Can We Do Something About Compliance Training?
Please!
I've been thinking about compliance training lately.
Thinking about how everybody loves it. About how much people look forward to it. About how people are constantly breaking down my door asking to take more of it. It's costing me an arm and a leg in hinges!
Speaking of costs, has anybody done the math on how much it costs companies to put all their employees through annual compliance training?
Suppose we take a fictional company with 1000 employees who are paid an average of $50,000 per year. For every hour of training those employees go through, the company has to pay out over $24,000 in salary - without getting any productive work in return.
I know compliance is important. You can all put those pitchforks back down. I don't want to do away with it. I would, however, love to see us (as an industry) make compliance training more efficient. To that end, I have a few crazy ideas I'd like to share with you.
Crazy Idea #1: Shorten annual re-certification
Maybe we can replace annual re-certifications with something shorter? Imagine you're a new hire with Company X. In your first few weeks, you take an anti-harassment course. The L&D team did a wonderful job. The course is beautiful, it's engaging, and it's focused on what you need to know.
Fast forward twelve months, and it's time to re-certify. You load up the LMS, quivering with anticipation, eager to see what this year's anti-harassment course will look like. It looks like last year's course. Last year's course looks like the previous year's course. And so on. After 20 years, you'll be able to recreate the course from memory. After 5 years, I very much doubt you're going to learn anything new.
What if we did the full fancy course for new hires, then gave people options for re-certification? They could complete the courses again, or they could read the policy and sign (physically or digitally) an form agreeing to abide by it.
Crazy Idea #2: Target the people who need it
Wouldn't it be great if we could know who really needed the training and target them specifically? For example, if we knew who was most likely to take a bribe (before they actually did) we could give them anti-bribery training to prevent it. If you want to get really fancy, you could use predictive analytics, but there are simpler ways.
Do you recall those stories about researchers leaving thumb drives out and monitored how many people plugged them into their machines (48% at a university and 60-90% at government buildings and private contractors)? Why not work with IT to run a similar test? Anybody who plugs in the thumb drive gets enrolled in the computer security course.
Worried about physical office security? Maybe you can hire some mystery shoppers to try shoulder surfing or piggybacking. Based on how people react, you have a pretty good idea of who needs training to recognize and deal with social engineering. As a bonus, this is a more accurate test than a eLearning course (after, who worries about offending the characters in a course?).
Crazy Idea #3: Make it adaptive
What if people got a customized version of their compliance courses?
People who know their stuff get to breeze through quickly, while those who need a little more coaching get the attention they need. You can do this with an adaptive course.
For example, you might have a pretest, then tailor the course based on the results of that pretest. Alternatively, you might have checkpoint activities in the course, then branch out depending on how people handle them.
If you'd like to learn more, I encourage you to check out this article. If you're going to be in Toronto in July 2019, you may also wish to come to the Canadian eLearning Conference, where I'll be facilitating a hands-on session to teach people how to make their own adaptive courses in Articulate Storyline.
No comments:
Post a Comment