Where Do Compliance and Risk Management Meet?

By Michael Gaul,

Internal Control Compliance

A recent article by A-J Secrist of Parker Poe Adams & Bernstein examines the relationship between risk management and compliance. Some analysts distinguish between these two things, with risk management more a strategic concern and compliance an operational one driven by regulatory oversight. Others might go in the opposite direction and confuse a compliance program with performing risk management.

There is no doubt that there is a distinction between risk management and compliance, simply because the functions may be performed by different people within an organization, and at different levels. However, as Secrist points out, “In essence, noncompliance is a type of risk.”

Compliance is a key element of a comprehensive risk management plan. … Continue reading