Читать книгу Successful Compliance - Barbara Neiger - Страница 22

The third instrument of an efficient and effective governance structure, a compliance management system, is designed to ensure compliance with statutory, regulatory or voluntary obligations in the conduct of business. The non-observance of compliance obligations is to be prevented by taking appropriate measures. Violations must be identified in time and actions taken to rectify the situation. Improvements and adjustments to the CMS prevent repetitions of violations and restore the organisation’s compliance in relation to the performance of its activities.

In conclusion, it should be noted that ICS, RMS and CMS are instruments for the effective and efficient management of organisations. They are not isolated from one another, nor should they be considered as such. CMS supports the management of compliance risks, thus making it a part of RMS. The determination of those obligations, compliance with which must be ensured through a CMS and its measures, derives from the risk assessment of these compliance obligations. Risk management principles thus form part of an effective CMS. Ensuring compliance – as an organisational goal – is in turn a core element of an ICS. The appropriateness of the ICS results from its alignment to the overall risk situation of an organisation thereby completing the circle between ISC, RMS and CMS.