"I just got my hard copy of the Journal and the article in there on Industrial Control Systems cyber risk is excellent! Well done throughout, you are to be commended for setting the bar at such a high professional level in the inaugural issue."
Using Compliance Risk Assessment Programmes
Abstract: A Compliance Risk Assessment (CRA) programme can be a meaningful and genuinely beneficial risk identification and management tool. Paul V. May Chief Compliance Officer at ABN AMRO Securities (USA) and Stephanie Nicolas partner in WilmerHale LLC outline key elements and practical considerations for conducting a CRA. By better identifying compliance risks and managing the drivers of these risks and behaviour, a CRA not only helps firms to reduce the occurrence of conduct events, but also enhances the way that firms do business.
Keywords: compliance risk assessment, conduct risk, risk assessment, inherent risk, residual risk