Articles by the author
29 Sep 2025 Matt Kelly
Strong Compliance Programs Will Always Matter
How should Compliance programs should respond to the Trump Administration’s new priorities – spoiler, the answer is to keep calm and compliance on.
Read more
7 Aug 2025 Matt Kelly
Exactly What Are ‘Systemic’ AI Risks, Anyway?
This article unpacks the difference between “high” and “systemic” AI risks.
Read more
12 Jun 2025 Matt Kelly
The Art of Compliance Testing and Monitoring
This article explores best practices in testing and monitoring your compliance program.
Read more
5 Jun 2025 Matt Kelly
AI Literacy: A Compliance Need and a Training Necessity
This article discusses the need for AI literacy across your workforce and tips on how to enable AI best practices and training in your organization.
Read more
20 May 2025 Matt Kelly
A Call to Do Better at Vendor Security Risks
This post discusses the recent open letter from JPMorgan CISO Patrick Opet about the risks facing organizations from their SaaS providers.
Read more
23 Apr 2025 Matt Kelly
How to Include Reports to Managers in Internal Reporting
This article explores how and why reports to managers are a vital part of your incident management program – and how to ensure they’re handled properly.
Read more
10 Apr 2025 Matt Kelly
Preparing for the Compliance Challenges of Agentic AI
This NAVEX article discusses the compliance challenges of agentic AI and the core questions your organization should consider.
Read more
1 Apr 2025 Matt Kelly
Business resiliency needs to take centerstage if you want to keep pace with cyber threats and supply chain disruptions
This article is a chapter from the 2025 Top 10 Trends in Risk & Compliance that discusses how businesses should think about business resiliency to navigate the cyber threat landscape to ensure supply chain integrity.
Read more
25 Mar 2025 Matt Kelly
Five Questions to Ask About Navigating ‘Deregulatory Compliance’
This article covers the five questions you should ask when navigating the new era of deregulation and compliance enforcement priorities.
Read more
20 Feb 2025 Matt Kelly
FCPA Enforcement Might Take a Pause – Your Compliance Needs Won’t
Regulatory priorities shifting with the second Trump Administration have many CCOs wondering what to prioritize – this article explores the shift in U.S. FCPA enforcement.
Read more
11 Feb 2025 Matt Kelly
Here Comes Compliance with the EU AI Act
This article covers the articles of the EU AI Act that went into effect in February 2025 and what you need to know to comply.
Read more
4 Feb 2025 Matt Kelly
Exploring California’s AI Laws
This article explores how California’s approach to AI laws have a much broader impact than the state’s geography – and what compliance can learn from how California is governing AI.
Read more
21 Jan 2025 Matt Kelly
Leveraging Privacy Compliance for Your Looming AI Risks
This post discusses the privacy and compliance risks of using AI and how to prepare your organization to proactively address them.
Read more
7 Jan 2025 Matt Kelly
How Better Technology Makes You a Trusted Adviser
Looking to move from being mired into the tactical to being a trusted business adviser? This post explores how you can do just that.
Read more
17 Dec 2024 Matt Kelly
How CCOs Can Play a Role in Supply Chain Risk Management
This post discusses how Compliance can play a key role in supply chain risk management.
Read more
26 Nov 2024 Matt Kelly
How Compliance Teams Can Think About Risk in Modern Times
Risk doesn’t care if it’s regulated or not – this post explores how compliance can manage risk in the current environment.
Read more
14 Nov 2024 Matt Kelly
The Importance of Benchmarking Your Compliance Program
This article discusses the importance and benefits of benchmarking your compliance program.
Read more
24 Oct 2024 Matt Kelly
Bracing for New AI-Fraud Risks
Preventing AI-related fraud should be top-of-mind for Compliance officers – this article explores the new frontier of fraud and how AI will keep you on your toes.
Read more
24 Sep 2024 Matt Kelly
Compliance Lessons from a Bowl of Ice Cream
Compliance officers can learn a lot from small businesses, and today we have a fascinating example of that point from the smallest sort of business there is – a boy selling ice cream.
Read more
24 Sep 2024 Matt Kelly
Revamped Compliance Program Guidance!
This post discusses the recently updated U.S. DOJ Compliance Program Guidance.
Read more
19 Sep 2024 Matt Kelly
Five Ethics Questions to Ask About Your Company’s Use of AI
Stymied by the ethical implications of using AI in your company? This post breaks down the five essential questions you should be asking.
Read more
15 Aug 2024 Matt Kelly
Brainstorming Ways to Brainstorm Compliance Risks
Brainstorming sessions – either wildly productive or a relative snooze-fest. Let’s dig into some strategies to increase your brainstorming effectiveness.
Read more
8 Aug 2024 Matt Kelly
Whistleblower Awards Keep Adding New Compliance Pressures
This article explores what compliance leaders need to know about the newly launched U.S. Department of Justice whistleblower awards program.
Read more
11 Jul 2024 Matt Kelly
Supply-Chain Risk Is Eating the World
What if we’ve been thinking about the intersection of compliance and sustainability all wrong? What if, at the bottom of all this, it’s really about supply-chain risk?
Read more
3 Jul 2024 Matt Kelly
The Supreme Court Made Its Rulings; Corporate Compliance Needs March On
This article discusses three recent U.S. Supreme Court rulings and the impact on corporate compliance programs.
Read more
1 Jul 2024 Matt Kelly
Regulation of AI Keeps Revving Up
This NAVEX blog discusses the increasing regulation of AI related to the recent Colorado law and what trends in AI regulation may be on the horizon.
Read more
28 May 2024 Matt Kelly
What a New SEC Enforcement Sweep Is Really Telling Us
Attention all compliance officers at large technology companies – have you checked your mail lately? Because you might find a letter from the Securities and Exchange Commission with FCPA risk written all over it.
Read more
7 May 2024 Matt Kelly
The Ethics and Compliance Challenges of Noncompete Bans
The U.S. Federal Trade Commission sent shockwaves through the corporate world in April when the agency imposed a ban on noncompete agreements – and like any good shockwave, this new rule will reverberate through the ethics and compliance function too.
Read more
1 May 2024 Matt Kelly
How Ethics Supports Compliance Management and Innovation
Financial regulator Michael Hsu argues strong ethics and compliance culture isn’t at odds with innovation, but fuels it by helping anticipate and avoid future problems. Learn how to implement this approach in your organization.
Read more
19 Mar 2024 Matt Kelly
Using the NIST CSF for Strong Cybersecurity Compliance
Corporations have struggled to manage cybersecurity risk for years, and now they have a new tool to help them bring order to chaos: a new and improved cybersecurity risk management framework, released at the end of February by the National Institute of Standards and Technology.
Read more
27 Feb 2024 Matt Kelly
Supreme Court Gives a Boost to Whistleblowers
The U.S. Supreme Court recently paved an easier path for whistleblowers to win retaliation lawsuits they file, making the always delicate task of handling corporate whistleblowers that much more delicate.
Read more
15 Feb 2024 Matt Kelly
Artificial Intelligence – The Good, The Bad… The Future
Each year, NAVEX releases the Top 10 Trends in Risk and Compliance eBook. This post is one of the articles, “Artificial Intelligence – The Good, The Bad… The Future."
Read more
8 Feb 2024 Matt Kelly
How to Build a Good Risk Assessment Process
Risk assessments are one of the most important tasks a compliance officer performs – and also one of the most confounding. How do you keep assessing your organization’s risks in a disciplined, methodical manner, when the range and nature of those risks changes so often?
Read more
11 Jan 2024 Matt Kelly
You Don’t Need New Regulation to Have AI Enforcement Risk
This post discusses the recent FTC enforcement action about using artificial intelligence for facial recognition and how to prepare to be compliant with future regulations governing the use of AI.
Read more