All Risk Management articles
-
PremiumThree TPRM myths worth busting
There are stories we tell ourselves in third-party risk management (TPRM) to make ourselves feel better about the corners we cut.
-
PremiumSupply chain disruptions caused by Republican polices should be managed
If you’re in third-party risk management, handling the latest disruptions brought on by wild gyrations in tariff rates and export control rules by Republican leadership ought to be child’s play.
-
News BriefCommunication and relationships is increasingly critical for compliance teams
Compliance is increasingly in the spotlight as companies are tackling everything from artificial intelligence and other new technologies to risk management and mitigation. But it’s soft skills of communication and relationship building that are becoming the most critical tools for success.
-
News BriefESG goes beyond politics: Vendor management, forced labor, sustainability
ESG is no longer in vogue. But its issues still are. Almost none of the nearly 200 attendees at Compliance Week’s Third Party Management summit this week said they’re currently working on ESG when informally surveyed. The show-of-hands results marked a dramatic reversal from even just a couple years ...
-
News BriefIn a world filled with uncertainty, boards need to focus on connecting dots
Regulators and investors increasingly say boards of directors need more expertise to ensure they can respond to fast-changing politics, policy, and technology that threaten to undermine their businesses. In the U.K., government officials say boards need to think more about cyber. In the EU, they need to prepare for the ...
-
News BriefGoogle’s $500M compliance overhaul may fall short, amid antitrust fallout
Google parent Alphabet has struck a new agreement with shareholders, settling a shareholder lawsuit with a promise to ”completely revamp and rebuild its global compliance structure,” according to a new legal filing. The investment may not go far enough to reform Alphabet’s compliance failings, which are particularly under scrutiny following ...
-
PremiumTPRM has become the business continuity plan in turbulent times
Global supply chains are constantly in flux: crucial vendors could suddenly go bankrupt, fail to produce key components without warning, or even lose your firm’s data in a breach. The result has drawn ever more attention to third-party risk management as a critical element of many businesses.
-
News BriefCOSO’s draft corporate governance framework provides roadmap to compliant business practices
Corporate governance is, all too often, handed down from generation to generation. Like a well-worn jacket, it works great—until it doesn’t. Typically, it is a crisis that forces companies to reassess their corporate governance framework, as gaps are filled and poor policies rewritten. But it doesn’t have to be that ...
-
WebcastCPE Webcast: Adapting to Global Regulatory Change and Supply Chain Disruption in 2025
Wondering how new approaches to age-old regulations affect ethical business practices across your extended enterprise? What about how tariffs may impact your supply chain integrity, and how to best adapt your organization to accelerated shifts in business practices?
-
PremiumSurvey: Compliance, now at the leadership table, navigates an uncertain risk landscape
At a time when the Trump administration is rewriting many of the rules, the compliance function is being embraced as a strategic partner to the C-suite and board, Compliance Week’s 2024 “Inside the Mind of the CCO” survey shows. The new objective: risk-assess the implications of Trump’s confetti of executive ...
-
WebcastCPE Webcast: The Compliance Practitioner Challenge: Staying Ahead of AI Regulations
As AI presents new opportunities to drive insight and efficiency, it brings new challenges of risk mitigation and overall company protection.
-
PremiumDirectors should be more accountable for failure, while also taking more risks, says U.K. regulator
Director accountability is back in the spotlight in the U.K., even as the government pushes for regulatory simplification to cut red tape and drive growth. This raises questions about how boards can be encouraged to take risks to grow their businesses while also being held more accountable for governance failings. ...
-
WebcastCPE Webcast: Slow Vendors, Changing Risks: The Compliance Customization Gap
A recent survey found that 66% of compliance leaders say their training programs are hard to customize quickly, and nearly half (46%) are being asked to cut training time.
-
WebcastCPE Webcast: Taking a data-first, questionnaire-second approach to TPRM
Join us for a live webcast to learn how the newest risk exchange models are eliminating 80 percent of questionnaire requests with data.
-
PremiumSurvey highlights demand for quick, customizable, and cost-effective compliance training
Compliance training has become less expensive and more customizable to keep up with the constant rule changes, according to a new survey by microlearning training platform Ethena and Compliance Week.
-
WebcastJune 17 | Compliance Under Pressure: M&A Risks and Ethical Safeguards
This webinar will explore how compliance professionals, legal teams, and executives can proactively identify, mitigate, and manage risks during the M&A lifecycle without compromising ethical standards.
-
PremiumRepublican-led SEC abandons climate rule; Dem commissioner calls move ‘unlawful’
The Securities and Exchange Commission’s Republican leadership is abandoning the climate-related disclosure rule package passed last year by Democrats, hoping that the courts will kill regulations already on life support.
-
PremiumNavigating compliance: A guide for small teams to tackle CMMC
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
-
Resourcee-Book: Tackling Third Party Risk In A Global World
TPRM has always been a tough subject, requiring regular monitoring and audits to be done right. But until recently, it was something companies chose to do.
-
ArticlePhoto gallery: Ethics & Compliance Summit
Compliance Week’s Ethics and Compliance Summit, held March 19-20 in Boston, Mass., gathered legal, compliance, and risk professionals to share best practices and engage in discussions on timely topics, regulatory developments, and effective strategies to foster an ethical culture.