Brockmeyer at TPRM: Regulator expectations for monitoring third parties
Former chief of the SEC’s FCPA Unit Kara Brockmeyer shared what regulators are looking for when they assess a company’s relationship with its third parties at Compliance Week’s TPRM virtual conference Thursday.
CPE Webcast: Expert content + third-party risk = enhanced vendor due diligence
Maintaining the status quo with your vendor risk management program is no longer acceptable in today’s ever-changing marketplace as supply chains can drastically change overnight.
CPE Webcast: Debunking myths of AI & ML in TPRM technology
This webinar debunks the myths of AI and ML in third-party risk technology and drills into reality with a pragmatic application of how your data can be harnessed to support various risk management use cases.
Best practices KYC: What to do when your client is in the headlines
How do we, as AML professionals, assess negative media alerts? It should start with a conversation with the client relationship manager, but it shouldn’t end there, writes Martin Woods.
Q&A with Kara Brockmeyer: How pandemic has impacted third-party risk
In advance of her keynote at Compliance Week’s upcoming TPRM virtual event (Sept. 17-18), former SEC official Kara Brockmeyer discussed with CW the heightened risk third parties have during a pandemic and what companies can do about it.
John Carreyrou at TPRM: How to spot a wolf in Steve Jobs’ clothing
John Carreyrou, the Wall Street Journal reporter who exposed Theranos and its founder Elizabeth Holmes as frauds, will be the keynote speaker on Day 2 of Compliance Week’s TPRM virtual conference Sept. 18.
CPE Webcast: Compliance in the age of cloud
Running a business “in the cloud” was once reserved for innovators and large enterprises, but now nearly every business on the internet is operating in the cloud.
CPE Webcast: Third party risk management: Are programs up to scratch?
This webinar will discuss the results of the Compliance Week and Aravo TPRM benchmarking survey in the context of the DOJ’s Evaluation of Corporate Compliance Programs.
CPE Webcast: Managing third-party risk during and after a pandemic
As new insights are continually evolving, organizations around the world are trying to plan and develop their strategies for returning to the new “normal.”
Advice for compliance from new DOJ Criminal Division head
Acting Justice Department Criminal Division head Brian Rabbitt shares his perspective on recent updates to the Evaluation of Corporate Compliance Programs guidance, the FCPA Resource Guide, and more.
CPE Webcast: Rethinking third-party due diligence to minimize supply chain risk
Businesses are rethinking their strategies to maintain operations, minimize supply chain disruption, and manage heightened exposure to financial, legal, regulatory, or reputational risks.
Nothing more important than knowing your risk exposure
In performing due diligence on your supply chain partners, do not be intimidated into accepting no for an answer. Being blind to potential risks is bound to get you into trouble, writes financial crime expert Martin Woods.
CPE Webcast: A new approach to vendor risk & performance monitoring
Your vendors often handle your most sensitive data. This presents significant challenges as security, procurement, sourcing, IT, and privacy teams struggle to vet and manage vendor risks and performance in real time.
CPE Webcast: TPRM: Best practices for an efficient program
While there is no one right third-party risk management program, there is a model right for you, and incorporating best practices into your processes can have an exponential effect on your results.
CPE Webcast: TPRM; What keeps you up at night?
Do risks from your third-party ecosystem keep you up at night, especially during these trying times? How have third-party risks changed over the years, but especially lately, considering the current crisis?
CPE Webcast: Calculating COVID-19 third-party privacy risks
COVID-19 has completely changed the way organizations do business, both internally and externally. The influx of sensitive data being collected makes proactively identifying and managing privacy risk a big challenge.
Coronavirus has made CW2020 a (virtual) gathering like no other
The coronavirus pandemic has made getting together for our annual National Conference impossible, but it’s also made this virtual gathering (Monday and Tuesday) perhaps the most important one we’ve ever had.
Driving innovation in supply-chain practices post-pandemic
A number of forward-thinking companies are using the coronavirus pandemic as an opportunity to drive promising innovations in their global supply chains.
CPE Webcast: Integrating TPRM into sourcing and procurement functions
Traditionally, third-party risk management has focused on procurement, executing contracts, managing relationships, and conducting quarterly business reviews. These measures are no longer enough.
CPE Webcast: 10 steps to improving business resilience with TPRM
Third-party risk management is more important now than ever. And while compliance is a critical component, recent market turbulence has organizations prioritizing business continuity, financial due diligence, and business resilience.
Current cyber-environment calls for proactive approach
The conventional wisdom on cyber-security is to play defense and respond quickly to breaches. But these are not normal times, and proper cyber-hygiene is more important than ever.
M&A due diligence landscape forever altered by coronavirus pandemic
The coronavirus pandemic has affected both the risk landscape and the diligence protocols for merger and acquisition transactions at every stage of the game. But while deal terms may be negotiable, what should be non-negotiable is the compliance function’s role in M&A transactions.
Third parties & coronavirus: Advice for traversing web of interconnected risks
The coronavirus pandemic has created a sea of red flags in every company’s supply chain. When each alert indicates a possible disruption, which ones do you act on?
CPE Webcast: COVID-19: Responding to cascading risk
Pandemics represent a unique disaster risk scenario as a result of “cascading risk,” which poses an immense challenge to risk leaders due to progressive failures that will result in the deterioration of the health of third parties and supply chains.
CPE Webcast: Mapping your TPRM program’s maturity
This Webinar is intended for anyone looking to build a TPRM program from scratch or for advancing your current program to a more mature state.
First round of finalists named for Excellence in Compliance Awards
Compliance Week has pared down its list of more than 300 nominees for its first annual Excellence in Compliance Awards and is pleased to announce the finalists for nine of the 15 categories.
5 tips to immunize yourself against coronavirus-emboldened hackers
In this time of fear and uncertainty, it’s more critical than ever to practice good cyber-security hygiene (just think of it as the technical version of proper handwashing).
Coronavirus: Tips for risk management
As the coronavirus worldwide pandemic spreads, the ramifications for any business has gone from temporary disruption to a serious impediment. Here are 10 steps your company can take to mitigate its risks.
Compliance best practices for ever-evolving Iran sanctions
A new executive order issued in January places additional sanctions on a much broader portion of Iran’s economy and, from a compliance and risk management standpoint, puts a broader range of companies in the crosshairs of U.S. enforcement.
GoodRx’s mea culpa: Lessons for internet companies handling personal health data
Telemedicine platform GoodRx has committed to enhancements of its consumer data protection after Consumer Reports called out its sharing practices regarding personal health information.
Q&A: Clearing up confusion with OFAC’s 50 Percent rule
Compliance Week spoke with Tiffany Archer, regional ethics and compliance officer and corporate counsel at Panasonic Avionics Corporation, on demystifying OFAC’s 50 Percent rule.
Compliance lessons from Cardinal Health’s FCPA settlement
Cardinal Health reached an $8.8 million settlement with the SEC for violations of the FCPA concerning the operations of its former Chinese subsidiary. For prudent compliance officers, it’s a tale of how not to do business in China.
White paper: Achieving Compliance with TPRM Regulatory and Framework Requirements
Measuring compliance against third-party risk management requirements is complex and time consuming; and with growing numbers of data breaches originating with third parties and all the regulatory activity that comes as a result, it never lets up.
Disruptions caused by coronavirus affecting global supply chain
The burgeoning coronavirus outbreak not only sent markets crashing on Monday, it also put a spotlight on companies whose supply chains have been severely disrupted by the ongoing crisis.
Airbus contractors feeling ripple effect from record fine
Airbus is free to go about its business after paying a record fine to three anti-corruption agencies for widespread bribery, but the trouble is only beginning for some of its implicated contractors.
Confronting ‘willful intent’ in third-party corruption cases
Even as companies continue to agree to multi-billion-dollar settlements related to the corrupt acts of third parties, managing the risks associated with them nevertheless eludes many compliance departments.
First four ‘Excellence in Compliance Awards’ finalists revealed
Compliance Week is proud to announce its first four finalists for the “Excellence in Compliance Awards,” a newly formed program that recognizes individual achievement in one of 13 categories relating to risk and compliance.
White paper: Six Steps to Complete Third-Party Risk Management
Ensuring compliance with third-party risk management (TPRM) regulatory and cyber security requirements means having the right combination of processes and controls in place, and that you can efficiently demonstrate these processes and controls to auditors.
Survey: CCPA still poses compliance nightmare
With the clock ticking toward the Jan. 1 implementation date, Compliance Week and ACA Aponix asked 100 compliance practitioners whether their company would be CCPA compliant by the deadline. Their collective answer? Nope.
Ask Amii mailbag: TPRM from a third-party perspective
The latest edition of the Ask Amii mailbag analyzes a case of a third party’s recommendation being ignored and offers tips on when it’s the right time to change career paths.
Webcast: Meeting the expectations of the board
This webinar presents the results of a recent industry survey on Board oversight of third-party risk. In an environment of increased business risks, close to half (43 percent) of surveyed practitioners claimed that their board doesn’t have a good handle on third-party risk! Together with a dive into the results, ...
Wells Fargo’s new TPRM head looked to Theranos for lessons
At CW’s Third-Party Risk Management and Oversight Summit, the head of Wells Fargo’s global TPRM group took a few pages out of biotech startup Theranos’ book to shed light on what not to do when building a risk culture.
Former FCPA chief’s 7 steps to third-party compliance
Speaking at CW’s Third-Party Risk Management and Oversight Summit, former FCPA Unit chief Kara Brockmeyer called attention to recent enforcement actions against Walmart and Ericsson as a way to highlight seven steps to third-party compliance.
Webcast: How to make TPRM less painful
Today, it’s imperative for companies to manage third-party risk as part of a comprehensive compliance program to protect their brand and avoid exposure to bribery and corruption.
Drowning in third-party risk? Let us throw you a life jacket
You need help managing your third parties, and over the course of two days in San Francisco, we hope to help you find the answers to the questions that keep TPRM stakeholders up at night.
Guide for practitioners: How to effectively monitor anti-corruption compliance
In a guest column for CW, Uber’s senior counsel for global compliance helps to outline a best-in-class compliance monitoring program.
Webcast: Transform compliance into a business enabler
From bribery and corruption to emerging ESG and reputational risks, corporate compliance functions are expected to protect their business from regulatory liability without slowing the pace of business. This is despite often having fewer resources to manage ever-increasing amounts of third parties and data.
Introducing ‘The Excellence in Compliance Awards’
Compliance Week is making some changes to its annual awards for 2020, evolving the “Top Minds” recognition into a full-blown, specifically targeted awards program dubbed “The Excellence in Compliance Awards.”
White paper: Vendor Risk: Find It Before It Finds You
It is virtually impossible to move forward in business without vendor relationships, but having vendors also means having potential risk.
TPRM Summit preview: How to ensure you’re prepared when disaster strikes
In a preview of their upcoming session at Compliance Week’s Third-Party Risk Management & Oversight Summit, two experts share best practices on how to ”Earthquake-Proof Your Organization.”