Decision debt is the practice of leaving key compliance decisions unresolved, and it is a crisis few compliance leaders are willing to name. Some of the world’s largest financial institutions, including Wells Fargo and Citibank, have learned this lesson the hard way.
Posted inAML
McDevitt discusses her Compliance Week Epstein case study on WBAI FM in NYC
Jeffrey Epstein’s finances are back in the spotlight with new reports this month, but Compliance Week published an in-depth investigation into the anti-money laundering compliance angle of the story 18 months ago. Compliance Week’s Aly McDevitt went on WBAI Monday to discuss her investigation
Posted inAML
Cross-border compliance: Lessons from the UAE for a globalized financial system
Financial ecosystems are no longer confined within national boundaries. Money, technology, and risks flow seamlessly across jurisdictions, creating unprecedented challenges for compliance officers. From sanctions and anti-money laundering (AML) obligations to the rise of virtual assets, the compliance function must now navigate a complex, cross-border landscape where regulators, institutions, and technologies often move at different speeds.
Posted inAML
Why audit won’t save your anti-money laundering (AML) program
In financial institutions across the United States, there’s a reflex that’s become almost ritual.
When a regulator walks in, or a board member asks whether the AML program is working, the answer is the same: “We just passed audit.” It’s delivered with confidence, sometimes even pride, as if the risk has been neutralized. But passing audit doesn’t mean your program is safe.
It doesn’t mean it’s effective. And in today’s threat landscape, it doesn’t mean much of anything at all.
Posted inCryptocurrency and Digital Assets, Opinion
The GENIUS Act: A new era for U.S. crypto regulation
For years, stablecoin regulation was stuck in an uncertain legal gray zone with no clear rules until the GENIUS Act arrived as a turning point. For the first time, a concrete federal framework has drawn a line by requiring reserves to be held, demanding transparency, and putting consumer protections front and center.
Posted inInternal Investigations
Five best practices for conducting effective investigations
Companies face rising pressure to detect misconduct early. Strong internal investigations identify compliance issues, uphold regulations, and protect credibility.
Posted inInternal Investigations
Five best practices for running an effective internal investigations program
In today’s complex and rapidly evolving regulatory compliance environment, organizations should have a thorough and effective internal investigations program in place to address any allegations of misconduct.
Posted inFrom the Archive
Join Global Audit Innovators
Be part of the profession’s future at The IIA International Conference in Toronto. #IIAIC2025
Posted inRisk Management
Navigating compliance: A guide for small teams to tackle Cybersecurity Maturity Model Certification
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
Posted inAnti-Bribery
As DOJ pivots away from white-collar enforcement, is FCPA still relevant?
While executives and boards will never conclude that bribery is a legitimate way of doing business, understandably many have questions about how to direct their FCPA compliance program efforts and resources, write Iris Bennett and Claire Rajan, partners at law firm Steptoe.
