
Sign up to save your podcasts
Or


Innovation comes in many areas, and compliance professionals need to not only be ready for it but also embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits Dan Duffy, the Cyber Practice lead at Consulting Solutions and a longtime cybersecurity and executive-search professional.
They chat about the paradox of rising security spend alongside increasing burnout and turnover. Duffy argues organizations cannot hire their way out of broken structures: undefined workflows, lack of playbooks, shadow IT, fragmented accountability, and excessive alert volumes cause teams to drown, making burnout a business risk rather than an HR metric. He emphasizes auditing workforce design, mapping workflow needs, and ensuring executive and board-level support, including proper CISO reporting lines and authority. They discuss the emerging demand for an AI compliance officer, the need for AI governance ownership and accountability, and misaligned incentives in which security is treated as a late-stage tax rather than a design principle. Duffy advocates maturity-focused programs, incident-informed leadership, and stronger entry-level pipelines.
Key highlights:
Resources:
Connect with Dan Duffy on LinkedIn
Consulting Solutions
Innovation in Compliance was recently honored as the Number 4 podcast in Risk Management by 1,000,000 Podcasts.
By Thomas Fox4.5
1717 ratings
Innovation comes in many areas, and compliance professionals need to not only be ready for it but also embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits Dan Duffy, the Cyber Practice lead at Consulting Solutions and a longtime cybersecurity and executive-search professional.
They chat about the paradox of rising security spend alongside increasing burnout and turnover. Duffy argues organizations cannot hire their way out of broken structures: undefined workflows, lack of playbooks, shadow IT, fragmented accountability, and excessive alert volumes cause teams to drown, making burnout a business risk rather than an HR metric. He emphasizes auditing workforce design, mapping workflow needs, and ensuring executive and board-level support, including proper CISO reporting lines and authority. They discuss the emerging demand for an AI compliance officer, the need for AI governance ownership and accountability, and misaligned incentives in which security is treated as a late-stage tax rather than a design principle. Duffy advocates maturity-focused programs, incident-informed leadership, and stronger entry-level pipelines.
Key highlights:
Resources:
Connect with Dan Duffy on LinkedIn
Consulting Solutions
Innovation in Compliance was recently honored as the Number 4 podcast in Risk Management by 1,000,000 Podcasts.