
Beating Compliance Drift: Why Regulatory Intelligence and Continuous Monitoring Matter with Jeff Kushner
From Innovation in Compliance with Tom Fox by Thomas Fox
April 28, 2026 · 20 min · Episode 438
About this episode
Tom Fox discusses compliance drift and the importance of regulatory intelligence with Jeff Kushner.
Innovation occurs across many areas, and compliance professionals need not only to be ready for it but also to embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits with Jeff Kushner, a compliance and IT security leader at Allgress. Jeff talks about “compliance drift,” where external obligations such as laws, frameworks like NIST/ISO/CIS, customer and licensing requirements, fall out of alignment with internal governance policies, procedures, and contracts, creating silent gaps that surface only during audits or incidents. They discuss the added volatility from business and geopolitical changes and identify industries most exposed to hidden compliance risks, including small and mid-sized businesses, AI-focused organizations, behavioral health clinics managing many frameworks across multiple sites with drop-in audits, and small DoD contractors facing CMMC. Jeff argues that traditional spreadsheet-based or audit-centric GRC is static and point-in-time. He describes Reg Watch as a complementary regulatory intelligence layer that…
People in this episode
Host: Tom Fox
Guest: Jeff Kushner
Topics covered
- compliance drift
- regulatory intelligence
- continuous monitoring
- GRC
- compliance risks
- business volatility
Keywords
- compliance
- regulatory intelligence
- monitoring
- GRC
- audit
- business risks
- NIST
- ISO
- CIS
- CMMC
Mentioned in this episode
Organizations: Allgress, NIST, ISO, CIS, CMMC
Places: DoD
More episodes of Innovation in Compliance with Tom Fox
- Rethinking SpeakUp: UX, Trust, and AI in Whistleblowing and Investigations with Tim Morss · June 9, 2026 · 28 min
- Data Defensibility: Enterprise Agentic AI: Governance, Auditability, and the AI Gateway Layer with Nikunj Bajaj · June 2, 2026 · 30 min
- Capability without Governance Leads to Instability: Integrated GRC with Noor Aziz · May 26, 2026 · 25 min
- Data Defensibility: The Compliance Foundation for AI Governance with George Tziahanas · May 12, 2026 · 29 min
- Invitational Leadership for Employee Engagement Success With Dr. Dennis Cummins · May 5, 2026 · 29 min
- When a Senior Leader Faces Cancer: Disclosure, Continuity Planning, and Resilience with Deb Krier · April 21, 2026 · 25 min
Explore listener stats, chart rankings, contacts and more on the Innovation in Compliance with Tom Fox podcast page.