Testing Your Compliance Program
Regulatory vs. Business Compliance
Grupo Empresarial y Control … ¿a qué te cojo ratón?
Episode 344 -- SEC Settles FCPA Case with Moog for $1.7 Million
Episode 342 -- How to Conduct an Internal Compliance Site Visit and Review
Enhancing Compliance: The Power of Independent Monitorships in Consumer Protection — Regulatory Oversight Podcast
Episode 331- NAVEX State of Risk and Compliance Programs
What the Board Should Be Asking About the Compliance Program
Common Scenarios Triggering False Claims Act Violations, Part 3: Claims and Investigations
Compliance into the Weeds: Of Fat Fingers, Internal Controls and Compliance
Vicky Hanks of Blake Morgan on Building an Effective Employee Brand - Passle's CMO Series Podcast
Better Investigative Interviewing
Hot Topics in International Trade
Episode 301 -- Steve Naughton on Compliance and Complaince Education at Loyola Law School Program
Episode 298 -- Electronics Communications Risks and Ephemeral Messaging
Episode 297 -- Susan Divers on LRN's 2023 Program Effectiveness Report
The Justice Insiders Podcast: SEC Plays Chicken with Jarkesy
JONES DAY TALKS®: The Evolution of Corporate Compliance Programs: Key Issues for Multinational Companies
Compliance & Disaster Preparedness
Compliance Series Part 3: Ensuring Compliance Programs are Effective
The other day, I attended a panel discussion of compliance officers talking about how corporate compliance might change with the arrival of the Trump Administration. Except, we never got around to that discussion – we were...more
Imagine your virtual assistant did more than just respond to your questions or requests but actually took the initiative, performing complex tasks without needing instructions, learning and improving from each experience....more
On October 22, 2024, the SEC charged two current reporting companies, Unisys Corp. and Check Point Software Technologies, and two former public companies, Mimecast Limited and Avaya Holdings Corp., with making materially...more
The Nutter Securities Enforcement Update is a periodic update of noteworthy recent securities enforcement activity, settlements, decisions, and charges. We provide brief summaries that highlight recent enforcement action...more
Late last week, the U.S. Department of Justice (DOJ) filed its complaint-in-intervention in a qui tam lawsuit against the Georgia Institute of Technology (Georgia Tech), alleging that the university failed to meet certain...more
Judge Engelmayer’s 107-page dismissal of most of the U.S. Securities and Exchange Commission (SEC)’s claims against SolarWinds provides valuable guidance, and some comfort, for public companies and Chief Information Security...more
In a stinging rebuke of its attempted cybersecurity-related enforcement against a public company, a federal judge recently dismissed most of the charges that the U.S. Securities and Exchange Commission (SEC) had filed against...more
Last month, the SEC announced another enforcement action emphasizing the need for early disclosure of cybersecurity events. In the recent action, the company had taken three weeks to act on internal alerts of malware on its...more
Section 13(b)(2)(B) of the Securities Exchange Act of 1934 requires public companies to “devise and maintain a system of internal accounting controls.” In a recent opinion, a New York federal court rejected the Securities...more
The U.S. District Court for the Southern District of New York has dismissed many of the Securities and Exchange Commission’s (SEC’s) claims against software development company SolarWinds and its chief information security...more
On July 18, 2024, U.S. District Judge Paul Engelmayer of the U.S. District Court for the Southern District of New York issued a comprehensive 107-page opinion that may have significant implications for the Securities and...more
Think of it as the compliance version of The Butterfly Effect – a small, unnoticed, action, or failure to act, somewhere in the organization that balloons over time into a much larger, material issue. Maybe an employee is...more
On July 18, 2024, a New York federal judge dismissed most of the US Securities and Exchange Commission’s ("SEC") claims against SolarWinds Corp. ("SolarWinds" or the "Company") and its Chief Information Security Officer...more
On June 18, 2024, the SEC announced the settlement of administrative proceedings brought against a marketing and business communications firm for alleged internal accounting control deficiencies that caused the firm’s failure...more
The U.S. District Court for the Southern District of New York has dealt a significant blow to the cybersecurity enforcement efforts of the U.S. Securities and Exchange Commission (SEC or Commission). In its July 18, 2024,...more
The U.S. District Court for the Southern District of New York on July 18, 2024, dismissed most of the SEC's landmark cyber enforcement litigation against SolarWinds Corp. (SolarWinds or the Company) and the Company's Chief...more
In the ever-evolving compliance landscape, the recent enforcement action by the Securities and Exchange Commission (SEC) against RR Donnelley is a significant case study. This incident underscores the importance of robust...more
In a significant expansion of internal controls enforcement, the SEC announced a $2.1 million settlement with R.R. Donnelley & Sons Co. (“RRD”) for its handling of a 2021 ransomware attack and resulting disclosure failures. ...more
The SEC continues to expand its cybersecurity enforcement authority to include allegations that a company's failure to monitor its managed security service providers (MSSP) amounts to violations of federal securities laws....more
The Securities and Exchange Commission entered into a resolution agreement with R.R. Donnelley & Sons (RRD) on June 18, 2024 with RRD agreeing to pay $2.125 million to resolve disclosure and control violations alleged by the...more
Taking stock, looking ahead - The start of a new year is an important opportunity for boards to take a step back and reassess their agendas to help ensure that they are appropriately focused on the most critical issues for...more
This memorandum outlines key considerations from White & Case's Public Company Advisory Group for foreign private issuers ("FPIs") during the 2024 annual reporting season, divided into two sections: Form 20-F Housekeeping...more
Lately, I have been asked a lot about security in Business Central and how good it is… Permissions, Roles, Field Level Permission with an APP, and so on. How do you know if anything has been compromised, or if you have a...more
In recent guidance, the Department of Justice made clear that it will very rarely grant an extension of registrants’ deadline to disclose material cybersecurity incidents under the SEC’s Final Rules. Under the Securities and...more
We have received several requests for a list of the compliance policies that make sense for every multinational company. So, as a follow-up to our earlier two posts providing “twelve steps to international compliance” (see...more