Five Principles of Compliance Program Success

PRINCIPLE

PLANNING QUESTIONS

EVIDENCE PRINCIPLE IS FOLLOWED

​1. Define what compliance looks like.

• Where are we heading?

• What are our goals and targets?

• What are our obligations & promises?

• How will we know when we are in compliance and when we are not?

• Program Scope & Context

• Obligation / Promise Register

​2. Develop strategy and create plan to realize and sustain compliance.

• ​How will we meet all our obligations?

• How will we keep all our promises?

• How will we always stay between the lines?

• How will we manage change?

• How will we improve?

• ​Concept of Operations 

• Integrated Master Plan

3. Resource the plan.

• ​Do we have enough resources (people, technology, knowledge, capabilities, capacity etc.) to satisfy the plan?

• Program Resource Plan

4. Estimate and handle uncertainty.

• ​What impediments or opportunities will we encounter?

• What could go wrong?

• What needs to go right?

• How will we recover when boundaries are breached?

• What is the nature of uncertainty (aleatory, epistemic, ontological, etc.)

• What is our risk appetite?

• What is our risk tolerance?

• Risk and Opportunity Register

• Risk Management Plan

• Risk-adjusted IMP

5. Measure progress.

• ​How will success be measured? (MoE)

• How will performance be measured? (MoP)

• How will conformance be measured? (MoC)

• How will risk be measured? (MoR)

• How will assurance be measured? (MoA)

• Benefits realized

• Outcomes advanced

• Risk ameliorated

• Promises kept

• Obligations met