10 Compliance Risk Assessment Mistakes and how really effective compliance officers prevent them Prof. Hernan Huwyler, MBA CPA They use biased subjective opinions They use red, yellow, and green… They disregard business objectives They have different assessments for privacy, corruption and local laws They use a list of questions or controls to assess risks They only work for compliance They assess implausible inherent risks to “justify” their value They create their own “tools” They perform static assessments They are afraid to change