How to Have the Compliance Conversation with the Executive Committee

How compliance is presented to the executive committee determines how it is received.

The compliance officer who sits down with the executive committee to present the state of the compliance programme is doing something more consequential than a reporting exercise. They are, in the space of that conversation, either reinforcing or undermining the conditions that will determine whether the rest of the programme functions.

An executive committee that leaves a compliance presentation with a clearer understanding of where the organisation's real risks lie, a more honest picture of where the programme is strong and where it needs development, and a genuine sense that the compliance function is a trusted advisor rather than an overhead — that executive committee is more likely to make the decisions and allocate the resources that the programme needs.

An executive committee that leaves a compliance presentation with a filtered, positive account of programme performance, a reassurance that the risks are managed, and an implicit message that compliance is under control and does not require their active engagement — that executive committee has been set up to fail, by a compliance function that has mistaken comfort for credibility.

Substance over reassurance.

A compliance presentation to the executive committee that functions as a genuine advisory conversation rather than a reporting exercise has a different structure from one designed primarily to demonstrate programme progress. It begins not with what the programme has done, but with where the risk actually lies — presented honestly, in terms that connect to the committee's commercial reality rather than the compliance function's professional framework.

It is specific about the gaps. Not in a way that is alarmist or that undermines confidence in the programme, but in a way that is accurate — that distinguishes between the areas where the programme is genuinely effective and the areas where it is not yet adequate. An executive committee that is told the programme is strong across all eight dimensions of the relevant framework has been given information that is probably not true and almost certainly not useful.

It makes explicit what the executive committee is being asked to decide or to do. Compliance presentations that end with a summary of activities completed are not advisory conversations. They are progress reports. The compliance function that wants to have genuine influence at executive level needs to arrive with a clear view of what it needs from the committee — in terms of decisions, resources, visible support, or changes in behaviour — and to make that ask clearly and directly.

Credibility is constructed over time, not in the presentation.

The quality of the conversation that happens in the executive committee meeting is largely determined by what has happened outside it. A compliance function that is known to the executive committee — whose judgment is trusted, whose concerns have been taken seriously in the past, and whose assessments have proven accurate over time — has a different conversation from one that appears quarterly with a deck that committee members have not thought about since the last meeting.

Building that relationship requires a compliance function that engages with the executive committee as advisors engage with clients — understanding what each member cares about, connecting compliance risks to the commercial priorities that are already on their agenda, and being present in conversations that are not formally compliance conversations but where compliance implications are present.

It also requires a compliance function that is honest when things go wrong — that does not manage information to protect its own position, that brings difficult news directly rather than allowing it to arrive through other channels, and that treats transparency as a condition of the trust it is asking for.

That confidence is built slowly, through many small demonstrations of judgment, integrity, and honest counsel. It can be lost quickly. And it is, in the end, the most important asset a compliance function possesses.