Story image

The rise of the chief compliance officer – Digital Guardian

11 Oct 2018

Article by Digital Guardian EMEA, VP and GM Jan van Vliet

With GDPR now in force, the position of chief compliance officer (CCO) has risen in prominence as a corporate coordinator and navigator of compliance issues.

But what exactly is the CCO, and does an organisation need one?

The Chief Compliance Officer (CCO) oversees and manages compliance issues within their organisation.

The role involves ensuring organisational compliance with various regulatory requirements and that employees are in adherence to internal procedures and policies. 

The CCO typically reports to the chief executive officer or chief operations officer.

The role of the CCO

The CCO should come up with corporate policies and procedures needed by their company for compliance.

He or she will then need to communicate these policies and train employees to avoid compliance mishaps.

The role also involves monitoring compliance and measuring and evaluating the level of compliance across the entire organisation.

The CCO is tasked with reporting to the board on everything related to compliance (from policy development and monitoring to enforcement and implementation).

In their role, the CCO coordinates with different departments including internal audit, employee services, and risk management to ensure that compliance issues are fleshed out, investigated, and resolved.

The CCO should also be proactive in identifying potential vulnerabilities and be able to address these head on with corrective measures.

They must also be able to come up with proper guidance on how employees and the company can avoid similar situations in the future.

Hiring a CCO

A good CCO must have a thorough technical and practical knowledge of the business.

This allows a CCO to envision and then supervise compliance solutions.

A CCO is responsible for designing the right policies and procedures and tapping into technologies needed for compliance.

A good CCO should also have great interpersonal skills, as they regularly interface with a variety of people, from C-level executives to the rank and file.

The CCO’s responsibilities take them from the boardroom, reporting on compliance issues, to top management and the board of directors, as well as to the manufacturing plant in order to train production workers on compliance.

Additionally, a good CCO is able to navigate legal matters with relative ease and build lasting positive relationships with regulators.

Superior multitaskers often make the best chief compliance officers as they need to make strategic decisions, supervise complex monitoring programs, manage and educate highly skilled professionals, and even talk with other departments on issues relating to risk and control.

What’s more, they need to stay up-to-date on what’s happening in their industry and stay informed about changes in regulatory requirements. 

Challenges of the role

Like any position, there are inherent challenges and risks faced by Chief Compliance Officers.

The first challenge is that the job is not really clearly defined. For example, some companies give the CCO role to their general counsel, thinking that it only involves legal concerns.

Then there is the challenge of not having the independence and authority to make decisions.

Ideally, the CCO works with the CEO, the board of directors, and other employees to make compliance second nature to the company.

However, conflicts of interest might arise, and for some departments, compliance might get in the way existing processes.

Another problem faced by CCOs is that they might not have the necessary resources to do their jobs, as compliance teams tend to be lean and underfunded.

However, investing in enterprise data loss prevention (DLP) software allows for deeper visibility and information control that can make compliance simpler and easier for the team.

DLP software extends a compliance team’s capabilities while increasing efficiency, making it an essential part of a successful CCO’s operations.

Despite the challenges, the role of a Chief Compliance Officer can be quite rewarding, and it’s a role that’s becoming increasingly important for modern organisations in heavily regulated industries.

As regulations continue to become more stringent and complex, CCOs will be in even higher demand as companies seek qualified professionals who are able to manage the complexities of the regulatory landscape.

Dell EMC launches interactive AI Experience Zones
The AI Experience Zones are designed to educate visitors about how to start, identify, and implement an AI project.
What NZ can learn from the Baltimore cyberattack
“Businesses must control physical access to their computers and secure their networks."
Infratil seeks clearance to acquire up to 50% stake in Vodafone NZ
The commission will give clearance to a proposed merger if they are satisfied that the merger is unlikely to have the effect of substantially lessening competition in a market.
Hands-on review: MiniTool Power Data Recovery Software
I came across a wee gem of advice when researching the world of data recovery. As soon as you get that sinking feeling and realise you’ve lost a file, stop using your computer.
Deepfakes the 'next wave of concern' - but can law really stomp it out?
Enforcing the existing law will be difficult enough, and it is not clear that any new law would be able to do better. Overseas attempts to draft law for deepfakes have been seriously criticised.
Acquia delivers open source framework for contextual commerce
The framework connects the Drupal open source web content management system with e-commerce platforms from Acquia partners.
Are you all set to ride the new wave of technology disruption?
Why IT professionals are not immune to digital disruption.
Salesforce continues to stumble after critical outage
“To all of our Salesforce customers, please be aware that we are experiencing a major issue with our service and apologise for the impact it is having on you."