A career in governance, risk and compliance
Why choose a career in governance, risk and compliance?
Compliance as a discipline was traditionally thought of as ensuring adherence to the many rules and regulations organisations face. But compliance is now about so much more: culture, ethics, advice – modern compliance really is at the heart of the business.
Compliance professionals not only navigate a complex regulatory environment but also add a key commercial perspective. They enable the right business to be conducted in the right way and help firms achieve success by using systems and controls to ensure effective risk management.
IT Governance, Risk & Compliance extends the GRC concept to include cyber security, data privacy and technology, integrating IT risk management into an organisation’s strategy.
In the context of financial services businesses compliance operates at two levels.
It can be described as a set of relationships between a company’s management, board, shareholders, and other stakeholders, which provides the structure through which the objectives of the company are set. Furthermore it provides the means of attaining and monitoring performance against those objectives.
The legislature in many jurisdictions has the power to delegate or subordinate law making powers to other agencies that may then make delegated or subordinate legislation often referred to as “secondary” legislation. In the context of financial services, secondary legislation is generally legislation that has been drafted by a regulatory body empowered to do so pursuant to the primary law by which it is established.
Occasionally a regulatory authority will feel compelled to issue detailed guidance to regulated businesses on how it expects them to actually discharge their legal and regulatory obligations. Anti money laundering and terrorist financing is one area where most regulators around the World have issued guidance.