay Goel, co-founder of Wald.ai.

They discuss Goel’s professional background, his journey to founding his company, Wald.ai, and the transformative impact of AI, particularly following the launch of ChatGPT. Goel shares insights into the compliance challenges posed by AI, the importance of secure AI usage, and how businesses can strike a balance between productivity and data protection. They also delve into democratizing workplace data through AI and the importance of privacy and identity protection in AI solutions. Goel offers practical advice for companies seeking to adopt AI responsibly, discussing the future of AI in the business world.

Key highlights:

  • The Inspiration Behind Wald
  • AI and Data Security Challenges
  • Compliance and AI Usage
  • Democratizing Data with AI
  • Future of AI and Compliance

Resources:

Vinay Goel on LinkedIn

Wald.ai

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

Check out my latest book, Upping Your Game- How Compliance and Risk Management Move to 2023 and Beyond, available from Amazon.com.

Categories
Blog

Getting Ahead of the Looming C-Suite Succession Crisis: Strategies For Compliance

The business world is standing at a significant crossroads. As we navigate the increasing volatility of today’s corporate environment, one challenge looms larger than ever: ensuring the continuity and robustness of our leadership pipelines. A recent article by Russell Reynolds Associates underscores this imminent crisis, highlighting a stark reality: organizations could soon experience a severe deficit in their C-suite leadership unless immediate, strategic actions are taken. Compliance professionals, whose roles often intersect with strategic management and governance, must fully grasp the implications of this scenario and engage proactively.

Let’s start with some eye-opening numbers. According to Russell Reynolds Associates’ Global Leadership Monitor, a staggering 71% of next-generation C-suite leaders are contemplating career moves outside their current employers. This figure, which represents a significant 14 percentage point increase in turnover intentions over just two years, signals profound dissatisfaction and disengagement among future executives. The primary motivators driving these departures include aspirations for career advancement (47%), the quest for different leadership styles (36%), the desire for new responsibilities (35%), and the pursuit of a different company culture (30%).

Understanding these underlying drivers is critical for compliance leaders. A significant cause of this dissatisfaction lies in the absence or inadequacy of succession planning. Alarmingly, only 25% of next-generation executives consider their organization’s succession strategies to be successful. Even those included in these succession plans express skepticism, with just 36% believing the process is transparent. As compliance professionals well understand, transparency and clear communication are essential to building trust and fostering a culture of compliance.

To address this deficiency, organizations must commit to developing articulated and transparent succession processes. Best-in-class companies understand which roles are crucial for the future, the competencies needed, and the talent available both internally and externally. They utilize data-driven strategies, including external benchmarking and psychometric assessments, to ensure the identification of robust and unbiased talent. These processes aren’t merely beneficial; they are essential in mitigating compliance risks associated with leadership voids and the subsequent disruptions they can cause.

Additionally, differentiated and meaningful leadership development training emerges as a clear priority. Although 67% of future leaders have the explicit goal of ascending to the C-suite, only half report having access to developmental opportunities that adequately prepare them for this role. Coaching and mentoring are among the most impactful development activities, yet only 45% receive coaching, and a mere 27% benefit from mentoring.

Compliance officers can champion developmental programs by advocating for structured, ongoing leadership training that is linked to career paths. This structured approach not only prepares leaders to manage compliance effectively but also ensures these future executives deeply embed compliance principles within their decision-making frameworks. Tailored training programs that incorporate continuous learning, mentoring, and coaching will foster leaders who prioritize compliance as a vital component of corporate success.

Another crucial dimension addressed by Russell Reynolds Associates is the significant disconnect in perceptions of organizational culture. Just 36% of next-generation leaders feel their senior teams model appropriate behaviors. This statistic is troubling because when leadership falls short on culture, trust deteriorates. Compliance practitioners understand all too well the critical linkage between culture and compliance effectiveness, as leaders who fail to exemplify compliance values see repercussions ripple across the organization, increasing compliance risks and weakening controls.

Effective compliance culture begins at the top. Organizations must ensure that senior executives visibly demonstrate behaviors that align with the declared organizational values, ethics, and compliance standards. Regular measurement and assessment of culture alignment are crucial. Employee surveys, comprehensive cultural audits, and transparent feedback loops are tools that compliance professionals can leverage to ensure that leadership behaviors resonate with and reinforce the compliance narrative.

The memorandum also highlights best practices from organizations that have effectively navigated these challenges. They utilize forward-looking, innovative approaches to leadership development. These organizations do not wait passively for vacancies to emerge but actively prepare potential leaders well in advance with targeted and bespoke training plans designed around clear, career-oriented goals and strategic organizational needs.

Transparency also plays an indispensable role in successful leadership transitions. Organizations excelling in succession planning communicate clearly and frequently about their investment in high-potential talent, reducing internal friction and competition while enhancing motivation and retention. Compliance officers, with their emphasis on clear policies and open dialogue, are ideally positioned to advocate for improved transparency and communication around these strategic initiatives.

Ultimately, proactive culture management and transformation must be an ongoing process. Effective companies invest time and resources in understanding their current culture, defining the desired future state, and developing concrete plans to transition from one to the other. For compliance professionals, this presents an opportunity to integrate compliance and ethical considerations deeply into organizational change initiatives, ensuring that compliance remains central to future organizational transformations.

In conclusion, the looming C-suite succession crisis highlighted by Russell Reynolds Associates’ research demands urgent and focused responses from organizations. Compliance professionals can and should play a strategic role in addressing this challenge. By championing transparent succession planning, structured developmental opportunities, culture alignment, and proactive organizational engagement, compliance leaders can help their organizations avoid leadership pitfalls and navigate the complexities of today’s rapidly evolving business environment. In doing so, they not only safeguard their companies from potential compliance risks but also strengthen overall corporate resilience, positioning their organizations for sustainable, compliant growth well into the future.