All articles by Aly McDevitt – Page 3
-
PremiumLearning from Wells Fargo: How Best Buy launched its enterprise risk and compliance function
Todd Hartman, general counsel and chief risk officer of Best Buy, shares the catalyst behind revamping the retailer’s second line of defense and the lasting benefits of separating compliance from legal.
-
PremiumTPRM Summit: How to successfully implement data analytics
A panel of experts at CW’s virtual TPRM and Oversight Summit offered a how-to primer on using data analytics to monitor third-party risk while also highlighting some caveats to implementation.
-
Article‘A profound sense of loss’: Inside Elon Musk’s Twitter culture teardown
Former and current Twitter employees share insights into the state of the social media company’s “toxic” culture and “morose, fearful” atmosphere since Elon Musk stepped on the scene.
-
Article‘Ethical Machines’ breaks down AI ethical risk mitigation planning
It’s only a matter of time before regulators legislate how companies vet artificial intelligence. Ethicist Reid Blackman’s new book, “Ethical Machines,” advises companies on how to implement AI ethical risk mitigation strategies and avoid regulatory, legal, and reputational fallout.
-
ArticleReal talk: How Best Buy manages challenges of DEI goals
Two years into its diversity, equity, and inclusion action plan, Best Buy leaders attended Compliance Week’s National Conference to discuss—in a refreshingly blunt manner—the retailer’s learnings.
-
ArticleConviction, moral fortitude define Lifetime Achievement winner Tamar Frankel
Tamar Frankel’s 50-year career as a law professor at Boston University more than satisfies her being honored for Lifetime Achievement at the 2022 Excellence in Compliance Awards. Yet, to limit the scope of Frankel’s accomplishments to her academic career would be a massive oversight.
-
ArticlePut principles to practice with ‘Bias Interrupted’
Legal scholar Joan Williams’s book delivers an avalanche of evidence-based research on structural biases in the workplace and teaches how to course correct broken systems over time by interrupting basic business functions now.
-
ArticleCW National 2022 Q&A: Todd Hartman on intersection of DEI and compliance
Todd Hartman, EVP, general counsel and chief risk officer at Best Buy, previews his panel titled, “The Intersection of DEI & Compliance & Ethics—Lessons Learned from Best Buy’s Journey,” at CW’s National Conference in Washington, D.C. from May 16-18.
-
ArticleClosing the data risk gap: How technology enables data protection
Legal and compliance teams ranked data privacy and cybersecurity threats the No. 1 biggest risk entering 2022. Further survey results reveal roadblocks to organizations’ proactive compliance.
-
Article‘Anti-Racist Leadership’ demystifies DEI for intentional leaders
Many business leaders wish to be better stewards of diversity, equity, and inclusion at their organizations. James and Krista White’s “Anti-Racist Leadership” debuts a rare playbook for instigating cultural transformation and making DEI an engine of business performance.
-
ArticleThe moral of Elizabeth Holmes’s story: Focus on facts, not facades
The depiction of Elizabeth Holmes in the Hulu miniseries “The Dropout” bears out the tendency to filter judgment of the Theranos founder through the lens of her gender—but it’s her actions that should matter.
-
ArticleHiltrud Werner leaves legacy of integrity at Volkswagen
Hiltrud Werner, Volkswagen’s board member and head of integrity and legal affairs who steered the company through its U.S. compliance monitorship post-Dieselgate, discusses her indelible mark on the auto giant and her future aspirations.
-
PremiumEpilogue: What happened to Betsy?
The “patient zero” of fictional private utility company Vulnerable Electric’s ransomware crisis learns her fate.
-
PremiumChapter 4: Recovery and lessons learned post-ransomware attack
Whether fictional private utility company Vulnerable Electric pays the ransom or not in the aftermath of its cyber incident, the two pathways quickly splinter off in different directions with varied endings, each with important lessons to be learned.
-
PremiumRansomware case study glossary
The field of cybersecurity features a growing list of terminology to describe the many forms, channels, and motivations behind cyberattacks and hacking culture. Learn further definitions for some key terms featured throughout the ransomware case study.
-
PremiumChapter 3: Ransomware eradication prompts tough choice: To pay or not to pay?
No matter what, the deck is stacked against fictional private utility company Vulnerable Electric as it weighs whether to pay the $5 million ransom demanded by a cybercriminal who breached its systems. Which path do you take?
-
PremiumChapter 2, Part 2: Ransomware damage control and when to alert stakeholders
Systems at fictional private utility company Vulnerable Electric remain impacted in the aftermath of a ransomware attack, but the chief executive decides it’s time to be forthright with employees and customers.
-
PremiumChapter 2, Part 1: Containment key to ransomware defense
With Day 2 of fictional private utility company Vulnerable Electric’s ransomware crisis comes the need to grasp the extent of its situation. The cyber incident response team’s synchronized efforts are pivotal as time is of the essence.
-
PremiumChapter 1, Part 1: Betsy’s human error triggers ransomware crisis
When one of fictional private utility company Vulnerable Electric’s most dedicated employees falls victim to a social engineering hack, her actions in the immediate aftermath are crucial to what will soon become a crisis for the C-suite.
-
PremiumChapter 1, Part 2: All hands on deck in C-suite ransomware response
Following the events that triggered a double extortion ransomware attack, the CEO of fictional private utility company Vulnerable Electric mobilizes her cyber incident response team to begin assessing the path forward to dealing with the cybercriminal(s).