In this episode of Culture of Compliance, host Shelby Nelson sits down with Ashley Holmes, a seasoned GRC executive and current J.D. candidate at Elon University School of Law, to discuss the evolving role of compliance in today's risk environment. Together, they explore how compliance has shifted from a checklist-driven function to a more strategic discipline focused on risk management, operational resilience and organizational accountability. The conversation also examines why many organizations continue to struggle with foundational security and control practices, drawing on lessons learned from navigating SOC challenges, strengthening control environments and translating risk into more meaningful conversations with leadership teams. They also discuss Ashley's transition to law school and the growing importance of bridging cybersecurity, compliance and legal expertise in an increasingly complex regulatory landscape.