ISO 37301. Compliance management

Name: ISO 37301. Compliance management
Rating: 4.6 (1624 reviews)

Understand what is a compliance management system and how to implement it

Created byCristian Vlad Lupa, rigcert.education

Last updated 5/2026

English

What you'll learn

Understand what is a compliance management system
Master the requirements of ISO 37301
Identify compliance obligations and assess compliance risks
Participate in the implementation or audit of a compliance management system
Manage and improve compliance aspects in an organization

Course content

8 sections • 40 lectures • 3h 23m total length

Introduction2:52
Explore the basics of a compliance management system under iso 37301:2021, for compliance professionals, including structure, purpose, and guidance, and learn how noncompliance drives organizational compliance.
A compliance management system6:37
Possible consequences of noncompliance4:20
Explore the possible consequences of noncompliance, including reputational disasters, large fines, and criminal proceedings, illustrated by Airbus and Volkswagen, and learn how a better compliance management system mitigates risks.
About ISO 373015:44

Understanding the organization and its context5:06
Identify internal and external issues relevant to the organization's purpose and the compliance management system, and monitor how they affect the system's ability to achieve its intended outcomes.
Understanding the needs and expectations of interested parties3:42
Determining the scope of the compliance management system4:38
Define the boundaries of the compliance management system by considering internal and external context, obligations, and risks, then document the scope and adjust it if needed across the organization.
Compliance management system5:44
Compliance obligations6:23
Compliance risk assessment part 17:33
Identify, analyze, and evaluate compliance risks using a flexible risk assessment methodology; quantify probability and consequences to classify risks and guide actions, controls, and resource allocation.
Compliance risk assessment part 27:45

Leadership and commitment6:50
Compliance culture2:42
Compliance governance3:09
Compliance policy4:54
Roles, responsibilities and authorities5:58
Governing body and top management assign, supervise, and allocate resources for compliance, integrate it into performance appraisals, and encourage reporting while all managers and personnel engage with the compliance function.
Compliance function6:26
Explore the compliance function under ISO 37301, including roles, authority, and independence; learn how the function identifies obligations, conducts risk assessments, monitors performance, ensures training, and coordinates audits and reporting.

Resources2:06
Explore ISO 37301's resources requirement, mandating providing people, time, money, external advice, training, technology, and infrastructure to establish, implement, maintain, and continually improve compliance management system, led by top management.
Competence7:32
Define competence and implement an employment process to ensure all personnel and third parties have needed knowledge, skills, and compliance training, with documented records and ongoing due diligence.
Awareness3:18
Communication5:07
Documented information part 17:19
Documented information part 26:29
Explore how ISO 37301 requires controls for documented information—procedures, policies, and records—ensuring availability, protection, and proper access, versioning, and retention, including external documents.

Requirements

No previous knowledge is required, but if you are familiar with ISO standards and management system it is helpful.

Description

Compliance is required everywhere. Every organization in the world has compliance obligations to meet. The regulatory landscape is in constant change and organizations need systems to make sure they keep up.

Since the consequences of noncompliance can be catastrophic to an organization, the need for a systematic approach to compliance management, to ensure that compliance obligations are identified and understood and that compliance risks are assessed and treated, becomes evident.

This online course discusses all the requirements of ISO 37301, the international standard for compliance management systems, to help you understand the approach to compliance management of the International Organization for Standardization (ISO).

We will see what is a compliance management system, what is the purpose of ISO 37301, what is the structure of the standard and who can use it.

The course follows the structure of the standard, so we will discuss about the context of the organization, about the identification of compliance obligations and the compliance risk assessment. We will talk about how critical it is for the compliance management system to be supported by the senior management. The requirements for the compliance policy specified in the standard, the responsibilities of the compliance function, the compliance objectives and the plans for their achievement or the risks and opportunities relevant for the compliance management system are detailed in the videos of the course. The controls in place to ensure that compliance requirements are met, the documentation that supports the compliance management system, the efforts of the company to ensure its people have the necessary competence and receive adequate awareness, the whistleblowing system and the way reports of concerns must be investigated, the internal audit of the management system, the management review or the way nonconformities should be managed by the organization, are other subjects that are discussed in detail during the course.

At the end you will find information about the certification to ISO 37301 as a company but also as a compliance management professional.

After going through all the videos in the course you gain a good understanding of what represents a compliance management system and how an organization can achieve compliance with the requirements of ISO 37301.

Advance your compliance management career and become aware of how compliance aspects should be addressed by an organization, according to internationally accepted know-how offered by standards.

Who this course is for:

Compliance managers
Compliance professionals
ISO auditors
Management consultants

ISO 37301. Compliance management

What you'll learn

Explore related topics

Course content

Introduction to the subject of compliance management and ISO 373014 lectures • 20min

Context of the organization7 lectures • 41min

Leadership6 lectures • 30min

Planning3 lectures • 16min

Support6 lectures • 32min

Operation4 lectures • 20min

Performance evaluation6 lectures • 29min

Improvement4 lectures • 16min

Requirements

Description

Who this course is for: