Risk Management

ARTICLECompliance Risk Issues with Employer Health Plans December 21, 2011A well-known nationwide pharmacy retailer was recently subject to an enforcement action by the U.S. government costing them a settlement of $2.25 million, the implementation of a comprehensive written compliance program, and an agreement to submit to compliance audits every 2 years for 20 years. What type of violation could have resulted in such a severe punishment to the company? The answer may surprise you – these penalties were the result of reported HIPAA security breaches.

ARTICLEReal Scenarios for Real Performance in Risk Oversight November 10, 2011Technology change, competitor action, cyber attacks, supply chain disruption, regulatory change, product blunders and executive departures – the risks to business performance are unceasing in a dynamic environment. Yet, in the need for performance lies the seed of improved risk management.

ARTICLEHow Boards Can Prepare for New SEC Cybertheft Disclosure Requirements November 07, 2011Veteran SEC Official John Reed Stark discusses the implications of new SEC disclosure requirements for managements and boards.

ARTICLESurvey: Most Companies Not Doing Enough to Manage IT Risks October 13, 2011Results from the Protiviti’s 2011 IT Audit Benchmarking Survey reveal that many organizations, including one in four with revenues up to $1 billion, are not conducting any kind of IT risk assessment.

ARTICLEAre People on Your Risk List? September 29, 2011The trend toward more depth in board oversight of risks is a good thing, leading to boards with a deeper understanding of business and compliance risks and boards that are better positioned to help their company achieve long-term sustainable success.