Compliance Officers' Forum

  • 1.  Top of Mind: From the COF Steering Committee

    Posted 06-16-2025 09:20:00 AM

    Good Morning COF Members, 

    I hope everyone had an enjoyable weekend. In an effort to engage our membership more, the COF Steering Committee will be posting to the Community monthly thoughts that we have that are top of mind for each of us. I am super excited to start us off!

    Lately, I've been considering how to more effectively communicate to our Board of Trustees and Senior Leaders. Because we are all in this space of academic medical centers ("AMC'S), we are often in unique positions of overseeing many areas that our peers who are not part of AMC's may not watch over. Additionally, we may not be allotted the time we believe we need to effectively share everything we want, and we become succinct in what we say, in board and other senior leader meetings.  

    I am fairly confident, my Board and Senior Leader peers, and those of yours, most certainly understand the importance of compliance and privacy across hospitals, physician practices, research, etc. I usually share in differing types of meetings regulatory updates, KPIs and other metrics, and high-level areas posing the most risk, but I'm often left feeling like I could be shortchanging my own messaging, or that I may not be showing the value I should be.

    Do others struggle with this too? What other important topics do you make sure to share with your board and senior leaders? How do you make your messaging effective? Are there any creative ideas you can share with this COF group that you have found work well?

    Looking forward to hearing from as many of you as possible!

    My Best, 

    Karen Habercoss

    University of Chicago Medicine Health System



    ------------------------------
    Karen Habercoss
    Vice President, Chief Information Security and Privacy Officer
    University of Chicago Medicine Health System
    ------------------------------


  • 2.  RE: Top of Mind: From the COF Steering Committee

    Posted 06-17-2025 09:28:00 AM

    I really like this idea and thank you Karen for starting it off! 

    I am personally challenged with conveying the concerns without sounding like the sky is falling. Leaders have competing areas of concern so what I think is highest risk may not even be on their radar. One area I am personally trying to improve for myself is assessing risk, what are the immediate, short-term, and long-term concerns, and how do those fit into the overall institutional risk continuum. 

    As far as presentations, I try my best to keep to the bullet points and follow-up with the why it matters. Citing CFRs are not effective but combing the headlines to provide real-world examples "this could happen here" has proven effective at stimulating discussion. 

    In my compliance corner (research) we are doing a better job of tracking trends. We have developed resources based upon the trends we are tracking. I always make a point to highlight the resources in every presentation. Because it is important that we acknowledge our metrics do not show what "did not happen." My hope is that I convey the value of compliance is equal parts reactive and proactive.

    Looking forward to hearing what others are doing! 



    ------------------------------
    Michelle Benson
    Research Compliance Officer
    Hackensack Meridian Health
    ------------------------------

    Original Message