Are you in compliance?

Don't miss out! Sign up today for our weekly newsletters and stay abreast of important GRC-related information and news.

Get updates on Compliance Week offerings, including new features, databases, research, and other resources, along with announcements of upcoming Webcasts, conferences, seminars, CPE/CLE opportunities and more.

Published every Thursday, Compliance Week Europe offers a condensed summary of risk, audit, and compliance news either originating in Europe, or of special interest to European compliance professionals. This newsletter will follow developments by the European Commission, as well as those of national governments across the region, or any U.S.-based news that might have consequence across the Atlantic. Frequency: weekly; Thursday a.m.

A fresh edition of Compliance Week delivered via e-mail and online every Tuesday morning, relentlessly focused on the disclosure, reporting and compliance requirements of our 25,000+ paying subscribers.

Published every Friday, Compliance Weekend was launched at the behest of subscribers, and offers a quick Plain English review of the week's key developments. We hope you enjoy this supplement to Compliance Week's Tuesday edition.

  • News bulletin

    Prepare for Delays: Some Want More Time on Controls Update

    July 29, 2014

    As the expiration date for the framework most public companies have used to achieve compliance with Sarbanes-Oxley Act rules on internal controls nears, companies are scrambling to update to the revised framework issued last year. Now some auditors are advising that it’s better to delay implementation for another year, rather than rush through it. “Companies shouldn’t rush to transition if they’re not prepared,” KPMG partner Dennis Whalen says.

  • News bulletin

    Study Up: Online Learning May Be Vulnerable to Hack

    July 29, 2014

    Online learning is a booming part of compliance training—and a seldom-discussed IT weakness in such systems is growing along with it. Learning systems can be hacked, experts say, jeopardizing a company’s training documentation. “Both sides of the equation have changed,” says Jan Sramek of Better, an e-learning vendor. “Cheating has gotten easier, while breaches have become more costly.” More on the hack (and how to stop it) is inside.

  • News bulletin

    Defense to Put System Audits in Hands of Contractors

    July 29, 2014

    cassidy-susan-updatedThe Department of Defense has proposed a rule that would shift responsibility for obtaining audits of certain business systems into the hands of the federal contractors themselves, reducing some compliance headaches while creating others. While the rule could hasten the process, it adds new risks. “Any time you have to certify something to the government, it always comes with risk,” Susan Cassidy, a partner with Covington & Burling, says.

  • News bulletin

    A Good Policy Starts With an Effective Code of Conduct

    July 29, 2014

    OCEG Thumbnail August 2014Sometimes white space is a good thing—as long as it's used properly. In the latest edition of our GRC Illustrated Series, which explores effective policy writing and communication, Michael Rasmussen, principal analyst with GRC 20/20 Research, explores how good policy design can be just as important as the actual written word. But good policies start with an effective foundation: the code of conduct. More inside.

  • News bulletin

    When Insurers and Asset Managers Become ‘Too Big to Fail’

    July 29, 2014

    The Financial Stability Oversight Council may add the Systematically Important Financial Institution label to more insurers and asset managers—Metlife is imminent and Fidelity may be next. Yet some are arguing that the designation, which comes with stricter compliance requirements, was tailored for banks and doesn’t fit these other types of firms. “You apply traditional bank type regulations to a product like a mutual fund and that causes all kinds of potential problems,” says Bibb Strench, counsel at law firm Seward & Kissel.

  • The Filing Cabinet Blog

    Podcast: Boards Talk About Risk; What Are They Doing About It?

    July 28, 2014

    “Everybody talks about the weather, but nobody does anything about it.” That popular quote could be updated by replacing Mother Nature with cyber-security and reputation risk. A new survey by audit firm EisnerAmper finds that boards are ranking IT and reputation threats well above traditional regulatory risks, but have taken few steps to mitigate them. In this week’s podcast, we talk to Steven Kreit, a partner at EisnerAmper, about why compliance risk is slipping from boards’ radar screens and how they can shore up their approach to growing threats.

  • Richard M. Steinberg

    An Open Letter to GM CEO Mary Barra

    July 29, 2014

    As GM works to overcome the damage from its ignition-switch disaster and the resulting mass recall, one of the central tasks for CEO Mary Barra will be to recast GM’s wayward culture and fix its communication problems. In an open letter to Barra inside, columnist Richard Steinberg suggests ways GM can improve its culture and create an environment where executives take responsibility and do the right thing.

  • Opinions

    CPSC Urges Proactive Compliance, Effective Programs

    Stephanie Tsacoumis | July 22, 2014

    Tsacoumis-Stephanie-GuestColumnIn recent actions the U.S. Consumer Product Safety Commission has emphasized the importance of effective compliance programs, echoing the approach taken by other federal agencies in a variety of contexts.  Even if a legal violation occurs, a robust compliance program may help avoid severe government action and penalties. Inside, guest columnist Stephanie Tsacoumis, general counsel of the CPSC, provides her thoughts on what constitutes an effective compliance program.

  • News bulletin

    Shareholders Could Demand More Succession Plan Disclosure

    Joe Mont | July 22, 2014

    rutherford-allie-updatedShareholders put a high priority on CEO succession planning, but they have stopped short of calling for more transparency on the plans. That could be changing. A high-profile CEO’s illness and a campaign for more succession plan disclosures in the U.K. may bring greater attention to what companies reveal about the plans. “Investors want to know that boards have thoughtful long-term and emergency executive succession plans,” says Allie Rutherford, director of the Corporate Governance Center at auditing firm EY.

  • Event

    Compliance Week Europe 2014

    October 13-14, 2014

    13-14 October, 2014 in Brussels, Belgium

  • News bulletin

    BNP Paribas Debacle Offers Lessons in Compliance

    Jaclyn Jaeger | July 22, 2014

    alberts-jeff-updatedFrench banking giant BNP entered into a guilty plea last month and agreed to a record $8.9 billion settlement—the largest penalty ever obtained by the Justice Department in a criminal economic sanctions case. Worse still, the complaince department at the bank was accused of helping to cover up the wrongdoing. “The message to banks is that they need to take more seriously a culture of compliance," says Jeffrey Alberts, a partner with law firm Pryor Cashman.

  • News bulletin

    Merger Mania Presents Unique Compliance Challenges

    Joe Mont | July 22, 2014

    This year looks to be a record-breaking one for mergers and acquisitions. The blockbuster deals raise several compliance issues, such as potential Foreign Corrupt Practices Act violations and ethics culture mismatch, but compliance officers may not always be part of the pre-deal diligence from the start. Getting them involved can avoid the threat of “successor liability,” post-merger bribery violations, and fostering the best cultural aspects of both sides. More inside.

  • News bulletin

    Cyber-Attacks Fail to Alarm

    Jaclyn Jaeger | July 15, 2014

    Are executives ignoring cyber-risks? Even as cyber-attacks on corporate networks increase in number and severity, such risks have done little to illicit the type of alarm that senior leadership teams should be sounding, finds a new report. "It's a 21st Century risk that a lot of companies have not really come to grips with," says Sean Joyce, principal of PwC's U.S. Advisory Forensics Services practice.

  • News bulletin

    Non-Disclosures May Run Afoul of Whistleblower Protections

    Joe Mont | July 14, 2014

    marshall-david-updatedMany companies strike confidentiality agreements with employees who are leaving, but some are finding they can run afoul of government whistleblower protections, especially when employees are asked to forgo whistleblower bounties as part of their severance agreement. “We see a seemingly endless array of efforts by companies to come up with new ways to dissuade individuals from providing information to the government,” says David Marshall, a partner at the law firm Katz, Marshall & Banks.

  • Ebook
    e-Book: All Eyes on Internal ControlsSponsored by BlackLine Systems | June 26, 2014


    In this e-Book, produced by Compliance Week in cooperation with BlackLine Systems, we look at the progress companies are making in implementing the revised COSO internal control framework and improving their control systems. After getting off to a slow start, we look at how companies are assessing what they need to do to adopt the revised framework.