New DOJ FCPA Guidelines: What it Means for You

On June 9, 2025, the Department of Justice (DOJ) issued new DOJ FCPA guidelines that reshape how—and when—the Foreign Corrupt Practices Act (FCPA) will be enforced. The update follows a 180-day pause under Executive Order 14209, which directed prosecutors to stop initiating new FCPA investigations unless tied to national security, cartel activity, or competitive harm to U.S. companies. What is the FCPA? The FCPA prohibits ...

How to Build Compliance Teams That Thrive Under Pressure

Tasked with managing risk, navigating uncertainty, and leading with clarity, compliance officers and their teams need to be able to operate under pressure and respond decisively. According to Fabiana Lacerca-Allen, JD, LLM, Chief Compliance Officer at Cipla USA and author of The Crisis Capable Leader, and Brenda Crabtree, former U.S. Naval officer turned Director of Compliance at Vaxcyte, these traits are best honed by leaning ...

By |2025-07-07T13:26:21+00:00July 7th, 2025|Compliance, Governance, Risk & Compliance: GRC|

What CPS 230 Means for Your Supply Chain Security

The Australian Prudential Regulation Authority’s (APRA) CPS 230 mandates critical supply chain risk management updates. Financial institutions reliant on third-party services must pay close attention to this mandate. Why? Supply chain security breaches remain a critical issue, actually now affecting over 75% of software supply chains and involving recent high-profile incidents.   CPS 230 therefore aims to act as a shield to better safeguard organizations. To ...

By |2025-07-02T17:46:48+00:00July 2nd, 2025|Governance, Risk & Compliance: GRC, Regulatory Change|

What is Provision 29? The New UK Internal-Controls Declaration is Here

Does your risk management and internal framework really work? Some companies working in the United Kingdom will need to start proving it. Starting with accounting periods that open either on or after 1 January 2026, every company in either the FCA’s commercial companies or closed-ended investment fund categories must make a statement in its annual report confirming whether its risk management and internal control framework ...

Understanding DOJ Guidance: What’s the Impact on Corporate Compliance Programs?

The U.S. Department of Justice (DOJ) has long emphasized the importance of effective corporate compliance programs. While enforcement priorities may shift over time, the core expectations outlined in DOJ guidance remain consistent: programs must be well-designed, applied in good faith, and actually work in practice. What does that look like in real terms? First, programs must reflect the unique risks of the organization. There’s no ...

By |2025-06-02T15:54:55+00:00June 2nd, 2025|Compliance, Governance, Risk & Compliance: GRC|

Meet “Integrity Sarah”, an Influencer Making Ethics & Compliance Education Stick

When it comes to corporate training, it is important to meet employees where they are. SAI360 is finding success leveraging the popularity of "influencer culture" and infotainment to engage today's workforce with serious ethics & compliance topics. Meet SAI360's Integrity Sarah. Just like many influencers found on YouTube and Instagram, she is sharp, confident in her expertise, and most important - relatable. Featured in SAI360's ...

By |2025-05-20T20:55:57+00:00May 20th, 2025|Code of Conduct, Ethics & Compliance Learning|

What Are CMS Regulations for Hospitals and How To Stay Compliant

Centers for Medicare & Medicaid Services (CMS) regulations for hospitals and other healthcare organizations define the federal requirements providers must follow to receive Medicare and Medicaid reimbursement. These rules govern patient safety, billing accuracy, infection control, privacy, and electronic health records (EHRs). Conditions of Participation (CoPs) refers to the specific health and safety standards organizations must maintain. Additionally, hospitals also closely monitor regulations related to ...

A Quick Look at CPS 230 APRA: What Australia’s Standard Means for Financial Institutions

The CPS 230 APRA standard represents one of the most significant shifts in how Australian financial institutions manage operational risk. Introduced by the Australian Prudential Regulation Authority (APRA), CPS 230 is designed to strengthen resilience by improving oversight, risk visibility, and accountability across critical operations. This standard moves beyond reactive risk management. It encourages a culture of preparedness and clarity. And it ensures organizations are compliant ...

By |2025-05-07T19:32:35+00:00May 7th, 2025|Compliance, Governance, Risk & Compliance: GRC|

How to Create an Effective Compliance Program

Ask five organizations what makes an effective compliance program, and you’ll likely get five different answers. But ask a regulator, and the picture gets a lot clearer.  Regulators are not looking for flashy training modules or one-size-fits-all policies. What they’re looking for is evidence—evidence that your compliance program is real, rooted in risk, and taken seriously across the business. Can you walk the compliance walk ...

By |2025-06-17T20:25:38+00:00April 16th, 2025|Compliance, Governance, Risk & Compliance: GRC|

2025 Global Regulatory Changes to Watch: ESG, AI, Cybersecurity & More

Global regulations are evolving—and before our very eyes. But it’s not just the volume of regulatory changes that matters. It’s the new direction changes may be headed and the need to keep up. Across global markets, a greater shift is taking hold. Compliance is now operating like a mirror, becoming a clear reflection of corporate values, ethics, and long-term resilience. In 2025, a new wave ...

By |2025-04-28T03:08:23+00:00April 14th, 2025|Compliance, Governance, Risk & Compliance: GRC|