Although governance and compliance are often used interchangeably, they have important differences. While governance is the framework for making decisions by setting policies and standards in privacy and risk management and establishing the rules for an industry, compliance is the actual implementation of those regulations.
According Dr. Pape Pape Cisse there are three other key differences in scope, focus and responsibility which further highlight the differences between the two.
What are the main differences in scope? He says that governance is broad and encompasses all organizational data practices, while compliance is narrow, since it focuses only on specific legal and regulatory requirements. In terms of focus and emphasis, governance is really focused on control and accountability while compliance prioritizes adherence to external rules and regulations .”
A board can monitor risk and oversee a wide range of responsibilities.
“All of these are part and parcel of governance, whereas compliance is managed by a team or department dedicated to it.” Cisse says that a risk department will look at compliance, and that the legal department will then ensure that the organization is in compliance with all legal requirements for that industry.
As AmeriCorp’s former CIO Cisse led AmeriCorp in the formulation and administration policies and operational activities to promote the effective use of computer technology, networks, and equipment.
Dr. Cisse will be our keynote speaker for the “The CIO’s Guide to Enhancing GRC by 2024” live webcast. This broadcast will reveal ways to automate GRC and make it easier to do so.
The event will be launched on Thursday, 20th June. It is sponsored by LogicGate and presented by InformationWeek. In a video interview, he provided some clarity.
Register for our live webinar “The CIO’s guide to enhancing GRC in 2020” today