No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe
Jump to a Section
  • At the Office
    • Ethics
    • HR Compliance
    • Leadership & Career
    • Well-Being at Work
  • Compliance & Risk
    • Compliance
    • FCPA
    • Fraud
    • Risk
  • Finserv & Audit
    • Financial Services
    • Internal Audit
  • Governance
    • ESG
    • Getting Governance Right
  • Infosec
    • Cybersecurity
    • Data Privacy
  • Opinion
    • Adam Balfour
    • Jim DeLoach
    • Mary Shirley
    • Yan Tougas
No Result
View All Result
Corporate Compliance Insights
Home Opinion

Real-Time Risk Management Isn’t Optional Anymore

Scale and scope of threats are snowballing, so organization-wide risk collaboration has to expand, too

by Tracy Manning
May 10, 2023
in Opinion, Risk
Flip style clock

Today’s compliance teams are dealing with a difficult confluence of challenges. Budgets and resources are facing extra scrutiny at the exact time escalating regulatory expectations, volatile geopolitical conditions and macroeconomic instability are adding significant pressure to already resource-strained teams. LexisNexis Risk Solutions’ Tracy Manning explores the shifts that brought us to this point — and what companies must do next.

Digital acceleration has ushered in a new way of doing business. Companies need to comply as fast as the transaction when it comes to customer experience. Regulatory expectations are catching up to the real-time pace of the digital economy, and regulators are signaling that they expect companies to equally apply the technology expertise they use to accelerate business growth to how they manage compliance risk. They expect businesses that can facilitate instant transactions to be capable of leveraging technology to manage risk in real time as well.  

Recent enforcements demonstrate that regulators are working under the presumption that the robustness and reach of an organization’s compliance program should scale at the same rate as their business.

Various regulations and guidance, including the Anti-Money Laundering (AML) Act of 2020 and recent regulator guidance on human trafficking, virtual currency and Russian sanctions evasion signal greater scrutiny around timely sanctions controls, digital identity, device and location data risk. They also demonstrate broader regulatory scrutiny to include traditionally non-regulated industries, such as ecommerce, retail, real estate and accounting services that are increasingly becoming new threat vectors.

rose colored glasses
Cybersecurity

Are You Wearing Rose-Colored Glasses — or Blinders? How Executives’ Views on Cyber Risk Can Affect Compliance

by Meghan Maneval
April 26, 2023

Changes to digital spaces in recent years have led to a sharp rise in IT risk for many organizations. With cloud adoption, digital processes, remote work and third-party relationships growing dramatically, new, complex and expanded threat landscapes now exist — and bad actors are eager to exploit them.

Read moreDetails

Geopolitical volatility exposes compliance gaps and vulnerabilities

2023 is still experiencing unprecedented and highly coordinated sanctions in response to the Russian invasion of Ukraine. Compliance programs are forced to navigate a regulatory climate characterized by exceptional velocity, scale and complexity.

Regulatory risk vulnerabilities extend beyond sanctions on specially designated nationals (SDN) to corporate structure and ownership, relatives and associates, dual-use goods, trade finance and export controls.

Regulatory requirements are changing in real time and businesses are expected to keep pace. A recent sanctions enforcement on an organization that lists transactions by an SDN occurring within six hours of the designation within the violation. Another enforcement clearly signals that regulators increasingly expect compliance controls to not only be implemented at onboarding but perpetually across the customer lifecycle.

Bad actors are adding another layer of challenge to an already complex regulatory situation. They are taking even more advantage of the anonymity and speed of digital channels and disruptions in fintech, gaming and marketplaces to avoid detection for financial crimes and sanctions evasion.

Criminals are also leveraging new, widely available technologies in their schemes. They can use the onion routing (Tor) browser or virtual private network (VPN) to obfuscate location during a transaction, allowing criminals to bypass basic location risk controls such as IP blocking. The LexisNexis Digital Identity Network recorded a 250% increase in devices using a Tor or VPN in the days immediately following the Russian invasion of Ukraine. Demand for VPNs in Russia increased nearly 2,700% between Feb. 24 and March 24, 2022.

It is becoming essential for companies to utilize more sophisticated tools for identifying location-based sanctions risk or assure that an entity presenting in a digital channel is, in fact, who they are purporting to be. The key lies in proofing digital identity with the same rigor as physical identity and using the vast pool of now-available digital identity and location signals to understand with confidence the linkage between the two.

There is more evidence that the rapidly shifting landscape is sending bad actors and high-risk consumers deeper into their networks to present themselves as anyone other than who they are during a transaction. The Enablers Act would extend the Bank Secrecy Act (BSA) to include trust companies, lawyers, real estate companies and art dealers, all of whom criminals may potentially leverage to confuse and complicate know your customer (KYC) and AML workflows.

The culmination of factors shaping today’s regulatory environment makes it critical to know your customer, their associates and their business in real time from an end-to-end, more holistic and even historical activity perspective. It’s no longer enough to assess your risk at a given point in time.

If anti-financial crime teams want to truly know the company’s consumers and prevent criminal evasion, point-in-time checks are no longer enough. They can and should look at an entity’s history to carefully assess any changes that may have occurred just prior to sanctions or following sanctions to see if there were name changes, organizational structure changes or address changes just before or just after Russian sanctions went into effect.

Fueling a persistent KYC strategy requires collaboration, shared data and shared technology

The convergence of multiple types of risk in digital threat vectors — in parallel with acceleration of digital transactions — calls for a higher level of collaboration between the AML compliance, fraud, information security and consumer experience functions within a business. Siloed approaches are not a sustainable model for the real-time digital economy.

Manual due diligence processes and disparate risk decisioning are putting businesses behind on delivering a smooth consumer experience while leaving them dangerously exposed to compliance and sanctions violations — and the reputational damage and long-tail direct and indirect costs that follow an enforcement. Fifty-nine percent (59%) of mid/large U.S. banks report that compliance onboarding delays negatively impact new customer acquisition.

Real-time risk management encompasses a perpetual and event-based risk approach reflecting specific touchpoints in each consumer’s journey that may represent higher risk. Persistent risk scoring creates a more optimal level of end-to-end risk visibility that expedites decisioning and helps eliminate the opportunities high-risk individuals may be exploiting to enter your ecosystem. It also delivers big efficiencies.

Our new digital normal only continues accelerating, with new digital threat vectors emerging daily and digital transaction volumes continuing to soar. It’s time to reevaluate compliance strategies and transform them to support real-time risk management.


Tags: Risk Assessment
Previous Post

Health Equity: Board Directors’ Most Important ESG Measure

Next Post

More Than Sports: Managing New Title IX Compliance Complexities

Tracy Manning

Tracy Manning

Tracy Manning is director of financial crime compliance at LexisNexis Risk Solutions.

Related Posts

ai policy

Planning Your AI Policy? Start Here.

by Bradford J. Kelley, Mike Skidgel and Alice Wang
May 7, 2025

Effective AI governance begins with clear policies that establish boundaries for workplace use. Bradford J. Kelley, Mike Skidgel and Alice...

business relationship concept hands

Relationship (Owner) Goals: Why Half Your TPRM Red Flags Stay Hidden

by Chris Audet
April 9, 2025

The front-line staff who manage vendor relationships are uniquely positioned to spot problems before they escalate, yet many organizations fail...

cute robot looking at financial volumes

AI’s Dual Role in FinServ Risk Management

by Nalini Priya Uppari
March 28, 2025

As technology evolves, so do the tools that help banks and investment firms maintain stability amid uncertainty

mineral mining operation

Why Critical Minerals Demand a Compliance Revolution

by Rebeca Vergara Gaona
February 11, 2025

Corporate compliance lessons could help strengthen intergovernmental mineral agreements before problems arise

Next Post
emory girls rowing team

More Than Sports: Managing New Title IX Compliance Complexities

No Result
View All Result

Privacy Policy | AI Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Research
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2025 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
No Result
View All Result
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe

© 2025 Corporate Compliance Insights