Compliance Week’s Post

Thrilled to be a speaker at Compliance Week National Summit 2024 – the pulse of the global compliance community! Join me and 500+ professionals as we shape the future of compliance, ethics, and risk management. I will lead a session focused on tackling financial crimes and exploring proactive strategies for mitigation. Let's inspire change together! #CWNational24 #compliance #financialcrime #riskmanagement

📰 🚨 The #DOJ again packs a lot of valuable insights into its updated Evaluation of Corporate Compliance Programs (Sept 2024). As a great reminder, a well-designed #compliance program relies on an ongoing, tailored, and relevant risk assessment process. Key Risk Assessment Considerations: ✅ Risk Management Process: How are you identifying, analyzing, and addressing risks? ✅ Risk-Tailored Resource Allocation: Are you prioritizing resources to the areas of greatest risks? ✅ Updates and Revisions: Is your risk assessment updated to reflect new data and issues? ✅ Lessons Learned: Are you integrating lessons from past experiences or others in your industry? ✅ Managing Emerging Risks: How are you handling internal/external risks, including AI and other technologies? #CorporateCompliance #RiskManagement #ECCP

CASS Compliance: Beyond Boundaries Think CASS compliance is isolated? Think again! Join experts as we explore how it impacts broader regulations, risk management, and more. Explore the relevance of CASS challenges in regulatory compliance and watch now! #CASSCompliance #RegTech #BeyondBoundaries https://lnkd.in/e9p53jRy

Corporate Compliance matters: U.S. Department of Justice makes multiple updates to its evaluation of Corporate Compliance programs, including assessments of compliance and risk management resources, assets, technology and data access, as well as sound AI/technology risk management. See what the DOJ has added and get a glimpse of their pilot programs on compensation incentives and whistleblower protections. https://lnkd.in/eYntgc6d #KPMGRegulatoryAlert #Compliance #Regulatory #CorporateCompliance

Pumped to attend Compliance Week National 2024 and connect with industry experts, benchmark best practices, and elevate my compliance game. If you are planning on attending or will be in the area, my colleagues and I would love to set aside time to Introduce ourselves and discuss what Governance, Risk, and Compliance management looks like at Origami Risk! Bruce Miller Reggie Gilliard Sr. Learn more or register at https://lnkd.in/gf-ca7is #CWNational24 #ComplianceExcellence #complianceethics #complianceraudit

For those of you working in compliance, watch our experts discuss the impact of CASS compliance on broader regulations and risk management.

What is missing from your #compliance strategy? Mitigate risks and meet increasing regional regulatory expectations. Connect to ways to simplify risk-based due diligence across the relationship lifecycle. Learn more.

What is missing from your #compliance strategy? Mitigate risks and meet increasing regional regulatory expectations. Connect to ways to simplify risk-based due diligence across the relationship lifecycle. Learn more.

What is missing from your #compliance strategy? Mitigate risks and meet increasing regional regulatory expectations. Connect to ways to simplify risk-based due diligence across the relationship lifecycle. Learn more.

Since DOJ issued its first compliance guidance (Evaluation of Corporate Compliance Programs (ECCP)) in 2017 (that has served as reference framework for companies to adequately develop their compliance programs) till nowdays, many changes and amendments have been incorporated in this document hardly every year, to include additional details to evaluate Compliance Programs, all based on experience gained through investigations conducted, companies compliance culture evolution and new and emerging needs and risks that have to be addressed (for example technology dependency and recently AI). Actual document changes reinforce the importance of an adequate risk assessment in all matters and the identification of mitigating measures focusing on the following 10 main topics: 1. Continuous identification of new and emerging risks considering internal and external circumstances affecting the organization as well as the measures identified and put in place to mitigate risks. 2. Use of all kind of technologies also in the business and on the managing of compliance (considering specifically the new emerging AI risks) and the need to oversight and monitor their use as intended and developing appropriate internal controls (although technology risk is not new, based on experience, is the area where more weaknesses arise due to the speed of technology development and the slowness of risks identification and control design). 3. Define procedures to update policies to reflect continuous lessons learned coming from internal facts and external companies. What did occur to one competitor or company in the sector that could happen to us? 4. Monitoring the effectiveness of training programs and how employees have gained the enough knowledge on subject matters. 5. Enhances the anti-retaliation provision related to whistleblowing. 6. Continuous oversight on the vendors performance as an additional point in the third-party risk management programs. 7. Deep analysis on how to integrate companies in M&A processes in terms of compliance and control measures (pre and post transactions). 8. Technology and data analytics to be incorporated into compliance areas to improve monitoring and efficiency on the programs. 9. Ensure adequate staff and resources available to manage compliance risks in a proportionate manner comparing with the rest of the company areas resources (this shows how the important in compliance department for the company comparing with the rest of businesses areas). 10. How and how often the company assesses and measures the success and effectiveness of its compliance program. For mor detail see our Global KPMG Regulatory Insights