Blog

Explore our blogs for the latest insights, tips, and best practices in third-party risk management. Stay informed and protect your organization by navigating the complexities of third-party relationships with confidence. Read on to enhance your risk management strategy!

Blog Category - Public Policy

Guidance, Public Policy

New Integrated Third-Party Risk Management Guidance from the OCC, Federal Reserve, and FDIC

Regulators have developed “principles-based guidance that provides a flexible, risk-based approach to third-party risk management that can be adjusted to the unique circumstances of each third-party relationship.” On June 6th, less than 20 months after comments closed, the Federal Reserve,...

Read More
Public Policy

Coherent Corporate Sustainability Due Diligence and Reporting Frameworks Are Arriving In the EU…

and...Third Party Risk Managers Everywhere Should Pay Attention! Third-party risk managers should be paying attention to important ESG regulatory developments in the European Union, where two pieces of regulation became effective within the last month and one more may be...

Read More
Data Protection, Public Policy

Spotlight on the Gramm-Leach-Bliley Act (GLBA)

Last week Bob Maley, Chief Security Officer at Black Kite and I led a Fireside Chat discussion on the current regulatory landscape regarding privacy and security. While state laws continue to advance and there is momentum for a Federal U.S....

Read More
Data & Cybersecurity, Health Insurance Portability and Accountability Act (HIPAA), Healthcare, Industry Verticals

What HIPAA Misses: Healthcare’s Patient Privacy Issue

Data privacy is a fraught subject in any industry. But in healthcare, the stakes are especially high. Many consumers have made (at least some degree of) peace with trading personal data for the convenience of entertainment offered by their favorite...

Read More
Regulations

Prepare for New Regulations in Data Privacy Laws

Add data privacy laws to the list of trends whose adoption accelerated during the past few years. In 2018, a grand total of two privacy bills were introduced in U.S. statehouses, according to data shared by the International Association of...

Read More
Business Continuity, Public Policy

Cyber Incident Reporting Act: Clock Is Ticking

In response to the surge of major cyberattacks over the past year, Congress has responded with the Cyber Incident Reporting Act. This bipartisan legislation sets timelines for organizations to report cyber incidents to the Cybersecurity and Infrastructure Security Agency (CISA)....

Read More
1 2 3 12