All Third Party Risk articles – Page 15
-
ArticlePreparation, monitoring key to combating third-party cyber-security risk
A spate of recent cyber-security breaches occurring via third parties is a reminder of the importance for companies to stay on top of risk management. Regulators have shown to not take kindly to finger-pointing.
-
ArticleTrio of U.K. fines expose third-party risks under GDPR
Recent GDPR fines against British Airways, Marriott, and Ticketmaster by the U.K. Information Commissioner’s Office each saw the regulator dismiss claims by the companies that third parties were primarily responsible for the data breaches in question.
-
ArticleTicketmaster UK fined $1.6M under GDPR for 2018 data breach
The U.K. Information Commissioner’s Office fined Ticketmaster £1.25 million (U.S. $1.6 million) for its failures relating to a 2018 data breach by a third party.
-
ArticleNew bank resiliency guidance tackles cyber-risk, pandemic planning
Federal banking regulators have released new operational resiliency guidance aimed to strengthen risk management around technology-based failures, cyber-incidents, pandemic outbreaks, natural disasters, and more.
-
ArticleBribes, falsified records cost Beam Suntory $19.6M in FCPA settlement
Alcoholic beverage maker Beam Suntory agreed to pay $19.6 million to resolve Foreign Corrupt Practices Act charges of improper payments by its Indian subsidiary.
-
ArticleOCC deems ‘true lenders’ responsible for actions of third-party partners
The Office of the Comptroller of the Currency’s finalized “true lender” rule clarifies how banks are responsible for the compliance obligations and actions of their third-party lending partners.
-
ArticleBerkshire Hathaway fined $4.1M for Iran sanctions violations
The U.S. Department of the Treasury’s Office of Foreign Assets Control assessed a $4.1 million fine against Berkshire Hathaway for “egregious” violations of sanctions against Iran committed by a subsidiary in Turkey.
-
ArticleBest practices for M&A cyber-security due diligence in a virtual world
The slowdown in mergers and acquisitions in the early stages of the coronavirus pandemic in March is waning, and M&A activity is approaching pre-pandemic levels again, with cyber-security risk now the top concern.
-
ArticleOCC fines Morgan Stanley $60M for data inventory risk failures
Morgan Stanley has agreed to pay $60 million as part of a settlement with the OCC for failing to adequately protect customer data when the bank decommissioned two U.S.-based wealth management data centers.
-
Resourcee-Book: Mind the Gap — Where Third-Party Risk Management Programs Fall Short
This e-Book from Compliance Week and Aravo reveals the results of the “2020 TPRM Benchmarking Survey.”
-
ArticleCarreyrou at TPRM: Theranos warning signs were there, but partners failed to spot them
John Carreyrou explained to third-party risk professionals at CW’s TPRM Virtual Summit that the mistakes made by Theranos’s business partners were entirely preventable—had they done their proper due diligence.
-
ArticleCompliance official key to Comtech sanctions penalty
The alleged actions of an export compliance official are at the heart of “egregious” apparent OFAC sanctions violations by New York-based Comtech Telecommunications Corp. and its wholly owned subsidiary regarding sales in Sudan.
-
ArticleBrockmeyer at TPRM: Regulator expectations for monitoring third parties
Former chief of the SEC’s FCPA Unit Kara Brockmeyer shared what regulators are looking for when they assess a company’s relationship with its third parties at Compliance Week’s TPRM Virtual Summit on Thursday.
-
ArticleBest practices KYC: What to do when your client is in the headlines
How do we, as AML professionals, assess negative media alerts? It should start with a conversation with the client relationship manager, but it shouldn’t end there, writes Martin Woods.
-
ArticleQ&A with Kara Brockmeyer: How pandemic has impacted third-party risk
In advance of her keynote at Compliance Week’s upcoming TPRM virtual event (Sept. 17-18), former SEC official Kara Brockmeyer discussed with CW the heightened risk third parties have during a pandemic and what companies can do about it.
-
ArticleJohn Carreyrou at TPRM: How to spot a wolf in Steve Jobs’ clothing
John Carreyrou, the Wall Street Journal reporter who exposed Theranos and its founder Elizabeth Holmes as frauds, will be the keynote speaker on Day 2 of Compliance Week’s TPRM virtual conference Sept. 18.
-
ArticleAdvice for compliance from new DOJ Criminal Division head
Acting Justice Department Criminal Division head Brian Rabbitt shares his perspective on recent updates to the Evaluation of Corporate Compliance Programs guidance, the FCPA Resource Guide, and more.
-
ArticleNothing more important than knowing your risk exposure
In performing due diligence on your supply chain partners, do not be intimidated into accepting no for an answer. Being blind to potential risks is bound to get you into trouble, writes financial crime expert Martin Woods.
-
EventCoronavirus has made CW2020 a (virtual) gathering like no other
The coronavirus pandemic has made getting together for our annual National Conference impossible, but it’s also made this virtual gathering (Monday and Tuesday) perhaps the most important one we’ve ever had.
-
ArticleDriving innovation in supply-chain practices post-pandemic
A number of forward-thinking companies are using the coronavirus pandemic as an opportunity to drive promising innovations in their global supply chains.