Image: Good policies are crucial to effective compliance programs—“good,” however, being the part many companies fail to hit. Inside, Compliance Week editor Matt Kelly picks apart the corrosive effect that poor policies can have on corporate culture, starting with the one policy everyone loves to complain about: business travel. Sit up, get stressed, and see how compliance can go wrong.
Matt Kelly
Posted inFrom the Archive
Compliance Week Europe Conference Takes Shape
Image: Compliance Week is delighted to announce that planning for our 2015 Compliance Week Europe conference is now underway, and we are thrilled about how things are falling into place. Registration for the event is now open, so if you are a compliance officer anywhere from Ireland to Ukraine, we encourage you to attend. Editor Matt Kelly has more inside about the agenda and our first keynote speaker.
Posted inAccounting & Auditing
What You Tell the Audit Committee About Auditors
Image: You might have forgotten, but once upon a time a company’s audit committee was primarily responsible for—get this—the annual audit. Compliance Week recently surveyed compliance and audit executives to ask: What information do you bring to the audit committee when reviewing the performance of your audit firm? Inside, Editor Matt Kelly reviews the results and what they say about oversight of audit firm activity today.
Posted inFrom the Archive
ELM Arrives as New Compliance Buzzword
Image: We try to look cynically upon any slick new marketing campaign from the GRC software vendors, but occasionally something appears that does seem to have real substance. That may have happened earlier this month at LegalTech 2015 with its extensive discussion of “enterprise legal management.” The concept is a powerful one, Compliance Week editor Matt Kelly writes, with big implications for compliance officers.
Posted inFrom the Archive
Three Ideas for Compliance, Audit, and Cyber-Security
Image: Wow! Sometimes you go to a panic party about cyber-security risk and an intelligent discussion breaks out. Such was the case for Compliance Week editor Matt Kelly, who hung out last week at a meeting of the New England Chief Audit Executives Club. Inside are his three lessons for how internal audit and IT can keep it together when tackling cyber-security.
Posted inInternal Controls
Audit Committees, Operational Risk, and Unease
Image: News flash: Audit committees are still overworked and unsure how to handle new risks confronting Corporate America. So says the 2015 edition of the KPMG Audit Committee Survey, which tells some good news on financial reporting risks, amid a more troubling morass of operational and cyber-security risks nobody seems to grasp just yet. Compliance Week Editor Matt Kelly has more inside.
Posted inFrom the Archive
Compliance Week 2015: Full Agenda Announced
Image: Good news for everyone looking to firm up springtime travel plans: we have just announced the agenda and speaker lineup for the best compliance and audit conference out there, Compliance Week 2015. From hardcore SOX compliance issues, to strategies for effective leadership of compliance teams, to all the operational challenges you face, we’re on it. Editor Matt Kelly has more inside. Register soon!
Posted inEthics & Culture
More Misconduct Tales to Tell Your Company
Image: As we move into 2015 and the good economic times that seem to be carrying the United States along, it’s time for a refresher course in Why Ethics & Compliance Matter. We have two new examples of misconduct—one from Brazil, the other from New York—that can go straight into your training materials. Compliance Week Editor Matt Kelly has more inside.
Posted inFrom the Archive
Six Compliance Events to Watch in 2015
Image: Welcome back! Before everyone returns to the raw thrill of audit committee meetings, internal control testing, e-discovery requests, and vendor proposals for GRC software upgrades, let’s take a moment to contemplate what lies ahead for compliance, risk, and audit executives in 2015. Editor Matt Kelly has his top picks inside, and they promise to fulfill that old curse, may you live in interesting times.
Posted inData Privacy
Another Step Forward in Tackling Cyber-Security Risk
Image: Dec. 31—COSO’s Internal Control — Integrated Framework talks a good game about being useful beyond financial reporting risks, but Compliance Week Editor Matt Kelly has always wondered how that works in practice. Then came a nifty piece of guidance: a taxonomy of operational risks in cyber-security, published by the Software Engineering Institute, a division of CERT at Carnegie Mellon University. Combine that tool for risk assessment and COSO’s approach for risk management, he says, and cyber-risks get a little less scary. Details inside.