The DOJ obtains guilty pleas from two former security services executives for bid rigging of DoD security contracts. Stop by to get the scoop.
Day: October 26, 2021
There’s a certain etiquette involved in why we don’t see people eating in subways. So when a case of really stinky food breaks out, and you get ‘olfactorily pissed’, you just have to find who the suspect is!
Share the laughter and exasperation in this new episode of F*CKING ARGENTINA with Tom Fox and Gregg Greenberg. ▶️
#MalodorOnTheNumberFiveExpress
ABOUT THE BOOK
F*cking Argentina and 10 More Tales of Exasperation by Gregg Greenberg is a compilation of short stories that dive into the American phenomenon of being in a near-perpetual state of aggravation. Greenberg’s anthology brings together eleven original pieces of work, each with their own slice of independent and distinct plot lines but all converging on the universal theme of exasperation. They run the whole gamut of scenarios, from the titular story “F*cking Argentina” wherein the country is once again in bankruptcy and a polite game of tug o’ war at a couples dinner to a malodorous snack on the subway. Stories end with the superlative f-word, which showcases at some point in other stories, and a guaranteed chuckle from their readers. Buy the book here: http://fckingargentina.com/.
Do you have a podcast (or do you want to)? Join the only network dedicated to compliance, risk management, and business ethics, the Compliance Podcast Network. For more information, contact Tom Fox at tfox@tfoxlaw.com.
Welcome to the Everything Compliance fan favorite edition of Shouts Outs and Rants. Jonathan Armstrong shouts out to the Class of 2021 who lost a year of in-person learning but finally are able to receive their diplomas in person. Matt Kelly goes on an extended rant about the debt crisis and the moral bankruptcy of the GOP. Tom Fox shouts out to the Houston Astros form making their third trip to the World Series in 5 years and predicts a Houston victory over Atlanta. Jay Rosen has a melancholy rant about shooting victims on movie sets. Karen Woody rants about WeWork going public via a SPAC. Jonathan Marks rants about hotel which are charging pre-pandemic prices while delivering post-pandemic (lack of) services.
The Compliance Life details the journey to and in the role of a Chief Compliance Officer. How does one come to sit in the CCO chair? What are some of the skills a CCO needs to success navigate the compliance waters in any company? What are some of the top challenges CCOs have faced and how did they meet them? These questions and many others will be explored in this new podcast series. Over four episodes each month on The Compliance Life, I visit with one current or former CCO to explore their journey to the CCO chair. This month, my guest is John Melican, former CCO at AMEX Travel and now Managing Director at Exiger.
Melican discussed his decision to join Exiger. He talked about how his time as a CCO and his roles in AML compliance help him as a consultant. He talked about the changing role of the CCO and the compliance function and the increased use of data and tech solutions. We ended by looking down the road to where a CCO position will be in 2025 and beyond.
Resources
John Melican LinkedIn Profile
Exiger
Dan Sholler is Tom Fox’s guest on this week’s episode of the Innovation in Compliance Podcast. He is the Software Product Marketing Leader at Exterro, an organization that creates software that helps clients address regulatory, compliance, and litigation risks at affordable costs. Dan joins Tom to talk about the work Exterro is doing in the realms of compliance risk governance.
The Evolution of Exterro
Exterro has adapted its ability to measure its results more easily, as well as test alternative approaches. Dan explains to Tom that they can test alternative messages, as well as alternative means of delivering those messages. Technology can be used to drive some of the communication to make that initiative work.
The Importance of Plan Sponsor Audits
Plan sponsor audits are significant because it’s a universal change in regulatory posture. This affects how compliance professionals need to think about their responsibilities. In the past, regulatory agencies would use a checklist for compliance personnel on compliance activities. They were more concerned with the end report. These audits shift the focus from the report ability of the compliance professional to the details of implementation that the compliance professional uses. These audits want detailed proof.
In Lieu of Cyber Incident
“When people think about cybersecurity, the first thought that comes to mind obviously is prevention,” Dan remarks. The last few years have seen the escalation in cyber and ransomware attacks. It has also demonstrated that no amount of prevention is going to be good enough to limit the impact of those incidents. It’s not a matter of if, but when. The way compliance professionals limit that impact is a big part of what needs to be done from the cyber security perspective. “No one needs to respond to a [cybersecurity] incident in a technical sense,” Dan says. What needs to be done instead, is to isolate whatever has happened within that environment and gather the relevant evidence in order to potentially catch the perpetrators. Business continuity also needs to be established, and the systems need to be brought back up as quickly as possible. Regulators will be looking at how tightly coordinated an organization’s incident response plans are.
Legal GRC
Legal GRC is the governance risk and compliance activities that affect the legal and compliance organizations. Various operational activities have their own GRC and they are specific to those organizations, not a part of overall corporate governance. Dan tells Tom that Exterro is looking to bring together governance risk and compliance activities and its implementations into a single platform. This will make risk, controls, and implementation of those controls visible. This is important because there is a great deal of common processes that are cross-functional within legal and compliance.
What’s Next
Dan tells Tom that in the future it will be commonplace for GRC subsets that focus not only on GRC but also on the implementation of its controls. It’s not just going to be about compliance with regulation, but also compliance with the policy.
Resources
Dan Sholler | LinkedIn | Twitter
Exterro