Michael Volkov argues that as companies struggle with cybersecurity and data privacy issues, they should naturally turn to Compliance to play a larger role in overall risk mitigation strategies. He points out that there are many aspects of cyber risks and mitigation strategies that naturally fall within the Compliance scope of responsibility and expertise.
For example, nearly 50 percent of cyber-events or breaches are the result of internal employee conduct, some intentional and some negligence. He argues that these issues are in the wheelhouse of Compliance professionals: they know how to design controls, are excellent at designing and conducting training programs, and have a laser-like focus on the third party risks which are a common source of cyber events.
