Do you have any tips for introducing creativity and collaboration into our compliance program? We want to foster...
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
better employee participation when it comes to compliance best practices, but we're struggling to find ways to get everybody involved.
Ask the Expert!
Got a vexing problem for Mike Chapple or any of our other experts? Ask your enterprise-specific questions today! (All questions are anonymous.)
I can't promise a magic bullet that will suddenly make the compliance exciting, but there are some steps you can take to help better engage employees in your compliance efforts in areas where their participation matters. Here are a few compliance best practices from my experience:
- Set easily measurable goals and measure progress consistently. If you have a large number of systems to remediate, for example, set daily, weekly and monthly targets, and hang them on the wall. Let everyone see the progress the company is making and be sure the organization at large takes notice when the team meets or exceeds the set goals.
- Encourage transparency. Compliance programs are often shrouded in secrecy within an organization. If you want to engage your staff, you'll need to be upfront with them about your current status, the steps that you're taking to improve the compliance program and any challenges that may be encountered along the way.
- Be flexible. One of the best ways to engage employees in a compliance program is to let them guide it. Keep an eye out for employee innovations that might improve the compliance program and, when you see one, praise it loudly and adopt it quickly.
- Celebrate often! While you might throw a big party after reaching the end of a compliance initiative or hitting a crucial milestone, it's often more beneficial to celebrate the small successes. Bring in some doughnuts when a team exceeds a daily goal or take your top performers out for a pizza lunch each week. A little food goes a long way!
Notice anything about the advice I just offered you? There's nothing about a compliance IT management initiative that's different from managing any other program. Remember to treat your team well, empower them to control their work environment, give them the tools and resources they need, and success will follow.
Dig Deeper on PCI Data Security Standard
Related Q&A from Mike Chapple
Vulnerability scanning tools are necessary to be fully compliant with PCI DSS, but the tools need to come from a PCI DSS Approved Scanning Vendor. ...continue reading
Healthcare clearinghouses like Mass HIway are a new trend in health IT, but what are the security implications? Expert Mike Chapple explains what you...continue reading
The FFIEC Cybersecurity Assessment Tool has faced harsh criticism since its 2015 release. Expert Mike Chapple reviews the tool and how it can be ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.