- Policy and Procedure Management -- this is the definition, communication, training and attestation to corporate policies and procedures.
- Compliance Monitoring -- evaluating and measuring the state of compliance across the organization.
- Investigations -- managing investigations into wrong doing and anything that violates regulatory/legal requirements.
These three functions are part of a broader set of seven elements that the United States Sentencing Commission (USSC) has established as what an effective compliance program looks like. Read these seven elements of effective compliance and ethics programs on the USSC website.
If you are referring to an IT compliance officer, the duties are similar but more focused on IT as opposed to broader compliance. An IT compliance officer also tends to focus more on automation of IT controls.
If you have questions about meeting compliance requirements or about jobs and roles based around compliance, ask our compliance expert!
Related Q&A from Michael Rasmussen, Founder, Corporate Integrity LLC
Find out if business intelligence (BI) security issues can be addressed with governance, risk and compliance (GRC) security tools.continue reading
Learn why Sarbanes-Oxley (SOX) compliance technology, such as GRC management platforms, is better than spreadsheets for meeting Sarbanes-Oxley ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.