Compliance Risk Assessments, 2nd Edition

 

Educator Publication Review Program

Your roadmap to compliance risk management success

Compliance risk assessments are a foundational element of an effective compliance and ethics program—but many organizations struggle with where to start.

Compliance Risk Assessments, 2nd Edition provides a practical roadmap for designing and implementing a risk assessment process that works in the real world. Written for compliance professionals, legal teams, and risk managers, this guide walks readers through each step—from defining the organization’s risk universe to prioritizing risks and developing mitigation plans.

Whether your organization is building a compliance program from the ground up or strengthening an existing one, this book offers clear guidance, real-world examples, and practical tools to help you assess and manage compliance risk effectively. 

What you'll learn

This updated edition helps you:

  • Understand the difference between risk assessment and risk management
  • Identify your organization’s compliance risk universe
  • Conduct compliance risk assessment surveys
  • Evaluate risks using likelihood and impact analysis
  • Build a compliance risk matrix or heatmap
  • Develop risk mitigation plans
  • Gain organizational buy-in for compliance initiatives

 

The book also includes sample surveys, templates, and practical tools to help you implement the process in your own organization.

This resource is ideal for:
  • Compliance and ethics professionals
  • Corporate counsel and legal teams
  • Risk management professionals
  • Internal auditors
  • Compliance officers building or strengthening a compliance program
  • Leaders responsible for governance and risk oversight
In addition to step-by-step guidance, this book includes practical resources you can apply immediately:
  • Sample compliance risk assessment surveys
  • Risk assessment templates
  • Compliance risk mitigation plan examples
  • Guidance on building a risk matrix and prioritizing risks

These tools make it easier to move from theory to implementation.

Why risk assessments matter

Organizations today operate in an increasingly complex regulatory environment. Conducting regular compliance risk assessments helps organizations:

  • Identify potential areas of noncompliance
  • Prioritize resources effectively
  • Reduce legal and regulatory exposure
  • Strengthen internal controls and policies
  • Support a more effective compliance and ethics program

A well-designed risk assessment process provides the foundation for proactive compliance management and long-term organizational resilience.

About the Author

Judith W. Spain, CCEP is an experienced compliance professional with extensive expertise in compliance program development and risk assessment methodology. Her work focuses on helping organizations build effective compliance systems that proactively identify and address regulatory risk.

Get online access to the new Compliance Risk Assessments, 2nd Edition | Learn more
Online access*

$65 Member
$90 Non-Member
Purchase
Get your copy of Compliance Risk Assessments, 2nd Edition | Learn more
Softcover book

$70 Member 
$95 Non-Member
Purchase
Get the best value with a softcover book + online access of the Compliance Risk Assessments, 2nd Edition | Learn more
Softcover book + Online access

$100 Member
$130 Non-Member
Purchase
Copyright © 2026 Health Care Compliance Association (HCCA). All rights reserved. All information provided through this site, including without limitation all information such as the "look and feel" of the site, data files, graphics, text, photographs, drawings, logos, images, sounds, music, video or audio files on this site, is owned and/or licensed by HCCA or its suppliers and is subject to United States and international copyright, trademark and other intellectual property laws. Any third party logos and/or content provided herein is owned by such third parties and is used by permission herein. Your use of this site to is subject to our Terms of Use and Privacy Statement.