Risk Assessment

News & Analysis as of

New FTC Data Breach Response Guidelines

Cybersecurity should always be at the top of any retailer’s priority list—and even more so as the holiday shopping season gets underway. To that end, the Federal Trade Commission’s newly-released Data Breach Response...more

Forecasting, Risk Management and Compliance

When I was in the corporate world, I cannot begin to recall the number of times senior management had an overly optimistic forecast regarding some transaction; whether the transaction was the purchase of a smaller company, a...more

FTC Joins Other Agencies In Warning Organizations About Ransomware

Earlier this month, the Federal Trade Commission (FTC) blogged about How to defend against ransomware, and published Ransomware – A Closer Look in the “Tips and Advice” section of its website. This follows warnings from other...more

Spikes in Sales and Compliance

What is risk and how should it be evaluated? What is the data that should be reviewed to determine if an increase in sales is based on unethical or even illegal behavior? Finally, what happens when you migrate company...more

DFS Cyber Regulation: Part II – An Interview with Bay Dynamics’ Steven Grossman

This is the second installment in our interview with Steven Grossman, VP Strategy & Enablement at Bay Dynamics, the cyber risk analytics company. Here, Steven discusses the importance of aligning an institution’s risk...more

Understanding Change Triggers

In the Biglaw legal marketplace, it’s taken as gospel that loyalty is dead. Corporate clients that once retained the same law firms over a multi-year period may now issue RFPs and shift the work to lower-priced firms....more

Corporate criminal liability risk increases for financial services

A proposed new UK law contains the largest expansion of UK corporate criminal liability since the Bribery Act 2010 and one of the most significant overhauls of money laundering and proceeds of crime legislation in the last...more

Prevent and Prepare for a Cybersecurity Breach

Hacking of organizations’ systems is becoming increasingly commonplace, even with advancements in security practices. To mitigate risk, a company must have an enterprise-level, cross-functional incident response plan that is...more

OCR Stresses Importance of Authentication in Newsletter

In a recent newsletter, the Office for Civil Rights (OCR) encourages health care organizations to review their procedures around authentication and “ensure that they have the appropriate safeguards in place.”...more

FinCEN’s Beneficial Ownership Rule and Increased AML Burden

Compliance officers at financial institutions have made great strides in improving Know Your Customer (KYC) programs to focus on knowing their customers as a critical function in combating money laundering. As regulators...more

New York and Feds Leading the Charge on Financial Institution Cybersecurity Regulations

Both federal and state officials recently proposed new regulations aimed at the financial sector in an effort to promote protection against high-impact technology failures and cyberattacks...more

Why FCPA Compliance Makes America Great

Last week, a colleague asked me what I thought the Trump administration might hold for Foreign Corrupt Practices Act (FCPA) enforcement specifically and for the greater compliance discipline in general. I have been exploring...more

OSHA Issues Recommended Practices for Safety and Health Programs

In October, OSHA released its new Recommended Practices for Safety and Health Programs, which were issued to incorporate the experience and advances gained since the previous set of recommendations was released in 1989. ...more

ISO 37001: Answers to the 5 Questions We’ve Heard Most About the Standard

It’s been a month since ISO 37001 was published and there are some questions we have heard percolating in the compliance world about what this means. These are the questions we’ve been hearing the most...more

CMS Finalizes Rule Establishing New Emergency Preparedness Requirements

As clean-up efforts continue in the wake of Hurricane Matthew, companies in North Carolina, South Carolina, Georgia, Florida, and throughout the Southeast are focused on the importance of emergency preparedness in ensuring...more

FFIEC finalizes revised consumer compliance rating system

The Federal Financial Institutions Examination Council (FFIEC), whose members include the CFPB, has finalized guidance setting forth a revised uniform interagency consumer compliance rating system (CCRS).  The revisions...more

5 Preventative Steps to Manage Legal Risk Following a Cybersecurity Breach

Preparing for and rehearsing how to respond to a breach is as important as improving security systems and protocols. Hacking of organizations’ systems is becoming increasingly commonplace, even with advancements in...more

Regulators Diverge on How Best to Manage Growing Cybersecurity Risks

On October 19, the Federal Reserve Board, Federal Deposit Insurance Corporation, and Office of the Comptroller of the Currency (the Agencies) issued an advance notice of proposed rulemaking (ANPR) seeking to enhance cyber...more

The future of legal service delivery

The rise of cognitive technologies has led doomsayers to predict that the future of the legal profession will be presided over by an army of robot lawyers. Whilst it is important to recognize that the delivery of legal...more

HHS Designates Cloud Service Providers as Business Associates Under HIPAA

Cloud service providers that process electronic protected health information (ePHI) are business associates under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), even if the PHI is encrypted and the...more

4 Ways Continuous Improvement is Essential to an Effective Compliance Program. Stephen Kasloff Explains [PODCAST]

Stephen Kasloff is Director and Senior Advisor of Compliance & Ethics Solutions LLC and an expert in how continuous improvement is vital to compliance programs. As Stephen explains, continuous improvement is essential to...more

"Privacy & Cybersecurity Update - October 2016"

In this edition of our Privacy & Cybersecurity Update, we take a look at the FCC's new rules for broadband privacy, the FTC's new playbook for data breach response and notification, the NHTSA's voluntary guidance for...more

What’s Your Game Plan? Offensive or Defensive: Playing to Your Strengths [Expect Focus – October 2016]

- AXA Prevails at First Post-Jones v. Harris Excessive Fee Trial - Potential Secondary Effects of Regulatory Examinations: Evidentiary Issues and Preclusion in Parallel Litigation - On The Horizon: Global...more

Investment in Oil and Gas Midstream Infrastructure

At a time of uncertainty for the long-term prospects of oil prices, midstream infrastructure divestments in the North Sea could help oil and gas companies maintain the viability of UKCS oil and gas production. The North...more

FTC Releases a Data Breach Response Guide For Business

Data breaches are fast becoming a fact of life. Experiencing a data breach is never a pleasant experience, regardless of how it happens – by accident, by criminal intent, or by system failure. Someone steals a company...more

903 Results
|
View per page
Page: of 37
JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×