Innovation in Compliance with Tom Fox

Thomas Fox

Innovation in compliance brings you interviews with industry leading experts who are changing the way practitioners approach compliance. Host Tom Fox, the Compliance Evangelist and Voice of Compliance is driving the conversation about compliance into the 2020s and beyond with his focus on innovations for the compliance practitioner and the compliance profession. If you want to learn how to bring business solutions to compliance problems to more fully operationalize compliance, this is the podcast for you.

  1. Jun 30

    Compliance as Market Access with Kunal Chopra

    Innovation comes in many areas and compliance professionals need to not only be ready for it but embrace it. Join Tom Fox, the Voice of Compliance as he visits with top innovative minds, thinkers and creators in the award-winning Innovation in Compliance podcast. In this episode,  host Tom Fox visits with Kunal Chopra, CEO of Certivo, an AI-native regulatory intelligence and compliance management platform for supply chains.    Chopra recounts his tech and supply-chain background (Amazon, Microsoft, Groupon, prior CEO roles) and explains his insight that compliance is fundamentally about market access and revenue protection, not box-checking. He describes how global regulations are increasing in scope, enforcement, fines, and deadlines, creating repeated, deadline-driven scrambles and visibility gaps for executives. Certivo aims to flip compliance from reactive to proactive by identifying applicable regulations by market and product, ingesting product data from systems like ERP/PLM, and using AI to coordinate supplier documentation, read unstructured files, extract data, and map evidence to rules while leaving deterministic compliance decisions to rules-based logic to avoid hallucinations. The platform supports scenario analysis for supply disruptions, continuous monitoring as rules change, and predictive preparation for emerging regulations, helping compliance leaders align with sales, marketing, and operations as revenue enablers.  Key Highlights  ·      Compliance as Market Access ·      Visibility Gaps and Scrambles ·      Who Owns the Risk ·      How Certivo Works ·      Preventing AI Hallucinations ·      Scenario Planning Supply Chain ·      Continuous Monitoring and Prediction Resources  Connect with Kunal Chopra on LinkedIn Certivo Innovation in Compliance was recently honored as the Number 4 podcast in Risk Management by 1,000,000 Podcasts

    26 min
  2. Jun 23

    Cybersecurity Workforce Design: Reducing Burnout, Clarifying Accountability, and Aligning Incentives with Dan Duffy

    Innovation comes in many areas, and compliance professionals need to not only be ready for it but also embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits Dan Duffy, the Cyber Practice lead at Consulting Solutions and a longtime cybersecurity and executive-search professional. They chat about the paradox of rising security spend alongside increasing burnout and turnover. Duffy argues organizations cannot hire their way out of broken structures: undefined workflows, lack of playbooks, shadow IT, fragmented accountability, and excessive alert volumes cause teams to drown, making burnout a business risk rather than an HR metric. He emphasizes auditing workforce design, mapping workflow needs, and ensuring executive and board-level support, including proper CISO reporting lines and authority. They discuss the emerging demand for an AI compliance officer, the need for AI governance ownership and accountability, and misaligned incentives in which security is treated as a late-stage tax rather than a design principle. Duffy advocates maturity-focused programs, incident-informed leadership, and stronger entry-level pipelines. Key highlights: The Cyber Talent Crisis Burnout as Business Risk AI Governance Accountability Building for Long-Term Success Future Workforce Pipeline Advice for New Entrants Rethinking Workforce Strategy Resources: Connect with Dan Duffy on LinkedIn Consulting Solutions Innovation in Compliance was recently honored as the Number 4 podcast in Risk Management by 1,000,000 Podcasts.

    23 min
  3. Jun 16

    Compliance by Design in iGaming: Engineering, Data, and Release Governance with Mouhcine Jalili

    Innovation comes in many areas, and compliance professionals need to not only be ready for it but also embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits with Mouhcine Jalili, VP of Growth – iGaming at Software Mind, on reframing iGaming compliance as a design, delivery, and platform challenge rather than an end-stage legal checklist. Mouhcine argues compliance failures often stem from siloed teams, fragmented legacy platforms, inconsistent vendor integrations (B2B2C), and release management across jurisdictions with differing rules (e.g., spin time, buy-bonus features). He emphasizes strong release governance, modular and configurable architectures, automated controls that cannot be bypassed, and real-time monitoring and alerts to prevent harm, including responsible gambling interventions based on early behavioral signals. Scaling successfully requires standardization and automation while allowing local configuration and avoiding post-acquisition data fragmentation. Over the next 3–5 years, he expects operational compliance to become more engineering- and data-driven, with tighter integration among compliance, product, and engineering teams. Key highlights: Compliance As Design Platform Breaking Silos With Automation KYC Data And Onboarding Gaps Integrity And Preventive Controls Future Engineering Driven Compliance Resources: Connect with Mouhcine Jalili on LinkedIn Software Mind on Linkedin Software Mind Website Innovation in Compliance was recently honored as the Number 4 podcast in Risk Management by 1,000,000 Podcasts.

    29 min
  4. Jun 9

    Rethinking SpeakUp: UX, Trust, and AI in Whistleblowing and Investigations with Tim Morss

    Innovation comes in many areas, and compliance professionals need to not only be ready for it but also embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode,  host Tom visits with Tim Morss, CEO at SpeakUp, about the evolution of speak-up systems from the employee perspective. Morss describes his background in compliance technology and SpeakUp’s global footprint, emphasizing that employee expectations favor frictionless, mobile-first, intuitive reporting with transparency and feedback over 800-number hotlines and complex forms. He notes common program gaps: hard-to-find reporting channels, poor mobile experiences, overreliance on telephony (especially problematic for non-English speakers), insufficient guidance on what to report, and weak trust due to lack of follow-up and perceived inaction. They consider generational preferences, privacy-aware deployment, such as QR code placement, and AI use cases such as multilingual voice intake for illiterate supply-chain workers, while cautioning against unsafe AI practices and autonomous decision-making. Morss highlights investigative management as a major opportunity beyond basic case repositories and forecasts greater AI-driven integration with in-house systems amid geopolitical and regulatory divergence. Key highlights: Employee Expectations Shift Common SpeakUp Mistakes Trust and Anti-Retaliation Gen Z Reporting Channels AI Voice for Workers One Practical CCO Tip Resources: Connect with Tim Morss on LinkedIn SpeakUp Innovation in Compliance was recently honored as the Number 4 podcast in Risk Management by 1,000,000 Podcasts

    28 min
  5. Jun 2

    Data Defensibility: Enterprise Agentic AI: Governance, Auditability, and the AI Gateway Layer with Nikunj Bajaj

    Innovation occurs across many areas, and compliance professionals need not only to be ready for it but also to embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits with Nikunj Bajaj, Co-founder & CEO at TrueFoundry, about enterprise agentic AI infrastructure, governance, and hidden costs most organizations are not accounting for. Nikunj describes TrueFoundry’s platform as a single control plane for enterprises to build, ship, and govern agentic AI applications, inspired by Meta’s internal ML stack, which he says is about a decade ahead of the rest of the industry. He argues enterprises over-focus on model and tool selection when problem definition and effective use are the real constraints. On governance, he identifies two failure modes: avoiding meaningful use cases entirely to sidestep governance risk, or trying to solve all governance problems up front and never reaching ROI. Successful teams implement application-specific controls iteratively, starting with a few high-value use cases rather than hundreds of low-value ones. He highlights that model inference accounts for only about 20% of total generative AI spend, with the majority of spend concentrated in infrastructure, engineering, and debugging, creating cost-allocation and budget-control challenges for compliance teams. For auditability, he argues that an agent without full decision traces is “a liability with an API key,” and walks through how end-to-end tracing enables audit readiness, faster debugging, and proactive attack detection. He closes by advocating centralized control via a unified AI gateway while enabling federated development and tailoring guardrails to whether your exposure surface is external or internal. Key highlights: Stop Chasing Tools Governance vs Speed Hidden AI Costs Agent Auditability Board Level Priorities Resources: Connect with Nikunj Bajaj LinkedIn – Nikunj Bajaj Learn More About TrueFoundry TrueFoundry Website TrueFoundry on LinkedIn

    30 min
  6. May 26

    Capability without Governance Leads to Instability: Integrated GRC with Noor Aziz

    Innovation spans many areas, and compliance professionals need not only to be ready for it but also to embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits with Noor Aziz, a Saudi Arabia–based governance, risk, and compliance professional with extensive ISO lead auditor credentials, internal audit and controls experience, and a growing focus on AI governance. Noor argues that effective compliance must be practical and business-friendly—clear ownership, escalation, accountability, and evidence—so it still functions under operational pressure rather than becoming bypassed. She emphasizes leadership commitment, culture shaped by observed behavior, and integrated GRC to reduce silos that create duplication, inconsistent reporting, and “governance fatigue.” On AI, she frames governance as a board-level issue because adoption is outpacing accountability, creating future scrutiny around oversight, traceability, and defensibility; she notes, “capability without governance eventually creates instability.” She recommends change management, micro-learning, and ongoing communications, and concludes that governance is organizational infrastructure, not administrative overhead. Key highlights: Integrating Controls, Audit, and Risk Breaking Down GRC Silos Why AI Governance Is Board Level Culture When Nobody’s Watching Training That Actually Works: Microlearning and Ongoing Comms Why Frameworks Fail in Execution Maturing Governance for Business Value Resources: Connect with Noor Aziz on LinkedIn Innovation in Compliance was recently ranked Number 4 in Risk Management by 1,000,000 Podcasts.

    25 min
  7. May 12

    Data Defensibility: The Compliance Foundation for AI Governance with George Tziahanas

    Innovation occurs across many areas, and compliance professionals need not only to be ready for it but also to embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits with George Tziahanas, VP of Compliance and Associate General Counsel at Archive360. Tom interviews George Tziahanas on why organizations must move beyond data storage to providing data integrity, lineage, and accountability as a foundation for AI readiness. George defines “data defensibility” as the ability to defend how AI systems were trained and operate when AI decisions are not easily explainable, such as in rules-based automation, emphasizing upstream data provenance, monitoring, and audit trails. They discuss increasing regulator and stakeholder focus on authority and accountability, and how litigation can shape compliance, citing early e-discovery practices influenced by the Zubulake v. UBS Warburg decision and enforcement context involving former New York AG Elliot Spitzer. George uses the Mercor breach to show supply-chain and confidentiality risks in AI training data and notes that regulators and plaintiffs may rely on existing laws. He highlights risks from weak data governance, dark data, and legacy archives. He recommends asset/data inventories, migrating data off insecure legacy systems, risk-tiering AI use cases, extending ISO/NIST frameworks, and building observability to enable faster, responsible AI adoption. Key highlights: What Data Defensibility Means Litigation Shapes Compliance Weak Data Governance Risks Managing Legacy Archive Data Governance Accelerates AI Dark Data Explained What Success Looks Like Resources: George Tziahanas on LinkedIn Archive360 Articles by George Tziahanas Beyond Retention: Why AI Governance in 2026 is a Defensibility Problem Keeping Data in Check: The Importance of Data Defensibility

    29 min
  8. May 5

    Invitational Leadership for Employee Engagement Success With Dr. Dennis Cummins

    Innovation comes in many forms, and compliance professionals need not only to be ready for it but also to embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits with Dr. Dennis Cummins to discuss his new book, “Invitational Selling: The Human Connection Advantage.” Dr. Dennis Cummins, a globally recognized authority on invitational selling, champions a sales approach that prioritizes building authentic connections over traditional hard-sell techniques. Rooted in his extensive experience selling from the stage, Dr. Cummins believes in the transformative power of meaningful conversations to understand and effectively meet customer needs. His philosophy is detailed in his new book, “Invitational Selling: The Human Connection Advantage,” which promotes inviting customers to engage rather than pressuring them into a purchase, fostering authentic relationships that extend beyond mere transactions. Proceeds from the book benefit the Make-A-Wish Foundation. His book also underscores the potential of invitational selling to inspire collaboration within organizations and families, reflecting his commitment to empowering others through shared skills and talents. Key highlights: Relationship-Driven Sales Approach Invitational Leadership for Employee Engagement Profitability through Open Communication Culture Humanizing AI to Build Trust and Connection Invitational Selling: Creating Authentic Business Connections Resources: Dr. Dennis Cummins on LinkedIn Dr. Dennis Cummins Website Invitational Selling: click here  Innovation in Compliance was recently honored as the Number 4 podcast in Risk Management by 1,000,000 Podcasts.

    29 min
4.5
out of 5
17 Ratings

About

Innovation in compliance brings you interviews with industry leading experts who are changing the way practitioners approach compliance. Host Tom Fox, the Compliance Evangelist and Voice of Compliance is driving the conversation about compliance into the 2020s and beyond with his focus on innovations for the compliance practitioner and the compliance profession. If you want to learn how to bring business solutions to compliance problems to more fully operationalize compliance, this is the podcast for you.

You Might Also Like