Third-Party Risk The competitive world of banking struggles to keep up with technological advances, particularly in a regulatory environment.
The Privacy Insider Podcast Episode 4: Don't Be Evil: In the Hot Seat of Data Privacy, Part 1
REFRESH Nonprofit Basics: Director Duties and Best Practices for the Typical Nonprofit Public Benefit Corporation
REFRESH Nonprofit Basics: Designators, Members, Directors, Officers - The Who’s Who of Nonprofit Governance
“Monsters, Inc.” y el buen gobierno corporativo
Market Leaders Podcast Episode 94: Exploring the Perils of Optics-Driven DEI Initiatives with Guest Mira Dewji
AGG Talks: Cross-Border Business Podcast - Episode 16: The Political and Legal Maze of ESG in the U.S. and Abroad
Episode 322 -- Checking in on Caremark Cases
Compliance into the Weeds: What Are Boards Doing About AI (Hint: Not Much)
Conflictos de interés en Colombia, nueva regulación
The Informed Board Podcast | CEO Succession Planning on a Clear Day
Podcast - Deberes fiduciarios de los administradores
Innovation in Compliance - Diligent 5-Part Series - Building a Stronger Culture of Compliance Through Targeted and Effective Training: Part 5 - The Role of the Board
One Month to a More Effective Compliance Program with Boards – Day 14 - Boards and Doing Business in China
One Month to a More Effective Compliance Program with Boards - Day 9 - Board Governance and Risk Oversight
One Month to a More Effective Compliance Program with Boards – Day 5 - OIG Guidance for Boards Regarding Compliance
Nonprofit Basics: Meeting Minutes Best Practices
One Month to a More Effective Compliance Program with Boards - Day 1 - Legal Requirements of the Board Regarding Compliance
Innovation in Compliance - Key Board Issues Going Forward with Christina Bresani
Compliance into the Weeds - McDonald’s and Duty of Corporate Officer Oversight
SEC Penalizes Director for Misleading D&O Questionnaire Response - The SEC recently brought an enforcement action against a director for causing violations of the proxy rules by failing to disclose a close personal...more
Section 13(b)(2)(B) of the Securities Exchange Act of 1934 requires public companies to “devise and maintain a system of internal accounting controls.” In a recent opinion, a New York federal court rejected the Securities...more
The U.S. District Court for the Southern District of New York has dismissed many of the Securities and Exchange Commission’s (SEC’s) claims against software development company SolarWinds and its chief information security...more
At this point, it is self-evident that companies are grappling with an ever-evolving (think: tougher) cyber risk terrain. However, two recent cases against companies and their Chief Information Security Officers (CISOs),...more
The oversight obligations of boards continue to expand. Recent enforcement actions and new laws in areas such as cybersecurity, artificial intelligence and supply chains create new challenges for boards, as we explain in this...more
Key Points - - New SEC rules from 2023 require public companies to report material cybersecurity incidents promptly and detail their cybersecurity risk management strategies in annual reports — requirements that increase...more
Any time a regulation is put forth, there is always a level of uncertainty, especially regarding understanding the roles and responsibilities of key business leaders. The SEC’s new cybersecurity final rule means heightened...more
Boards of Directors for public companies across the country are likely to be taking stock of their companys’ cybersecurity practices and strategies after the Securities and Exchange Commission’s adoption of the Cybersecurity...more
Earlier this month, the U.S. Securities and Exchange Commission’s (SEC) 2023 Spring Unified Agenda of Regulatory and Deregulatory Actions was released. The agenda identifies the rules that the agency expects to consider in...more
The attention on IT Risk and Cybersecurity risk management policies is reaching new heights — again. It doesn’t matter if you’re a large enterprise like Uber or a small / midcap company; there’s one common thread as we start...more
Each Academy provides three-and-a-half days of classroom-style training covering the latest laws, regulations, and developments to help you effectively manage your organization’s compliance program. They are ideal for...more
Last month I wrote a post for this blog about the Securities and Exchange Commission’s proposals for more disclosure of cybersecurity issues. We reviewed some of the governance disclosures that boards might need to make, as...more
Corporate risk and compliance officers already labor under an influx of concerns related to cybersecurity, so you might have missed this latest news: the U.S. Securities and Exchange Commission has proposed new rules for more...more
In This Issue. The Office of the Comptroller of the Currency (OCC), the Federal Deposit Insurance Corporation (FDIC) and the Board of Governors of the Federal Reserve System (together, the Agencies) issued a final rule...more
Our Virtual Regional Healthcare Compliance Conferences provide updates on the latest news in regulatory requirement, compliance enforcement, and strategies to develop effective compliance programs. Watch, listen, and ask...more
A timely new resource for business executives, technology professionals, and lawyers alike is the newly-published Navigating the Digital Age: The Definitive Cybersecurity Guide for Directors and Officers from the New York...more
We continue to urge CEOs and boards of public companies (and private and not-for profits) to harken the call of getting a handle on cybersecurity risk to companies today. Not too soon, the New York Stock Exchange published a...more
In April 2014, the Securities and Exchange Commission’s (“SEC”) Office of Compliance Inspections and Examinations (“OCIE”) issued a Risk Alert announcing its first cybersecurity sweep initiative. Pursuant to that initiative,...more
The SEC announced last week that an investment adviser had agreed to settle charges that it failed to take required steps to protect against and respond effectively to a cybersecurity breach. The action comes on the heels of...more
On September 15, 2015, the Security and Exchange Commission’s Office of Compliance Inspections and Examinations (“OCIE”) issued a Risk Alert to provide additional information on the areas of focus for its second round of...more
In the last decade, Disaster Recovery (“DR”) and Business Continuity Planning (“BCP”) have become “hot” topics, as companies attempt to deal with disasters and the associated business risks. “Force majeure” is a legal concept...more