All Risk Management articles – Page 50
-
PremiumAsk a CCO: Plan for complying with varied U.S. privacy laws
Four senior compliance practitioners detail steps their respective companies are taking to confront the expanding U.S. data privacy legislation landscape.
-
PremiumCloud ‘not a silver bullet’ for security
A panel of cyber experts and a chief compliance officer in financial services discussed the business risks, threat vectors, and vendor ‘gotchas’ associated with transitioning to a cloud provider at CW’s virtual Cyber Risk & Data Privacy Summit.
-
Premium‘This is where we are now’: Cyber environment calls for continuous monitoring
Securing your organization’s private data when vendors have access to it means managing relationships from beginning to end, panelists at CW’s virtual Cyber Risk and Data Privacy Summit agreed.
-
News BriefOFAC imposes new sanctions to mark anniversary of Russia’s Ukraine invasion
The Office of Foreign Assets Control unveiled a slew of new sanctions against financial services firms and individuals that either support Russia’s war effort or have been judged to be undermining existing U.S. sanctions.
-
PremiumHHS proposal aims to ‘shine a light’ on nursing home ownership
It is still too early in the rulemaking process to know what will be included in the Biden administration’s final rule on transparency of nursing home ownership, but there are some steps facilities can take to prepare, according to experts.
-
OpinionLessons in cybersecurity: Control the breach narrative
Recent botched data breach responses at Activision Blizzard and GoDaddy prompt timely consideration of communication best practices shared by cybersecurity experts at CW’s virtual Cyber Risk & Data Privacy Summit.
-
PremiumChatGPT comes with compliance caveats, experts warn
There are downsides to every new technology, and artificial intelligence and machine learning are no exception. Experts discussed the importance for compliance professionals to understand the risks of such tools at CW’s virtual Cyber Risk & Data Privacy Summit.
-
News BriefTreasury No. 2 warns of increased Russian sanctions enforcement
Deputy Secretary of the Treasury Wally Adeyemo said the agency is primed to step up its enforcement efforts regarding sanctions and export controls announced against Russia in the year since the country invaded Ukraine.
-
News BriefHHS reports: Compliance reviews, health data breaches up
The number of compliance reviews by the Department of Health and Human Services of health organizations increased between 2017 and 2021, according to the agency’s latest reports to Congress.
-
News BriefRaiffeisen confirms OFAC probe into Russia, Ukraine business
Raiffeisen Bank International said it received a request for information from the Treasury Department’s Office of Foreign Assets Control regarding its business activities related to Russia and Ukraine.
-
PremiumCybersecurity pillars: Prevention, protection, mitigation, governance
The former superintendent of the New York State Department of Financial Services explained how the structure of a cybersecurity program is like a compliance program and can be divided into four buckets during a panel discussion at CW’s Cyber Risk & Data Privacy Summit.
-
News BriefSEC, CFTC order Options Clearing Corp. to pay $22M over internal rule failures
Options Clearing Corp. agreed to pay $22 million as part of settlements with the Securities and Exchange Commission and Commodity Futures Trading Commission addressing charges the company failed to comply with internal rules to manage risks.
-
OpinionBook review: Why revamping procurement benefits business—and compliance
In “Profit from the Source,” four Boston Consulting Group thought leaders argue why procurement should be shaping corporate strategy, not just supporting it. Author Daniel Weise tells Compliance Week why such a transformation would elevate compliance, too.
-
PremiumCISA strategist: What is an SBOM and why it matters to compliance
Cyberattacks on software are increasing, and the best chance organizations have of protecting themselves is to know about potential vulnerabilities through a software bill of materials, CISA Strategist Allan Friedman shared at CW’s virtual Cyber Risk & Data Privacy Summit.
-
ArticleIs threat of regulatory censure a risk worth taking?
When making anti-regulatory decisions, a board is expressing its real risk appetite. This can be frustrating, even bewildering, for compliance professionals, especially when rules are clear and explicit in their expectations.
-
News BriefAmigo Loans dodges $89M fine over IT system lending lapses
Amigo Loans faced a penalty of £72.9 million (U.S. $88.7 million) after the U.K. Financial Conduct Authority found it used automated decision-making to drive sales over ensuring whether customers posed credit risks.
-
PremiumComerica pressured over handling of government program fraud claims
Comerica Bank has been battling allegations for years of mishandled fraudulent transactions in violation of U.S. federal banking laws. A series of class-action lawsuits against the bank recently certified by a federal district court judge provide scope into the alleged failings.
-
News BriefJudge rules against adding compliance monitor in Boeing DPA
A federal judge in Texas ruled against a request by the families of those killed in two Boeing 737 MAX crashes to alter the terms of a 2021 deferred prosecution agreement between the company and the Department of Justice to add an independent compliance monitor.
-
News BriefCPPA seeking comment on cybersecurity audit, risk assessment rule adds
The California Privacy Protection Agency is seeking comment on privacy rules requiring certain large businesses to conduct annual cybersecurity audits and risk assessments if the state believes they are placing consumer data at risk.
-
News BriefBanking regs set 2023 stress test scenarios
Banking regulators unveiled new stress test requirements for the largest financial institutions, including a series of hypothetical global market shocks six banks will be required to face.