Story image

The rise of the chief compliance officer – Digital Guardian

11 Oct 2018

Article by Digital Guardian EMEA, VP and GM Jan van Vliet

With GDPR now in force, the position of chief compliance officer (CCO) has risen in prominence as a corporate coordinator and navigator of compliance issues.

But what exactly is the CCO, and does an organisation need one?

The Chief Compliance Officer (CCO) oversees and manages compliance issues within their organisation.

The role involves ensuring organisational compliance with various regulatory requirements and that employees are in adherence to internal procedures and policies. 

The CCO typically reports to the chief executive officer or chief operations officer.

The role of the CCO

The CCO should come up with corporate policies and procedures needed by their company for compliance.

He or she will then need to communicate these policies and train employees to avoid compliance mishaps.

The role also involves monitoring compliance and measuring and evaluating the level of compliance across the entire organisation.

The CCO is tasked with reporting to the board on everything related to compliance (from policy development and monitoring to enforcement and implementation).

In their role, the CCO coordinates with different departments including internal audit, employee services, and risk management to ensure that compliance issues are fleshed out, investigated, and resolved.

The CCO should also be proactive in identifying potential vulnerabilities and be able to address these head on with corrective measures.

They must also be able to come up with proper guidance on how employees and the company can avoid similar situations in the future.

Hiring a CCO

A good CCO must have a thorough technical and practical knowledge of the business.

This allows a CCO to envision and then supervise compliance solutions.

A CCO is responsible for designing the right policies and procedures and tapping into technologies needed for compliance.

A good CCO should also have great interpersonal skills, as they regularly interface with a variety of people, from C-level executives to the rank and file.

The CCO’s responsibilities take them from the boardroom, reporting on compliance issues, to top management and the board of directors, as well as to the manufacturing plant in order to train production workers on compliance.

Additionally, a good CCO is able to navigate legal matters with relative ease and build lasting positive relationships with regulators.

Superior multitaskers often make the best chief compliance officers as they need to make strategic decisions, supervise complex monitoring programs, manage and educate highly skilled professionals, and even talk with other departments on issues relating to risk and control.

What’s more, they need to stay up-to-date on what’s happening in their industry and stay informed about changes in regulatory requirements. 

Challenges of the role

Like any position, there are inherent challenges and risks faced by Chief Compliance Officers.

The first challenge is that the job is not really clearly defined. For example, some companies give the CCO role to their general counsel, thinking that it only involves legal concerns.

Then there is the challenge of not having the independence and authority to make decisions.

Ideally, the CCO works with the CEO, the board of directors, and other employees to make compliance second nature to the company.

However, conflicts of interest might arise, and for some departments, compliance might get in the way existing processes.

Another problem faced by CCOs is that they might not have the necessary resources to do their jobs, as compliance teams tend to be lean and underfunded.

However, investing in enterprise data loss prevention (DLP) software allows for deeper visibility and information control that can make compliance simpler and easier for the team.

DLP software extends a compliance team’s capabilities while increasing efficiency, making it an essential part of a successful CCO’s operations.

Despite the challenges, the role of a Chief Compliance Officer can be quite rewarding, and it’s a role that’s becoming increasingly important for modern organisations in heavily regulated industries.

As regulations continue to become more stringent and complex, CCOs will be in even higher demand as companies seek qualified professionals who are able to manage the complexities of the regulatory landscape.

Microsoft urges organisations to tackle data blindspots
Despite significant focus placed on CX transformation, over a third of Australian organisations claimed that more than one in five of their projects failed.
Raising the stakes: McAfee’s predictions for cybersecurity
Security teams and solutions will have to contend with synergistic threats, increasingly backed by artificial intelligence to avoid detection.
Renesas develops 28nm MCU with virtualisation-assisted functions
The MCU features four 600 megahertz CPUs with a lock-step mechanism and a large 16 MB flash memory capacity.
DOCOMO ranked world's top mobile operator in 5G SEP applications
NTT DOCOMO has been ranked the world's leading mobile operator in terms of applications for candidate standard-essential patents.
Exclusive: Ping Identity on security risk mitigation
“Effective security controls are measured and defined by the direct mitigation of inherent and residual risk.”
CylancePROTECT now available on AWS Marketplace
Customers now have access to CylancePROTECT for AI-driven protection across all Windows, Mac, and Linux (including Amazon Linux) instances.
Gartner’s top 10 data and analytics trends for 2019
Data is the fuel for the modern world, and analytics the engine. Gartner has compiled the top 10 trends to watch this year.
How CIOs can work with colleagues to drive new competitive advantages
"If recent history has taught us anything, it’s that the role of the CIO is always changing, and that it won’t stop changing anytime soon."