Episode 342 -- How to Conduct an Internal Compliance Site Visit and Review
A Q&A With Exempt Organization Lawyer and EO Radio Show Host Cynthia Rowland
Ask a Certified Fraud Examiner Q&A - Part 4
Public-Private Partnerships to Stem Corruption
Nonprofit Quick Tip: Corporate Filings in Washington, D.C.
Navigating ESG: Preparing for Future Regulations (Part Two) — Regulatory Oversight Podcast
Implications of the SEC Cybersecurity Disclosure Rule
Why Time Matters: Partners Lindsay Gerdes and Michael J. Bronson on Swift Action in Government Investigations
Nonprofit Quick Tip: State Filings in Colorado and Wyoming
REFRESH Nonprofit Basics: Director Duties and Best Practices for the Typical Nonprofit Public Benefit Corporation
REFRESH Nonprofit Basics: Designators, Members, Directors, Officers - The Who’s Who of Nonprofit Governance
Navigating ESG: The Growing Importance and Compliance Challenges (Part One) — Regulatory Oversight Podcast
“Monsters, Inc.” y el buen gobierno corporativo
Navigating the Regulation Jungle: How to Be Compliant, Work Efficiently, and Stay Sane
Episode 332 -- Deep Dive into SEC’s Internal Controls and Cybersecurity Settlement with R&R Donnelly
Digital Planning Podcast Episode: Estate Planning and the Corporate Transparency Act
Episode 331- NAVEX State of Risk and Compliance Programs
What the Board Should Be Asking About the Compliance Program
Market Leaders Podcast Episode 94: Exploring the Perils of Optics-Driven DEI Initiatives with Guest Mira Dewji
Managing Social Media Risk
Last month, I wrote a blog post on the tone at the top, exemplified in the Star Trek, the Original Series episode, Devil in the Dark. Based on the response, some passionate Star Trek fans are out there. I decided to write a...more
This Holland & Knight blog post is the second installment in a two-part series that examines the challenges to the U.S. Securities and Exchange Commission's (SEC) charges in its landmark case against SolarWinds Corp....more
On July 18, 2024, District Court Judge Engelmayer of the Southern District of New York issued his 107-page opinion and order dismissing most – but not all – of the landmark allegations of the SEC against SolarWinds Corp. and...more
On July 18, a New York federal judge threw out most of the SEC’s claims brought against both SolarWinds Corp. and the company’s chief information security officer (CISO), Timothy Brown....more
After a few years of proposing and adopting an unprecedented number of new rules, the Securities and Exchange Commission moderated its rule adoption activities in the second quarter of 2024. During the quarter, the SEC...more
The SEC continues to expand its cybersecurity enforcement authority to include allegations that a company's failure to monitor its managed security service providers (MSSP) amounts to violations of federal securities laws....more
As annual reporting season begins, it is important to take a fresh look at the company’s governance and incident response processes and develop risk-informed and compliant disclosures. While many companies are understandably...more
The U.S. Securities and Exchange Commission (SEC) adopted final rules in 2023 that are intended to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance and incident reporting by...more
Any time a regulation is put forth, there is always a level of uncertainty, especially regarding understanding the roles and responsibilities of key business leaders. The SEC’s new cybersecurity final rule means heightened...more
The DOJ has signaled that CEO and CCO certifications will become a staple of all corporate settlement agreements. Critics worry CEOs and CCOs face undue personal liability and argue it will dissuade CCOs from accepting the...more
The Office of Compliance Inspections and Examinations of the Securities and Exchange Commission released cybersecurity and resiliency-related examination observations on January 27, 2020, based on “thousands of examinations...more
At the end of January, the U.S. Securities and Exchange’s Office of Compliance Inspections and Examinations (OCIE) released its “Observations on Cybersecurity and Resiliency Practices” (Observations)....more
In today’s connected world, businesses face constant pressure to improve their cybersecurity practices and to confirm that they are meeting industry standards. To continue helping businesses achieve those goals, the SEC...more
The Office of Compliance Inspections and Examinations (OCIE) of the U.S. Securities and Exchange Commission (SEC) released a National Examination Program Risk Alert (Risk Alert) on August 7, 2017 regarding observations from...more
Tennessee has joined other states in formally approving lawyers’ cloud-storage of client-confidential data. The Board of Professional Responsibility (“BOPR”) held that lawyers ethically may use cloud storage for...more
On September 15, 2015, the U.S. Securities and Exchange Commission (the “SEC”) issued a risk alert release announcing that the Office of Compliance Inspections and Examinations (“OCIE”) will be conducting a new Cybersecurity...more
This week the SEC’s Office of Compliance Inspections and Examinations (“OCIE”) announced a second-round of cybersecurity examinations, continuing its initiatives on the issue. The move follows the SEC’s: March 2014 roundtable...more