Risk Management


Compliance pioneer defines the future path of profession


Compliance functions of the future need to better use data, measure outcomes, and deal with differing views on what constitutes good ethics, says expert Hui Chen.


A new CCO’s Herculean task at Wells Fargo


Compliance Week chats with Wells Fargo CCO Mike Roemer about the challenge of rebuilding trust at a company that’s been the poster child of compliance and risk management gone wrong.


Inside Wells Fargo’s plan to restore trust


Compliance Week looks at highlights from Wells Fargo’s plan to transform the future.

consilio infographic

Companies Look to Combat Corporate Misconduct

2019-05-15T17:22:00+01:00Provided by

As corporate misconduct, such as sexual harassment and discrimination, continue to make headlines, companies are becoming increasingly focused on detecting “bad behaviors” so they can be appropriately managed.


FinCEN elaborates on virtual currency risk, obligations


SARs and due diligence are cited as effective tools for avoiding virtual currency malfeasance, says the Financial Crimes Enforcement Network.


BHP faces $5B claim over 2015 Brazilian dam collapse


Mining company BHP is facing a $5 billion damages action in the United Kingdom for its alleged negligence in its duty to prevent the Fundão dam collapse in Brazil in 2015.


Best Practices for Managing Risk in the Age of Digital Transformation

2019-05-07T15:30:00+01:00Provided by

Webcast details: June 6, 2019 – 2 p.m. ET   |  CPE Credit(s): 1


Top 10 supply chain risks for 2019


Natural disasters, droughts, port disruptions, cargo theft, and industrial fires are some of the top supply-chain risks that should keep executives and chief risk officers on their toes in 2019, according to a new risk report.

wolters kluwer 300x200

How Audit and ERM Work Together, A Combined Assurance Approach

2019-05-02T19:42:00+01:00Provided by

Internal audit is a profession that provides assurance that objectives are being met for the organizations that it serves. However, it is not the only assurance provider performing audits and requesting information and often organizations are fatigued by different departments requesting the same information and reporting the same results. Enterprise ...

Onspring The Right moves

The Right Moves: The Evolution of Approach in Risk Management

2019-04-26T21:38:00+01:00Provided by

The concept of risk management—what it is and consists of—is something that is often misunderstood or misinterpreted.


Options drive more risk than stock, study says


Company executives may be more likely to take on risk when their compensation is based more on stock options than stock awards, a new study says.


OCIE issues risk alert on Regulation S-P


The SEC’s Office of Compliance Inspections and Examinations has issued a risk alert on Regulation S-P describing the most common deficiencies it has uncovered in recent examinations of both registered investment advisers and broker-dealers.


Best practices for managing employee reports


A recent report from NAVEX Global offers a look at how the performance of ethics and compliance officers’ hotline and incident management systems stack up against their peers.


Third-Party Risk: Best Practices for Due Diligence and Ongoing Assessments

2019-04-18T14:00:00+01:00Provided by

The ever-changing regulatory landscape and sheer volume of third parties requires organizations to rethink their processes around pre-contract due diligence and ongoing vendor assessment reviews. Today’s most successful programs rely less on tedious, manual processes while incorporating verified, up-to-date information on financial status, watchlist compliance and information security from trusted ...


Marcel de Chermont: ‘no person left behind’


Marcel de Chermont, founder and principal of Caledonia Consulting, Inc., discusses with columnist Tom Fox how to tailor a risk-based compliance program to different groups of employees while getting the same message across.


We’ll show you how to demystify data analytics for compliance

2019-04-15T16:30:00+01:00By Charles Bame-Aldred and William Goldman

At this Compliance Week 2019 session, HUB professionals discuss ways to improve the data analytics component of the compliance function with relevant training on data execution and risk detection.


Fed seeks comments on framework for foreign banks


The Federal Reserve Board is seeking public comments on a regulatory framework that would more closely match the rules for foreign banks with the risks they pose to the U.S. financial system.

CSIWeb April cover

Fueling Modern Risk Mitigation with APIs: A Quintessential Guide to Watch List Screening

2019-04-09T19:10:00+01:00Provided by

As technology becomes more sophisticated and influences how organizations conduct business, the need for efficient watch list screening increases exponentially.


Special committee report details governance reforms needed at Nissan


Last year, Japanese automaker Nissan formed a “Special Committee for Improving Governance” after its chairman Carlos Ghosn was arrested for engaging in financial misconduct. On March 27, the special committee published its findings, holding nothing back.

columnist icons

Guarding the gatekeeper


Gatekeepers who have firsthand knowledge of corporate wrongdoing should be entitled to the same legal protections afforded to any other whistleblower.


Anatomy of a cryptocurrency pyramid scheme


Much has been discussed about the business risks posed by cryptocurrency. Now, risk and compliance professionals have a real-life cryptocurrency pyramid scheme with which to cite.

Onfido How to Detect cover img

How to Detect the 7 Types of Document and Identity Fraud

2019-03-27T18:46:00+00:00Provided by

Forgeries. Imposters. Counterfeit documents. You can’t afford to let fake identities slip through the cracks and put your company—and your customers—at risk.


Nokia discloses Alcatel-Lucent compliance issues


Following its 2016 acquisition of Paris-based telecommunications company Alcatel-Lucent, Nokia disclosed in a filing with the Securities and Exchange Commission that it has “been made aware of certain practices relating to compliance issues at the former Alcatel-Lucent business that have raised concerns.”


Regulators’ top risk cop assailed by reform-bent critics


The Financial Stability Oversight Council was created to expose and mitigate systemic risks to the U.S. financial system. Its critics are winning the long-simmering battle to redefine its efforts.

halock 300x200

The Questions a Judge Will Ask You After a Data Breach

2019-03-21T14:00:00+00:00Provided by Halock

If you are breached and your case goes to litigation, you will likely be asked to demonstrate “due care” and that your controls were “reasonable.” Many are surprised to learn that a breach by itself does not constitute negligence in most cases. But judges will ask a set of questions ...


Anatomy of a college cheating scandal, and the resolve to fix it


In response to the nationwide college admissions scandal, victimized universities are speaking out and sharing the steps they’ve taken to stop similar behavior from happening in the future.


Predictive Compliance: Finding Your Blind Spots

2019-03-19T14:00:00+00:00Provided by

As a compliance leader, uncovering risks can often feel like staring at a page from a Where’s Waldo? book…a sea of potential candidates, but the actual character can be hard to spot (often by design). In the modern day reality, uncovering risk doesn’t have to be like this

blackline 300x200

Upping Your Compliance Game

2019-03-14T14:00:00+00:00Provided by

Despite increasing rules and regulations, the risk of fraud looms large. That’s why Scientific Games, a leader in the gaming and lottery industries, is not one to gamble with compliance and controls. As an advanced user of BlackLine Task Management, they had exhausted the product’s limits.


FBI creates new International Corruption Squad in Miami


Citing the success of its three other international corruption squads operating around the country, the Federal Bureau of Investigation has announced the creation of a fourth dedicated international corruption squad, this one based in its Miami Field Office.


Internal audit still vexed by data, third-party risks


Internal audit is making strides in steering its focus and resources toward companies’ emerging risks—but there’s still some work to be done, the IIA says.


Understanding NIST’s new Risk Management Framework


NIST’s new Risk Management Framework—used with the agency’s Cybersecurity Framework—offers companies direction in integrating cyber-security, privacy, and supply-chain risk management.


A region-by-region look at corruption risk


Most regions around the world are making little effort in their fight against corruption—and the United States is no exception—according to Transparency International’s newly released 2018 Corruption Perceptions Index.


Deloitte: financial institutions reengineer risk management


Financial institutions are beginning new efforts to reengineer their risk management programs and tap into emerging technologies, according to a survey conducted by Deloitte Global.


Q&A: A view of bank risk from the battlefield


Compliance Week talked with Stuart Brock, director of Seal Software, about the risks faced by banks—not the least of which is third-party due diligence.


Banks less anxious about risk, but should they be?


Wolters Kluwer’s “Regulatory & Risk Management Indicator” says two-thirds of financial institution executives continue to describe high levels of compliance-related regulatory risk, even if their level of anxiety over those risks has decreased.


Shutdown starts to pose new risks for businesses


The longest government shutdown in U.S. history is increasingly a catalyst for new risks and tough choices for corporations.


Special report: Third-party risk management


Compliance officers and chief risk officers of multinational companies are well-aware of the myriad risks that third parties pose in day-to-day operations.


Study: Blowing the whistle won’t harm the bottom line


A new study from NAVEX Global reveals whistleblower hotlines don’t often prove detrimental to business outcomes.


Top 10 risks that will keep executives on their toes in 2019


A recent survey conducted by global consulting firm Protiviti and North Carolina State University’s Enterprise Risk Management Initiative reveals the top 10 risks facing board of directors and executive management teams in 2019.


Why continuous monitoring is crucial for TPRM


Three cautionary tales demonstrate the potential trouble a company can find itself in when third parties are not actively monitored.


Best practices in preventing a third-party data breach


Examining how “high-performing” organizations handle their third parties lights the path for companies looking to strengthen the weakest links in their data chains.

Robert Seibel

Q&A: Five questions with a TPRM specialist

2019-01-07T14:49:00+00:00By Compliance Week

Abercrombie & Fitch Senior Compliance Counsel Rob Seibel, a specialist when it comes to the implementation of a third-party risk management program, discusses trends and challenges around managing risks with third parties.


The risks of outsourcing compliance


Using external firms and consultants can bolster the effectiveness of certain compliance functions. Abdicating too much responsibility, however, could draw the ire of regulators.


How to break up with a third party the right way


Not all business relationships have a happy-ever-after ending, but there are things both parties can do to mitigate the risks of a third-party breakup.


Special report: Third-party risk management


As firms increasingly turn to external partners, the risks they acquire can become an internal problem.


As tensions grow, so do China-related compliance risks


Tariffs, trade secrets, and arrests fuel high-risk scenarios for companies that do business with organizations in China.

Operational resiliency today

2018-12-13T11:45:00+00:00By Michael Rasmussen

This latest installment of the CW/OCEG GRC Illustrated Series provides readers with details on how to implement a strategic approach to operational risk strategy coupled with an integrated information and technology architecture.


Baker Hughes’ Jay Martin on regional compliance coverage


Jay Martin, the associate general counsel and chief compliance officer at Baker Hughes, discusses the positive effect regionalized compliance coverage has had at the worldwide company.


New Fed risk report finds corporate debt concerns, Brexit fallout


On Nov. 28, the Federal Reserve’s Board of Governors released its first-ever Financial Stability Report. Among the risks: increasing levels of corporate leverage and international instability.


Navigating the uncharted waters of geopolitical risk

2018-11-26T14:15:00+00:00Provided by

From sanctions to tariffs, the United States is increasingly a source of geopolitical risk, further making compliance issues under the current U.S. administration a nightmare for sanctions compliance professionals not just in the United States, but also in the United Kingdom, Europe, Canada, Mexico, and beyond.