The Chief Ethics and Compliance Officer (CECO) is responsible for administration of the Ethics & Compliance Program (ECP). The CECO convenes ECP Management Council meetings bi-monthly. Management Council serves senior leadership as the compliance workgroup responsible for serving senior leadership in their compliance oversight responsibilities. Management Council is charged with identifying, assessing, and monitoring campus compliance risks and coordinating to develop and implement appropriate risk mitigation responses. Management Council members represent major administrative and compliance functions across the campus. Members have the subject matter knowledge and authority to speak for their constituency and analyze risks from a campuswide perspective. Members monitor progress on risk mitigation activities occurring within their division/unit and across the campus. The CECO co-convenes ECP Executive/Audit Committee meetings quarterly with the Internal Audit Director. The Executive Committee provides executive-level oversight of the ECP and assurance that high priority compliance risks are appropriately addressed via risk mitigation plans. Executive Committee members include all members of Extended Cabinet.
To assist the ECP with risk management, the ECP includes standing sub-committees that assist campus partners with risk identification and assessment of operational, business, and compliance risks facing the campus. These sub-committees develop and implement risk mitigation plans and identify policies, procedures, and training plans to address emerging risks. Sub-committees include:
- Accessibility Resource Group - Members represent ADA compliance functions and address risks related to disability and ADA
- Committee on Cameras Workgroup - Members provide guidance and oversight for the use of surveillance and security cameras
- Campus Policy Advisory Committee - Members represent divisional leadership and are charged with developing and and reviewing campus policies and procedures
- Enterprise Risk Management - Members represent operational and financial risk functions and are charged with identifying and addressing emerging business risks
- Information Privacy & Security Committee - Members advise on privacy and information security matters
- International Relations & Export Controls Workgroup - Members advise on and address risks related to international matters
Ad hoc committees are formed when needed to coordinate and develop mitigation work plans for specific high-risk issues, identify and recommend options for decision support on risk mitigation or corrective action, and facilitate implementation of corrective actions or improvement.
