News & Analysis as of September 18, 2024

Risk Management

+ Follow

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -

6 Pitfalls Law Firms Should Avoid When Choosing New Marketing Technology Solutions

Good2bSocial on 9/16/2024

If you read our past post on what makes up a modern marketing technology stack, you know that thousands of platforms are available to help with virtually every facet of running your law firm’s day-to-day marketing. Moreover,...more

Adopting Generative AI? Key Contract Considerations for Healthy Due Diligence

Mitchell, Williams, Selig, Gates & Woodyard,... on 8/27/2024

As generative AI continues to be a hot topic in board rooms and an unavoidable reality on the front lines of business, leaders must make informed decisions when choosing AI vendors. The integration of AI into your operations...more

Navigating the Artificial Intelligence Landscape: What Businesses Need to Know

Conn Kavanaugh on 8/6/2024

Artificial Intelligence (“AI”) generated a tremendous amount of excitement in 2023 as businesses rushed to build use cases and deploy AI tools throughout their organizations. AI has evolved from a futuristic concept into a...more

New EU Cyber Rules: Implementation of NIS2 in the EU Member States

Mayer Brown on 8/5/2024

The Network and Information Security 2 Directive (EU) 2022/2555 ("NIS2") entered into force on 16 January 2023. NIS2 sets cyber rules for organizations whose services are considered essential or important for maintaining...more

Achieving SOC 2 Compliance

Mitratech Holdings, Inc on 7/22/2024

A Comprehensive Guide to Ensuring Data Security and Trust. 76% of users believe organizations must do more to protect their data. In an effort to lower this number and increase safety measures when it comes to customer...more

Analysis: Are Technology Sharing and Cross-Silo Relationships Intrinsically Linked?

NAVEX on 7/18/2024

Ever felt like you’re speaking a different language to your colleagues in another department? Or maybe you’ve rediscovered the wheel, only to find out another team already solved that problem? As business operations get more...more

[Event] Healthcare Research Compliance Academy - September 9th - 12th, Las Vegas, NV

Health Care Compliance Association (HCCA) on 6/26/2024

HCCA's Healthcare Research Compliance Academy is a three-and-a-half-day comprehensive training program with a focus on the topics and issues that affect research compliance professionals. Our faculty of experienced...more

Cybersecurity Crunch: Building Strong Data Security Programs with Limited Resources - Insights from Tech and Financial Services...

Womble Bond Dickinson on 6/13/2024

In today’s digital age, cybersecurity has become a paramount concern for executives navigating the complexities of their corporate ecosystems. With resources often limited and the ever-present threat of cyberattacks,...more

[Event] 23rd Annual Compliance & Ethics Institute - September 22nd - 25th, Grapevine, TX

Society of Corporate Compliance and Ethics... on 5/29/2024

Be part of SCCE’s largest compliance and ethics conference of the year! Each year, compliance and ethics professionals from around the world look to the Compliance & Ethics Institute (CEI) for cutting-edge information and...more

Dancing on the Head of a Pin: Corporate Boards, Committees and Cybersecurity Risk Management

The Volkov Law Group on 5/13/2024

No one was surprised when compliance and risk publications cited cybersecurity as the number one risk that corporations face today. While this is a relatively simplistic and head-line grabbing statement, the truth remains...more

Healthcare Organizations Can Meet New HHS Cybersecurity Goals with the Help of Tabletop Exercises

Epiq on 5/7/2024

In today’s digital age, securing sensitive healthcare data is paramount. With the rise in cyber threats targeting healthcare organizations, the Department of Health and Human Services (HHS) has taken proactive steps to...more

Forecasting the Integration of AI into Health Care Compliance Programs

Robinson+Cole Health Law Diagnosis on 4/12/2024

Health care entities maintain compliance programs in order to comply with the myriad changing laws and regulations that apply to the health care industry. Although laws and regulations specific to the use of artificial...more

[Virtual Event] Nonprofit Sector Compliance Conference - May 22nd, 8:00 am - 5:00 pm CT

Society of Corporate Compliance and Ethics... on 4/12/2024

Get focused insights on compliance management for nonprofits - From fraud and conflict of interest to tax exemption, fundraising, and data security, nonprofit organizations are faced with significant compliance issues,...more

[Event] Higher Education & Healthcare Research Compliance Conference - June 10th - 12th, New Orleans, LA

Society of Corporate Compliance and Ethics... on 3/8/2024

Don’t miss our annual conference devoted to higher education and research compliance - Attend the Higher Education & Healthcare Research Compliance Conference June 10–12, 2024 and hear from experienced professionals on a...more

NIST Publishes Final “Cybersecurity Resource Guide” on Implementing the HIPAA Security Rule

Foley & Lardner LLP on 2/23/2024

In an important development for HIPAA-regulated entities looking for practical assistance in understanding, implementing, and enhancing compliance with the HIPAA Security Rule, the National Institute of Standards and...more

‘An Unknown Individual Walked In’: Protecting Against Telehealth Risks Includes Non-IT Threats

Health Care Compliance Association (HCCA) on 2/9/2024

The HHS Office for Civil Rights (OCR) and other government agencies aren’t just worried that providers understand—and mitigate—the privacy and security risks of telehealth. In fact, in 2022, the Government Accountability...more

Top Privacy and Cybersecurity Issues to Track In 2024

Baker Donelson on 1/29/2024

In recognition of International Privacy Day on January 28, we wanted to share some insights on the top privacy and cybersecurity issues for the new year. Data privacy and cybersecurity will continue to be one of the most...more

[Event] 28th Annual Compliance Institute - April 14th - 17th, Nashville, TN

Health Care Compliance Association (HCCA) on 12/5/2023

Get ready to be inspired with game-changing insights and industry connections! For over two and a half decades, healthcare compliance professionals have gathered at HCCA’s Compliance Institute (CI) to share ideas, learn...more

Network Topology and Mapping: Cornerstones of Data Security – Part 1

Bradley Arant Boult Cummings LLP on 11/30/2023

Data security is a top concern for organizations in today’s digital landscape. It protects data from unauthorized access, use, modification, or disclosure, and requires implementing technical, administrative, and physical...more

New York’s Department of Financial Services Amplifies its Cybersecurity Regulations

Patterson Belknap Webb & Tyler LLP on 11/14/2023

On November 1, 2023, the New York State Department of Financial Services (“DFS”) amended its cybersecurity regulations to institute additional standards and controls aimed at securing sensitive data among the financial...more

What Does the SEC’s Complaint Against SolarWinds Mean for CISOs and Boards?

Skadden, Arps, Slate, Meagher & Flom LLP on 11/7/2023

On October 30, 2023, the SEC filed a litigated complaint against SolarWinds, a software development company, and Timothy Brown, its chief information security officer (CISO). The SEC alleges that from October 2018, when...more

Show Your Work: The SEC Cyber Rules and Documenting Materiality Analysis Under NIST FIPS 199

Baker Donelson on 10/24/2023

The date July 26, 2023, marks the latest evolution of the cybersecurity regulation landscape as the Securities and Exchange Commission passed cybersecurity regulations for publicly traded companies. At the open meeting, SEC...more

The UK’s Online Safety Bill – Implications for US and International Businesses

Faegre Drinker Biddle & Reath LLP on 10/18/2023

On 19 September 2023, the UK Parliament passed the Online Safety Bill (“OSB”). The OSB aims to protect individuals from illegal online content and focuses on the protection of children by requiring the removal of content that...more

Electronic Communications Risks — Asking the Critical Questions? (Part I of III)

The Volkov Law Group on 10/17/2023

Honestly, I have been avoiding this topic since it presents a real morass of risks and potential traps for the unwary company and Chief Compliance and Chief Legal Officers....more

[Event] National Conference on AI Law, Ethics and Compliance - October 31st - November 1st, Washington, DC

American Conference Institute (ACI) on 10/11/2023

Hosted by American Conference Institute, the inaugural National Conference on AI Law, Ethics and Compliance will bring together all key stakeholders for discussions on the most pressing, high stakes issues and uncertain risk...more

123 Results

View per page

Page: of 5

Compliance › Data Security › Risk Management

"My best business intelligence, in one easy email…"