Compliance into the Weeds

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into the role(s) of compliance for ESG. Some of the issues we consider are: How compliance is most suited to lead a corporate ESG effort. Why compliance must do so or be relegated to a technical function? How does government, the courts and investors drive ESG? What is the role in asymmetrical regulations in driving ESG? Why was last week such a wakeup call for corporations around ESG?  ResourcesMatt in Radical ComplianceResources to Assess ESG MaterialityTom in the FCPA Compliance and Ethics BlogThe Role of Compliance in ESGLeading the ESG Effort-Steps for ComplianceCompliance, Data Analytics and ESG Learn more about your ad choices. Visit megaphone.fm/adchoices

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into the fiasco around the formation of the Super League in European Football (soccer), focusing on the role of John Henry, American owner of the Liverpool Football Club and the lessons for the (American) compliance professional.  Some of the issues we consider are: How do you make a cultural change? Why it is mandatory to engage stakeholder in any discussions around cultural change? What makes stakeholder want to follow a corp leader? Why empathy is a mandatory leadership trait for any successful CEO. Why understanding corporate subcultures outside the US is mandatory for the CCO.  ResourcesRead WSJ article Liverpool and the Red Sox Won on His Watch. For Fans, That’s Not Enough by Joshua Robinson Learn more about your ad choices. Visit megaphone.fm/adchoices

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into the Biden Administration’s recently released Executive Order on cybersecurity for both the federal government but also contractors who do work for the US government and their subcontractors. Some of the issues we consider are: How will there be more and better sharing of threat information? How will we achieve stronger cybersecurity within the government? Why will contractors will need to have stronger oversight of their SW supply chain? What will be the role of compliance? What will be the role of internal audit?  ResourcesMatt’s blog post on Radical Compliance: Parsing Biden’s Cybersecurity Order Learn more about your ad choices. Visit megaphone.fm/adchoices

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into the intersection of Elon Musk, cryptocurrencies and the SEC. Some of the issues we consider are: What do make of Musk’s SLN performance? What does the SEC have to say about all this? What is the MicroStrategy, strategy? What does the market think about all this? Where is compliance?  ResourcesMatt’s blog post on Radical Compliance: Bitcoin We Have a Problem Learn more about your ad choices. Visit megaphone.fm/adchoices

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into SAP trade sanction enforcement action. Some of the issues we consider are: What were the underlying facts? How did SAP allow products to get to Iran for so long? How did SAP achieve a NPA even with aggrieved factors? How was the financial penalty calculated? What were the remedial steps SAP engaged in? Why does this enforcement action point towards the need for a more holistic approach to risk?  ResourcesMatt’s blog post on Radical Compliance: SAP Nailed on Sanctions Violations Learn more about your ad choices. Visit megaphone.fm/adchoices

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into a different area; their joint love of history. Matt is reading Nuclear Folly, a new chronicle of the Cuban Missile Crisis by Ukrainian history professor Serhii Plokhy. We use this as a starting point to explore how both the Soviets and Americans used different types of internal debate and information to eventually steer clear of nuclear war. Some of the issues we consider are: What was the Soviet model for information gathering, analysis and debate, both before and during the Missile Crisis? How was the American model of Ex-Comm so different? How do these models inform a speak up culture? How and more importantly why are leadership, corporate culture, speaking up, ethical values all connected.? What does this mean for compliance officers?  ResourcesMatt’s blog post on Radical Compliance:Culture and the Cuban Missile Crisis Learn more about your ad choices. Visit megaphone.fm/adchoices

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into different types of risk including cybersecurity and anti-corruption to lead a broader discuss about the nature of risk, risk management and the future of compliance. Some of the issues we consider are: What is risk? What are the roles of the CISO and CCO for risk management? Who owns risk? What does a BOD want to see around risk management? What does this mean for compliance officers?  ResourcesMatt’s blog post on Radical Compliance:The Cracks in Third Party Risk Management Learn more about your ad choices. Visit megaphone.fm/adchoices

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into the type of cybersecurity risk where ERP software is compromised due to a bug or other vulnerability. Some of the issues we consider are:·      What are two types of cybersecurity risk?·      How does this second type of risk impact ERP systems?·      What are the compliance implications? Internal Audit?  Crop Governance? ·      What steps can a CISO take?·      What does this mean for compliance officers?ResourcesMatt’s blog post on Radical Compliance: More on Cybersecurity, Compliance Risk Learn more about your ad choices. Visit megaphone.fm/adchoices

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into the recent spate of SPACs which have formed and are gobbling up companies through acquisition. What does it mean from the internal control, risk management and compliance perspective? Some of the issues we consider are: What are SPACs? Do SPACs render controls ineffective? What are the requirements under SOX 404b for SPACs? Do SPACs create an inherent conflict of interest between management and shareholders? What does this mean for compliance officers?  ResourcesMatt’s blog post on Radical Compliance: SPACs Draw Internal Control, Governance Concerns Learn more about your ad choices. Visit megaphone.fm/adchoices

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week Matt and Tom take a deep dive into the recent grounding of the Ever Given in the Suez Canal, which has now been floated free. What does it mean from the risk management and compliance perspective? Some of the issues we consider are: What were the controls in place to stop this failure? What changed which rendered these controls ineffective and even obsolete? What is your risk program around supply chain disruption? Was this a Black Swan event? What does this mean for compliance officers?  ResourcesMatt’s blog post on Radical Compliance: Less Ever Given on Risk and ControlThe bank effect and the big boat blocking the Suez, Brendan Greely in the FT Learn more about your ad choices. Visit megaphone.fm/adchoices