Whether from internal sources or through third-party relationships, corrupt business activities pose severe financial, operational and reputational risk. Proper due diligence needs to be a business strategy and not just a reaction against regulatory enforcement.
Our new market report, takes an in depth look at recent developments and offers insight into running a compliant and ethical global business. With primary research and articles written by industry experts, you’ll get answers to some of today’s most important questions like:
How are businesses navigating the risks posed by global supply chains?
Have compliance risks changed since the rise of anti-corruption purges?
How do you set the right tone for disclosing misconduct in the workplace?
How can I evaluate the integrity of third parties within the era of fake news?
Learn everything you need to know about effectively managing your third party risk-from defining a due diligence process to creating risk-based strategy-in our comprehensive guide.
What you'll learn:
-How to define your goals and create a strategy
-How to manage your third-party risk management programme
-How to track and improve your programme's effectiveness
An effective third party risk management program is in the interest of all organizations—regardless of size, industry, and number of third party providers. This report will help you benchmark your third party risk management program and its performance against trends in the market and best practices.
What you'll learn:
The top issues and challenges organizations are facing with their third party risk management programs
How organizations are using outside providers to help with third party due diligence
The inconsistency of top concerns year over year and what this might indicate
How to leverage the findings in this benchmark report to increase program effectiveness in your own organization
The stats, risks, and tactics you need to shape your mobile strategy are in this definitive guide!
We’ve compiled all the stats you need from first- and third-party surveys. We’ve identified the key risks. And, we’ve outlined the tactics you can put in place. With this definitive guide, you will have everything you need to shape a mobile strategy that succeeds.
Get this guide now.
Download this white paper to learn more about these three steps to securing software patches:
Play to strengths and know your weaknesses
Prioritize for Bottom Line Value
Design a Process to Support Desired Outcomes
To ensure that “quasi-insiders” or third parties do not contribute to your enterprise’s attack vector, it’s imperative to develop a third-party governance process to mitigate risk. Read on to find out how.
OAuth is an emerging Web standard for authorizing limited access to applications and data. It is designed so that users can grant restricted access to resources they own—such as pictures residing on a site like Flickr or SmugMug—to a third-party client like a photo printing site. In the past, it was common to ask the user to share their username and password with the client, a deceptively simple request masking unacceptable security risk. In contrast to this, OAuth promotes a least privilege model, allowing a user to grant limited access to their applications and data by issuing a token with limited capability.
This guide is designed to break down the complex challenge of mitigating third-party corruption risk into manageable components. Based on hundreds of member conversations and extensive research, we believe that successful companies conduct third party due diligence in five key phases.
Growth in new markets introduces new costs to
control, regulations to manage, and supply chain
complexities to solve.
Longer, more complicated cold chains mean that
collaboration with third party logistics providers
(3PLs) can help make the difference between
profitable simplicity and unmanageable complexity.
Companies are increasingly relying on their 3PLs
for services such as monitoring and intervention,
contingency planning, and cost control.
Reduce risk by improving packaging, visibility, and
establishing QA best practices.
Improved visibility, new tools, new monitoring
capabilities and appropriate packaging can also help
drive down costs for shippers.
Establishing a culture of integrity, ethics and respect is the number one priority for companies in 2017, according to a new report. In common with the 2015 report, getting an organisation's culture right is the main objective for compliance professionals in the year ahead, with 85 per cent of respondents saying it is one of their three main goals.
However despite this, only 32 per cent of firms indicated that they are planning to undertake a culture or ethics assessment in the next twelve months. In addition, workplace behaviour was rated as the lowest area of risk receiving attention by stakeholders (29 per cent).
Download the full report for additional stats on board level reporting, increasing compliance programme awareness and satisfaction with third party risk management.
Screening your third party vendors and business partners for risk can be a challenging process. With so many different factors to consider, where do you even begin?
We've developed our Anti-Bribery and Corruption Risk Assessment Checklist so you can streamline your compliance risk assessment processes and ensure each potential risk is addressed. Keep up with changing European laws and regulations with this checklist.
Thirty percent of organisations expect to do more work through outside third parties in 2017. However, third parties are responsible for 75 percent of foreign bribery schemes, making these engagements rife with risks that can’t be ignored. A strong third-party risk management programme will help your organisation make smart choices when it comes to engaging with outside business partners.
The Definitive Guide to Third-Party Risk Management gives you insight, advice and examples to help your organisation recognise and address third-party risk.
As our unpredictable world becomes more complex, interdependent and dangerous, it’s becoming harder to manage third-party risk. Traditional financial and operational risks seem like the good old days. Now procurement has to manage, mitigate and avoid risks as disparate as conflict minerals, cybercrime, natural disasters, resource depletion and many others.
In this whitepaper, industry expert Michael Volkov, CEO of The Volkov Law Group, LLC, shares key questions no business can afford to overlook when evaluating and selecting vendor risk management solutions.
The Definitive Guide to Third-Party Risk Management is a comprehensive resource full of insight, advice and examples to help organisations identify and address their third-party risk.
A strong third-party risk management programme will help your organisation make smart choices when it comes to engaging with third party business partners. It will also protect your organisation from the risks that third parties can present.
This guide is divided into three main sections: PLAN, IMPLEMENT and MEASURE. In these sections you’ll find the information and tools you need to develop a risk-based strategy, define third-party risk and a standard due diligence process, implement continuous monitoring of third parties and identify areas in which you need to improve your programme’s effectiveness.
With the introduction of the Foreign Corrupt Practices Act (FCPA) and UK Bribery Act, organisations must take corruption in business seriously. Given the complexity of the activities addressed in an anti-bribery and corruption programme, however, the task can seem overwhelming.
Our Anti-Bribery and Corruption Risk Assessment Checklist outlines how to implement an effective anti-bribery compliance programme using a protect, detect and correct methodology to manage core programme components such as:
• Risk Assessment
• Corrective Action
• Training / Communication
• Controls / Oversight
• Business Partners
Our checklist will enable you to design and implement an effective, global and consistent anti-bribery compliance programme.
Cybersecurity is on everyone’s mind – but why should you care about the cybersecurity of the businesses you work with?
Download our infographic and discover:
When you need to assess the cyber risk of another organization.
The implications of not understanding the cybersecurity posture of the businesses you work with..
How measuring third-party cybersecurity risk will help you.
NAVEX Global commissioned an independent third party study of over 300 Ethics and Compliance senior level decision makers in compliance, HR, legal and risk roles across multiple industries, to understand how they are allocating their budgets and which activities are contributing to their program success. Download this spending research report to benchmark your program and use these key lessons from your peers to boost your ethics and compliance programs' effectiveness.