The compliance sphere is exciting as it is challenging to look into how the risk landscape is quickly changing. In this episode, Compliance Evangelist Tom Fox engages in a power-packed conversation with Jonathan Marks, a long-time professional in internal audit and thought leader in the compliance space.

Tune in and extract valuable insights as they go deep on the evolution of the internal audit profession since implementing the SOX Act of 2002, the arc of professionalism in compliance, the importance of an overall integrated structure of Enterprise Risk Management, and many more.

Major takeaways discussed in the episode:

✔️ Why the COSO 2013 Internal Controls Framework serves as a seminal moment for compliance professionals and helps keep up with the exponential speed of developments in the space.

✔️ The move to an overall integrated structure of Enterprise Risk Management is critical in proactively identifying, assessing, monitoring, and responding to risks and opportunities.

✔️ The 2020 Update to the Evaluation of Corporate Compliance Programs brought business intelligence to compliance and serves as a significant step towards enterprise resiliency. Organizations today have to be flexible and nimble and adapt to changes of new risks to survive and evolve.

✔️ The importance of prioritizing root cause analysis in investigation and approach. Jonathan has advocated for this in so long and the rigor around the process. “When I look at the root cause, it’s really finding that one domino that fell and tipped off everything else. Often, some recommendations are made specifically related to internal controls that are treating the symptoms and not the underlying issues. And then we have this funky word called recidivism. And so that same problem keeps happening or coming back.”

✔️ The three vital skills that have come into play that a compliance professional needs today are being “digitally athletic” to understand data analytics, be a great communicator and possess critical thinking to keep up with the evolving compliance functions.

✔️ The most successful auditors are the ones that can communicate, build trust and relationships with people. 

✔️ Companies and compliance need to be thinking about into 2025 are becoming more risk resilient, with what Jonathan calls the Bermuda Triangle — where internal audit, compliance, and legal all work harmoniously.

✔️ From a board member’s perspective going into the future, one has to start asking tough questions surrounding the company’s audit process and creating an internal audit plan.

Jonathan T. Marks is the firm leader of the global fraud and forensic investigations and compliance practice at leading advisory, tax, and assurance firm Baker Tilly. He has more than 30 years of experience working closely with his clients, their board, senior management, and law firms on global and cross-border fraud and misconduct investigations, including bribery, corruption, and compliance matters.

Jonathan specializes in internal and regulatory investigations, governance matters; risk assessment, design, and implementation of compliance programs; global fraud risk management programs; and compliance coordination and monitoring services for the private, public, not-for-profit sectors. He assists his clients to mitigate potential issues by conducting root-cause analysis, developing remedial procedures, and designing or enhancing governance and compliance systems along with internal controls, policies and procedures, and customized training.

LinkedIn: Jonathan T. Marks