Tag: cyber security

AI Today in 5: September 16, 2025, The No Robo Bosses Episode

Post author By Admin
Post date September 16, 2025
No Comments on AI Today in 5: September 16, 2025, The No Robo Bosses Episode

Welcome to AI Today in 5, the newest edition to the Compliance Podcast Network. Each day, Tom Fox will bring you 5 stories about AI, so start your day, sit back, enjoy a cup of morning coffee, and listen in to the AI Today In 5, all from the Compliance Podcast Network. Each day, we consider four stories from the business world, compliance, ethics, risk management, leadership, or general interest related to AI.

Top AI stories include:

SecurityScorecard secures HyperComply. (SiliconAngle)
State of AI in cybersecurity. (CrowdStrike)
Establishing a governance framework for AI. (PaloAlto)
Complying with ‘No Robo Bosses’. (Fisher Phillips)
You may be in violation without even knowing it. (Fast Company)

For more information on the use of AI in Compliance programs, my new book, Upping Your Game. You can purchase a copy of the book on Amazon.com.

Tags AI, compliance, cyber security, GenAI, Robo-Bosses

Compliance Tip of the Day

Compliance Tip of the Day – AI, Behavioral Analytics and Cyber Security

Post author By Admin
Post date June 19, 2025
No Comments on Compliance Tip of the Day – AI, Behavioral Analytics and Cyber Security

Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, our goal is to provide you with bite-sized, actionable tips to help you stay ahead in your compliance efforts. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today, we explore how pairing AI with behavioral analytics can enhance your cybersecurity.

For more information on this topic, refer to The Compliance Handbook: A Guide to Operationalizing Your Compliance Program, 6th edition, recently released by LexisNexis. It is available here.

Tags AI, Behavioral Analytics, cyber security

Daily Compliance News

Daily Compliance News: April 16, 2025, The Fired by AI Edition

Post author By admin
Post date April 16, 2025
No Comments on Daily Compliance News: April 16, 2025, The Fired by AI Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy morning coffee, and listen to the Daily Compliance News. All, from the Compliance Podcast Network. Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional. Yesterday, Trump rolled back almost all tariffs he had imposed 48 hours earlier. We look at four stories on that issue from the compliance angle.

Top stories include:

China accuses the US of hacking the Winter Olympics. (WSJ)
Cyber compliance is the biggest challenge for UK financial firms. (InfoSecurity Magazine)
What happens when AI fires you? (FT)
Bank of America to pay $540MM. (Bloomberg)

Tags China, cyber security, FDIC

Daily Compliance News

Daily Compliance News: January 6, 2025 – The Lady MacBeth in 2025 Edition

Post author By admin
Post date January 6, 2025
No Comments on Daily Compliance News: January 6, 2025 – The Lady MacBeth in 2025 Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen to the Daily Compliance News—all from the Compliance Podcast Network. Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Lady MacBeth lives. (Greek Reporter)
Is CFIUS corrupt? (WSJ)
Auditing firms call the value of metrics ‘speculative.’ (FT)
Treasury department sanctions Beijing-based cybersecurity company. (NYT)

For more information on the Ethico Toolkit for Middle Managers, available at no charge, click here.

Check out the entire 3-book series, The Compliance Kids, on Amazon.com.

Tags Auditing firms, CFIUS, China, cyber security, metrics, Senator Robert Menendez

Daily Compliance News

Daily Compliance News: September 30, 2024 – The My Law Firm Edition

Post author By admin
Post date September 30, 2024
No Comments on Daily Compliance News: September 30, 2024 – The My Law Firm Edition

Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

In today’s edition of Daily Compliance News:

Trump plans to make DOJ his personal law firm. (WSJ)
CA wants carbon accounting. (WSJ)
Tim Brown wants tougher cyber laws. (FT)
Elliot affiliate wins Citgo auction. (Reuters)

Tags CA, carbon accounting, Citgo, cyber security, DOJ, SEC, Tim Brown

Compliance Into the Weeds

Compliance into the Weeds: The Convergence of Cybersecurity and Internal Controls

Post author By admin
Post date July 17, 2024
No Comments on Compliance into the Weeds: The Convergence of Cybersecurity and Internal Controls

The award winning, Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance-related topic, literally going into the weeds to more fully explore a subject. Looking for some hard-hitting insights on compliance? Look no further than Compliance into the Weeds!

In this episode, Tom Fox and Matt Kelly take a deep dive into a recent SEC enforcement action involving RR Donnelley, where a cyber breach was characterized as an internal control

In this episode, we discuss how criminal activities in cyberspace are outpacing regulatory measures and the law’s ability to keep up. The conversation touches on the idea that access controls for valuable corporate assets, whether financial data or sensitive information, are becoming indistinguishable in the eyes of cybercriminals. The discussion includes a thought-provoking perspective on merging cybersecurity and anti-money laundering functions, as both deal with improper electronic transactions. The core concern is not just the breach itself, but also the prevention of data exfiltration.

Key Highlights:

Corporate Jewels: Money vs. Data
Cybersecurity and Anti-Money Laundering
Improper Electronic Transactions
Focus on Data Exfiltration
Conclusion: Preventing Data Theft

Resources:

Matt on Radical Compliance

Tom

Tags cyber security, Internal Controls, RR Donnelly, SEC

Daily Compliance News

Daily Compliance News: December 14, 2023 – The Serious Misconduct Edition

Post author By admin
Post date December 14, 2023
No Comments on Daily Compliance News: December 14, 2023 – The Serious Misconduct Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the Daily Compliance News. all from the Compliance Podcast Network. Each day we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Stories we are following in today’s edition:

Former BP CEO docked $40M for ‘serious misconduct’. (WSJ)
Why culture outside the US matters. (FT)
Tesla has a 2MM car recall. (BBC)
Hackers target outdated servers. (Reuters)

Tags BP, CEOs behaving badly, clawbacks, culture, cyber security, Tesla

Innovation in Compliance

Innovation in Compliance – Chris Lehman on Navigating the Wild West: Digital Compliance Strategies

Post author By admin
Post date August 22, 2023
No Comments on Innovation in Compliance – Chris Lehman on Navigating the Wild West: Digital Compliance Strategies

Innovation comes in many areas and compliance professionals need to not only be ready for it but embrace it. One of those areas is telehealth and telemedicine. My guest in this episode is Chris Lehman, CEO at Safeguard Cyber who visits with me to discuss the challenges and importance of managing risk in digital compliance.

The conversation focuses on the shift in communication channels from email to platforms like Slack and social media, highlighting the human factor as the biggest risk in compliance strategies. Lehman emphasizes the need for companies to prioritize compliance and good corporate governance in these new communication channels. To manage risk, companies should treat digital compliance as a risk management process, gaining visibility into employee communication tools, establishing policies, training employees, and utilizing technology.

We also highlight the tension between compliance teams and line of business teams, emphasizing the need for compliance teams to be enablers and strategic partners. The conversation references recent SEC enforcement actions and the importance of taking action to enforce compliance. Overall, digital compliance and governance are crucial in the modern business landscape, and utilizing technologies like monitoring tools and natural language understanding can help businesses stay secure and compliant in the digital age.

Highlights Include:

· Safeguard Cyber: Securing Digital Communications

· Managing Risk in Digital Compliance

· Managing Risk in Compliance

· Digital Compliance and Governance

Resources

Chris Lehman on LinkedIn

Tom Fox

Tags Chris Lehman, compliance, cyber security, digital assets, Digital Compliance Strategies, Safeguard Cyber

Compliance Into the Weeds

Compliance into the Weeds: What is Driving Compliance Engagement at the Board?

Post author By admin
Post date June 28, 2023
No Comments on Compliance into the Weeds: What is Driving Compliance Engagement at the Board?

The award-winning, Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, going into the weeds to explore a subject more fully and looking for some hard-hitting insights on sanctions compliance. Look no further than Compliance into the Weeds!

In this episode, co-hosts Tom Fox and Matt Kelly dissect the Navex 2023 State of Risk and Compliance Report. Tom and Matt delve into Navex’s annual benchmarking report, which surveyed 1,300 compliance professionals. The report revealed that 53% of respondents described their compliance programs as mature. Matt and Tom question whether the board is driving the conversation or if compliance officers request updates due to potential liability. The report’s findings on cybersecurity and privacy concerns, survey results on where compliance should reside in a company, and the importance of having a mature anti-bribery anti-corruption compliance program are all discussed. Tune in to hear more about how compliance officers can address pressing concerns such as cybersecurity breaches and attacks.

Key Highlights:

Navex’s benchmark report on compliance programs
Board-Compliance Officer Relationship & Cybersecurity in Compliance
The necessity of Dedicated Compliance Committees
Survey Finds Diverse Views on Compliance Placement in Companies
The Importance of Anti-Bribery Compliance for Cybersecurity
Compliance Officer Reporting to CISO Dynamics

Resources:

Matt

Blog Post in Radical Compliance

Tom

Tags Board of Directors, BOD, CCO, CISO, compliance, cyber security, Navex, Navex 2023 State of Risk and Compliance Report

Compliance Into the Weeds

Compliance into the Weeds: COSO Fraud Risk Management Framework

Post author By admin
Post date May 17, 2023
No Comments on Compliance into the Weeds: COSO Fraud Risk Management Framework

Get ready to dive into the fraud risk management and prevention world with Compliance into the Weeds, hosted by Tom Fox and Matt Kelly. In this episode, they break down the recently released fraud risk framework by COSO and the Association of Certified Fraud Examiners and how it’s necessary for today’s cyber-based fraud and cryptocurrency. They stress the importance of data analytics and internal hotlines to prevent fraud and that all employees need to be trained to detect and prevent fraud in their industry. The hosts also discuss how financial reporting controls may not always detect fraud and how anti-fraud controls are essential. With the rise of new types of fraud like ESG and greenwashing, the hosts recommend the fraud risk report for audit and compliance professionals to stay informed about risks swirling around corporations today. Take advantage of this informative and fascinating podcast. Tune in to Compliance into the Weeds now.

Key Highlights:

· Fraud Risk Management: COSO Report 2nd Edition

· Effective Fraud Prevention Training for Employees

· Importance of Anti-Fraud Controls in Fighting Fraud

· COSO Fraud Risk Guidance and the Fraud Pentagon

Notable Quotes:

“But when you think about it, we have a lot of external factors, such as the rise of cryptocurrency, which is riddled with fraud and corruption risk. New methods of cyber-based fraud, which didn’t exist, say, 2016, the 2010s before that. Rise of ransomware in particular, which wasn’t quite a big thing back then that it is all over the place now.”

“Most frauds, you the risk management function, you might never catch them. By looking for them, you’ll have to depend on somebody else coming to you from the enterprise, say, I think this person over here is doing something sketchy.”

“Fraud is having a moment. And fraud risk is on the forefront of many people’s minds from many different areas.”

“We need to do better at finding ways to assess and understand your fraud risk and then implementing new controls as necessary to push that risk down to acceptable levels.”

Resources

Matt

Blog Post in Radical Compliance

Tom