top of page
Search

COMPLIANCE MONITORING - WHAT'S THE RIGHT QUESTION

Writer: PerrinPerrin
1 min read

Pretty often, I have found that compliance monitoring programmes don't really ask the right question. Compliant? Perhaps there's a better question out there.



Compliance Monitoring Programmes, in my experience, tend, almost invariably, towards trying to answer the question, Are we compliant?


They most commonly reflect upon the regulatory obligations and assess if there’s evidence of compliance’.


What you’re getting then is nothing more than a ‘tick in the box’ against that regulatory requirement.

Little confidence.

Little value.


It’s very difficult, therefore, to really determine if you are getting any real return on investment from your compliance function.


Of course what boards really should be seeking is a level of assurance, because the question above actually can only be honestly answered with the response ‘No’.


The better question is,

What levels of assurance do we have that we have identified, suitably mitigated and are monitoring our regulatory risks?


Compliance assurance should be risk-based, aligned with the outputs from your business risk assessment and set on a recognised and validated framework, such as ISO or COSO.


Is yours?

 

Recent Posts

See All

Comments

Commenting has been turned off.

This website and its content is copyright of Perrin Carey Limited © 2020-2022. All rights reserved.

Any redistribution or reproduction of part or all of the contents in any form is prohibited.

You may not, except with our express written permission, distribute or commercially exploit the content. Nor may you transmit it or store it in any other website or other form of electronic retrieval system.

Privacy and Cookie Policy

Terms of Use

Perrin Carey Limited is a company registered in Guernsey under company no. 68118

bottom of page