Masters of Disaster

Stories of Risk, Ethics & Compliance. Host Leona Lewis interviews people about leadership, managing risk, ethics and compliance strategies for businesses, government, academia or society.
RSS Feed Subscribe in Apple Podcasts
Masters of Disaster




All Episodes
Now displaying: 2016
Dec 5, 2016

As Ron Carucci describes, “Take four walls, a roof and fill it up with people, and you are attempting to organize human endeavor.” Organizations can get into ethical problems when we fail to look at incentivized behavior holistically.  When people are faced with goals that conflict, out of frustration, people often try to resolve the conflict with “band-aid” solutions that lead to ethical and reputational problems for companies. 

Ron Carucci is owner of Navalent. Navalent provides a powerful platform for working with organizations in their noblest pursuits to set strategy, organize their critical capabilities, build their leadership capability, and create cultures that make people fall in love with their work. Ron is privileged to design global organizations that work, and working with executives to make them better leaders. 




Twitter @roncarucci

Nov 21, 2016

Matt Kelly discusses the emerging pressures on compliance professionals. Being able to demonstrate of what the compliance and ethics activities within the company, is the compliance emerging challenging.  We also discuss how monitoring compliance can be a lot like losing weight.

How information can be extracted out of company systems and reporting to leadership is an ongoing struggle. He distinguishes the benefits of an ethical culture from compliant business operations. Many things need to come together for controls to work well.

Matt Kelly is founder of Radical Compliance, which provides consulting and commentary on corporate compliance, audit, governance, and risk management. Radical Compliance also serves at the personal blog for Matt Kelly, the long-time (and now former) editor of Compliance Week.

Matt writes and speaks frequently on corporate compliance, audit, and governance, and now works with various private clients to understand those fields and to develop go-to-market strategies or provide other assistance in reaching audiences of compliance professionals.



Matt Kelly

Radical Compliance

Nov 7, 2016

Ronnie Feldman is the President & Creative Director of Learnings & Entertainments, a creative service and content provider focused on improving employee engagement through the power of fun!  Ronnie explains how to bring fun to compliance training.  No, really, it’s true!

  • Infuse training with creativity to be interesting
  • Use content to make critical information memorable
  • Be aware of how the training experience reinforces the brand of the compliance team
  • Use empathy to make training more effective
  • Do not be afraid that not everyone will like your creative vision
  • Surprise and delight is powerful


Ronnie has an MBA in Entrepreneurial Management and an improv comedy background and has spent the better part of the past 25 years playing in the entertainment and learning space. Ronnie believes that the philosophies of improvisation can help make you a better person, that the Chicago Cubs will win a world series in 2016, and that napping should be an Olympic sport.  He takes great pride in finding creative ways to solve business problems using humor, improvisation and fun. 




Masters of Disaster® is the registered trademark of ComplyEthic Consulting LLC in the United States.  Leona Lewis can be reached at

Oct 31, 2016

Stephen Kasloff is Director and Senior Advisor of Compliance & Ethics Solutions LLC and an expert in how continuous improvement is vital to compliance programs. As Stephen explains, continuous improvement is essential to identifying, assessing and managing risks over time. Without continuous improvement, an organization cannot effectively assess or react to the facts as they change over time. 


Continuous improvement is essential as a:

  1. Legal Requirement
    • The Federal Sentencing Guidelines requires periodic review of compliance and ethics programs to identify new risks and correct deficiencies.  The action items that come out of the assessment process is continuous improvement.
    • Continuous improvement creates a way to make the program more effective by addressing risks that arise over time. 
    • A compliance program that includes a continuous improvement process is more credible.
    • Continuous Improvement is proactive, avoiding and managing risks.
  2. Insurance Policy
    • The more risk intelligent the business is to risk the stronger the business can be in reaching its goals.
  3. Business Benefit
    • Continuously showing ethical and compliant behavior strengthens a culture of compliance.
    • Greater opportunities for employee buy-in to an ethical and culture of compliance through action with continuous improvement.
  4. Cultural Benefit


STEPHEN I. KASLOFF, ESQ. is Director and Senior Advisor of Compliance & Ethics Solutions LLC, which provides consulting services in compliance and ethics risk assessment and program development. Mr. Kasloff has been working in the field of organizational ethics for more than two decades, having served as the ethics officer of one of the world’s largest security services firms and leading that company’s nationally recognized, award winning corporate ethics program. He directed the organization’s industry-leading quality management program registered to the global gold standard ISO 9001:2008, the international benchmark for quality.

Mr. Kasloff has played an active role in national ethics organizations, and has taught and lectured on business ethics at Pennsylvania State University and the Philadelphia Bar Association – where he has served as CLE instructor in business ethics and Bridge the Gap – the Wharton School of the University of Pennsylvania, the University of Memphis and other venues.

He has been a judge of the American Business Ethics Awards and the Better Business Bureau Jerry Myers Best Practices Award; been honored by the Ethics Resource Center – the nation’s oldest ethics advocacy NGO – for his service in its leading edge Fellows Program, a roundtable of senior ethics practitioners representing the corporate, academic, government and non-profit sectors; and served the private security industry as Board Member and First Vice Chair of the National Association of Security Companies, NASCO.

Previously Mr. Kasloff served as Counsel to the Rules Committee of the City Council of Philadelphia and Special Counsel to a member of that body. He earned his baccalaureate degree from the University of Pennsylvania and his J.D. from the University of Pennsylvania Law School. He is a member of the Pennsylvania Bar and of the Philadelphia and Pennsylvania Bar Associations.



Stephen Kasloff

Compliance & Ethics Solutions LLC


Masters of Disaster® is the registered trademark of ComplyEthic Consulting LLC in the United States

Leona Lewis, host of Masters of Disaster and Founder of ComplyEthic, can be reached at

Oct 24, 2016

Kate Bischoff worked for the State Department in the Middle East during the Edward Snowden and Chelsey Manning scandals. Kate also conducted training for the State Department for employees on information security.  Kate describes what happens during a scandal of a security breach magnitude.  The swiftness of the State Department response to the scandal showed the organization's intense planning for security breaches.

Kate emphasizes the human risk in information security. It is hard to understate the importance of training people need for handling sensitive information in their job.  Experiential, ongoing training is critical for employees to internalize good information security practices.  Employees also need to exercise good judgement in many ambiguous security situations, so training on what good judgment looks like is critical for information security.

Kate Bischoff, JD, SHRM-SCP, SPHR, is the Managing Principal of tHRive Law & Consulting.  She understands compliance as a balancing act between finding what works for a business and what is compliant.  During her career, Kate has seen people do and say some goofy and inappropriate things in the workplace. Regardless, she remains inspired by the many people doing their best to make an organization great. Kate is a frequent speaker on compliance topics. She also works with some of the most innovative companies using the best in cutting-edge techniques and technology to grow.



Kate Bischoff

tHRive Law & Consulting

Masters of Disaster® is the registered trademark of ComplyEthic Consulting, LLC in the United States.

Leona Lewis, host of Masters of Disaster, can be reached at

Oct 17, 2016

Alexis Bell, CEO of Fraud Doctor LLC, discusses challenges in fraud investigation overseas.  At least 5 different ways your fraud investigation can be impacted when it is conducted internationally:

Political Instability. Anytime when a new regime takes over in politically unstable countries it disposes of the legal system wholesale, and recreates it.  The resulting legal uncertainty can throw into fraud investigations in the jurisdiction.  

Cultural Norms. Actions that are taken for granted as fraudulent in the United States may be acceptable overseas.  

Gaps in the Legal Process. In some countries, fraud investigators must work directly community leaders to find solutions due to the absence of local applicable law.

Third Party Risk.  Fraud investigations can take you to countries you do not expect. Even small companies need to understand the operations of the third parties they work with to understand the geographic exposure to fraud.  

Understanding Legal Nuances. It is important to understand the nuances of the applicable law in the countries in which your company may be exposed to fraud. For example, challenges in EU privacy laws impacts a fraud investigators’ access to information in the EU that is usually readily available in the United States.  


Alexis C. Bell, CFE, PI is a pioneer in the international antifraud industry. She helps companies address their fraud management concerns by designing brand new programs or assessing and enhancing their existing antifraud structure. She is passionate about her work and engages others to align with the company’s vision.

Fraud Doctor LLC is a consulting firm offering proprietary products and services such as global program design & implementation for fraud management and global fraud risk assessment. Additional services include antifraud & investigative training, private investigation services, cell phone & small device digital forensics, cyber intelligence investigations, technical surveillance countermeasures (TSCM), transaction level data analysis project plans for antifraud and SOX.



Fraud Doctor LLC

Alexis C. Bell, CFE, PI:


Leona Lewis is the host of the Masters of Disaster podcast


Masters of Disaster® is the registered trademark of ComplyEthic Consulting LLC in the United States.

Oct 10, 2016

Years ago, the CCO was not seen as a facilitator or help to the business. Rather, the CCO was seen as an obstructionist role to tell the business “no.”

Today, the CCO role is more of a business partnership role, educator, and facilitator. The skills that companies look for now support a collaborative role. Companies are asking candidates for CCO about how they collaborate and lead. They are not just focusing on the candidates’ knowledge of regulatory subjects.

Maurice Gilbert is Managing Partner of Conselium Executive Search. Maurice brings deep expertise to the compliance conversation. He enables best in class hiring solutions for companies in need of compliance officers. The ease with which he delivers value, as well as his access to the best available talent around the globe, is unmatched.

As the publisher of Corporate Compliance Insights, Maurice manages a growing community of informed compliance and ethics professionals. He provides a forum through which compliance and ethics professionals can share best practices, hiring trends, and forecasts.



See Corporate Compliance articles at

Masters of Disaster® is the registered trademark of ComplyEthic Consulting LLC in the United States.

Leona Lewis is the host and producer of Masters of Disaster, and she would like to hear your ideas, suggestions, and comments.

Leona can be reached at leonalewis@complyethic.

Oct 3, 2016

Fresh from the SCCE International Academy in Brazil, Adam Turteltaub joins me on the Masters of Disaster® podcast.  Despite the fact that the Brazilian currency has devalued relative to the dollar, the Academy in Sao Paulo was packed!  In Brazil, compliance professionals feel that they are in the middle of things.

It is interesting seeing compliance go global, not just by large multinationals, but also down the supply chain to smaller companies outside the United States.  Today, large businesses expect that their vendors and suppliers have compliance program to protect their customers, the large businesses, from compliance risk.  Companies are concerned about losing business by selling compliance problems to their clients.

Brazil’s history of corruption is not sustainable, and Brazil is one of the top ten economies of the world.  Business located in Brazil are aware that to be players on the global stage, corruption needs to go.

Over recent years during the activity of the SCCE International Academy, Adam Turteltaub sees more hope and less skepticism.  The Academies supports the networking that goes on during the Academies where compliance professionals disco very how they are not alone in the job.

Adam advises that attending an international conference can help U.S. compliance professionals understand international perspectives on compliance and what issues are hot overseas.  The growth and change in issues that compliance departments address that Adam has seen over the years also shows the value of attending conferences to understand what is likely to be the focus in compliance in the future.

Adam Turteltaub is Vice President of Strategic Initiatives and International Programs at the Society of Corporate Compliance and Ethics (SCCE) and the Health Care Compliance Association (HCCA)



adam.turteltaub@corporatecompliance .org

SCCE Events Calendar (including International events)


Masters of Disaster® is the registered trademark of ComplyEthic Consulting LLC in the United States.

Sep 26, 2016

In a fun interview about a dry topic, I talk with Rob Warmack, CEO of Compli, on all the ways that automation helps companies and compliance programs. We even discuss how automation can make your General Counsel like you more.

Rob and I get into the nitty-gritty of why automated systems help compliance programs.  He explains several the advantages automation brings to a compliance program. Benefits that range from better employee training to greater assurance for stakeholders.  

Automation can also allow the company to do things that they could not achieve manually.   For example, reliance on manual systems with live training will mean that training will happen less often, and take an hour or two of each employee's time.  Automation allows more frequent and shorter training activity.  Automation also allows a better employee experience.  Improving employee’s interactions with compliance, improves employee's willingness to listen to the messages that they need to hear.

Rob Warmack is CEO of Compli, providing more than just software and compliance reports.  Compli helps businesses assemble actionable information that inspires confident operations. Compli’s mission is to simplify compliance by creating persistent Governance, Risk and Compliance (GRC) monitoring tools, and real-time reporting and transparency.



Masters of Disaster® is a registered trademark of ComplyEthic Consulting LLC in the United States.

Sep 19, 2016

Donna Boehme is back on the Masters of Disaster® podcast to discuss what it takes for compliance to succeed. Donna often refers to the new approach for the architecture of Compliance 2.0. Fundamentally, Compliance 2.0 starts with subject-matter experts with experience in compliance and how compliance is designed and managed. The most important hallmark of Compliance 2.0. is having a leader who is able to lead the operations toward compliant behavior.

The five elements of the Compliance 2.0 model are described by Donna in an infographic found on her website here The first two elements we discuss in more depth on today’s podcast are:

  1. Empowerment

The Chief Compliance Officer (CCO) must have a clear mandate to design and manage “effective compliance programs” as described in the Federal Sentencing Guidelines. The CCO also has the support of the Board of Directors with unfiltered Board access.


Under Compliance 1.0, compliance was not independent from businesses and decision-making was high-jacked by business incentives. Compliance must have independent power to make decisions separate from the incentives of other departments.

Recently, Donna Boehme released a very popular article on the Five Signs that Compliance 2.0 is the New Normal ( We discuss the five signs and what about them points to a greater understanding and implementation of Compliance 2.0 today compared to twenty years ago. The five signs we discuss are paraphrased below:

  1. Compliance is more often defined as a separate function from legalities. Over the last two decades, the compliance profession has successfully defined itself as a new and subject matter expertise that is separate from the legal department.
  2. Both regulators and prosecutors publicly acknowledge the importance of independence, empowerment and compliance subject matter expertise, which are all elements of Compliance 2.0. 
  3. The DOJ embraces the elements of Compliance 2.0 in the FCPA Pilot Program. 
  4. Compliance professionals understand the importance of the elements of a Compliance 2.0 and how it supports their success in their role and are being very selective about the CCO jobs they take. 
  5. Studies show that the next generation of compliance is more likely to be positioned for success. 

Donna Boehme will attend the SCCE annual meeting in Chicago on September 26-28.  If you are in Chicago at the event, please take the opportunity to meet her personally.


Donna Boehme is a principal of the firm Compliance Strategists (, and a recognized leader in the field of compliance and ethics who brings a powerful mix of being a compliance officer, in-house legal and corporate secretariat perspectives, transactional experience, and deep global expertise. Donna is a compliance and ethics expert who helped develop the compliance and ethics best practices in use today by a wide spectrum of companies in the US and globally.



Compliance Strategists’ Compliance 2.0 resource site

Previous Interview with Donna Boehme on the Masters of Disaster podcast:

Masters of Disaster® is the registered trademark of ComplyEthic LLC in the U.S.

The Masters of Disaster podcast is available on iTunes.

Sep 12, 2016

Jon Gonzalez and I discuss a few scandals from recent news when top leaders bend (or break) the rules and tell “white” lies.  The reputation and financial impact can be big, even when the indiscretions seem small.

Jon Gonzalez is Senior Legal Counsel at Syntrio, Inc., an online compliance and ethics training courses to companies, organizations, and government entities of all sizes.  He is also owner of VIP Fan Experiences LLC

As Senior Counsel for Syntrio, Jon utilizes his experience in ten plus years as a management-side labor and employment attorney to provide legal support and content expertise for the company and its sales team on courseware content and legal issues.  After presenting over 100 live employment discrimination and harassment prevention (and other employment law related) training courses, Jon uses this experience to evaluate and refine new and existing content for Syntrio.



Syntrio Inc.

Masters of Disaster® is the U.S. registered trademark of ComplyEthic Consulting LLC

Sep 5, 2016

Eric Feldman, Senior Vice President at Affiliated Monitors, Inc. discusses with me why third party assessments are essential to meeting the obligations outlined by the Federal Sentencing Guidelines.  We also discuss the barriers to making a decision to conduct third-party assessments that executives sometimes create for themselves. 

Third-party assessments can bring to leaders attention information that internal auditors or departments would rather not emphasize.  What you don’t know can hurt you.  Business leaders are held responsible for bad actors (or bad actions or facts) within their organizations that they do not personally know. 

It is human nature to look at the world with an optimistic bias.  Business leaders often unconsciously assume that not knowing about bad facts within their organization means that these facts do not exist.  Leaders sometimes make the mistake of believing they cannot be held responsible for bad actions they do not know. 

The line between what a business leader is held responsible for is not whether or not they had a knowledge of bad facts, but whether he or she could have known the facts using common techniques to find out.  Federal Sentencing Guidelines state this expectation in Section 8.2.B.1(a)(1), an organization shall exercise due diligence to prevent and detect criminal conduct.

The DOJ wants to see companies have an evolving, continuously improving compliance program, not a perfect one. The Federal Sentencing Guidelines includes the requirement of periodic assessment of compliance programs as part of program of continuous improvement in Section 8.2.B.19(c)(1):

[T]he organization shall periodically assess the risk of criminal conduct and shall take appropriate steps to design, implement, or modify each requirement set forth in subsection (b) to reduce the risk of criminal conduct identified through this process.

Companies need to identify whether various parts of compliance programs are working, and how the programs are impacting corporate culture.  It is important to have a third party to take a look to see whether what you are doing to make sure the company is getting accurate and complete information.

Eric R. Feldman, CFE, CIG retired from the Central Intelligence Agency (CIA) in 2011 with over 32 years of experience in Inspector General oversight and federal auditing, in both the Executive and Legislative branches of government.  He has served in executive positions with Offices of Inspector General at the Department of Defense, Defense Intelligence Agency, and CIA, and was the longest serving Inspector General of the National Reconnaissance Office (NRO) from 2003-2009. At the NRO, he presided over a highly successful procurement fraud prevention and detection program, widely recognized by the Department of Justice as a model throughout the federal government.

While serving as a Federal Inspector General, Mr. Feldman was an active member of the National Procurement Fraud Task Force at the Department of Justice and chaired the Private Sector Outreach Committee. In this role, he was a driving force behind the amendments to the Federal Acquisition Regulations requiring the mandatory disclosure of contractor fraud and the implementation of business ethics and conduct programs for federal contractors.

Mr. Feldman is a frequently sought-after speaker and author on the topics of procurement fraud detection and prevention, corporate business ethics and compliance, and managing an Inspector General function. During the last year, he has given presentations at national conferences of the Association of Certified Fraud Examiners, the Society of Corporate Compliance and Ethics, and the Association of Inspectors General.


Eric Feldman, CFE, CIG 

Affiliated Monitors, Inc. 

The Federal Sentencing Guidelines 

Aug 29, 2016

Compliance is a team sport, and building a network to share ideas, experience, and concerns is critical. The Society of Corporate Compliance and Ethics (SCCE) has played a big part in my growth as a professional and in my knowledge of the current state of the struggles and achievements of compliance practitioners.

I got the chance to talk with Roy Snell, CEO of SCCE and HCCA (Health Care Compliance Association), on the role the annual meeting plays in the careers of compliance professionals. When SCCE started, it was important to form relationships and forward the sophistication and effectiveness of compliance professionals. SCCE created every possible forum for people to share information and educate each other, allowing a framework for the profession of compliance to grow.

Personally, I am looking forward to the 2016 annual SCCE meeting, held in Chicago next month. Send me an email at if you would like to meet in Chicago at SCCE!

The Society of Corporate Compliance and Ethics (SCCE) is a member-based association for regulatory compliance professionals. SCCE was established in 2004 and is headquartered in Minneapolis, Minnesota. SCCE provides training, certification, networking, and other resources to thousands of members. Our members include compliance officers and staff from a wide range of industries. The need for guidance in meeting regulatory requirements extends to a wide range of sectors, including academics; aerospace; banking; construction; entertainment; government; financial services; food and manufacturing; insurance; and oil, gas, and chemicals. The following observation from Roy Snell is found on the SCCE/HCCA website:

One often wonders why HCCA, and then SCCE, all worked. It’s hard to know. Is it being in the right place at the right time or getting the right people involved? To me, it’s obvious that it is both. What has kept it going is a simple truth, that people who face significant challenges need to communicate with others facing similar challenges. Compliance professionals face huge challenges. The reason we continue to meet in ever-larger numbers is the very same reason the first call to Mary Dunnaway was made—to share compliance war stories and learn from each other.


2016 SCCE Chicago Conference Information

SCCE official site

Masters of Disaster® is the U.S. registered trademark of ComplyEthic Consulting LLC

Aug 22, 2016

Cecelia Jefferson discusses the unintended compliance risks of implementing technology in many different business contexts.  It is critical when seeking to close compliance gaps with technology that compliance professionals dig deeper to the problems that the technology may create in real life, for example:

  • For liquor stores, if drivers licenses can be scanned to ensure all purchasers’ ID’s are checked, what privacy and security problems does collecting drivers license information create?
  • How difficult is the new system to train across large numbers of employees?
  • Do employees face this compliance issue every day or rarely?  How does this impact the effectiveness of the proposed solution?
  • For hospitals, if the pharmacy is automated, what happens in the event the computer goes down?  Is there a manual back-up?
  • What are compliance issues discoverable by the general public, including regulators, and how does this exposure impact the decision to devote resources to the solution?
  • Are the systems flexible to be changed if regulators change their interpretation of the law or prioritization of enforcement?
  • How do the systems interact with a continually changing enforcement environment and changing laws?
  • Is the issue so closely intertwined with the company’s brand that the risk of any noncompliance can be devastating?

Everybody has the intention to be committed to compliance, but when resources need to be devoted to compliance, the company’s true commitment comes into focus.

Cecelia Jefferson is a  strategic, multi-talented compliance executive with extensive and diversified legal, compliance, and governance. She has almost two decades of experience in compliance, government and as an attorney in the state of Florida.  Cecelia is the former Director of Alcohol, Tabacco, and Firearms Compliance at Walmart, Assistant General Counsel for the Florida Agency for Health Care Administration, and has held several other roles in state regulation, enforcement, and consumer protection.



Cecelia Jefferson’s email


Twitter @cdjdst

Aug 8, 2016

Jay Rosen is back on the Masters of Disaster podcast. He celebrates five years working in the compliance and ethics industry and has seen many changes to the industry during this time.  Jay explains how two basic areas where compliance has changed:

  1. Consolidation of service providers to be the one-stop shop for general solutions for compliance programs.  Compliance officers should keep an eye on how they can benefit from specialist service providers who may have more context about relevant businesses.
  2. More information from the DOJ and SEC is now available on what government believes an effective compliance program looks like.  It is now clear that a check-the-box paper compliance program is insufficient.

We discuss the significance of internal controls and other actions companies need to take to create a culture of compliance beyond implementing tools and hiring compliance service providers. We discuss reputational risks in the marketplace and within the company with employees.

We even talk a little politics, but not too much.  Everyone gets more political talk than is healthy these days.

Jay Rosen works for Merrill Brink International and assists global companies with foreign language based investigations of potential Foreign Corrupt Practices Act (FCPA) exposure, patent and IP litigation and import/export compliance and cross-border matters. 

Jay has the experience to guide clients through both the best practices and pitfalls of translation solutions.  He helps businesses and representative counsels understand how and when to save on translation costs while minimizing business risk, essentially helping them navigate the appropriate ways to take advantage of cost-effective resources while ensuring the highest quality certified translations when necessary. 



Jay Rosen Linkedin Page

(310) 729-6746

Stanford Law School FCPA Clearinghouse

twitter @FCPA_Translate

YouTube Videos

Merrill Brink International

Society of Corporate Compliance and Ethics

Aug 1, 2016

Keith Furst and I discuss how data scientists working on compliance projects can work together better to avoid unintended consequences which prevent compliance from getting the data it needs.  It is almost impossible to have one person embody all the compliance and communication skills required in a data scientist that might allow that data scientist to understand easily and execute a data project for a compliance project.  A better understanding by compliance that there may be communication gaps is essential.  Collaboration between data scientists and compliance must occur throughout the data project.

For example, if information needs to be delivered to compliance to take next steps, assumptions can be made a substantial risk of non-compliance by leaving some information out.  Also, communication between compliance and data needs to be maintained over time checks are not in place to react to planned changes.  Changes can occur in systems, data, law or business that changes the significance of the data to compliance.

Keith Furst is a fraud detection expert with years of proven experience within a variety of financial institutions including Tier 1 wholesale banks, investment banks, foreign bank branches, commercial banks, retail banks, broker-dealers, prepaid card providers and merchant acquirers with a focus on implementing fine-tuning and validating financial crime systems.  His forte relates to transaction monitoring, customer due diligence, fraud and market abuse systems and his work included custom data analytics resulting in the identification of suspicious activity outside of the traditional surveillance models.

Keith has experience effectively working with and reporting to a diverse range of stakeholders and senior executives in compliance, technology, operations, audit, and finance.  He has managed global initiatives composed of cross-functional teams dispersed over the Americas, Europe, the Middle East and Africa (EMEA) and Asia Pacific (APAC).

He is well-versed on model risk management and has performed deep-dive assessments of banking institutions policies which resulted in enhancements to policies and model governance. With deep knowledge of Society for Worldwide Interbank Financial Telecommunication (SWIFT) message types and correspondent banking, he performed multiple risk assessments to ensure cross-border payment transparency aligns with both industry and internal policy guidelines.

Keith Furst holds an MBA from Baruch College, Zicklin School of Business.



Jul 25, 2016

Laurence Guihard-Joly is back with information showing that disaster recovery can save companies money from a study conducted by the Ponemon Institute.  Compliance leaders are always on the hunt for metrics to support the business case for compliance.  The study we discuss on the podcast, the 2016 Cost of Data Breach Study: The Impact of Business Continuity Management (BCM) from the Ponemon Institute.  The study shows how having a BCM program reduces the cost of data breaches and increases the speed of detection and repair of data breach incidents.

We also discuss what the Ponemon study means in practical terms. The increasing costs of data breaches and downtime as business becomes more reliance on 24/7 availability of data and Internet-connected products or systems.

Business Continuity Management provides the skills, practical knowledge and relationships needed for handling a crisis well. We discuss the benefits the resilience of the corporate culture from a BCM using the example of the recent flooding in Paris.

Laurence Guihard-Joly is the General Manager of the IBM Resiliency services, leading resiliency teams across the world who provide services and solutions to help IBM clients manage their risks in an increasingly “always on” world. Within the IBM Enterprise Risk Management, Laurence also leads the IBM Business Continuity Management program, with a dedicated team and a leadership BCM community across all IBM business units and corporate functions and processes.



Laurence Guihard-Joly

Previous Masters of Disaster podcast interview with Lawrence Guihard-Joly

The Ponemon Institute’s 2016 Cost of a Data Breach Study: Impact of Business Continuity Management (BCM) has produced significant findings on the worldwide challenges businesses are currently facing when it comes to identifying and confronting data breaches within their IT infrastructures.

Masters of Disaster:

Jul 18, 2016

Edward Chenard explains the significant risks go along with the potential benefits of data science.  Privacy practices in how company information is used extend to big data analytics.  The algorithms used in data analytics may not be tested or thoroughly understood even when the results of the analysis impact the lives of real people.

Data collection and use in company Big Data projects have become more strictly controlled over the past few years, as awareness of privacy requirements has increased in the data analytics community.  However, more education is still needed of how data analytics teams support company privacy requirements in the course of their work.  Good privacy practices is fundamental to maintain the trust of consumer and business customers.

New programs like Hadoop have made machine learning attainable to more data analyst teams in more companies.  The recent explosion in machine learning has exponentially increased risks associated with flaws in the algorithms built into a machine learning digital products.  Human biases and assumptions can live on in algorithms used to made determinations like wether a job is offered, credit is extended, products or services are offered.  The validity of the algorithms used and the quality of the interpretations made from the results needs questioning from multiple points of view to manage these risks. Big data is a team sport.

Edward Chenard is a data analytics advisor who inspires and motivates teams to innovate, build, launch and iterate emotional products that create better customer experiences. He is an adviser to top-tier consulting firms, investment banks, and private equity firms on digital. Global speaker about our evolving digital world.

Some people know how to build digital products but are not always good at knowing what to do with those products. Other people know what to do with digital products but cannot build digital products. Edward can do both, and is the intersection between business and technology. 


Edward Chenard’s E-mail

Edward Chenard’s LinkedIn Page

Privacy and Data Security in the Age of Big Data and the Internet of Things, U.S. Federal Trade Commissioner Julie Brill. Delivered at Washington Governor Jay Inslee’s Cyber Security and Privacy Summit, January 5, 2016,

Chris Matyszczyck, The Internet Will Vanish, Says Google’s Eric Schmidt, CNET (Jan. 22, 2015, 6:00 PM), available at

FTC Event Big Data a Tool for Inclusion of Exclusion? September 15, 2014,

Jul 18, 2016

Jonathan Armstrong from Cordery Compliance explains last week's Privacy Shield Agreement between the EU and US.  For more information see


Jul 11, 2016

Mark Duvall explains the recent changes to regulation of chemicals in the U.S., specifically, what reform to the Toxic Substances Control Act (TSCA) means. In June, President Obama signed the Frank R. Lautenberg Chemical Safety for the 21st Century Act making significant reforms to TSCA. Now we discuss what comes next. The Environmental Protection Agency has many new obligations that were formerly handled by the States. Manufacturers and processors should begin to assess their obligations and opportunities now.

Mark Duvall has over two decades of experience working in-house at large chemical companies.  His focus at the law firm of Beveridge & Diamond, P.C. has been on product regulation at the federal, state, and international levels across a wide range of programs, and occupational safety and health. 

He heads the Firm’s Toxic and Harmful Substances/Toxic Substances Control Act practice.  His experience under TSCA includes enforcement actions, counseling, rulemaking, advocacy, and legislative actions.  He chairs the TSCA Dialogue Group, an informal group of companies that manufacture, import, distribute, and sell chemicals, and related trade associations, that address possible legislation to amend TSCA and alternatives to legislation.  He also works with foreign counterparts to TSCA, including REACH and CEPA.

He has worked on green chemistry issues at the federal and state levels, as well as a variety of voluntary programs that affect products.  He has helped clients with the Emergency Planning and Community Right-to-Know Act, the Controlled Substances Act, the Chemical Weapons Convention, and other chemicals-related requirements.

He has advised clients and written and lectured on the regulation of the products of nanotechnology by FDA and by EPA under FIFRA and TSCA and on related product stewardship issues.

He is Vice Chair and former Chair of the Committee on Pesticides, Chemical Regulation, and Right-to-Know of the American Bar Association’s Section on Environment, Energy, and Resources.



Mark Duvall contact information and bio

Beveridge & Diamond TSCA Reform Resource Center

Frank R. Lautenberg Chemical Safety for the 21st Century Act (as signed by President Obama, June 22, 2016)

Now That TSCA Reform Is Here—What’s Next?

Jul 4, 2016

The skills and requirements needed for compliance roles have evolved in the last several years.  Often compliance professionals were originally trained in lawyers or auditors. Today compliance professionals need to use creativity to persuade and engage company employeres and executives to be effective.  Nicole discusses how we can all use creativity to add to our roles in compliance.

Nicole wrote the e-book Compliance with Attitude to express her point of view on creativity and compliance.  She explains that small changes can mean substantial results in compliance and improve our lives. What can we do within our work life that can make the company better?

Nicole Rose is a rare blend of lawyer, artist and trainer. She took the phrase “a picture says a thousand words” and combined it with 20 years of experience as a lawyer and trainer with my love of art and illustration.

Nicole is an avid writer and write articles and thought leadership pieces that blend her passion for neuroscience and creativity with law and compliance. She regularly writes for leading compliance publications such as The FCPA Blog, the SCCE and Ethics Intelligence and, of course, her very own Ethics Corner at



Nicole Rose

Compliance with Attitude e-book

Nicole Rose is CEO of Create Training

Jun 27, 2016

Donna Boehme discusses the evolution from “Compliance 1.0” to “Compliance 2.0.”  Compliance 1.0 was incorrectly structured as a captive arm of the Legal department.  Compliance 1.0 was a flawed model because it did not recognize the independent mandate, skill set and needed for empowerment that a Compliance department needs to be effective. Compliance 1.0 also lead to big compliance disasters found in recent headlines. Compliance 2.0 closes the gaps of Compliance 1.0 and builds a well-designed program to prevent misconduct.

We also discuss the example of the Volkswagen emissions scandal as an illustration of how the evolution of compliance is needed.  Investors and governments do not look at a compliance problem in isolation, but how that problem may indicate more widespread issues.

Donna Boehme is an internationally recognized authority in the field of organizational compliance and ethics with 20+ years experience designing and managing compliance and ethics solutions, within the US and globally.

As Principal of Compliance Strategists LLC, Donna has advised a wide spectrum of private, public, governmental, academic and non-profit entities. She is a regular columnist with Corporate Counsel, Corporate Compliance Insights, ComplianceX, and the FCPA Blog. She has been published and quoted widely on issues in the field including in The Wall Street Journal, the Boston Globe, the Washington Times, Reuters, the Economist, the Financial Times, Chicago Tribune, Bloomberg, New York Law Journal, Board IQ and Compliance Week.

A featured expert in the award-winning PBS documentary, “In Search of the Good Corporate Citizen,” Donna is frequently interviewed by the media as an authority on organizational compliance and ethics, including by Dow Jones, Fox News, Compliance Week, Canadian Business Network, Corporate Compliance Monitor and Progressive Radio Network.  She has been named to The Top Thought Leaders for Trustworthy Business in 2014 and 2015 by Trust Across America, is a recipient of the 2014 SCCE International Compliance & Ethics Award for extraordinary contributions to the field, and was named as Who Compliance Professionals Should Follow on Twitter in 2013 by ComplianceX.



Donna Boheme

Compliance 2.0: The Next Generation of Compliance

Masters of Disaster is produced by Leona Lewis, Founder of ComplyEthic Consulting LLC

Jun 24, 2016

This morning over coffee in Minneapolis USA I found out that the UK has voted to leave the EU. Like many, I am SHOCKED! How will this change life and business in the EU? Jonathan Armstrong from the UK discusses BREXIT with me.

Jun 20, 2016

Eric J. Conn explains on the Masters of Disaster podcast last month’s breaking news, OSHA issued a new final rule to “Improve Tracking of Workplace Injuries and Illnesses,” which requires hundreds of thousands of employers to submit electronically to OSHA their injury and illness recordkeeping logs (and in many instances, their detailed incident reports). More importantly, for no apparent safety reason, OSHA intends to publish employers’ injury data and incident reports online.  We discuss the possible consequences for employers and compliance difficulties.

Eric J. Conn is a founding partner of Conn Maciel Carey and Chair of the firm’s national OSHA Workplace Safety Practice Group. His practice focuses exclusively on issues involving occupational safety and health law.

Before founding Conn Maciel Carey, Mr. Conn was Head of an OSHA practice group that was honored as the “Occupational Health & Safety Law Firm of the Year” by Corporate INTL Magazine in its 2014 Global Awards. In 2013 and 2014, he was named a "Rising Star" by Washington, DC Super Lawyers, and was selected for inclusion in the Washington Post's Top Rated Lawyers list in Washington, DC.

Mr. Conn is a prolific writer on all topics OSHA related. He edited a popular OSHA law blog at another firm and authored the chapter "OSHA Inspections" in the Occupational Safety and Health Law Handbook, 2nd ed. (Government Institutes, 2008), and the chapter "Defending Clients Against the Occupational Safety and Health Administration's Increasingly Severe Enforcement Practices" in Complying with the Occupational Safety and Health Act: Leading Lawyers on Navigating OSHA Investigations and Developing Successful Compliance Strategies (Aspatore, Inside the Minds, 2012).

Mr. Conn is also a popular speaker on OSHA and related legal issues and is often quoted as a leader in the field. He created the OSHA Defense Report Group on LinkedIn and can be found on Twitter as @OSHA_Guy.



Conn Maciel Cary OSHA practice!osha-workplace-safety/c1fm0

Final Rule Issued to Improve Tracking of Workplace Injuries and Illnesses

Jun 13, 2016

Doing a training return on investment analysis can help secure your compliance training budget. Joel Smith explains how to use this tool to bolster the persuasiveness for the budget with a measurable system. The first step is defining the benefit you want to measure. Going through an ROI calculation is also important for better decision-making on the effective use of compliance resources.

Joel Smith is a corporate attorney and founder of InHouseOwl, a provider of compliance training services, and the Corporate Counsel Training Tips LinkedIn Group. Joel has always enjoyed explaining difficult concepts to people in easy-to-understand terms. To him, this is the basis of being an effective teacher. Because Joel wanted to be an effective teacher as Corporate Counsel, he dove into the best available research on employee training.  He brings the best in training research to others on his InHouseOwl blog.



Joel Smith

In House Owl

How to Calculate Training ROI (Part 1 of 2)

How to Calculate Training ROI (Part 2 of 2)

1 2 Next »