As you prepare to do your compliance risk assessment for 2023, don’t forget to look at what everyone is self-disclosing.[1] Self-disclosures provide insight into what other organizations are finding, whether through audits or internal reporting from employees. I feel that self-disclosures actually help prove these organizations have effective compliance programs.
Everyone has compliance risk. The compliance program infrastructure is designed to help educate, prevent, detect, investigate, and respond to concerns. When it works, you will help avoid errors, find concerns, and address them. Everyone sleeps at night. I believe this self-disclosure list emphasizes where you may want to look to make sure you have controls in place to mitigate these types of risks as applicable to your organization. It is always nice to educate employees about the risks and ask those involved in these areas if controls are in place.