Why Your Compliance Program Is Stuck
- Raimund Laqua
- 7 days ago
- 3 min read
The role defines the result.
Here's something that doesn't get said often enough: most compliance programs aren't led. They're maintained.
And there's a world of difference between the two.
The Caretaker Problem
In many organizations, the person responsible for compliance isn't leading it. They're caretaking it. Their mandate — spoken or unspoken — is to keep things the same. Don't rock the boat. Don't introduce risk. Make sure we pass the next audit.
This isn't a character flaw. It's a role definition. Caretakers exist because the organization has decided that compliance is a holding pattern, not a strategic function. The person in the role is doing exactly what they were hired to do.
And when someone comes along with a better way to do compliance — a more effective design, a smarter approach to obligations, a path to genuine operational compliance — the caretaker has no incentive to act on it. Improvement isn't in the job description. Stability is.
You Might Trim Costs. You Won't Transform Anything.
Can you get a caretaker to accept some changes? Sure. You might reduce costs. Eliminate redundant steps. Streamline a reporting workflow. These are changes that make the status quo cheaper or easier to maintain — and that's precisely why they're accepted.
But try to introduce something that changes how compliance actually works — how obligations are owned, how promises are kept, how assurance is built into the operating model — and you'll hit a wall. Not because the idea is wrong, but because the role won't allow it. A caretaker's job is to preserve the system, not redesign it.
Usually, it takes something going wrong — a regulatory failure, a material finding, a public incident — before the organization reconsiders whether "keeping things the same" was ever really a strategy at all.
Leadership Changes Things. Continuously.
Now contrast that with organizations where compliance is led, not just managed. Where the person in the compliance role sees their mandate as delivering outcomes, not preserving routines. Where realizing the benefits of compliance — not just avoiding penalties — is critical to mission success.
In these organizations, change isn't a disruption. It's the operating model. Because when your job is to keep the organization between the lines, ahead of risk, and on mission, you can't afford to stand still. The regulatory environment moves. The business evolves. Technology shifts the playing field. Standing still is falling behind.
Compliance leaders don't wait for something bad to happen. They design compliance programs that are adaptive by nature — programs built on clear obligations, owned promises, and the operational capability to deliver on both. They close the operability gap between what the program says on paper and what actually happens on the ground.
The Question Worth Asking
So here's the question:
Does your organization have a compliance leader or a compliance caretaker?
If it's a caretaker, stop trying to sell them on transformation. It won't work — not because the case isn't compelling, but because the role doesn't reward it. Your energy is better spent helping the organization understand that caretaking isn't leadership, and that compliance without leadership is just waiting for the next failure.
If it's a leader — someone who sees compliance as a promise the organization keeps, not a box it checks — then the conversation is entirely different. That's where real design begins. That's where operational compliance becomes possible.
That's where you start building something worth keeping.
