Wondering how new approaches to age-old regulations affect ethical business practices across your extended enterprise? What about how tariffs may impact your supply chain integrity, and how to best adapt your organization to accelerated shifts in business practices?
Third Party Risk
Provided by
Slow Vendors, Changing Risks: The Compliance Customization Gap
A recent survey found that 66% of compliance leaders say their training programs are hard to customize quickly, and nearly half (46%) are being asked to cut training time.
Provided by
Get Off the Assessment Treadmill: Taking a data-first, questionnaire-second approach to TPRM
Join us for a live webcast to learn how the newest risk exchange models are eliminating 80 percent of questionnaire requests with data.
Posted inRisk Management
Navigating compliance: A guide for small teams to tackle Cybersecurity Maturity Model Certification
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
Posted inRegulatory Enforcement
DOJ fines MORSE Corp $4.6M for lax cyber controls amid crack down on federal contractors
Yet another government contractor has been slapped with a fine by the Department of Justice for applying lax cybersecurity defenses on sensitive government data.
Provided by
Tackling Third Party Risk In A Global World
TPRM has always been a tough subject, requiring regular monitoring and audits to be done right. But until recently, it was something companies chose to do.
Posted inEthics & Culture
Ethics & Compliance Summit notebook: When it comes to trust, make sure to verify
The increasing efforts to fight modern slavery across the globe are getting a boost from EU rules that require companies to track and report on the issue. But compliance executives can’t lean on easy databases and automated solutions, experts increasingly say, that supply chain companies may ignore or lie to.
Provided by
The State of Third-Party Due Diligence
This is a Compliance Week Survey, sponsored by GAN Integrity. It is completely anonymous and designed to help benchmark the state of third-party due diligence. Results will be shared by Compliance Week and GAN Integrity in the form of a benchmark report.
Posted inAccounting & Auditing
Experts explain why IIA’s new global audit rules will be ‘central’ to securing high-quality assurance
Compliance teams should expect more support from their organization’s internal audit functions. That is the clear message from the Institute of Internal Auditors, the global body of national affiliated internal audit institutes, which has just put into action its new Global Internal Audit Standards.
Posted inRegulatory Enforcement
Crypto exchange OKX latest target of DOJ, hit with $505M penalty over AML, KYC failures
One of world’s largest cryptocurrency exchanges agreed to pay more than $500 million in penalties and plead guilty to AML and KYC violations, along with failing to register as a money transmitting business with the U.S. Treasury Department, the DOJ said.