Surveys & Benchmarking


Bank confusion

Experts: Fraud risks heightened amid banking turmoil

2023-03-23T00:21:00+00:00By

The stunning, rapid collapse of Silicon Valley Bank, fueled in its final days by droves of panicked depositors seeking funds, likely added to the chaos within the bank and ratcheted up the risk of fraud, according to legal experts.

Business agreement

Five tips to secure your first role in compliance

2023-03-20T15:00:00+00:00By Judith Hawkins, International Compliance Association

Are you interested in taking that first step into a compliance career but aren’t sure where to start? Consider the following suggestions.

Bribery

​TRACE enforcement report highlights anti-bribery trends from 2022

2023-03-16T15:11:00+00:00By

The United States broke from a three-year downturn in bribery-related enforcement actions, while Brazil continued its emergence in the space, according to the results of the latest annual Global Enforcement Report by nonprofit TRACE.

DOJ wall

Experts: DOJ clawback pilot to be ‘work in progress’

2023-03-16T13:58:00+00:00By

Businesses and compliance professionals should expect the Department of Justice’s new compensation clawback policies to be applied on a case-by-case basis, with broad discretion, according to legal experts.

ESG money

Accounting and reporting challenges of environmental credits

2023-03-15T15:26:00+00:00By

Companies are working on plans to reduce their carbon emissions. The popularity of environmental credits has grown as a way for companies to meet their emission reduction targets.

McDonalds

​Experts: Delaware court McDonald’s ruling lowers bar on officer liability

2023-03-10T13:30:00+00:00By

The fiduciary duty of oversight that historically has applied only to directors “applies equally to officers,” including CCOs, the Delaware Court of Chancery explicitly held in its ruling regarding former McDonald’s Chief People Officer David Fairhurst.

Brasseur_opinion

Ten things I’m excited for at CW National 2023

2023-03-09T13:00:00+00:00By

Ten weeks before Compliance Week National 2023 kicks off May 15 at the JW Marriott in Washington, D.C, CW Editor in Chief Kyle Brasseur shares what he’s looking forward to most at the annual event.

Google HQ

​Google, Uber CCOs share approaches to data analytics

2023-03-07T13:30:00+00:00By

The chief compliance officers of Google and Uber offer insight into how their data analytics compliance programs have evolved amid enhanced scrutiny on use of technology from the Department of Justice.

DOJ building

DOJ sets new compliance criteria for criminal investigations

2023-03-03T19:43:00+00:00By

The Department of Justice announced changes to its evaluation procedures for corporate compliance programs in criminal investigations, including monitoring off-channel messaging by employees, executive compensation programs, and how the agency selects compliance monitors.

ask cco 3x2 20235

Ask a CCO: What matters most in federal privacy law?

2023-03-03T14:00:00+00:00By Compliance Week

Four senior compliance practitioners provide their opinions on what a federal privacy law in the United States should strive to accomplish.

DOJ

DOJ to implement new clawback, compensation policies for corporate settlements

2023-03-02T22:08:00+00:00By

Corporate resolutions involving the Department of Justice’s Criminal Division will now include a requirement the resolving company develop compliance-promoting criteria within its compensation and bonus system, according to Deputy Attorney General Lisa Monaco.

ask cco 3x2 20234

Ask a CCO: Most difficult element of data privacy compliance

2023-03-02T14:00:00+00:00By Compliance Week

Four senior compliance practitioners offer their take on the elements of data privacy compliance businesses can expect to be most difficult to confront.

ask cco 3x2 20233

Ask a CCO: Company investment in data privacy efforts

2023-03-01T14:00:00+00:00By Compliance Week

Four senior compliance practitioners discuss how their respective companies invest in compliance with varying data privacy requirements.

California

California ‘setting the tone’ for privacy push with CPRA updates

2023-03-01T14:00:00+00:00By

Changes to the California Consumer Privacy Act set to come over the course of 2023 strengthen the nation’s first comprehensive state privacy law to a benchmark no other states have yet to equal.

ask cco 3x2 20232

Ask a CCO: Roles in data privacy compliance efforts

2023-02-28T14:00:00+00:00By Compliance Week

Four senior compliance practitioners share their roles in ensuring data privacy compliance at their respective companies and the other departments that support their efforts.

ask cco 3x2 2023

Ask a CCO: Plan for complying with varied U.S. privacy laws

2023-02-27T14:00:00+00:00By Compliance Week

Four senior compliance practitioners detail steps their respective companies are taking to confront the expanding U.S. data privacy legislation landscape.

U.S. privacy

Best practices for navigating changing U.S. data privacy landscape

2023-02-27T14:00:00+00:00By

With five new or amended state laws set to hit the books in 2023, companies would be wise to ensure their data privacy compliance house is in order—and start preparing for the next wave of legislation.

Cloud data

Cloud ‘not a silver bullet’ for security

2023-02-24T21:33:00+00:00By

A panel of cyber experts and a chief compliance officer in financial services discussed the business risks, threat vectors, and vendor ‘gotchas’ associated with transitioning to a cloud provider at CW’s virtual Cyber Risk & Data Privacy Summit.

United States cyber

‘This is where we are now’: Cyber environment calls for continuous monitoring

2023-02-24T20:10:00+00:00By

Securing your organization’s private data when vendors have access to it means managing relationships from beginning to end, panelists at CW’s virtual Cyber Risk and Data Privacy Summit agreed.

Brasseur_opinion

Lessons in cybersecurity: Control the breach narrative

2023-02-23T18:36:00+00:00By

Recent botched data breach responses at Activision Blizzard and GoDaddy prompt timely consideration of communication best practices shared by cybersecurity experts at CW’s virtual Cyber Risk & Data Privacy Summit.

chatgpt_web

ChatGPT comes with compliance caveats, experts warn

2023-02-23T17:10:00+00:00By

There are downsides to every new technology, and artificial intelligence and machine learning are no exception. Experts discussed the importance for compliance professionals to understand the risks of such tools at CW’s virtual Cyber Risk & Data Privacy Summit.

DNB 300x200

CPE Webcast: Managing third-party risk in 2023: Trends and best practices

2023-02-23T14:00:00+00:00Provided by

In a recent survey by Dun & Bradstreet and Compliance Week, more than half of respondents indicated they had increased vendor/third-party due diligence efforts as a result of global disruption and instability.

European Commission

EU handbook touts diverse practices for combating corruption

2023-02-22T14:59:00+00:00By

The European Commission published a collection of best practices from each European Union member state that companies and compliance officers might find useful to combat corruption.

Health data

HHS reports: Compliance reviews, health data breaches up

2023-02-21T22:18:00+00:00By

The number of compliance reviews by the Department of Health and Human Services of health organizations increased between 2017 and 2021, according to the agency’s latest reports to Congress.

Pillars

Cybersecurity pillars: Prevention, protection, mitigation, governance

2023-02-21T19:27:00+00:00By

The former superintendent of the New York State Department of Financial Services explained how the structure of a cybersecurity program is like a compliance program and can be divided into four buckets during a panel discussion at CW’s Cyber Risk & Data Privacy Summit.

McDevitt_opinion

Book review: Why revamping procurement benefits business—and compliance

2023-02-16T16:00:00+00:00By

In “Profit from the Source,” four Boston Consulting Group thought leaders argue why procurement should be shaping corporate strategy, not just supporting it. Author Daniel Weise tells Compliance Week why such a transformation would elevate compliance, too.

Allan Friedman 2 Cyber Risk 2023

CISA strategist: What is an SBOM and why it matters to compliance

2023-02-15T21:02:00+00:00By

Cyberattacks on software are increasing, and the best chance organizations have of protecting themselves is to know about potential vulnerabilities through a software bill of materials, CISA Strategist Allan Friedman shared at CW’s virtual Cyber Risk & Data Privacy Summit.

Priorities

Survey: Cybersecurity, regulatory risks lead TPRM priorities in 2023

2023-02-10T14:00:00+00:00By

Respondents to a survey from Compliance Week and Dun & Bradstreet overwhelmingly indicated cybersecurity to be the most important compliance-related area affecting third-party risk management in the new year, though fraud and other risks should still be on their radar.

dnb thumbnail

e-Book: Top TPRM priorities in 2023

2023-02-09T02:52:00+00:00Provided by

Respondents to a survey from Compliance Week and Dun & Bradstreet overwhelmingly indicated cybersecurity to be the most important compliance-related area affecting third-party risk management in the new year, though fraud and other risks should still be on their radar.

DOJ wall

False Claims Act settlements net lower return in FY2022

2023-02-08T22:01:00+00:00By

Penalties assessed for violations of the False Claims Act topped $2.2 billion during fiscal year 2022, less than half the mark the Department of Justice reached the previous year.

SECcrop

SEC exam report highlights Marketing Rule, Reg BI, private fund advisers

2023-02-08T21:13:00+00:00By

The Securities and Exchange Commission’s 2023 examination priorities report laid out areas under the microscope this year, including compliance with the agency’s Marketing Rule and Regulation Best Interest.

Treasury Department

Treasury report flags benefits, drawbacks to use of cloud services

2023-02-08T20:48:00+00:00By

The Treasury Department issued a report regarding the benefits and challenges associated with the use of cloud service providers by financial sector firms, finding shortcomings related to transparency, staff support, and cybersecurity incident response.

Cybersecurity

Cybersecurity challenges: Defense and disclosure

2023-02-07T17:52:00+00:00By

Experts share perspectives regarding the criticality of cybersecurity risks, what the response of management and boards should be, and how proposed disclosure requirements need to be incorporated into cyber-related responsibilities.

Spinning globe

TI 2022 Corruption Perceptions Index shows ‘scant progress’

2023-02-03T17:10:00+00:00By

Around the world, countries attempting to address their corruption issues are not making much progress, while countries failing to address corruption are worsening the problem, according to Transparency International’s latest Corruption Perceptions Index.

Best Buy store

Learning from Wells Fargo: How Best Buy launched its enterprise risk and compliance function

2023-02-02T13:00:00+00:00By

Todd Hartman, general counsel and chief risk officer of Best Buy, shares the catalyst behind revamping the retailer’s second line of defense and the lasting benefits of separating compliance from legal.

Business defense

Ethical culture strengthened by 2022 challenges, survey finds

2023-02-01T19:21:00+00:00By

LRN’s annual ethics and compliance benchmarking report found most respondents—85 percent—said their company’s ethical culture has been strengthened, not weakened, in facing the Covid-19 pandemic, Russia’s war in Ukraine, supply chain disruptions, and more.

Ransomware

Study: Healthcare overtakes finance as most breached industry in 2022

2023-01-31T21:06:00+00:00By

Healthcare organizations were under attack more than ever by cybercriminals in 2022, overtaking finance as the most breached industry, according to the latest analysis from Kroll.

Auditinspection

PCAOB inspections: SPACs lend to Marcum struggles

2023-01-27T16:11:00+00:00By

The Public Company Accounting Oversight Board’s latest batch of 2021 audit inspection reports included a setback in results for Marcum largely related to the firm’s work dealing with special purpose acquisition companies.

Scott Hulsey

Q&A: Ex-DOJ official on policy changes, new CCO expectations

2023-01-26T17:01:00+00:00By

Scott Hulsey, partner at Barnes & Thornburg, former federal prosecutor, and a former chief compliance officer, discusses with Compliance Week how CCOs should respond to the Department of Justice’s recent policy changes regarding corporate crime.

Audit

Report: Audit committees bracing for increased role in ESG, ERM, cyber

2023-01-24T21:07:00+00:00By

A new report from the Center for Audit Quality and Deloitte found corporate boards are taking a fresh look at their audit committee structures and practices to respond to emerging corporate reporting areas and increased risks.

Forced labor hands

Good faith not good enough in navigating global supply chain laws

2023-01-23T19:24:00+00:00By

Differences in the level of duty of vigilance among supply chain legislation in countries including the United States, United Kingdom, and Germany mean best efforts to root out and stop slave labor and other worker exploitation are not enough, according to experts.

Sustainability measures

Climate and sustainability reporting challenges: Auditors’ perspectives

2023-01-19T17:10:00+00:00By

Partners from several of the top global accounting firms shared perspectives about the state of sustainability reporting and the impact on auditors and their clients at a recent industry event.

avetta thumbnail

e-Book: ‘Inside the Mind of the CCO’ on the 2022-23 compliance landscape

2023-01-17T03:28:00+00:00Provided by Avetta

Twenty years removed from the passage of the Sarbanes-Oxley Act, compliance has established itself as a key component of the global business landscape. And yet, 2022 brought new priorities to the fore for many in the profession.

FINRA New York

FINRA focuses on financial crime in annual exam report

2023-01-11T16:18:00+00:00By

The Financial Industry Regulatory Authority’s annual report on examinations and risk monitoring indicated a new emphasis for the regulator on combating financial crime, particularly cybercrime.

Bribe

U.S. bribery risk landscape in 2023: TRACE Matrix, Corruption Risk Forecast

2023-01-05T17:50:00+00:00By

Analyzing the results of two recent reports offers an understanding of the U.S. landscape around anti-bribery efforts entering 2023 and where elevated risks might lie.

Brasseur_opinion

Ten things I’d like to see happen in 2023 (2022 in review)

2023-01-03T14:00:00+00:00By

Expect big developments for the compliance profession in 2022 to continue to take center stage in the year ahead, including CCO certifications, climate-related disclosures, and more.

PCAOB inspections 2021

PCAOB 2021 inspection reports: PwC sees best results again; EY deficiencies increase

2022-12-22T17:40:00+00:00By

For the second straight year, PwC fared the best among inspection results released by the Public Company Accounting Oversight Board for the largest U.S. audit firms, including each of the Big Four, Grant Thornton, and BDO.

Sanctions

Managing sanctions risk: Keys to successful implementation

2022-12-22T16:33:00+00:00By Holly Thomas-Wrightson, International Compliance Association

The International Compliance Association hosted a webinar looking at challenges faced by organizations regarding changes in the sanctions landscape in 2022. Holly Thomas-Wrightson offers a recap of the discussion.

Amii_opinion

Does ESG offer opportunity? Or is it just another area for compliance friction?

2022-12-16T13:00:00+00:00By

Compliance practitioners share their experiences navigating responsibilities related to environmental, social, and governance without stepping on the toes of other colleagues.

Business defense

TPRM panel: Underscoring need for first line of defense to own risk

2022-12-15T18:00:00+00:00By

Panelists discussing risk ownership at CW’s virtual TPRM and Oversight Summit share their experiences educating first-line leaders on their roles and responsibilities in the TPRM process.