Blog

Third Party Risk Management in the Dynamic of Business Scale, Complexity, and Change

Why TPRM objectives fail – and what Global 2000 companies need to succeed

Even though large organizations have invested time, attention, and resources into third party risk management (TPRM) over the past decade, it’s clear that many programs are failing to deliver on their primary objective - keeping the organization safe.

DOWNLOAD THE WHITE PAPER

Read More

Topics: Anti-bribery & Anti-corruption, risk and compliance, third party risk management, Data Security & Privacy, Responsible Sourcing, Global 2000, compliance risk, tprm, business complexity, scale, business change, business scale, white paper, third parties

What do I need to ask when buying a Third Party Risk Management (TPRM) solution?

Third party risk management is a complex discipline, that combined with the scale, complexity, and change dynamics of any Global 2000 organization, can often lead to false starts with technology implementations.

It’s important to get enterprise software purchase decisions right – they are the fulcrum of successful third party risk programs for the business, they impact on the adoption and performance of many internal users across the enterprise, and they can have an impact on the careers of those selecting them.

DOWNLOAD THE BUYER'S GUIDE

Read More

Topics: FCPA, risk and compliance, Anti-Bribery and Anti-Corruption, OCC, third party risk management, Data Security & Privacy, Registration & Qualification, Conflict Minerals, GDPR, General Data Protection Regulation, aravo, ABAC, risk mitigation, sustainable procurement, regulatory risk, tprm

Sustainable Procurement - Survey Shows Progress Still To Be Made

Sustainability and corporate social responsibility (CSR) are now important or critically important items on the supply chain agendas of organizations around the world, according to a new survey. However, organizations need to continue to drive improvement in the implementation of their sustainability/CSR programs to ensure risks and compliance are managed, and brand reputation protected.

Read More

Topics: third party risk management, Responsible Sourcing, sustainability, csr, risk management, risk mitigation, board of directors, governance, procurement, corporate resonsibility, corporate social responsibility, compliance, brand reputation, ecovadis, hec, sustainable procurement, SP program, global supply chain, reputational risk, compliance risk, regulatory risk, suppliers

How To Build a Business Case for Better Third Party Risk Management

Boards of directors together with their C-suite teams have begun to realize just how little risk information they actually have about their third party relationships, and how fragmented that information can be across an organization of even a modest size.

Read More

Topics: Anti-bribery & Anti-corruption, risk and compliance, Financial Services, third party risk management, automotive, Aerospace & Defense, Chemicals, Industrial Manufacturing, Metals & Mining, business case, Business Services, Construction, High Technology, Pharmaceutical & Life Sciences, Retail, how to

Speaking of Risk: Pharmaceutical Companies and Third Party Promotions

Pharmaceutical companies around the world are struggling to keep up with the rapid evolution of ethical frameworks around bribery and corruption in their industry.
Read More

Topics: Pharma, Anti-bribery & Anti-corruption, FCPA, Medical Companies, SEC, Corruption, Bribery, DOJ, teva, Pharmaceutical Companies, settlement, fines, gsk

State and Federal Financial Services Regulators Apply Focus on Cybersecurity and Third Party Relationships

In a sign of what may well be coming for all highly-regulated industries around the world, US financial services regulators are in the process of significantly enhancing their cybersecurity rules, including substantial new rules impacting third party relationships.

Read More

Topics: OCC, Financial Services, Data Security & Privacy, fsr, information security, cybersecurity, fdic, privacy, fsscc, bits, federal reserve, bank

The DOJ’s “Evaluation of Corporate Compliance Programs”

Guidance for your FCPA Programs

On the 8th of February the Fraud Section of the DOJ released fresh guidance in the form of its “Evaluation of Corporate Compliance Programs,” which provides a list of questions that prosecutors will typically ask about a compliance program.

Read More

Topics: FCPA, risk and compliance, Third Party Management, Global 2000, DOJ, KYTP

OCC BULLETIN 2017-7: The OCC's Supplemental Examinations Procedures for Third Party Relationships

Raising the Bar for Banks' Third Party Risk Management

On Jan 24 2017 the US Office of the Comptroller of the Currency issued Supplemental Examination Procedures for Third Party Relationships. These examination procedures are intended to supplement OCC Bulletin 2013-29, “Third-Party Relationships: Risk Management Guidance,” issued October 30, 2013. The supplemental procedures promote consistency when examining national banks and federal savings associations' (collectively, banks) risk management of third-party relationships. These procedures expand on the core assessment contained in the “Community Bank Supervision,” “Large Bank Supervision,” and “Federal Branches and Agencies Supervision” booklets of the Comptroller’s Handbook.

Read More

Topics: OCC, financial institutions, Third Party Management, Global 2000

What will 2017 Hold for Bribery & Corruption Enforcement?

8 reasons why anti-bribery & corruption compliance should be a focus for multinationals

If January is anything to go by, 2017 is set to be another year for headline-grabbing regulatory sanctions against organizations for bribery and corruption violations.  The year has already seen significant enforcement activity on both sides of the Atlantic.

Read More

Topics: Anti-Bribery and Anti-Corruption, third party risk management, Corruption Enforcement, Corruption, Global 2000, Fraud, Bribery, compliance programs

The EU GDPR & Third Party Risk

Why Global 2000 Companies Should Be Focused on Third Party Compliance

The European Union’s General Data Protection Regulation (GDPR), which takes effect on May 25, 2018, strengthens data privacy rights for EU citizens and gives regulatory authorities greater powers to take action against companies that breach the law.

Read More

Topics: third party risk management, Data Security & Privacy, GDPR, General Data Protection Regulation