Corruption Offences & ISO 37001 - Hernan Huwyler @ IE Law School

•

1 gefällt mir•674 views

Hernan Huwyler discusses corruption offenses and the value of ISO 37001. ISO 37001 provides a certifiable anti-bribery standard that organizations can implement to integrate existing management processes and controls. This allows for more effective decision making, benchmarking against other organizations, and a stronger corporate defense against corruption offenses. Corruption harms both individuals and companies by undermining ethics and losing control of business dealings.

Business

CORRUPTION OFFENCES
AND
THE VALUE OF ISO 37001
Hernan Huwyler, MBA CPA
Risk Management & Internal Control Director
Veolia SP LatAm
Madrid, November 17th 2016

COMPLIANCE PROGRAM SCOPE
Internal policies
& voluntary
commitments
Legal &
Regulatory
Criminal
offences
§ 31.b
Ethics

EFFECT OF CORRUPTION ON COMPANIES
A company that pays
bribes, is not longer in
control of its business

CORRUPTION OFFENSES
Corruption
Misuse of entrusted
power for private
gainBribery
Giving, receiving
or promising
Something of value
Unethically secure
a business

ISO 37001 USES
public + private
+ NGOs
bribery by and of
organization + staff
+ business
associate
Direct or by 3rd
parties

PLAN
Development
DO
Implementation
CHECK
Maintenance
ACT
Evaluation
resources
communication
training
documentationcontrols and reporting
non-compliance reporting
leadership
AB policy
tasks & responsibilities
internal audits
governing body
reviews
context and 3P requirements
scope and risk assessment
contiguous
improvement
9 operational
controls

VALUE OF ISO 37001
Requirements
standard →
certifiable
Integrating the existing
management processes and
controls
Effective decision
making
Benchmarking
Corporate defense

Weitere ähnliche Inhalte

Was ist angesagt?

How the new ISO 31022 on legal risks will help compliance officers. Get a thorough understanding of the future ISO 31022 standard for managing legal risks and how to leverage the guidelines to establish and operate an effective compliance program. At the end, build-out an initial ISO-conforming legal risk management policy right in class - How to plan and execute a legal risk assessment aligned to the ISO framework - How to identify and value compliance risks - How to evolve from heat maps for compliance to tools for planning and decision-making. - Case on setting risk strategies strategies to produce a legal risk procedure. The ISO 31022 is aligned with ISO 31000 and provides more specific guidelines applicable to the management of legal risk. Its purpose is to develop an improved understanding of the management of legal risk faced by an organization applying the principles of risk management. Is supports risk owners to assess and treat risk efficiently and cost effectively to meet the expectations of a wide range of stakeholders. Failure to meet the requirements and expectations of stakeholders in this environment can have considerable and immediate negative consequences that could affect performance, reputation and might lead to criminal prosecution of top management.

ISO 31022 Management of Legal Risks IE Law School Masterclass Hernan Huwyler

Hernan Huwyler, MBA CPA

Anti-Bribery Management Systems: The Impact of Organizational Culture and its...

PECB

ISO 37001 – Preparing for Certification

PECB

ISO 37001: Procurement factors

Dr Mark Lovatt

Exploring Relationship Between Risk & Compliance

ComplianceTrack

The missing parts of the governance puzzle : The 2000 tide and what to expect...

PECB

Mitigating Corruption Risk in a Global Market

PECB

DPO Day Conference - Minimizing Privacy Risks

Hernan Huwyler, MBA CPA

Draft 37001 rancangan 37003 Pedoman Penerapan SMAP v.1.1

Sarwono Sutikno, Dr.Eng.,CISA,CISSP,CISM,CSX-F

Developing Roadmaps and Frameworks based on the new ISO 37002 and the impact of the recent ISO 37301 on compliance management systems rganizational Factors: The Role of Ethical Culture and Relationships The critical understanding of the health of corporate ethics and compliance programs 09:40 – 10:00 Whistleblower and Sarbanes Oxley Act: Mandates for “whistle-blower protection.” Code-of-Conduct, Oversight Reporting and monitoring compliance 10:00 – 10:30 Confidentiality and protection of the identity of the whistle-blower. Network for receiving reports to ensure the privacy of the whistle-blower and prevent access to non-authorised persons. 10:35 – 10:55 Introduction to the implementation and the scope of the EU directive components 11:00 – 11:30 Response times: Establish procedures to follow-up the report within a seven-day acknowledgement 11:35 – 11:55 Independent receiver(s) with the competence to follow up and communicate 12:00 – 12:30 Due Diligence: Thorough follow-up within a reasonable timeframe to provide feedback to stakeholders 12:30 – 13:00 Communication: Establish the conditions and procedures for disclosing the results and inform the oversight authorities. 13:00 – 13:30 GDPR compliance: Processing of personal data must be carried out to comply with the GDPR. 13:35 – 13:55 Record keeping: Companies must document each report received and ensure compliance Confidentiality, transparency and accountability. 14:00 – 14:30 Deletion: Disposing of the privacy data must be deleted according to the GDPR and other relevant mandates in the right manner. 14:35 – 14:55 Procedures for internal reporting and whistleblower management 15:00 – 15:30 Overcoming challenges in implementing the requirements of the Directive 15:35 – 15:55 Developing Roadmaps and Frameworks based on the new ISO 373002 and the impact of the recent ISO 37301 on compliance management systems 16:00 – 16:30 Whistleblower Current Legal Landscape Around the World Protections and rewards for whistleblowers vary widely around the world 16:30 – Whistleblower Online Certification Exam

Prof- Hernan Huwyler, MBA CPA ISO 37002 Roadmap

Hernan Huwyler, MBA CPA

Third Party Due Diligence - Case Study Discussion

Sam Gibbins 紀俊森

Hernan huwyler ISOs for cyber security and privacy

Hernan Huwyler, MBA CPA

TI Managing Third Party Risk

The Business Council of Mongolia

White Paper: A summary of the FSA thematic review

LexisNexis Benelux

Organizational Integrity & Its Relationship with Management Systems and Enter...

PECB

Business Continuity requires a Security Architecture to reduce risk and cost

PECB

CYBERSECURITY, RISK & COMPLIANCE | AMPCUS INC.

Unified11

Organizational Resilience Management - an Integrated GRC Approach

PECB

SGF2016 12641 - Moving from Prediction to Decision

Carl Case

Investigating and dealing with bribery

PECB

Was ist angesagt? (20)

ISO 31022 Management of Legal Risks IE Law School Masterclass Hernan Huwyler

Anti-Bribery Management Systems: The Impact of Organizational Culture and its...

ISO 37001 – Preparing for Certification

ISO 37001: Procurement factors

Exploring Relationship Between Risk & Compliance

The missing parts of the governance puzzle : The 2000 tide and what to expect...

Mitigating Corruption Risk in a Global Market

DPO Day Conference - Minimizing Privacy Risks

Draft 37001 rancangan 37003 Pedoman Penerapan SMAP v.1.1

Prof- Hernan Huwyler, MBA CPA ISO 37002 Roadmap

Third Party Due Diligence - Case Study Discussion

Hernan huwyler ISOs for cyber security and privacy

TI Managing Third Party Risk

White Paper: A summary of the FSA thematic review

Organizational Integrity & Its Relationship with Management Systems and Enter...

Business Continuity requires a Security Architecture to reduce risk and cost

CYBERSECURITY, RISK & COMPLIANCE | AMPCUS INC.

Organizational Resilience Management - an Integrated GRC Approach

SGF2016 12641 - Moving from Prediction to Decision

Investigating and dealing with bribery

Andere mochten auch

GIACC Italy - ISO 37001

Ciro Strazzeri

Mapping Compliance Risks - Criminal Liability of Legal Persons - Mapa de Ries...

Hernan Huwyler, MBA CPA

ISO 37001 Anti-Bribery Management System

The Business Council of Mongolia

Ampell - 37001

Juan Carlos Bajo Albarracín

ISO 9001:2015: Praktische Inputs zur Integration in Office 365

IOZ AG

02.11.2015 the business principles for countering bribery an introduction

The Business Council of Mongolia

Anti Corruption Movement by Anna Hazare - Implications for Civil Societies an...

PRIA (Society for Participatory Research In Asia)

Anti-corruption-guide_tcm326-281524

Cyril Liance

Norma antykorupcyjna iso 37001

PwC Polska

Introduction to Anti-corruption Policy of Korea

Dadang Solihin

UNI ISO 37001 "ANTIBRIBERY"

UNI - Ente Italiano di Normazione

Transparency International (TI) publishes the Corruption Perceptions Index (CPI) since 1995, annually ranking countries "by their perceived levels of corruption, as determined by expert assessments and opinion surveys." The CPI generally defines corruption as "the misuse of public power for private benefit." In this presentation we have analyzed the similarities amongst the lowest corrupt countries as well as highest corrupt countries.

Corruption Perception Index 2014 Analysis

Chhavi Rahul

As the Anti-Bribery is becoming the world's most challenges issues, it is very important for businesses to support their company with the best programs and enhanced protection. The webinar demonstrated that this is possible by implementing ISO 37001 standard, and by identifying the key elements of an effective ISO 37001 implementation. Main points that have been covered are: • Definition of ISO 37001 • Case Studies • Culture, Training and Reinforcement program Presenter: Mr. Mohamad Khachab is PECB Partner & Trainer, with 30 years of professional experience in management consultancy, project management, teaching/training, IT Procurement, preparing proposals, information risk management, research, developing bidding documents, and business development activities. Link of the recorded session published on YouTube: https://youtu.be/wKc-2aHDf5s

Key Elements of an Effective Anti-Bribery Management System Implementation

PECB

Anti Corruption

Ananya Nair

Creando una Cultura de Compliance - Creating a Compliance Culture

Hernan Huwyler, MBA CPA

Historic background of ISO standards

Aneel Arshad Ali

Corruption Un Anti Corruption Toolkit Sep04

TEIAS TEIA DE EXECUTIVOS

Digni Anti corruption presentation

Jan Ruijgrok

Good Governance and Anti Corruption

IFAD International Fund for Agricultural Development

The new ISO 9001:2015

Reza Seifollahy

Andere mochten auch (20)

GIACC Italy - ISO 37001

Mapping Compliance Risks - Criminal Liability of Legal Persons - Mapa de Ries...

ISO 37001 Anti-Bribery Management System

Ampell - 37001

ISO 9001:2015: Praktische Inputs zur Integration in Office 365

02.11.2015 the business principles for countering bribery an introduction

Anti Corruption Movement by Anna Hazare - Implications for Civil Societies an...

Anti-corruption-guide_tcm326-281524

Norma antykorupcyjna iso 37001

Introduction to Anti-corruption Policy of Korea

UNI ISO 37001 "ANTIBRIBERY"

Corruption Perception Index 2014 Analysis

Key Elements of an Effective Anti-Bribery Management System Implementation

Anti Corruption

Creando una Cultura de Compliance - Creating a Compliance Culture

Historic background of ISO standards

Corruption Un Anti Corruption Toolkit Sep04

Digni Anti corruption presentation

Good Governance and Anti Corruption

The new ISO 9001:2015

Ähnlich wie Corruption Offences & ISO 37001 - Hernan Huwyler @ IE Law School

ISO 37001 Certification is an international standard that focuses on anti-bribery management systems (ABMS). It provides a framework for organizations to establish, implement, maintain, and improve measures aimed at preventing and detecting bribery. This certification helps businesses of all sizes and types strengthen their ethical practices and minimize the risks associated with bribery and corruption.

ISO 37001 Certification Protecting Supply Chains from Bribery Threats.pdf

OFFICE

How to Get ISO 37001 Certified and Why You Should.pdf

OFFICE

Challenges and Opportunities for Anti Corruption Images.pdf

RankyMathew

Risk Management And Internal Control In The Changing Econmic Landscape

Nik Hasyudeen

Fraud, bribery and corruption: Protecting reputation and value

David Graham

ISO 37001 is defined as Anti-Bribery Management System. The purpose is to establish, implement, maintain and enhance an anti-bribery program that prevents, detects and addresses bribery risks in an organization or institution. 4C team has trained and experienced ISO 37001 consultants who help the organization to implement a customized anti bribery management system in line with regional anti bribery law and organization type and size. The series of measures for ISO 37001 include: adopting an anti-bribery policy, appointing a person to oversee compliance, anti-bribery and corruption training, risk assessments and due diligence for ISO 37001 on projects and business associates, implementing financial and commercial controls, and instituting reporting and investigation procedures.

ISO 37001 Certification Benefits Requirements and Key Elements.pdf

OFFICE

Transparency International Malaysia: Business Integrity Programme

Ethical Sector

Fraud Awareness For Managers

rickycfe

ACCA-IIA Singapore Seminar 2015 part 2 fraud risk governance

BillyCheuk

Increased regulatory pressure and operational complexity have created a need for a new approach to compliance. Accenture is not and will not be deemed to be providing the Client with any legal, regulatory or financial advice as part of Accenture’s performance of the Services, production of the Deliverables and/or content in this presentation and Accenture shall have no liability resulting from such matters.

The Changing Role of Compliance | Accenture

Accenture Operations

Today all organizations are subject to fraud risks. Large frauds have led to the downfall of entire organizations, massive investment losses, significant legal costs, incarceration of key individuals, and erosion of confidence in capital markets, Consequently as part of an organization’s governance structure, a fraud risk management program should be in place, including a written policy to convey the expectations of the board of directors and senior management regarding managing fraud risk. Knowing present corporate focus and need for improved fraud risk governance & management, we’re pleased to launch our Fraud Risk Consulting services in addition to our existing bouquet of Risk advisory, Consulting, Training & Human Capital Services. Our services are offered through our multi location delivery centres in major metros with total presence in 11 Indian cities network.

Fraud risk services 2013

Nidhi Gupta

Fraud risk services 2013

Rahul Bhan (CA, CIA, MBA)

Fraud risk services 2013

Rahul Bhan (CA, CIA, MBA)

Fraud risk services 2013

Nidhi Gupta

Fraud risk services 2013

Rahul Bhan (CA, CIA, MBA)

The Changing Role of Compliance | Accenture

Accenture Operations

Binary Scam Watch Monitor controls Credit Card Fraud (Overcharging): The classic and most vile tactic is to overcharge your credit card. The better brokers have a very strong compliance department which forbids this, but some of the shady ones like Optionmint, Zenith Options, Cedar Finance, safe24options, Traderxp, Optimarkets, XPMarkets, Amber Options, Regal Options or Interactive Option will over charge you left and right.

Binary Scam Watch Monitor | Restriction Of Online Scam

BinaryScamWatchMonitor

Insurance fraud risk management service

Rahul Bhan (CA, CIA, MBA)

Insurance fraud risk management service

Rahul Bhan (CA, CIA, MBA)

Insurance fraud risk management service

Rahul Bhan (CA, CIA, MBA)

Ähnlich wie Corruption Offences & ISO 37001 - Hernan Huwyler @ IE Law School (20)

ISO 37001 Certification Protecting Supply Chains from Bribery Threats.pdf

How to Get ISO 37001 Certified and Why You Should.pdf

Challenges and Opportunities for Anti Corruption Images.pdf

Risk Management And Internal Control In The Changing Econmic Landscape

Fraud, bribery and corruption: Protecting reputation and value

ISO 37001 Certification Benefits Requirements and Key Elements.pdf

Transparency International Malaysia: Business Integrity Programme

Fraud Awareness For Managers

ACCA-IIA Singapore Seminar 2015 part 2 fraud risk governance

The Changing Role of Compliance | Accenture

Fraud risk services 2013

The Changing Role of Compliance | Accenture

Binary Scam Watch Monitor | Restriction Of Online Scam

Insurance fraud risk management service

Mehr von Hernan Huwyler, MBA CPA

Overview of the potential risks and challenges associated with the development and deployment of AI systems, as well as the recommended controls and best practices to mitigate them. The presentation covers the following topics: Design risks: These are the risks related to the design and specification of the AI system, such as lack of clarity, alignment, or validation of the objectives, assumptions, or constraints of the system. Some of the factors that contribute to these risks are: Inadequate or ambiguous problem definition Unrealistic or conflicting expectations or requirements Insufficient or inappropriate testing or evaluation methods Lack of transparency or explainability of the system’s logic or behavior Some of the recommended controls for these risks are: Define the problem and the scope of the system clearly and explicitly Involve relevant stakeholders and experts in the design process Use appropriate methods and metrics to test and evaluate the system’s performance and robustness Document and communicate the system’s objectives, assumptions, limitations, and uncertainties Provide mechanisms to explain or justify the system’s outputs or decisions Data risks: These are the risks related to the data used to train, test, or operate the AI system, such as data quality, availability, security, or privacy issues. Some of the factors that contribute to these risks are: Incomplete, inaccurate, or outdated data Biased, unrepresentative, or irrelevant data Unauthorized access, modification, or disclosure of data Violation of data protection laws or ethical principles Some of the recommended controls for these risks are: Collect, store, and manage data in a secure and compliant manner Ensure data quality, validity, and reliability through data cleaning, verification, and auditing Ensure data diversity, representativeness, and relevance through data sampling, augmentation, and analysis Protect data privacy and confidentiality through data anonymization, encryption, or aggregation Respect data rights and consent of data subjects and providers Operation risks: These are the risks related to the operation and maintenance of the AI system, such as system failure, malfunction, or misuse. Some of the factors that contribute to these risks are: Hardware or software errors or defects Environmental or contextual changes or uncertainties Adversarial or malicious attacks or manipulations Unintended or harmful consequences or impacts Some of the recommended controls for these risks are: Monitor and update the system regularly and proactively Adapt and calibrate the system to changing or uncertain conditions or scenarios Detect and prevent potential threats or vulnerabilities

Prof. Hernan Huwyler IE Law School - AI Risks and Controls.pdf

Hernan Huwyler, MBA CPA

Prof. Hernan Huwyler's slideshare discusses in detail five key actions that organizations can take to reduce compliance costs. These actions are designed to help organizations increase their compliance efficiency, reduce compliance risks, and lower compliance costs. The first action proposed by Prof. Hernan Huwyler is to designate local managers as compliance representatives in business units. This helps to amplify control while reducing the compliance function's structure. By designating local managers as compliance representatives, organizations can have a more effective compliance structure with fewer resources. Local managers can act as compliance ambassadors and help ensure that the organization's compliance policies and procedures are followed in their business units. The second action proposed is to quantify compliance risks and price potential claims, compensations, fraud, and revenue losses due to noncompliance. By quantifying compliance risks, organizations can better understand the potential costs of non-compliance and allocate resources accordingly. This can also help organizations prioritize their compliance efforts and ensure that they are focusing on the most significant compliance risks. The third action is to assign the testing of compliance controls to process owners and outsourcing service providers. This helps to distribute the responsibility for compliance testing and can reduce the workload of the compliance function. By assigning compliance testing to process owners, organizations can ensure that compliance controls are tested regularly, and issues are identified and addressed promptly. The fourth action proposed is to embed efficient controls in clearly articulated procedures. By embedding controls in procedures, organizations can ensure that compliance requirements are met consistently and effectively. Efficient controls can help organizations streamline compliance processes and reduce compliance costs. Finally, the fifth action is to add requirements for compliance skills when recruiting legal and financial managers in business units. This helps to ensure that compliance is a consideration when recruiting new managers. By ensuring that managers have the necessary compliance skills, organizations can better integrate compliance into their business operations and reduce the risk of non-compliance. In addition to these five actions, the slideshare also suggests other recommendations, such as delegating compliance consultations, audits, and due diligence, benchmarking the scope of risk assessments, and implementing policies to simplify wording and articulation of procedures. Additionally, the slideshare recommends coordinating actions with business units to assess, implement, measure, and reward cost reduction initiatives. By following these recommendations, organizations can reduce their compliance costs while maintaining effective compliance programs.

Asociacion Profesionistas de Compliance - Initiatives to Reduce the Cost of C...

Hernan Huwyler, MBA CPA

This Slideshare presentation by Professor Hernan Huwyler discusses a model to quantify compliance, legal, and contractual risks. It highlights the importance of understanding the impact of uncertainty on objectives and identifies mandatory and voluntary compliance objectives. The presentation discusses different techniques to quantify risks, such as heatmaps, risk matrices, common malpractice, scores, and escalation matrices, and the problems with these techniques, such as biases, incomplete data, and aggregation issues. The presentation proposes a compliance risk modeling approach, which involves understanding the distribution of events, consequences, impact, causes, and frequency of risks. It suggests using different probability distributions, such as log-normal, Pareto, normal, Poisson, Bernoulli, and triangular, to model risks. The presentation also discusses the chain of events that can lead to different types of losses, including penalties, compensations, fines, sanctions, legal and remediation costs, loss of customers, marketing depreciation, loss of licenses, and stock price. It explains different techniques to model losses, such as graphs, decision trees, Monte Carlo simulations, and calibrated estimates. Finally, the presentation highlights the importance of using different sources of risk data, including internal and external data, paid compensations, fines, and credits, fraud losses, legal fees, and complaints, and industry studies, enforcement trackers, and case analysis. It also provides examples of business cases related to compliance objectives and contractual clauses that set penalties for non-compliance. The presentation concludes with a demo of the proposed model to quantify compliance, legal, and contractual risks.

Model to Quantify Compliance Risks.pdf

Hernan Huwyler, MBA CPA

The summary is about an upcoming Safety Roundtable event on the topic of "Ditch your heat maps" presented by Professor Hernan Huwyler, MBA CPA. The event aims to help attendees transform their approach to safety risk management by moving away from subjective measures such as colours, adjectives, and heat maps, and instead focusing on a data-driven model to quantify and manage operational risks. The event emphasizes the importance of using data and financial information to inform decision making in order to minimize biases and justify investments. Attendees will gain insights on a quantitative model that will help them measure, visualize, and manage operational risks, as well as tips to reduce risk, enhance insurance and protection, and control investment. The event is relevant to anyone interested in risk management, insurance, and safety, and aligns with ISO 31000, the international standard for risk management. The event includes a Q&A session at the end, providing attendees with the opportunity to ask questions and share their perspectives. Overall, the Safety Roundtable event promises to be a valuable opportunity to learn from Professor Hernan Huwyler's insights, network with other professionals interested in risk management, and gain practical knowledge on how to improve safety risk management practices using a data-driven approach.

Prof Hernan Huwyler MBA CPA - Ditch your Heat Maps

Hernan Huwyler, MBA CPA

Obtaining resources, planning actions, and budgeting are essential for any organization's successful compliance management. Compliance management is the practice of ensuring that a company adheres to regulatory requirements and internal policies. This summary will explore key considerations for planning compliance initiatives, evaluating regulatory requirements, stakeholder needs, and developing a timeline of activities. It will also cover how to detect corruption and fraud schemes, control representation expenses, and prevent over-invoicing. Finally, we will discuss fraud impact and controls and how to demonstrate the return on investment in compliance. To begin with, it is crucial to obtain resources to initiate compliance management. The compliance team should have adequate resources to ensure that the organization is compliant with regulatory requirements. The resources should include trained personnel, financial resources, software, and hardware, among others. After obtaining resources, the next step is planning actions and budgeting. Planning should involve various stakeholders and departmental heads to ensure that all areas of the organization are covered. Planning actions and budgeting should include developing a compliance plan, identifying potential compliance risks, and developing mitigation strategies. While planning compliance initiatives, it is essential to evaluate the regulatory horizon, stakeholder needs, open items, and new strategies. The regulatory horizon involves understanding the regulatory landscape, identifying new regulations, and monitoring the existing ones. Stakeholder needs involve understanding the needs of all stakeholders, including shareholders, customers, and employees. Open items are compliance issues that are unresolved, and new strategies are measures that an organization intends to take to comply with regulations. Developing a timeline of activities to address certifications and audit needs is critical. A timeline helps to ensure that an organization is compliant with regulations within the stipulated timeline. The timeline should involve developing a compliance plan, identifying potential compliance risks, and developing mitigation strategies. It should also include training employees on compliance, conducting regular internal audits, and reviewing the compliance plan to ensure that it is up to date. Demonstrating the return on investment in compliance is essential. A return on investment (ROI) helps to justify the resources that an organization invests in compliance. Demonstrating ROI involves identifying the costs of compliance management, such as personnel, software, and hardware costs. It also involves identifying the benefits of compliance management, such as reducing the risk of regulatory fines and reputation damage.

Profesor Hernan Huwyler MBA CPA - Operacional Compliance

Hernan Huwyler, MBA CPA

Compliance risk is the risk of failing to comply with laws, regulations, standards, and guidelines that organizations are subject to. Noncompliance risks can lead to legal, financial, and reputational consequences. Compliance officers play a critical role in identifying, assessing, and managing compliance risks. Compliance risks can also present opportunities for organizations to improve their practices, enhance their reputation, and gain a competitive advantage. ISO 37301 is a standard that provides guidance on compliance management systems. The standard defines compliance risk as the risk of noncompliance with laws, regulations, and other requirements that an organization is obligated to comply with. Compliance risks can arise from internal and external factors, such as changes in laws and regulations, new business operations, third-party relationships, and cultural differences. ISO 37301 emphasizes the importance of managing compliance risks through a systematic and proactive approach that includes risk assessment, risk treatment, monitoring, and review. Compliance officers serve as trusted advisors to senior management and provide guidance and support in compliance planning and decision-making. Compliance officers need to have a deep understanding of the organization's operations, risks, and culture to identify and manage compliance risks effectively. Compliance officers should also have strong communication and interpersonal skills to build relationships with stakeholders, including senior management, employees, regulators, and other external parties. The level of compliance risk varies depending on the nature, complexity, and scale of an organization's operations. Compliance risks can be classified into three levels: low, medium, and high. Low-risk compliance activities are routine and have little impact on the organization's operations or reputation. Medium-risk compliance activities are more complex and involve higher stakes, such as regulatory compliance, data privacy, and anti-corruption. High-risk compliance activities involve significant legal, financial, and reputational consequences, such as anti-money laundering, anti-bribery, and sanctions compliance. Compliance risks can also present opportunities for organizations to improve their practices, enhance their reputation, and gain a competitive advantage. For example, a company that implements strong data privacy practices can enhance customer trust and loyalty. A company that complies with anti-corruption laws can reduce legal and reputational risks and attract socially responsible investors. Compliance officers should work with senior management to identify and leverage compliance risks as opportunities to create value for the organization. Compliance risk, noncompliance, ISO 37301, compliance officer, trusted advisor, risk level, opportunities, regulatory risks, obligations, ethical risks, inherent risks, residual risks, risk-taking, tolerance, control level, sustainability

Hernan Huwyler - IE Compliance Corporate Risk Management Full 2023

Hernan Huwyler, MBA CPA

The Behavioral Science of Compliance CUMPLEN.pdf

Hernan Huwyler, MBA CPA

R is for Risk 2 Risk Management using R

Hernan Huwyler, MBA CPA

Support Ukraine from compliance 🇺🇦 Join our free special webinar to get practical tips on how to - adjust due diligence to address new global sanctions, export controls, and trade restrictions - identify third parties, beneficial owners, shell companies, and assets related to Russia and Belarus - activate exit plans and force major clauses - address changes in the expectations of stakeholders to cancel operations, payments, financing, investing, and partnerships - apply measures to support affected employees and the Ukrainian people - prepare for possible Russian cyber and commercial attacks 👉 Enroll the webinar for free https://lnkd.in/gJR27Dci #compliance #export #russianthreat #ukraine #complianceofficer #riskmanagement #sanctions #UkrainiansWillResist #business #investment #corporateresponsibility #businessethics #HR #people #investing #payments #payments #cyber #webinar

Compliance and the russian invasion - Prof Hernan Huwyler

Hernan Huwyler, MBA CPA

Course on sustainability risk management  for the Master in Sustainability and Corporate Social Responsibility Leadership at the Universidad Complutense de Madrid. I will provide the students with tips, tools, and models to assess and manage operational, compliance, integrity, governance, solvency, profitability environmental, climate change, and supply chain risks as part of a sustainability and social responsibility program.

Master in Sustainability Leadership Sustainability Risks Prof Hernan Huwyler

Hernan Huwyler, MBA CPA

Respond to new ALM obligations Identify the key compliance changes for scope, subjects and operations Facilitate the design and execution of compliance checks on payment methods and the use of virtual currencies Evaluate gaps in processes to update controls and procedures Consider the impact on corporate criminal liability using the new ISOs 37301 and 37002 Register virtual asset service providers Assess new compliance and operational risks Identify scenarios of risks and vulnerabilities on new crime typologies Prevent risks of anonymous transfers and the use of prepaid cards Manage risks on high value operations and art trade Integrate risks to know your customer and money laundering Detect and report suspected operations Compare control practices regarding new requirements Update the decision matrices on alerts Adjust customer due diligence process Implement the use of the lists of politically exposed persons Report discrepancies with the public register of effective owners Implementation of new technologies Evaluate the prerequisites regarding quality of data and capabilities for compliance solutions Evaluate solutions to automate and digitize processes related to robotics Use machine learning applications for reporting suspicious transactions Recommend practices for implementing analytics solutions on text and data

Cyber Laundering and the AML Directives

Hernan Huwyler, MBA CPA

I am invited to speak at the Iberoamerican Compliance Conference hosted by the Universidad Complutense de Madrid (Argentina + web, Jun 29/Jun 1, Spanish). I will deliver a master class on quantitative vs. qualitative assessments of compliance risks. It will be exciting to meet great compliance colleagues and friends as Zulma Escalante, Eduardo Navarro Villaverde, Javier Puyol Montero, Silvina Bacigalupo, Daiana C., Carlos J. Díaz Navarrete, Félix Pablo Crous, Lic. Graciela Garay, Macarena Retamosa, Miguel Soler Ruiz-Boada, Nieves Cifuentes Valero, Sebastian Daniel Barletta, virginia olivieri and other fellows.  https://lnkd.in/e_qfztj Register https://lnkd.in/e-iAMgM #compliance #riskmanagement #ECI2021 #ECIArgentina2021 #UCM

Hernan Huwyler - Iberoamerican Compliance Conference UCM Congreso Iberoameric...

Hernan Huwyler, MBA CPA

I am excited to discuss how organizations need to be prepared before implementing machine learning with Jason Maude at the Machine Learning in Financial Services event hosted by Arena International Events Group (June 30, online). We will provide recommendations to develop the conditions to successfully implement artificial intelligence projects. Thanks to Rebecca Mayoh for the event coordination. Join here https://lnkd.in/ec6qP4A #machinelearning #compliance

ARENA - Prof Hernan Huwyler - Debate Is Machine Learning Mature Enough?

Hernan Huwyler, MBA CPA

I enjoyed presenting on effective controls for software development with Matthew Crabbe and QA Financial. I am pushing the concept of "cyber compliance" to define internal and external requirements for IT assets such as software, data, hardware, services, contracts, and licenses. Cyber compliance is rapidly expanding from licenses, privacy and contracts with IT vendors to outsourcing, software development and business continuity of essential services providers, cloud in particular. #riskmanagement #compliance #itcontrol #CISO #cybersecurity

Qa Financials - 10 Smart Controls for Software Development

Hernan Huwyler, MBA CPA

Information Risk Management - Cyber Risk Management - IT Risks

Hernan Huwyler, MBA CPA

I am honored and humbled to have been given the opportunity to discuss practices to address cyber risks at the 2021 STRONGER conference hosted by CyberSaint Security (Sep 28, online). I will discuss the building blocks to quantify and communicate risks to protect IT assets, processes, and services. Thanks to Ethan Bresnahan for the flawless preparation of the event. You are welcome to register here https://lnkd.in/eitKYDsX #cybersecurity #security #datasecurity #infosec #riskmanagement #ciso #stronger2021

Stronger 2021 Building the Blocks to Quantify Cyber Risks - Prof hernan huwyler

Hernan Huwyler, MBA CPA

Learn how to design, implement. operate and certify a compliance program under the new ISO 37301. Join the IE Law School professors, Alvaro Arjona l Ph.D, Jesica Hita Ruiz, Fabio G. Pérez-Bryan and me, to get a toolbox with facilitators, guidance, reference policies, checklist and other practical references. 8 modules - 12 hours - Sept 27th and 28th - Online - Requirements, terms scope, elements and certification and consultancy market - Practical impact. main changes, benchmark, and introduced components - Adequacy for criminal law compliance in Spain (UNE 19601) and in LatAm - Processes from risk analysis to reporting and evaluation - Implementation of requirements - Recommendations and facilitators for implementation. - Roadmap with evidence to certify - Documentation review program for implementation assurance - Methodology for testing compliance controls and documentation reviews Thanks to Sibel Abdulovska, Paula Abascal Gutierrez-Colomer and Maria Serrano for the flawless coordination of the course. Lean more: https://lnkd.in/gezyzmgn #ISO37301 #CCO #compliance #audit #certification #ISO37002

IE Curso ISO 37301 Aseguramiento de Controles de Cumplimiento

Hernan Huwyler, MBA CPA

It was a pleasure to moderate a workshop to assess cyber security risks hosted by Strategy Insights. We discussed options and practices to quantify confidentiality, integrity, and availability risks with delegates of the big players in the pharma, banking, retailing, and service sectors in the Nordics. Thanks to Anna Rose Poyntz, Finlay Wilson, and Edgar Baier for the event coordination. Round tables https://lnkd.in/e_m5eTW5 #cybersecurity #compliance #strategy #banking #ciso #riskmanagement

Strategy Insights - How to Quantify IT Risks

Hernan Huwyler, MBA CPA

More than 121 governance specialists joined Copenhagen Compliance, GRC and GDPR Solutions to discuss how boards are addressing innovation and transformation challenges. I provided tips for board members to effectively deal with digital transformation. Thanks to Kersi Porbunderwala and Olga Maitland for the coordination of the event. Join the next event on corporate culture https://lnkd.in/eMg4anP3 #digitaltransformation #innovation #transformation #leadership #CorpGov #corporategovernance

Hernan Huwyler - Boards in a Digitalized World

Hernan Huwyler, MBA CPA

"Our risk models cannot be better than the data. We, risk managers, love building models, however, we find validating data boring...as boring as wiping our , but as necessary as wiping our " I enjoyed discussing practicalities for ensuring data quality with 50 risk managers in an event hosted by Josef Oehmen, DTU - Technical University of Denmark RiskLab and Universiteit Twente. Smart questions from the participants on the rollout of data-driven techniques and the ethical considerations in using machine learning for decision-making. #data #datamanagement #quality #riskmanagement

IDA DTU RiskLab How to validate your risk data

Hernan Huwyler, MBA CPA

Mehr von Hernan Huwyler, MBA CPA (20)

Prof. Hernan Huwyler IE Law School - AI Risks and Controls.pdf

Asociacion Profesionistas de Compliance - Initiatives to Reduce the Cost of C...

Model to Quantify Compliance Risks.pdf

Prof Hernan Huwyler MBA CPA - Ditch your Heat Maps

Profesor Hernan Huwyler MBA CPA - Operacional Compliance

Hernan Huwyler - IE Compliance Corporate Risk Management Full 2023

The Behavioral Science of Compliance CUMPLEN.pdf

R is for Risk 2 Risk Management using R

Compliance and the russian invasion - Prof Hernan Huwyler

Master in Sustainability Leadership Sustainability Risks Prof Hernan Huwyler

Cyber Laundering and the AML Directives

Hernan Huwyler - Iberoamerican Compliance Conference UCM Congreso Iberoameric...

ARENA - Prof Hernan Huwyler - Debate Is Machine Learning Mature Enough?

Qa Financials - 10 Smart Controls for Software Development

Information Risk Management - Cyber Risk Management - IT Risks

Stronger 2021 Building the Blocks to Quantify Cyber Risks - Prof hernan huwyler

IE Curso ISO 37301 Aseguramiento de Controles de Cumplimiento

Strategy Insights - How to Quantify IT Risks

Hernan Huwyler - Boards in a Digitalized World

IDA DTU RiskLab How to validate your risk data

Kürzlich hochgeladen

Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...

ssuserf63bd7

CROSS CULTURAL NEGOTIATION BY PANMISEM NS

panmisemningshen123

Durg CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN durg ESCORTS

kajalroy875762

HomeRoots Pitch Deck | Investor Insights | April 2024

Hector Del Castillo, CPM, CPMM

Berhampur Call Girl Just Call 8084732287 Top Class Call Girl Service Available

pr788182

Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI

Tim Wilson

Katrina Personal Brand Project and portfolio 1

kcpayne

Phases of Negotiation .pptx

nandhinijagan9867

Organizational Transformation Lead with Culture

Seta Wicaksana

QSM Chap 10 Service Culture in Tourism and Hospitality Industry.pptx

DitasDelaCruz

Paradip CALL GIRL IN70918 19311 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL IN We are Providing :- ● – Private independent collage Going girls . ● – independent Models . ● – House Wife’s . ● – Private Independent House Wife’s ● – Corporate M.N.C Working Profiles . ● – Call Center Girls . ● – Live Band Girls . ●- Foreigners & Many More . Service type: 1.In call 2.out call 3. full Lip to Lip kiss 4.69 5.b-job without Condom 6. Hard Core sex & Much More. 7 Body to Body Touch 8 Kissing 9 Sucking Boobs and More 10 Enjoy by Hand 11 Relax By Oral 12 Sex with Happy Ending • In Call and Out Call Service • 3* 5* 7* Hotels Service • 24 Hours Available • Indian, Russian, Punjabi, Kashmiri Escorts • Real Models, College Girls, House Wife, Also Available • Short Time and Full Time Service Available • Hygienic Full AC Neat and Clean Rooms Avail. In Hotel 24 hours • Daily Escorts Staff Available • Minimum to Maximum Range Available.c al

Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING

pr788182

Berhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING

pr788182

30-minute NetSpeed Nuggets virtual session focused on using Storytelling, Purpose, Action, Relationships, and Kudos (SPARK) to design and deliver engaging virtual training. Use stories to frame key learning points. Explain a clear purpose for each activity. Make your virtual training action-oriented, build relationships to increase engagement, and create a positive learning environment with kudos.

Putting the SPARK into Virtual Training.pptx

Cynthia Clay

Buy gmail accounts.pdf buy Old Gmail Accounts

Buy Verified Cash App Account

Ooty Call Gril 80022//12248 Only For Sex And High Profile Best Gril Sex Avail...

pujan9679

Klinik_ Apotek Online Wa-085657271886 Solusi Menggugurkan Masalah Kehamilan Anda Jual Obat Aborsi Asli KLINIK ABORSI TERPEECAYA _ Jual Obat Aborsi Cytotec Misoprostol Asli 100% Ampuh Hanya 3 Jam Langsung Gugur || OBAT PENGGUGUR KANDUNGAN AMPUH MANJUR Jual Obat Aborsi Asli, Ampuh, Manjur, Tuntas | OBAT ABORSI OLINE “ APOTIK Jual Obat Cytotec, Gastrul, Gynecoside Asli Ampuh. JUAL ” Obat Aborsi Tuntas | Obat Aborsi Manjur | Obat Aborsi Ampuh | Obat Penggugur Janin | Obat Pencegah Kehamilan | Obat Pelancar Haid | Obat terlambat Bulan | Ciri Obat Aborsi Asli | Obat Telat Bulan | Pil Aborsi Asli | Cara Menggugurkan Konten | Cara Aborsi Tuntas | Harga Obat Aborsi Asli | Pil Aborsi | Jual Obat Aborsi Cytotec | Cara Aborsi Sendiri | Cara Aborsi Usia 1 Bulan | Cara Aborsi Usia 2 Tahun | Cara Aborsi Usia 3 Bulan | Obat Aborsi Usia 4 Bulan | Cara Abrasi Usia 5 Bulan | Cara Menggugurkan Konten | Kandungan Obat Penggugur | Cara Menghitung Usia Konten | Cara Mengatasi Terlambat Bulan | Penjual Obat Aborsi Asli | Obat Aborsi Garansi | Kandungan Obat Peluntur | Obat Telat Datang Bulan | Obat Telat Haid | Obat Aborsi Paling Murah | Klinik Jual Obat Aborsi | Jual Pil Cytotec | Apotik Jual Obat Aborsi | Kandungan Dokter Abrasi | Cara Aborsi Cepat | Jual Obat Aborsi Bergaransi | Jual Obat Cytotec Asli | Obat Aborsi Aman Manjur | Obat Misoprostol Cytotec Asli. "APA ITU ABORSI" “Aborsi Adalah dengan membendung hormon yang di perlukan untuk mempertahankan kehamilan yaitu hormon progesteron, karena hormon ini dibendung, maka jalur kehamilan mulai membuka dan leher rahim menjadi melunak,sehingga mengeluarkan darah yang merupakan tanda bahwa obat telah bekerja || maksimal 1 jam obat diminum || PENJELASAN OBAT ABORSI USIA 1 _7 BULAN Pada usia kandungan ini, pasien akan merasakan sakit yang sedikit tidak berlebihan || sekitar 1 jam ||. namun hanya akan terjadi pada saatdarah keluar merupakan pertanda menstruasi. Hal ini dikarenakan pada usiakandungan 3 bulan,janin sudah terbentuk sebesar kepalan tangan orang dewasa. Cara kerja obat aborsi : JUAL OBAT ABORSI AMPUH dosis 3 bulan secara umum sama dengan cara kerja || DOSIS OBAT ABORSI 2 bulan”, hanya berbedanya selain mengisolasijanin juga menghancurkan janin dengan formula methotrexate dikandungdidalamnya. Formula methotrexate ini sangat ampuh untuk menghancurkan janinmenjadi serpihan-serpihan kecil akan sangat berguna pada saat dikeluarkan nanti || DOSIS OBAT ABORSI dosis 3 bulan” juga membersihkan rahim dari sisa-sisajanin yang mungkin ada / sehingga nantinya tetap dapat mengandung dan melahirkan secara normal. Menstruasi akan terjadi maksimal 24 jam sejak OBATABORSI diminum. ##APA ALASAN WANITA MELAKUKAN ABORSI? Aborsi di lakukan wanita hamil baik yang sudah menikah maupun belum menikah dengan berbagai alasan , akan tetapi alasan yang utama adalah alasan-alasan non medis (termasuk aborsi sendiri / di sengaja/ buatan]

Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec

ZurliaSoop

Falcon invoice discounting offers businesses a strategic financial tool to optimize cash flow, fuel growth, and enhance operational efficiency. By leveraging accounts receivable as collateral, businesses can unlock liquidity and seize opportunities with confidence. With flexible funding solutions, transparent terms, and personalized support, Falcon invoice discounting stands as a reliable partner in navigating the complexities of modern business finance.

Falcon Invoice Discounting: Unlock Your Business Potential

Falcon investment

How to Get Started in Social Media for Art League City

Eric T. Tung

Marel Q1 2024 Investor Presentation from May 8, 2024

Marel

ABORTION KIT [(WhatsApp +27737758557 ₩ ௹# Termination of Pregnancy/ +27737758557 Abortion Pi.lls For Sale In WELKOM,Illovo Beach, Phalaborwa,MargatePrice of Misoprostol, Cytotec” +27737758557 SAFE ABORTION PILLS IN Roodepoort,Benoni, Boxburg, Brapan, Carletonville, Germiston, Johannesburg, Krugersdorp, Pretoria, Randburg, Randfontein, Roodepoort, Soweto, Springs, Vanderbijlpark, Vereeniging, Tembisa, Kempton Park, Centurion, Sandton, Sandton, Alexandretta, MIDRAND, MIDSIDAFIDARANANDINVILLE, MIDRAND VILLE , Midsideifidarandinville . . Magaliesburg, Alberton, Heidelberg, Nigel, Edenvale, Ivory Park, Bronkhorstspruit, Westonaria, Sharpeville, Lenasia, Soshanguve, Bophelong, Refilwe, Ratanda, Duduza, Vosloorus, Boipatong, Irene, Meyezafour, Thousands, Thovenko, Olympia. -Rankuwa, Katlehong, Diepsloot, Hillbrow, Rivonia, Tsakane, Bekkersdal, Isando, Kagiso, Khutsong, KwMon Apr 15 2024 22:50:02 GMT+0200 (South Africa Standard Time) ABORTION KIT [(WhatsApp +27737758557 ₩ ௹# Termination of Pregnancy/ +27737758557 Abortion Pills For Sale In Ohrigstad,Zastron, Biggarsberg,MoteongPrice of Misoprostol, Cytotec” +27737758557 SAFE ABORTION PILLS IN Roodepoort,Benoni, Boxburg, Brapan, Carletonville, Germiston, Johannesburg, Krugersdorp, Pretoria, Randburg, Randfontein, Roodepoort, Soweto, Springs, Vanderbijlpark, Vereeniging, Tembisa, Kempton Park, Centurion, Sandton, Sandton, Alexandretta, MIDRAND, MIDSIDAFIDARANANDINVILLE, MIDRAND VILLE , Midsideifidarandinville . . Magaliesburg, Alberton, Heidelberg, Nigel, Edenvale, Ivory Park, Bronkhorstspruit, Westonaria, Sharpeville, Lenasia, Soshanguve, Bophelong, Refilwe, Ratanda, Duduza, Vosloorus, Boipatong, Irene, Meyezafour, Thousands, Thovenko, Olympia. -Rankuwa, Katlehong, Diepsloot, Hillbrow, Rivonia, Tsakane, Bekkersdal, Isando, Kagiso, Khutsong, Kwa-Thema, Daveyton, Hammanskraal, Gauteng, Emalahleni, Nelspruit, Secunda, Middelburg, Standerton, LesMon Apr 15 2024 22:51:10 GMT+0200 (South Africa Standard Time) IN Vryburg/Witbank [[[[WhatsApp ((( ( +27737758557 )) *____**)) ABORTION PILLS FOR SALE IN Witbank/Vryburg KEMPTON PARK, GAUTENG JOHANNESBURG CBD. ABU DHABI, ABORTION PILLS FOR SALE Vryburg/Witbank WhatsApp ((( +27737758557 )) Mon Apr 15 2024 22:51:10 GMT+0200 (South Africa Standard Time) IN Vryburg/Witbank [[[[WhatsApp ((( +27737758557 ) *____**)) ABORTION PILLS FOR SALE IN Witbank/Vryburg KEMPTON PARK, GAUTENG JOHANNESBURG CBD. ABU DHABI, ABORTION PILLS FOR SALE Vryburg/Witbank WhatsApp ((( (+27) +27737758557 ))Mon Apr 15 2024 22:51:10 GMT+0200 (South Africa Standard Time) IN Vryburg/Witbank [[[[WhatsApp ((( +27737758557 ))) *____**)) ABORTION PILLS FOR SALE IN Witbank/Vryburg KEMPTON PARK, GAUTENG JOHANNESBURG CBD. ABU DHABI, ABORTION PILLS FOR SALE Vryburg/Witbank WhatsApp ((( +27737758557 ))vlieton, Kinross. , Evander, Kriel, Mpumalanga, Durban, Empangeni, Ladysmith, Newcastle, Pietermaritzburg, Pinetown, Ulundi, Umlazi, Port Shepstone, Dundee , Richards Bay, Kwazulu-Natal, Giyani,

Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...

daisycvs

Kürzlich hochgeladen (20)

Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...

CROSS CULTURAL NEGOTIATION BY PANMISEM NS

Durg CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN durg ESCORTS

HomeRoots Pitch Deck | Investor Insights | April 2024

Berhampur Call Girl Just Call 8084732287 Top Class Call Girl Service Available

Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI

Katrina Personal Brand Project and portfolio 1

Phases of Negotiation .pptx

Organizational Transformation Lead with Culture

QSM Chap 10 Service Culture in Tourism and Hospitality Industry.pptx

Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING

Berhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING

Putting the SPARK into Virtual Training.pptx

Buy gmail accounts.pdf buy Old Gmail Accounts

Ooty Call Gril 80022//12248 Only For Sex And High Profile Best Gril Sex Avail...

Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec

Falcon Invoice Discounting: Unlock Your Business Potential

How to Get Started in Social Media for Art League City

Marel Q1 2024 Investor Presentation from May 8, 2024

Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...

Corruption Offences & ISO 37001 - Hernan Huwyler @ IE Law School

1. CORRUPTION OFFENCES AND THE VALUE OF ISO 37001 Hernan Huwyler, MBA CPA Risk Management & Internal Control Director Veolia SP LatAm Madrid, November 17th 2016

2. COMPLIANCE PROGRAM SCOPE Internal policies & voluntary commitments Legal & Regulatory Criminal offences § 31.b Ethics

3. EFFECT OF CORRUPTION ON INDIVIDUALS

4. EFFECT OF CORRUPTION ON COMPANIES A company that pays bribes, is not longer in control of its business

5. CORRUPTION OFFENSES Corruption Misuse of entrusted power for private gainBribery Giving, receiving or promising Something of value Unethically secure a business

6. ISO 37001 USES public + private + NGOs bribery by and of organization + staff + business associate Direct or by 3rd parties

7. PLAN Development DO Implementation CHECK Maintenance ACT Evaluation resources communication training documentationcontrols and reporting non-compliance reporting leadership AB policy tasks & responsibilities internal audits governing body reviews context and 3P requirements scope and risk assessment contiguous improvement 9 operational controls

8. VALUE OF ISO 37001 Requirements standard → certifiable Integrating the existing management processes and controls Effective decision making Benchmarking Corporate defense

9. CORRUPTION OFFENCES AND THE VALUE OF ISO 37001 Hernan Huwyler, MBA CPA Risk Management & Internal Control Director Veolia SP LatAm Madrid, November 17th 2016

Hinweis der Redaktion

Reflexión de apertura sobre la evolución de los programas de compliance en España, estamos en un momento único para demostrar valor de los programas de compliance y vinculados a la estrategia y la sustentabilidad. 1- Partimos de la necesidad de prever ciertos delitos penales extensibles a la empresa, implementamos la función 2- Luego sumamos otras normativas externas, fuimos ampliando los riesgos y sus responsables 3- Luego incorporamos estándares internos y compromisos por ejemplo en materia ambiental y de RSC, colaboración interna de compliance buscando incrementar la eficiencia (por ejemplo, simplificando obligaciones en controles, la retención de documentación y datos, compliance de proveedores y 3P) 4- Buscando reforzar la cultura ética, compliance para atraer clientes, inversores y candidatos, el código de conducta y el valor de la prevención de la corrupción como centro del programa de compliance
Evita el progreso económico y social Atenta contra la democracia y el derecho de los ciudadanos de participar en asuntos públicos, afecta la toma de decisiones del estado, insatisfacción popular, Menor institucionalidad, menor estado de derecho, fuga de capitales, lavado de dinero, menores ingresos públicos, despilfarro La corrupción depende de un cálculo entre costos y beneficios, y no de cultura de un país (Argentina vs. Chile, Colombia vs. Venezuela)
Riesgos de extorsión, otros delitos asociados como el lavado de dinero, evasión fiscal e inadecuado reporte contable Incrementa la racionalización del fraude Penalización, impacto reputacional, pérdida de financiamiento, clientes Pérdida del “musculo competitivo”
“private gain” en funcionarios y los partidos políticos, en empresas y empleados Corrupción, incluye varias clases- Conflictos de interés- Fraude interno Sobornos / Pagos facilitadores: Cada legislación tiene su propia definición de soborno, y la ISO solo da Sobornos: cometidos por 1) directores, 2) empleados, 3) representantes legales, 4) terceras partes, 5) proveedores, 6) clientes (un cliente ofrece un soborno para obtener un descuento) ABC Anti bribery compliance ABCC Anti-bribery and corruption compliance
Business associates: 3P, clientes, proveedores, consultores, socios de JVNo es para todos los riesgos de compliance como lavado de dinero, protección de datos, abuso de mercado,… El estándar es flexible y en muchos controles se detalla el “como sea apropiado”, lo que deja lugar al certificador El estándar aplica a todos los países Involucre a un oficial público o no Prohíbe los pagos facilitadores
Due diligence Financial controls Non-financial controls Implementation ABMS by controlled organizations and by business associates Anti-bribery contract terms Gifts, hospitality, donations and similar benefits Managing inadequacy of anti-bribery controls Raising concerns / whistleblowing Investigation and dealing with bribery
El beneficio debe ser dinero, objetivo es hacer crecer las ventas y ahorrar o evitar costes y riesgos 0- Mejora la toma de decisiones: claras expectativas éticas, herramienta de gestión de riesgos, selección de proveedores, contratistas y 3P. Ayuda a operar en múltiples jurisdicciones sin importar donde está la matriz. Simplifica el due diligence con proveedores, JV, distribuidores, y agentes. 1- Controles para prevenir, detectar y dar acciones correctivas sobre sobornos, estructura consistente con otras ISOs como la 9001 de calidad y la 14001 de Medioambiente. Sigue la orientación a riesgos, sentido de negocio, holística, “Plan-Do-Act-Check” y la mejora continua, promueve la eficiencia 2- Benchmark para evaluar el propio sistema anti-soborno de la empresa, ajustando los controles razonablemente a los riesgos, herramienta para el compliance officer con guía y explicaciones sin entrar en “legalese” (esp. comparado con la guia para FCPA). 10 categorías de compliance con sus checklists. Lo que no nos dice es cómo remediar los gaps 3- El certificador externo debe cumplir con el ISO/IEC 17021-1:2015 - Conformity assessment y conocimientos de normativa anticorrupción de los paises alcanzados por el certificado. Recertificaciones cada 3 años. Compliance como elemento diferenciador, seguridad a la alta dirección y terceros, presiones políticas para certificar el sector público. La 19600 es de directrices (“la entidad debería”), posibilidad de licitar ciertos contratos, elemento diferenciador, demostrar la RSC, nos puede ayudar a financiar proyectos 4- Ante investigaciones judiciales, la empresa puede demostrar que siguió los pasos necesarios para prevenir la corrupción, eximente de responsabilidad, ahorro de costes judiciales y pericias, demuestra ciertas evidencias (principalmente que hayan políticas y no que se cumplan o monitoreen). Protege a los directores y los inversores

Corruption Offences & ISO 37001 - Hernan Huwyler @ IE Law School

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Was ist angesagt?

Was ist angesagt? (20)

Andere mochten auch

Andere mochten auch (20)

Ähnlich wie Corruption Offences & ISO 37001 - Hernan Huwyler @ IE Law School

Ähnlich wie Corruption Offences & ISO 37001 - Hernan Huwyler @ IE Law School (20)

Mehr von Hernan Huwyler, MBA CPA

Mehr von Hernan Huwyler, MBA CPA (20)

Kürzlich hochgeladen

Kürzlich hochgeladen (20)

Corruption Offences & ISO 37001 - Hernan Huwyler @ IE Law School

Hinweis der Redaktion