Featured

The stakes are getting higher for CROs and compliance officers. Brenda Boultwood of MetricStream details why it’s increasingly imperative that risk and compliance professionals work hand in hand to address ongoing risks and strengthen organizational GRC efforts. While risk and...

Lesley Maea suggests compliance today could take a cue from Marie Kondo in her Netflix hit, "Tidying Up." To remain safe and secure, use an intranet as a single source of truth. Yes, you read that right: an intranet. Put...

I had lunch yesterday with a friend, Steve Wiesner, who is the CEO of pelotonRPM, a unique company that provides online role play simulations for corporate training. We had worked in the financial services industry selling virtual data rooms, which...

Cybrary’s Joseph Perry shares the importance of corporate responsibility and how to navigate the operational and reputational challenges in response to a breach. The rise of data breaches is well-documented, with thousands taking place every year and at least two...

Whistleblower award programs had record-breaking years in 2018, with more than $243 million in award payouts. Attorneys Michael Filoromo and Zac Arbitman entreat compliance professionals to be among those stepping forward, as the law entitles them to rewards and protection...

About this time each year – when the SEC’s Office of Compliance Inspections and Examinations (OCIE) releases its annual Examination Priorities – we are reminded of how complex compliance can be for SEC-registered firms. As Duff & Phelps’ Chris Lombardy...

Evan Francen, CEO of FRSecure and Security Studio, makes the case for adopting a third-party information security risk management (TPISRM) program. He outlines how to get started and explains why the common excuses for ignoring the risks don’t hold water....

Sandra Erez waxes eloquent about milestones in the ongoing fight against sexual harassment and gender discrimination, covering cultural shifts, legislation and landmark Supreme Court cases. While we’ve made serious progress, there’s still work to be done, and training will play...

Are you paying employees for their decisions, or just the execution of someone else’s? Linda Henman provides guidance on determining whether you have capable decision-makers at hand and shares how you can offload some decision-making authority with one simple question....

Comforte AG’s Jonathan Deveaux stresses that while compliance with the GDPR is a worthy goal, adhering to the regulation doesn’t necessarily mean your organization is safe. Consider both compliance and security a journey, not a destination. The European General Data...

ERP Maestro's CEO Jody Paterson discusses cybersecurity risk disclosure and compliance and how executives are being held more personally accountable for nondisclosure as outlined by the SEC. Companies face a multitude of risks and threats. Reporting them to stakeholders and...

The failed Fyre Festival of 2017 serves as a cautionary tale to any who’d ignore warnings from trusted advisers and key stakeholders. Sandra Erez discusses how the Fyre Festival went so disastrously wrong – and the lesson compliance practitioners should...