- This event has passed.
Compliance Management by Design Workshop, LONDON
November 5 @ 9:00 am – 6:30 pm LONDON
Workshop Summary
Organizations today operate in a field of ethical, social, regulatory, and legal landmines. The daily headlines reveal an abundance of organizations that fail to comply with regulatory obligations. Corporate ethics is measured by what a corporation does and does not do when it thinks it can get away with something. Compliance and ethics management ultimately defines, manages, maintains, and monitors corporate integrity. The era of artificial intelligence is also introducing new compliance and ethics challenges as well as opportunities.
Compliance is not easy.
Today’s organization is dynamic and constantly changing. The modern organization changes by the minute when new employees start, the business enters new markets, new facilities are opened, new contracts with agents are created, new products are introduced, new business partner relationships are established, new laws are put in place, regulations are changed, and the risk environment shifts impacting how business is conducted overall.
Yesterday’s compliance program no longer works. Boards desire a deeper understanding of how the organization addresses compliance, whether its activities are effective, and how they enhance shareholder value and provide assurance of the organization’s integrity. Oversight demands are rapidly changing the role of the compliance department to an active, independent program that can manage and monitor compliance from the top down. The breadth and depth of compliance bearing down on companies today requires a robust compliance program operating in the context of integrated processes and information. This includes compliance to new areas like artificial intelligence, but also how to leverage artificial intelligence to make compliance more efficient, effective, and agil.
To stay competitive, organizations need a cohesive, integrated strategy and processes for compliance supported by a structured information and technology architecture. This is compliance management by design.
This workshop aims to provide a blueprint for attendees on effective compliance management in a dynamic business, regulatory, and risk environment. Attendees will learn compliance management strategies and processes that can be applied across the organization at an enterprise or department level.
Objectives of the workshop:
Attendees will take back to their organization’s approaches to address:
- Effectively managing compliance
- Understand the challenges and pitfalls of managing compliance
- Achieve success by capitalizing on agility while maintaining compliance
- Facilitate ongoing monitoring of compliance
- Define a compliance management lifecycle for managing and monitoring compliance
- Establish compliance management ownership and accountability
- Provide risk and resilience management process consistency
- Communicate effectively with employees and stakeholders on matters of compliance
- Track critical compliance workflow and tasks
- Deliver effective compliance governance and assurance to the board of directors, regulators, and stakeholders
- Monitor metrics to establish effectiveness or compliance management
- Identify and resolve compliance issues
Agenda:
Part 1: Compliance Management by Design
Why Compliance Management Matters
- Compliance in Disarray: how organizations mismanage compliance
- Compliance Exposure: how mismanaged compliance expose the organization to risk
- Current drivers & trends pressuring organizations in compliance management
- Different ways organizations approach compliance management
- What Effective Compliance Management Achieves: Compliance role in governance, risk management, and compliance
Part 2: Compliance Governance
Blueprint for Effective Compliance Management
- Compliance Governance Committee: bringing together the range of compliance management roles and responsibilities in the organization
- Compliance Management Charter: defining a structure to govern compliance across the organization
- How to Develop a Compliance Management Strategic Plan
Part 3: Compliance Management Lifecycle
Managing Compliance in Context of Business and Regulatory Change
- Compliance obligation identification
- Ongoing compliance and business context monitoring
- Compliance communications & attestations
- Compliance monitoring & assessment
- Compliance forms & approvals
- Compliance metrics & reporting
- Compliance evaluation, benchmarking & assurance
Part 4: Compliance Management Architecture
Enabling Information & Technology Management for Compliance Management
- Compliance Management Information Architecture: Blueprint for Managing Compliance Content and Related Data
- Types of compliance management information and how it integrates into compliance processes
- Components and requirements for a compliance information architecture
- Compliance Management Technology Architecture: Blueprint for Enabling Compliance Management Processes with Technology
- Kinds of compliance management technologies and what best serves the organization
- Capabilities and requirements of compliance management platforms
- Compliance Management Business Case: Articulating the Value of Effective Compliance Management
Day Agenda:
| 09:00am | Breakfast and Registration |
| 09:30am | Part 1: Compliance Management by Design Why Compliance Management Matters |
| 11:00am | Mid Morning Break (Biscuits, Tea & Coffee) |
| 11:30am | Part 2: Compliance Governance Blueprint for Effective Compliance Management |
| 12:30pm | Buffet Lunch |
| 13:30pm | Part 3: Compliance Management Lifecycle Managing Compliance in Context of Business and Regulatory Change |
| 14.30pm | Mid Afternoon Break (Biscuits, Tea & Coffee) |
| 15:00pm | Part 4: Compliance Management Architecture Enabling Information & Technology Management for Compliance Management |
| 16:30pm | Drinks Reception & Canapes |
| 18:30pm | End of Day |
Breakfast, lunch, drinks & canapes provided.
GRC 20/20 Instructor
Michael Rasmussen is an internationally recognized pundit on governance, risk management, and compliance (GRC) – with specific expertise on enterprise GRC strategy and processes supported by robust information and technology architectures. With 30+ years of experience, Michael helps organizations improve GRC strategy and processes supported by the correct GRC technology architecture. This enables organizations to align GRC with the business and deliver effective, efficient, resilient, and agile capabilities to the organization. He is a sought-after keynote speaker, author, and advisor and is noted as the “Father of GRC” — the first to define and model the GRC market in February 2002 while at Forrester.
Workshop Host
Decision Focus develops software for Governance, Risk and Compliance. Since 2004, Decision Focus has provided the world’s enterprises with software and services. We’ve taken our years of knowledge and experience to implement new software for Risk and Compliance which is has become leading in enterprise GRC.
Michael, this is truly insightful, have you considered factoring in the security-by-design principles governed by NCSC CAF framework alignment with NIST’s cybersecurity functions? Coupled with realtime reporting execution using reporting tools such as PowerBI lends itself to harnessing the dynamic architecture of risk management in GRC in a proactive manner. Using CMMI modelling of controls maturity focuses upon continuous improvement, its an area I’m developing further for realtime reporting to aid cohesive decision making for senior management in project deliverables without stifling with audit-compliance fatigue.