NAVEX, the leader in integrated risk and compliance management software, announces the findings of its 2022 Incident Management Benchmark Study. The annual report tracked and analyzed organizational compliance trends based on more than 1.37 million global incident management reports made to nearly 3500 organizations in 2021. Chief among the findings is that risk and compliance professionals face dual challenges in navigating a post-pandemic world with whistleblowers more emboldened than ever.
This NAVEX publication covers everything you need to know surrounding whistleblowing for 2022, from the EU Whistleblowing Protection Directive and its requirements, to key board tips.
Recent incidents of cyberattacks impacting major organizations through exploited weaknesses in third-party vendors have highlighted the importance of effective third-party risk management, creating an opportunity to revisit how risk-based vetting and continuous monitoring are pillars of a successful program. In this article, we’ll discuss the current third-party vendor landscape and related risk management practices.
This questionnaire is intended to help get your organization started with third-party and IT risk management by establishing a baseline for investment needs and areas of focus.
There are universal components or steps of a risk management framework regardless of the type of risks your business focuses on to help get organizations started quickly and simply. Download our Getting Started with IT Risk Management Guide today.
On March 21, 2022, the Securities and Exchange Commission proposed rule amendments that, if passed, would require public companies to disclose specific climate-related information. This proposal advanced with a 3-1 vote, and after a 60-day public comment period, could be codified into law. In this article, we’ll discuss the basics and what companies should consider now to prepare for the road ahead.
Download this 7-step checklist for aligning your IT and third-party risk management programs with an IRM solution that is agile, data-driven and scalable.
A recent survey shows that ESG measures remain a strong and a growing priority for businesses in 2022, especially as they begin to emphasize a balanced focus across environment, social and governance factors.
This How to Get Started with Ethics & Compliance guide is a resource with advice and examples to help companies implement and manage an ethics and compliance program.
Each year, NAVEX publishes the Top 10 Trends in Risk and Compliance. This publication features trends and predictions for the year to come and features contributions from experts in the industry. In this article Michael Volkov, Carol Williams and Susanna Cagle discuss three pillars to address in order to holistically manage third-party risk: regulatory, enterprise and ESG risks.
With the fluidity and complexity of the Russia-Ukraine crisis, there are broad implications for compliance and legal departments as they struggle to understand how the latest sanctions affect their business. Get practical and expedient guidance to help your organization through this complex landscape.
The recent passage of the Strengthening American Cybersecurity Act of 2022 in the Senate indicates growing attention to cybersecurity threats to critical infrastructure. Escalating events related to the Russian invasion of Ukraine and increased cybersecurity attacks make the call for increased security and regulated reporting requirements timely. In this article, we discuss what the passage means and the considerations all businesses (regardless of industry) should make.
Reports of ransomware attacks have tripled in the past year. The increased frequency and scope of these attacks present not only a business risk for a company, but legal and compliance risks as well. Is your compliance team prepared?
A recent report by the Association of Certified Fraud Examiners (ACFE) reveals that many businesses lack dedicated and disciplined technology for managing fraud cases. Detecting fraud in today’s environment is increasingly complex, and businesses that only do the minimum or use outdated or disjointed technology are well-advised to reevaluate how fraud is detected and addressed.
By fostering a speak-up culture that encourages internal reporting, employees will see that a healthy workplace is paramount to the company, and that’s the foundation to a strong, business.
The recent events of Russia’s invasion of Ukraine are generating questions about how businesses should react to and maintain compliance with imposed sanctions. With countries around the world imposing and adding sanctions on Russia, this challenging regulatory environment can change daily.
Understand what E, S and G means so your business can recognise its responsibility, be prepared to tackle issues, and put an effective ESG strategy in place.
A first-of-its-kind ethics and compliance benchmark report that provides in a single, consolidated document comprehensive research into the multiple disciplines of an ethics and compliance program.
As compliance software company NAVEX Global Inc. expands alongside rapidly evolving data privacy and security laws, the firm has looked to its general counsel, Shon Ramey, to help ensure that the growth goes smoothly.
