Supply Chain


Ransomware

TPRM 2021: What to do before, during, and after a ransomware attack

2021-07-07T14:21:00+01:00By

Two risk and compliance practitioners opened their cyber-playbooks at CW’s TPRM virtual event, explaining how to identify and address vulnerabilities, establish transparency with vendors, and strengthen an organization’s incident management program.

AdobeStock_365368438_Editorial_Use_Only

Assessing yet another ransomware attack on critical supplier (JBS)

2021-06-02T18:50:00+01:00By

Meatpacker JBS USA has become the latest critical infrastructure company to be targeted by a ransomware attack, which temporarily halted its global operations. The attack brings with it implications for the food and agriculture industries.

Cloud supply chain

New NIST revisions expand scope of cyber supply chain risk management guidance

2021-05-20T18:04:00+01:00By

The National Institute of Standards and Technology is seeking comment on a revised version of its cyber supply chain risk management guidance that is intended for a broader audience of public and private companies.

cybergrx300x200

CPE Webcast: TPCRM best practices that reduce supply chain risk

2021-05-20T14:00:00+01:00Provided by

Organizations are adopting digital transformation and, as a result, increasing their reliance on third parties faster than they can scale their third-party cyber-risk management programs.

German parliament

German supply chain draft legislation expected to have far-reaching effect

2021-05-18T17:26:00+01:00By

Companies of a certain size with ties to Germany must soon establish robust due diligence procedures to prevent human rights and environmental abuses both within the course of their own business activities and within their global supply chains.

Justin Ross, CCO

Guiding FedEx through pandemic, Justin Ross named CCO of the Year

2021-05-11T16:00:00+01:00By

Companies across the globe faced a true test of competency this past year. FedEx passed the challenge with flying colors under the oversight of Justin Ross, CW’s CCO of the Year at the 2021 Excellence in Compliance Awards.

genpact300x200

CPE Webcast: Responsible sourcing: Mitigate ESG risks in your supply chain

2021-04-28T11:00:00+01:00Provided by

As customer expectations for transparency and ethical approach to business soar, companies that aren’t addressing the environmental, social and governance (ESG) impact of their organizations will get left behind. And that applies to who they work with too.

Suez Canal block

Bracing for impact: Supply chain risk management post-Suez Canal blockage

2021-04-27T15:25:00+01:00By

A month has gone by since a 1,300-foot cargo ship ran aground and blocked one of the busiest waterways in the world. For many industries, the ripple effects will continue to batter global supply chains for weeks to come, absent having in place a sound supply chain risk management program.

USTR

USTR threatens tariffs on 6 trade partners in response to digital taxes

2021-04-14T16:08:00+01:00By

The United States Trade Representative is seeking public comment on the potential implementation of tariffs of up to 25 percent on a long list of goods by six U.S. trading partners, including the United Kingdom.

Suez Canal

Suez Canal blockage serves as reminder for key supply chain risk lessons

2021-03-29T18:55:00+01:00By

The grounding of the Ever Given is the latest unexpected incident to cause severe supply chain disruptions around the world. The lessons learned from others, such as the coronavirus pandemic, are just as relevant, writes Aaron Nicodemus.

Northern Ireland

Northern Ireland turns up heat on modern slavery transparency

2021-02-19T20:18:00+00:00By

Northern Ireland Justice Minister Naomi Long has launched two consultation documents on measures to eradicate modern slavery from the supply chains of public- and commercial-sector organizations.

SolarWinds

SolarWinds hack turning into Pandora’s box of cyber-risk

2021-02-02T20:47:00+00:00By

The more we learn about the SolarWinds hack, the more troubled compliance officers should be by the scope and breadth of the risks their companies might have incurred.

Cloud supply chain

Learning from SolarWinds: Five steps to fortify your cloud supply chain

2020-12-30T20:24:00+00:00By

For most companies, supply chain risk management traditionally focuses on managing physical third-party risks. But what the SolarWinds cyber-attack revealed is the catastrophic havoc fourth and fifth parties can also wreak in the often-ignored cloud supply chain.

Coronavirus fails

Assessing 2020: Lessons learned for the financial crime landscape

2020-12-29T21:49:00+00:00By James Thomas, International Compliance Association

This year has been one most of us would like to forget. As we look toward 2021, nevertheless, it is worth considering lessons learned over the last 12 months and (where possible) drawing on any positives that have come to light regarding the financial crime landscape.

Walmart

Compliance called out in Walmart opioid lawsuit

2020-12-23T19:25:00+00:00By

The Department of Justice alleged many failures by Walmart’s compliance program in its 160-page lawsuit accusing the retailer of playing an active role in fueling the opioid epidemic.

Kara Brockmeyer

Brockmeyer at TPRM: Regulator expectations for monitoring third parties

2020-09-17T16:52:00+01:00By

Former chief of the SEC’s FCPA Unit Kara Brockmeyer shared what regulators are looking for when they assess a company’s relationship with its third parties at Compliance Week’s TPRM Virtual Summit on Thursday.

processunity300x200

CPE Webcast: Expert content + third-party risk = enhanced vendor due diligence

2020-09-10T14:00:00+01:00Provided by

Maintaining the status quo with your vendor risk management program is no longer acceptable in today’s ever-changing marketplace as supply chains can drastically change overnight.

Oreos

Mondelēz International latest to enhance tracing of palm oil sourcing

2020-09-04T16:58:00+01:00By

Mondelēz International has become among the latest consumer goods companies to tighten its sourcing requirements for palm oil, improving its traceability of suppliers. But recent analysis also finds the industry has a long way to go in its progress.

woods

Best practices KYC: What to do when your client is in the headlines

2020-09-02T15:50:00+01:00By

How do we, as AML professionals, assess negative media alerts? It should start with a conversation with the client relationship manager, but it shouldn’t end there, writes Martin Woods.

processunity300x200

CPE Webcast: Future-proof your global supply chain with data & analytics

2020-08-13T14:00:00+01:00Provided by

The COVID-19 pandemic has certainly changed the landscape of global risk, and many organizations are quickly adapting their third-party risk management processes as a result.