Blog

Is Best Practice for RFPs not to Issue RFPs?

The RFP has long been accepted as an “objective” way to conduct vendor selection for purchases ranging from hard goods to complex services. Its often lengthy list of feature/function-oriented questions is considered a means to level the playing field between vendors while demonstrating adequate due diligence. But is it necessarily the best way to buy third party risk management (TPRM) technology?

Read More

Topics: rfp, request for proposal, rfi, request for information, best practices, poc, proof of concept, Third Party Management

The DOJ’s “Evaluation of Corporate Compliance Programs”

Guidance for your FCPA Programs

On the 8th of February the Fraud Section of the DOJ released fresh guidance in the form of its “Evaluation of Corporate Compliance Programs,” which provides a list of questions that prosecutors will typically ask about a compliance program.

Read More

Topics: Global 2000, Third Party Management, FCPA, DOJ, KYTP, risk and compliance

OCC BULLETIN 2017-7: The OCC's Supplemental Examinations Procedures for Third Party Relationships

Raising the Bar for Banks' Third Party Risk Management

On Jan 24 2017 the US Office of the Comptroller of the Currency issued Supplemental Examination Procedures for Third Party Relationships. These examination procedures are intended to supplement OCC Bulletin 2013-29, “Third-Party Relationships: Risk Management Guidance,” issued October 30, 2013. The supplemental procedures promote consistency when examining national banks and federal savings associations' (collectively, banks) risk management of third-party relationships. These procedures expand on the core assessment contained in the “Community Bank Supervision,” “Large Bank Supervision,” and “Federal Branches and Agencies Supervision” booklets of the Comptroller’s Handbook.

Read More

Topics: OCC, financial institutions, Global 2000, Third Party Management

Adobe Case Study

Reaping business value from better GRC efficiency, effectiveness and agility in complex Third Party Programs

Read More

Topics: grc, third party risk management, Case study, Adobe, GRC20/20, Value Award, Third Party Management

Aravo and Adobe Recognized with GRC20/20 Value Award for Third Party Management

Solution found to drive measurable value, delivering better GRC efficiency, effectiveness and agility to complex Third Party Programs

Recognition for a job well done is always appreciated. It’s especially appreciated when the recognition is for a job well done for clients. The team here at Aravo were particularly honored and excited to receive the 2016 GRC Value Award for Third Party Management (TPM) from independent GRC analyst firm GRC20/20 for our TMP solution for Adobe Systems.

Read More

Topics: grc, third party risk management, Case study, Adobe, GRC20/20, Value Award, Third Party Management