-
Le nuove norme interessano sia il Codice penale sia il sistema della responsabilità amministrativa degli enti di cui al D.Lgs. 231/2001 (di seguito anche “Decreto 231”) ed implicano la necessità di aggiornare la mappatura delle aree e dei processi a rischio e, di conseguenza, di rivalutare – ed eventualmente rafforzare – il sistema dei controlli interni al fine di presidiare i nuovi specifici…
-
Three months ago, the U.S. Securities and Exchange Commission (SEC) proposed amendments to its rules on cybersecurity risk management, strategy, governance and incident reporting by public companies subject to the reporting requirements of the Securities Exchange Act of 1934. The SEC’s view is that cybersecurity threats and incidents pose an ongoing threat to public companies, investors and…
-
The level of uncertainty in today’s global marketplace and the velocity of change continue to produce a multitude of potential risks that can disrupt an organisation’s business model and strategy on very short notice. Unfolding events in Eastern Europe, changes in government leadership in several countries around the globe, escalating inflation, rising interest rates, ever-present cyber threats,…
-
On Tuesday, June 6, 2023, the Office of the Comptroller of the Currency (OCC), the Board of Governors of the Federal Reserve System, and the Federal Deposit Insurance Corporation (collectively, the agencies) issued the “Interagency Guidance on Third-Party Relationships: Risk Management.”[1] This marks the long-awaited finalisation of the proposed guidance that was initially issued on July 19,…
-
Ask an executive from most any company anywhere across the globe what her biggest concern is for 2023 and she is likely to say “uncertainty” — notably, uncertainty about how geopolitical tensions, national elections and their aftermath, and economic conditions will affect the business as well as uncertainty about the company’s ability to adapt to the post- COVID work environment.
-
In June, nearly two years after issuing their proposal for third-party risk management (TPRM), the U.S. banking regulators – the Office of the Comptroller of the Currency, the Board of Governors of the Federal Reserve System and the Federal Deposit Insurance Corporation – finalised their guidance.In this podcast, Brian Kostek from Protiviti interviews Kathryn Hardman from Veritex Bank and Helen…
-
In this episode, we dive into SOX compliance – specifically, the findings of and key takeaways from Protiviti’s latest Sarbanes-Oxley Compliance Survey. The results of our research are featured in our just-released report, The Evolution of SOX: Tech Adoption and Cost Focus Amid Business Changes, Cyber and ESG Mandates.Offering their insights and perspectives are Protiviti Managing Directors…
-
In this episode, we dive into SOX compliance – specifically, the findings of and key takeaways from Protiviti’s latest Sarbanes-Oxley Compliance Survey. The results of our research are featured in our just-released report, The Evolution of SOX: Tech Adoption and Cost Focus Amid Business Changes, Cyber and ESG Mandates.Offering their insights and perspectives are Protiviti Managing Directors…
-
In June, nearly two years after issuing their proposal for third-party risk management (TPRM), the U.S. banking regulators – the Office of the Comptroller of the Currency, the Board of Governors of the Federal Reserve System and the Federal Deposit Insurance Corporation – finalised their guidance.In this podcast, Brian Kostek from Protiviti interviews Kathryn Hardman from Veritex Bank and Helen…
-
The International Organisation for Standardisation’s (ISO) new global messaging standard, ISO 20022, is set to be adopted by payment processing organisations globally by 2025.
