News & Analysis as of

Third-Party Service Provider Supply Chain

BCLP

Managing Technology Supply Chains: What the Advent of the UK’s Critical Third Party Regime Means for Financial Services Firms and...

BCLP on

The FCA, PRA, and Bank of England have published their finalised critical third party (CTP) rules (and accompanying guidance) in PS24/16 Operational resilience: Critical third parties to the UK financial sector....more

Ogletree, Deakins, Nash, Smoak & Stewart,...

New York State Department of Financial Services Releases Guidance on Combating Cybersecurity Risks Associated With AI

On October 16, 2024, the New York State Department of Financial Services (NYDFS) released guidance highlighting the cybersecurity risks associated with artificial intelligence (AI) and how covered entities regulated by NYDFS...more

Husch Blackwell LLP

NYDFS Issues Guidance to Mitigate AI Cybersecurity Risks

Husch Blackwell LLP on

Keypoint: The New York Department of Financial Services (NYDFS) circulated an industry letter offering guidance to NYDFS “Covered Entities” for assessing and managing AI-related cybersecurity risks, including threats...more

Miles & Stockbridge P.C.

DoD Issues Final Rule for CMMC Program, Finally Setting the Stage for Full Implementation

Miles & Stockbridge P.C. on

The Department of Defense (DoD) published a Final Rule earlier this month formally implementing the Cybersecurity Maturity Model Certification (CMMC) Program. This Final Rule is the culmination of five years of work to...more

Mayer Brown

Navigating Facilities Management Outsourcing in a Post-COVID World

Mayer Brown on

The COVID-19 pandemic has significantly reshaped the facilities management (FM) outsourcing landscape. Companies have transitioned from fully office-based work to home-based work, and now to hybrid models, prompting a...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

Supply Chain Attacks in the UK: Reducing Risk and Preparing for Upcoming Legal Changes

Effective information security is no longer just dependent on an organisation’s own internal cybersecurity controls. The UK Information Commissioner’s Office (ICO) highlights that third-party service providers are processing...more

WilmerHale

Obligations for Deployers, Providers, Importers and Distributors of High-Risk AI Systems in the European Union’s Artificial...

WilmerHale on

In this blog post, we will focus on obligations that the European Union’s Artificial Intelligence Act (AI Act) sets for deployers, providers, importers and distributors regarding high-risk AI systems....more

Mayer Brown

EU Cyber Legislation Puts Emphasis on Board Responsibility

Mayer Brown on

What is a Management Body? Under both DORA and NIS2, a management body can be a body with managerial and/or supervisory functions. The powers and structure of management bodies vary within the EU Member State, and managerial...more

The Volkov Law Group

A Deeper Dive into Supply Chain Transparency & Accountability

The Volkov Law Group on

The sheer proliferation of supply chain transparency and accountability regulations at international scale itself warrants a closer look at the level of scrutiny required of organizations with complex, multi-faceted, global,...more

Mitratech Holdings, Inc

Understanding 4th- and Nth-Party Risk: What Do You Need to Know?

Strategies for Mitigating Unseen Threats and Managing 4th- and Nth-Party Risk in Your Modern Business. Organizations today have transitioned from using on-site server rooms to relying on third-party services and cloud...more

NAVEX

[Webinar] Trust Beyond Boundaries: Holistic Approaches to Third-Party Risk - September 14th, 9:00 am BST

NAVEX on

Third-party relationships supporting core operations are now more important than ever for most organizations. Yet too often, procurement, information security, compliance, and other professionals are overburdened with the...more

NAVEX

[Webinar] Trust Beyond Boundaries: Holistic Approaches to Third-Party Risk - September 13th, 9:00 am PT

NAVEX on

Third-party relationships supporting core operations are now more important than ever for most organizations. Yet too often, procurement, information security, compliance, and other professionals are overburdened with the...more

Quarles & Brady LLP

The Clock is Ticking: Comments to Proposed Federal Rules For Wholesalers and 3PLs are Due June 6th and Here’s What We Think

Quarles & Brady LLP on

On February 4, 2022, the FDA released its long-awaited proposed national standards for the licensure of third party logistics providers (3PLs) and wholesale drug distributors. The draft rules were years over-due and the delay...more

McDermott Will & Emery

FDA Publishes Proposed Rule on National Standards for the Licensure of Wholesale Drug Distributors and Third-Party Logistics...

McDermott Will & Emery on

The US Food and Drug Administration (FDA) published its proposed rule National Standards for the Licensure of Wholesale Drug Distributors and Third-Party Logistics Providers on February 4, 2022. The proposed rule sets...more

Holland & Knight LLP

Proposed FDA Rules Could Be Game Changers for the Pharmaceutical Supply Chain

Holland & Knight LLP on

New federal regulations have been proposed that will affect licensure of wholesale drug distributors and third-party logistics providers (3PLs). The Drug Supply Chain Security Act became law in 2013. The U.S. Food and Drug...more

Robinson+Cole Data Privacy + Security Insider

SolarWinds Hackers Focus on Downstream Vendors as Next Victims

In a blog post entitled “New activity from Russian actor Nobelium,” Microsoft’s V.P. of Customer Security & Trust Tom Burt discussed a recent alert issued by the Microsoft Threat Intelligence Center (MSTIC) regarding the...more

Sheppard Mullin Richter & Hampton LLP

Cybersecurity Guidance Issued to Retirement Plan Sponsors

The Department of Labor recently issued cybersecurity guidance to retirement plans. The department’s Employee Benefits Security Administration (EBSA) issued guidance in three areas: (1) hiring and working with vendors and...more

Sheppard Mullin Richter & Hampton LLP

NYDFS Issues Supply Chain Management Guidance

The New York State Department of Financial Services recently issued recommendations to financial institutions in the aftermath of the SolarWinds cyberattack. In that attack, hackers inserted malware into SolarWinds software...more

Society of Corporate Compliance and Ethics...

[Webinar] Update on China and Russia: Restrictions and Best Practices - June 1st, 12:00 pm - 1:30 pm CDT

Learning Objectives: - Develop greater understanding of the main US trade restrictions on China and Russia - Gain familiarity into key compliance issues under current restrictions, including related to exports, supply...more

Hogan Lovells

NYDFS recommends critical new practices to reduce supply chain risk in wake of SolarWinds attack

Hogan Lovells on

On April 27, 2021, the New York State Department of Financial Services (“DFS” or the “Department”) released a report regarding its investigation into the response by DFS covered entities to the SolarWinds supply chain attack....more

Thomas Fox - Compliance Evangelist

The Memoirs of Sherlock Holmes – The Yellow Face and Managing Third Parties

This week, we return to Sherlock Holmes-themed blog posts. We finished the review of The Adventures of Sherlock Holmes and now move on to The Memoirs of Sherlock Holmes. We began the adventure by considering one of the...more

Thomas Fox - Compliance Evangelist

Compliance Responses to Bribery Schemes

Yesterday, I looked at some of the more creative bribery schemes identified in 2019 Foreign Corrupt Practices Act (FCPA) enforcement actions. They were schemes involving distributors, joint ventures (JVs) and fraudulent...more

White and Williams LLP

Amazon Feels the Heat From Hoverboard Fire Claims

White and Williams LLP on

In State Farm Fire & Cas. Co. v. Amazon.com, Inc., No. 3:18CV166-M-P, 2019 U.S. Dist. LEXIS 189053 (Oct. 31, 2019), the United States District Court for the Northern District of Mississippi considered a Motion for Judgment on...more

White & Case LLP

Africa Focus: Spring 2019 - Resolving disputes in Africa's mining sector

White & Case LLP on

International arbitration can benefit the parties to a range of mining disputes - Mining is one of Africa's flagship industries and a growth engine for many of the continent's countries, such as Angola, Côte d'Ivoire, the...more

Pillsbury Winthrop Shaw Pittman LLP

Global Innovation Centers in the Data-Driven Digital Economy

GICs offer advantages for exploiting big data and staying competitive. Data is the fuel of the 21st-century economy. Companies must manage and exploit data and digital technologies in an innovative, agile and cost...more

31 Results
 / 
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide