All Third Party Risk articles – Page 5
-
WebcastCPE Webcast: Managing third-party risk in 2023: Trends and best practices
In a recent survey by Dun & Bradstreet and Compliance Week, more than half of respondents indicated they had increased vendor/third-party due diligence efforts as a result of global disruption and instability.
-
PremiumCybersecurity pillars: Prevention, protection, mitigation, governance
The former superintendent of the New York State Department of Financial Services explained how the structure of a cybersecurity program is like a compliance program and can be divided into four buckets during a panel discussion at CW’s Cyber Risk & Data Privacy Summit.
-
OpinionBook review: Why revamping procurement benefits business—and compliance
In “Profit from the Source,” four Boston Consulting Group thought leaders argue why procurement should be shaping corporate strategy, not just supporting it. Author Daniel Weise tells Compliance Week why such a transformation would elevate compliance, too.
-
ArticleIs threat of regulatory censure a risk worth taking?
When making anti-regulatory decisions, a board is expressing its real risk appetite. This can be frustrating, even bewildering, for compliance professionals, especially when rules are clear and explicit in their expectations.
-
PremiumComerica pressured over handling of government program fraud claims
Comerica Bank has been battling allegations for years of mishandled fraudulent transactions in violation of U.S. federal banking laws. A series of class-action lawsuits against the bank recently certified by a federal district court judge provide scope into the alleged failings.
-
PremiumSurvey: Cybersecurity, regulatory risks lead TPRM priorities in 2023
Respondents to a survey from Compliance Week and Dun & Bradstreet overwhelmingly indicated cybersecurity to be the most important compliance-related area affecting third-party risk management in the new year, though fraud and other risks should still be on their radar.
-
ResourceSurvey Report: Top TPRM priorities in 2023
Respondents to a survey from Compliance Week and Dun & Bradstreet overwhelmingly indicated cybersecurity to be the most important compliance-related area affecting third-party risk management in the new year, though fraud and other risks should still be on their radar.
-
PremiumResearch project leveraging collaboration to better detect corruption
Integrity Distributed has launched a collaborative research project seeking to develop anti-corruption detection technology that includes academic, technological, and corporate partners.
-
News BriefGoodRx facing $1.5M fine over improper sharing of health data
GoodRx agreed to pay $1.5 million as part of a settlement reached with the Federal Trade Commission addressing allegations the telemedicine and prescription drug discount provider shared personal health data with third parties for advertising purposes.
-
Resourcee-Book: TPRM: No one-size-fits-all approach
Companies can’t do it all in terms of managing every risk from every possible third party. To begin, they must define their vision and strategy.
-
WebcastCPE Webcast: TPRM - ESG compliance and German Supply Chain Act
Increasing compliance requirements, including from the German Supply Chain Act, pending Securities and Exchange Commission guidelines, and European Union directives, require a programmatic approach to managing third-party and supply chain risk.
-
News BriefBanks fooled in DOJ Russian yacht sanctions evasion case
The Department of Justice’s charges against a U.K. businessman and his Russian partner for evading U.S. sanctions against a Russian oligarch provide insight into how the use of shell companies, third parties, and other methods can thwart the compliance efforts of financial institutions.
-
PremiumGood faith not good enough in navigating global supply chain laws
Differences in the level of duty of vigilance among supply chain legislation in countries including the United States, United Kingdom, and Germany mean best efforts to root out and stop slave labor and other worker exploitation are not enough, according to experts.
-
OpinionTen things I’d like to see happen in 2023 (2022 in review)
Expect big developments for the compliance profession in 2022 to continue to take center stage in the year ahead, including CCO certifications, climate-related disclosures, and more.
-
ArticleMeta to pay $725M to settle privacy class-action lawsuit
Meta, the parent company of Facebook, agreed to pay $725 million to settle a class-action lawsuit accusing the social media giant of selling data to third parties without users’ consent.
-
PremiumTPRM panel: Underscoring need for first line of defense to own risk
Panelists discussing risk ownership at CW’s virtual TPRM and Oversight Summit share their experiences educating first-line leaders on their roles and responsibilities in the TPRM process.
-
PremiumTPRM due diligence best practices: No one-size-fits-all approach
Panelists at CW’s virtual TPRM and Oversight Summit stressed patience in developing proper risk management and due diligence practices, advising companies to find their “north star.”
-
WebcastCPE Webcast: 10 best practices for streamlining your TPRM workflows
Time is a valuable resource, especially when trying to manage a third-party risk program at scale. Hundreds of third parties to manage, hundreds of assessments to send, thousands of risks to analyze—how do you keep up?
-
PremiumCompliance budgets, staffing brace for impact of recession prep efforts
Respondents to our “Inside the Mind of the CCO” survey whose businesses are anticipating an economic recession note smaller budgets and the delay of new initiatives among efforts already undertaken to cut costs.
-
PremiumTPRM Summit: How to successfully implement data analytics
A panel of experts at CW’s virtual TPRM and Oversight Summit offered a how-to primer on using data analytics to monitor third-party risk while also highlighting some caveats to implementation.