All Risk Management articles – Page 44
-
PremiumShades of SolarWinds in lessons from MOVEit hack
A ransomware attack affecting some of the U.K.’s largest corporations has highlighted once again how exposed organizations can be if the levels of cybersecurity used by their third parties are not as strong as expected.
-
PremiumNutanix discloses remediation steps following costly software misuse
A lack of oversight of employees handling vendor software is one of several failings at cloud computing company Nutanix that led to misuse, $11 million in estimated costs, and two pending lawsuits.
-
ArticleThe importance of protecting client money
In today’s financial landscape, protecting client money and assets is a fundamental requirement of an effective compliance program. If client money is not protected, firms can suffer serious consequences.
-
News BriefOCC soliciting input on proposed trust in banking survey
The Office of the Comptroller of the Currency announced a request for information to implement an annual survey aimed at tracking public trust in banking and bank supervision.
-
News BriefJPMorgan to pay $290M to settle Jeffrey Epstein class action
JPMorgan Chase announced it reached an agreement in principle to settle claims made in a class-action lawsuit regarding the bank’s ties to convicted sex offender Jeffrey Epstein.
-
PremiumMindset matters for governance and compliance success in the cloud
Shifting your organizational structure to align with a capability-based operating model can help you focus on delivering outcomes for customers, instead of concentrating on different departments and processes.
-
PremiumHow will regulators’ increased scrutiny of banks play out in practice?
Federal banking regulators have indicated they will be more assertive in their supervision of mid-sized banks in the aftermath of the collapses of Silicon Valley Bank, Signature Bank, and First Republic Bank. What actions might they take?
-
PremiumVerizon report: Lion’s share of data breaches linked to organized crime
About 83 percent of data breaches are perpetrated by external bad actors and not employees, with 70 percent of those breaches linked to organized crime groups with financial motives, according to the latest research.
-
News Brief
SEC risk alert expands marketing rule exam focus areas
The Securities and Exchange Commission is expanding its examination focus regarding investment advisers’ compliance with its new marketing rule.
-
News BriefBanking regs seek consistency via new TPRM guidance
U.S. banking regulators combined to issue final guidance on managing the risks of third-party relationships that replaces the previous documentation each agency released individually.
-
Resourcee-Book: ESG survey: Social risks, blind spots, and barriers
This free e-Book explores why companies understand the social risks in their supply chains posed by corruption, inequality, and employment standards but don’t always fully recognize less visible risks such as forced and child labor.
-
Opinion‘Bully Market’ depicts Goldman Sachs lacking in culture vigilance
Jamie Fiore Higgins’s experiences at Goldman Sachs as chronicled in her memoir “Bully Market” prove a timely read following the investment bank’s $215 million class-action settlement over gender discrimination.
-
News BriefCFPB: ‘Poorly deployed’ AI chatbots harming banking customer service
The Consumer Financial Protection Bureau flagged risks regarding expanded use of chatbots by financial institutions, specifically for customer service purposes.
-
PremiumSurvey: Social risks in supply chain prove vexing for GRC professionals
Respondents to a survey conducted by the International Compliance Association said they were confident they understood and are properly monitoring the social risks in their companies’ supply chains, though blind spots regarding cultures and strategic plans remain.
-
News BriefPCAOB proposal puts pressure on auditors to find fraud
The Public Company Accounting Oversight Board proposed standard updates that would require auditors to enhance scrutiny toward potential instances of company noncompliance, including fraud, in their audit work.
-
PremiumResponsible use cases exist for generative AI in compliance—if you plan carefully
The possibilities for productive use of generative AI are alluring, compliance professionals say. But harnessing the technology in an ethical and compliant manner requires thorough risk assessment.
-
PremiumRisk assessment fundamentals: Flexibility, accountability, more
Tailoring your risk assessments to guidance from your relevant regulators is a good idea, a panel of compliance practitioners speaking at Compliance Week’s 2023 National Conference agreed. But it certainly isn’t the place to start.
-
News BriefCrown Resorts agrees to pay $292M over AML/CFT violations
Crown Resorts agreed to pay 450 million Australian dollars (U.S. $292 million) and overhaul its anti-money laundering and combating the financing of terrorism compliance controls for repeatedly violating Australia’s AML/CFT law.
-
PremiumAvoiding the echo chamber: CCO among ‘crucial’ roles in crisis response
Businesses can be well prepared to manage a crisis by having continuity among stakeholders and avoiding leakage of privileged information to prevent conflict, a panel of legal and compliance experts shared at Compliance Week’s 2023 National Conference.
-
PremiumCW2023: CBP official on early impact of Uyghur forced labor law
Customs agents have flagged thousands of products marked as made in Malaysia, Vietnam, or elsewhere in accordance with the UFLPA, an official from U.S. Customs and Border Protection shared during a panel at Compliance Week’s 2023 National Conference.