Compliance

If storage is cheap, why bother dealing with legacy data, right? Wrong. Ignore it at your peril.

Here's a list of 25 reasons that risk management failure happens, based on experience assisting boards, including boards that have failed and boards that cannot afford to fail.

This article looks at the key program characteristics of independence and authority, which have enormous capacity to contribute to the level of independence and authority of an E&C program.

Are your colleagues a bunch of criminals? Didn’t think so. So why does so much compliance training focus exclusively on wrongdoing? Why not focus on the small everyday behavious that keep us all safe? Doing that will start to build a positive compliance based culture.

In contrast to other US economic sanctions programs, which tighten and loosen periodically, the sanctions imposed on North Korea under the Obama administration have twisted only in one direction.

Social media gaffes know no corporate hierarchy. With more and more execs using and being encouraged to use Social Media, the instant and public ramification of a gaffe, blunder, or exploit the stakes keep rising. These can result in much more than embarrassment for the perpetrator and their company.

As U.S. industry waits to see how the president’s call for new digital security law translates into actual legislation, it may be useful to look to other regulatory regimes to set reasonable expectations for establishing national standards for privacy and data protection.

While some may disagree with my point of view, I am confident most will agree that the potential for disruptive change in the marketplace makes the above task very important.

“Culture" has transformed from an ethereal, abstract word to a blunt instrument for finding fault on myriad qualitative matters affecting the organization. If there's a failure someplace, culture is blamed.

Most companies have a plan for disaster recovery of IT, real estate, and data – but what happens when you must respond to allegations of a violation of customer trust or compliance?

Insiders know that compliance officers and internal auditors, beleaguered and sometimes frustrated as they may be, hold the “keys to the kingdom” when it comes to knowledge of corporate ethical and legal lapses within their companies.

Every day, employees share sensitive information with external parties. While this may not seem like a serious threat, the export of data to the wrong person, such as someone in a foreign country or a non-US citizen, could result in serious consequences for both the employee and his/her employer.