When establishing governance for an organization's compliance and ethics initiative, which responsibility falls directly on the board of directors?
Select an answer to reveal the explanation.
Short Explanation and Infographic
Think of the board of directors like the control tower at a busy airport. They aren't flying the planes or checking bags—that's day-to-day compliance operations. Instead, their job is high-level oversight. They need to make sure the whole system is designed right, working properly, and has enough resources to do the job. If your boss walks in and asks why the board isn't sitting in on daily compliance training, you'll need to explain that their role is strategic governance, not micro-management. They need to ask the tough questions, look at the big picture, and make sure the program is actually effective. Got it? Sweet. Let's keep rolling.
Full explanation below image
Full Explanation
Under regulatory standards such as the U.S. Sentencing Guidelines (USSG) and the Department of Justice (DOJ) guidelines for evaluating corporate compliance programs, the board of directors plays a critical governing role that focuses heavily on high-level oversight rather than day-to-day administration. Specifically, governing authority members must be knowledgeable about the content and operation of the compliance and ethics program and must exercise reasonable oversight regarding its implementation, adequacy, and overall effectiveness. Option B is correct because the board’s primary duty is strategic and supervisory. This involves ensuring that the compliance program is adequately designed, has sufficient funding, is staffed by qualified professionals, and is empowered to prevent and detect corporate misconduct. They must receive regular, direct briefings from the Chief Compliance Officer (CCO) and actively challenge management to ensure compliance controls are functioning. Option A is incorrect because the day-to-day operations, answering routine compliance inquiries from employees, and administering training programs are the operational responsibility of the CCO and the compliance staff, not the board of directors. Option C is incorrect because running forensic audit teams, managing audits, and conducting standard internal investigations are operational and tactical duties handled by compliance, internal audit, or legal departments, rather than board-level governing bodies. Option D is incorrect because the board cannot be a passive observer or limit its involvement to crises or major scandals. Proactive, ongoing governance is required to avoid corporate liability and to ensure that the compliance program is adequate, adaptive, and capable of mitigating risks before they result in significant violations.