DORA Compliance Shared Assessments’ Standardized Information Gathering Questionnaire (SIG) is a valuable tool for achieving DORA (Digital Operational Resilience Act) compliance. The SIG provides a structured framework for assessing third-party risk. Shared Assessments 2025 SIG, to be released later this...
Introduction It’s the last day of the World Economic Forum Annual Meeting in Davos, Switzerland. Some of us would really like to be there for the skiing. But seriously and professionally, the meeting and related Global Risks Report have relevance...
What is AI? What is this new law? Artificial Intelligence (AI) is a novel and emerging technology designed to perform tasks that typically require human intelligence including learning, problem-solving, reasoning, and perception. AI emulates human cognitive functions and, in some...
Regulators have developed “principles-based guidance that provides a flexible, risk-based approach to third-party risk management that can be adjusted to the unique circumstances of each third-party relationship.” On June 6th, less than 20 months after comments closed, the Federal Reserve,...
and...Third Party Risk Managers Everywhere Should Pay Attention! Third-party risk managers should be paying attention to important ESG regulatory developments in the European Union, where two pieces of regulation became effective within the last month and one more may be...
Last week Bob Maley, Chief Security Officer at Black Kite and I led a Fireside Chat discussion on the current regulatory landscape regarding privacy and security. While state laws continue to advance and there is momentum for a Federal U.S....
