Assessments, Best Practices and Risk Assessment

10 Best Practices for FP&A

The Finance Weekly

FEBRUARY 23, 2025

Strong FP&A practices help finance teams improve data accuracy , use technology effectively, and make well-informed financial decisions. 10 Best Practices for FP&A These 10 best practices will help businesses improve their FP&A processes and achieve better results.

Best Practices

Best Practices Adjustments Risk Management Risk

Economic Crime and Corporate Transparency Act examined: A guide to avoiding failure-to-prevent fraud measures

The Payments Association

FEBRUARY 10, 2025

Businesses must proactively assess fraud risks, implement adequate procedures, leverage technology for fraud detection, and foster a culture of compliance to avoid regulatory penalties. Compliance requires proactive fraud risk assessment, the implementation of preventive procedures, and a culture of accountability.

Crime

Crime Fraud Prevention Risk Assessment Due Diligence

Fundiin Teams up With Visa to Enhance Credit-scoring Model

Fintech Finance

MARCH 25, 2025

Although Vietnam’s digital finance market has seen rapid growth over the last few years, many consumers still struggle to access secure and high-quality financial services due to ineffective risk assessment systems.

Risk Assessment

Risk Assessment Risk Management BNPL Best Practices

Webinars

Breaking The Commerce Bottleneck: Your SAP Exit Plan Starts Now

MORE WEBINARS

Planning an Internal Audit Risk Assessment

FloQast

NOVEMBER 20, 2023

One of the first steps in carrying out an effective internal audit is to perform an internal audit risk assessment. This planning process is the foundation for a successful audit, helping auditors identify and prioritize significant risks and areas of concern within an organization. What Is an Internal Audit Risk Assessment?

Risk Assessment

Risk Assessment Audit Assessments Risk

Navigating AML obligations in the age of virtual IBANs

The Payments Association

FEBRUARY 10, 2025

Since vIBANs are often treated as extensions of master accounts rather than independent relationships, firms fail to apply appropriate risk assessment frameworks. This weakens transaction monitoring, particularly in scenarios involving third-party involvement or high-risk jurisdictions.

IBAN

IBAN AML Master Account Due Diligence

PCI DSS Requirement 10 – Changes from v3.2.1 to v4.0 Explained

VISTA InfoSec

MARCH 6, 2024

assessment, understanding these changes to Requirement 10 will help you strategize your implementation approach. Other Logs Review "periodically" based on the company's risk assessment Periodic review is still required but now explicitly mentioned in Requirement 10.4.2 Maintains the risk assessment step.

PCI DSS

PCI DSS Procedures Best Practices Risk Assessment

SWIFT Security Controls:Best Practices for Financial Institutions

VISTA InfoSec

MAY 15, 2025

This article explores key security controls within the SWIFT CSP compliance framework and outlines best practices for financial institutions to strengthen their SWIFT security posture. To align with SWIFT CSP requirements, you should consider the following best practices: 1. Cyber Incident Response Planning 7.2

SWIFT

SWIFT Security Best Practices PCI DSS

Merchant Underwriting: What It Is, How It Works, and Why It’s Important

Stax

JANUARY 23, 2025

The merchant underwriting process is a critical step that payment processors and financial institutions use to assess the risk associated with onboarding new businesses. Key steps include application review, risk assessment, credit checks, and compliance verification. Learn More What is Merchant Account Underwriting?

Underwriting

Underwriting PCI DSS Money Laundering Processors

FICO and T-Mobile Share Third Party Risk Management Best Practices

FICO

APRIL 3, 2020

The importance of Third-Party Risk Management is growing, and by association cybersecurity risk assessment. Doug Clare, Vice President of Fraud, Compliance and Security Solutions, at FICO discusses the challenge in a recent conversation with Chris Wallace, Director of Cyber Risk, at T-Mobile. . by FICO.

Best Practices

Best Practices Risk Management Risk Risk Assessment

FICO and T-Mobile Share Third Party Risk Management Best Practices

FICO

APRIL 3, 2020

The importance of Third-Party Risk Management is growing, and by association cybersecurity risk assessment. Doug Clare, Vice President of Fraud, Compliance and Security Solutions, at FICO discusses the challenge in a recent conversation with Chris Wallace, Director of Cyber Risk, at T-Mobile. . by FICO.

Best Practices

Best Practices Risk Management Risk Risk Assessment

DORA Compliance Checklist: Essential Steps for Successful Implementation

VISTA InfoSec

NOVEMBER 4, 2024

Conduct a DORA gap analysis Conducting a DORA gap analysis is essential for evaluating the effectiveness of your current ICT risk management and operational measures in relation to the requirements outlined in Article 6 of DORA. Best practices for implementing the DORA compliance 1.

Compliance

Compliance Risk Management Third-Party Service Provider Audit

DORA Compliance Checklist: Essential Steps for Successful Implementation

VISTA InfoSec

NOVEMBER 4, 2024

Conduct a DORA gap analysis Conducting a DORA gap analysis is essential for evaluating the effectiveness of your current ICT risk management and operational measures in relation to the requirements outlined in Article 6 of DORA. Best practices for implementing the DORA compliance 1.

Compliance

Compliance Risk Management Third-Party Service Provider Audit

DORA Compliance Checklist: Essential Steps for Successful Implementation

VISTA InfoSec

NOVEMBER 4, 2024

Conduct a DORA gap analysis Conducting a DORA gap analysis is essential for evaluating the effectiveness of your current ICT risk management and operational measures in relation to the requirements outlined in Article 6 of DORA. Best practices for implementing the DORA compliance 1.

Compliance

Compliance Risk Management Third-Party Service Provider Audit

DORA Compliance Checklist: Essential Steps for Successful Implementation

VISTA InfoSec

NOVEMBER 4, 2024

Conduct a DORA gap analysis Conducting a DORA gap analysis is essential for evaluating the effectiveness of your current ICT risk management and operational measures in relation to the requirements outlined in Article 6 of DORA. Best practices for implementing the DORA compliance 1.

Compliance

Compliance Risk Management Third-Party Service Provider Audit

Best Practices in Fraud Management: Q&A with Bob Shiflet

FICO

FEBRUARY 5, 2018

In these roles, Bob was a true fraud practitioner, responsible for leading high-performance teams across strategic and operational roles and policies and working closely with his peers in Risk, Compliance, Security, and LOB functions across the business to protect the bank, its clients, and its employees.

Best Practices

Best Practices Identity Theft Online and Mobile Banking Risk

ServiceNow Lands AI Partnerships with Visa and EY

Fintech News

JANUARY 25, 2024

These AI-based solutions are designed to strengthen EY’s use of ServiceNow risk management offerings, with emphasis on ethical, transparent, and accountable business conduct. These services are anticipated to be available in the first quarter of 2024.

AI

AI Disputes Risk Management Risk Assessment

Cyber security measures for small and medium enterprises (SMEs)

VISTA InfoSec

SEPTEMBER 5, 2024

Regular sessions should be scheduled to reinforce learning, ideally on a quarterly basis, to keep staff updated on the latest threats and best practices. Powering down the device if its showing signs of significant compromise, but only after assessing if its safe to do so. How can SMEs stay ahead of cyber security threats?

Security

Security Phishing Ransomware Risk Assessment

Cyber security measures for small and medium enterprises (SMEs)

VISTA InfoSec

OCTOBER 21, 2024

Regular sessions should be scheduled to reinforce learning, ideally on a quarterly basis, to keep staff updated on the latest threats and best practices. Powering down the device if it’s showing signs of significant compromise, but only after assessing if it’s safe to do so. How can SMEs stay ahead of cyber security threats?

Security

Security Phishing Ransomware Risk Assessment

Mastercard Launches Cyber Resilience Center in Saudi Arabia

Fintech Finance

MAY 22, 2025

Standards & Best Practices: Building trust in the digital ecosystem by setting measurable cybersecurity benchmarks and enabling institutions to track progress through clearly defined improvement targets. Mastercard has invested $10.7 “At Riyad Bank, safeguarding customer trust is central to everything we do.

Visa

Visa Cybersecurity Best Practices Risk Mitigation

PCI DSS Requirement 9 – Changes from v3.2.1 to v4.0 Explained

VISTA InfoSec

MARCH 5, 2024

This requirement is a best practice until 31 March 2025.) This means having written job descriptions, assigning specific tasks to individuals, and ensuring they understand their duties. Auditors check for clear documentation and task understanding. This ensures accountability, prevents gaps in security, and provides proof of compliance.

PCI DSS

PCI DSS Procedures Assessments Checks

PCI DSS Requirement 8 – Changes from v3.2.1 to v4.0 Explained

VISTA InfoSec

FEBRUARY 28, 2024

assessments.) Make sure these records outline who does what in terms of managing user accounts. It must include both numbers and letters. (This requirement is a best practice until 31 March 2025.) Look at your system settings to make sure these password rules are enforced. Change passwords often based on risk level.

PCI DSS

PCI DSS Best Practices Authentication Rules

PCI DSS 4.0

Cardfellow

APRIL 27, 2025

You may recognize the Self-Assessment Questionnaire (SAQ) that businesses using the Defined Approach will submit. standards push for more proactive security that keeps pace with the changing nature of security risks and fraud. The PCI DSS website includes an infographic about version 4.0, This is part of the 4.0 requirements.

PCI DSS

PCI DSS Encryption Processors Credit Cards

PCI DSS Compliance for SaaS Businesses

VISTA InfoSec

NOVEMBER 12, 2024

SaaS providers must assess and monitor these vendors to ensure they meet PCI DSS requirements as well ( Requirement 12.8.4 ). They require an annual on-site assessment by a Qualified Security Assessor (QSA) and quarterly scans. Q2: How Often Should We Conduct PCI DSS Assessments? updates check out our PCI DSS 4.0

PCI DSS

PCI DSS Compliance Encryption Audit

PCI DSS Compliance for SaaS Businesses

VISTA InfoSec

NOVEMBER 12, 2024

SaaS providers must assess and monitor these vendors to ensure they meet PCI DSS requirements as well ( Requirement 12.8.4 ). They require an annual on-site assessment by a Qualified Security Assessor (QSA) and quarterly scans. Q2: How Often Should We Conduct PCI DSS Assessments? updates check out our PCI DSS 4.0

PCI DSS

PCI DSS Compliance Encryption Audit

GDPR and Biometric Data: Ethical Considerations and Privacy Implications

VISTA InfoSec

AUGUST 22, 2023

Principle of data minimization: Only the minimum amount of biometric data necessary for the intended purpose should be collected and processed, requiring careful assessment and avoidance of excess. Voiceprint: Assessment of vocal attributes such as tone, pitch, and enunciation.

Privacy

Privacy Legal Compliance Best Practices

Conducting Experiments in Credit Management: 4 Best Practices

FICO

JANUARY 6, 2022

For example, access to customer-level and non-traditional data such as consumer utility payment history provides risk assessments lacking in a thin credit file population. In the chart below, enhanced precision in risk detection observed by leveraging customer-level data.

Best Practices

Best Practices Origination Authentication Process

Risk Management for Merchants in Payment Processing

Clearly Payments

JANUARY 8, 2024

In this guide, we go into the topics of risk management in payment processing, equipping merchants with the knowledge and strategies needed to secure their transactions. Identifying and Assessing Risks Understanding the lay of the land is the first step in effective risk management.

Risk Management

Risk Management Risk PCI DSS Process

Understanding Risk Management Strategies as a PayFac

Stax

AUGUST 22, 2024

In this article, we’ll discuss what SaaS companies looking to become payment facilitators need to know about risk management strategies. PayFacs handle risk assessment, underwriting, settling of funds, compliance, and chargebacks which exposes them to greater potential risks. The due diligence doesn’t stop at onboarding.

Risk Management

Risk Management Risk Regulatory Compliance Due Diligence

How to Maintain Anti-Money Laundering Compliance as a PayFac

Stax

DECEMBER 4, 2023

An effective AML compliance program must include Know Your Customer (KYC) protocols, transaction monitoring and reporting, risk assessment and categorization, and training and awareness for staff. Risk assessment and categorization The first step towards mitigating risk is to assess it.

Money Laundering

Money Laundering Compliance AML BSA

Regulatory Challenges in Fintech: Balancing Innovation and Consumer Protection

Fintech Review

FEBRUARY 13, 2024

Regulators play a key role in assessing and mitigating the systemic risks posed by fintech innovations. This monitoring is not only about risk assessment but also about understanding the interconnectedness of fintech operations with the global financial system.

Consumer Protection

Consumer Protection Innovation Consumer FinTech

Reminder: Consumer Duty board reports due 31 July 2024

Neopay

JULY 4, 2024

These reports are critical for assessing and evidencing how firms have provided good outcomes for consumers under the Duty. Importance of board reports According to the Financial Conduct Authority (FCA), “Board reports are key to assess and evidence how firms have provided good outcomes for consumers under the Duty.”

Consumer

Consumer Risk Assessment Assessments Compliance

How is Regtech Enabling More Robust Data Protection and Privacy Compliance?

The Fintech Times

SEPTEMBER 24, 2024

“By automating risk assessments and ensuring encryption and secure data management, regtech not only reduces the chances of human error but also enables continuous monitoring for data breaches, thereby safeguarding privacy in an increasingly complex digital landscape. .”

Privacy

Privacy Compliance PCI DSS Rules

BIS: Central Banks Need to Embrace the AI Era to Stay Ahead of Financial Efficiency

Fintech News

JULY 4, 2024

The insurance industry stands to benefit from AI’s prowess in risk assessment and claims processing, while asset managers can leverage AI for more sophisticated portfolio allocation and algorithmic trading. One promising application is in ‘nowcasting’ – using real-time data to assess current economic conditions.

Central Bank

Central Bank AI Correspondent Bank Correspondent

6 Principles for Cyber Risk Scores — and Why We Need Them

FICO

JUNE 13, 2017

Inject best-practice decision management governance standards into a new domain. These standards and practices are very well-developed in banking, for instance, but are not yet well understood across other vertical markets. Promote fairness in reporting. 6 Principles for Security Ratings.

Risk

Risk Disputes Cybersecurity Best Practices

How Neopay can help firms adapt to FCA’s updated Financial Crime Guide

Neopay

DECEMBER 5, 2024

It also introduces new self-assessment questions and emphasises the importance of senior management accountability. Proliferation Financing (PF) In response to the 2022 changes in the Money Laundering Regulations (MLRs), the Guide now explicitly addresses the need for firms to conduct PF risk assessments.

Financial Crimes

Financial Crimes Crime Money Laundering Risk Assessment

Identity Risk Management: Strategic Approaches to Mitigate Risk

Seon

JUNE 24, 2024

It prevents issues such as payment fraud, account fraud (and misuse), loan fraud, and conducting business with high-risk individuals , as well as a stipulated practice for anti-money laundering (AML) compliance. Employee training on identity risk management best practices strengthens organizational defenses.

Risk Management

Risk Management Mitigation Risk Identity Theft

How to Streamline Your SaaS Clients’ Merchant Underwriting Process—and Improve Adoption Rates

Stax

DECEMBER 20, 2023

TL;DR Merchant underwriting is the risk level assessment process an acquiring bank carries out on every new merchant before they grant them a merchant account. The bank assumes the risk on behalf of the business and needs to make sure that they screen new businesses before handing out merchant accounts. Let’s explore them below.

Underwriting

Underwriting Process Enrollments Payment APIs and Integration

India’s Ola Enters London To Rival Uber

PYMNTS

FEBRUARY 10, 2020

motoring association AA ) to improve its drivers’ skills, with each driver completing a risk assessment and eLearning modules to receive a DriveTech Permit to Drive. Ola will work with Transport for London (TfL) and local authorities, and will employ global best practices.

Risk Assessment

Risk Assessment Best Practices Assessments Risk

Radius Bank: Becoming Partners In Crime Prevention Can Help FIs Beat Fraud Rings

PYMNTS

JULY 21, 2020

The most recent example comes from a conglome rate of 31 FIs and trade groups, including the American Bankers Association (ABA) and the Bank Policy Institute , which recently announced the creation of the Cyber Risk Institute (CRI). For more on these and other financial crime news items, download this month’s Playbook.

Crime

Crime Financial Crimes FBI Cybersecurity

Enhancing Your Financial Decision-Making

EBizCharge

JULY 22, 2024

Risk Management: Businesses can also proactively assess and manage financial risks associated with marketing campaigns to avoid high-risk investments and ensure financial transparency and accountability, so expenditures align with company objectives.

Risk Assessment

Risk Assessment Assessments Risk Finance

Gen Z is leading adoption of new payments. Here’s how BNPL is being affected.

Tearsheet

JULY 1, 2024

What are best practices when it comes to protecting consumer information? Start with a risk assessment. Security and privacy Data security and privacy are major concerns with new payment technologies. First and foremost, your security must exceed industry compliance standards.

BNPL

BNPL Online and Mobile Banking Encryption Payments

Using Machine Learning to Improve Telecom Business Assurance

FICO

AUGUST 7, 2019

These projects bring together companies large and small to create innovative solutions to common challenges, demonstrating how this can be achieved leveraging key TM Forum best practices and standards. Fighting Fraud and Controlling Risk in New Service Requests.

Risk Assessment

Risk Assessment Assessments API Best Practices

FCA Authorisations: How are things changing? Are things improving?

Neopay

JUNE 27, 2024

It is crucial to conduct a thorough assessment of your financial position and ensure that you meet the minimum capital requirements. To demonstrate financial adequacy, firms should consider the following: Capital Planning: Develop a robust capital planning strategy that takes into account potential risks and contingencies.

Financial Crimes

Financial Crimes Money Laundering Compliance Crime

How to Achieve SOX Section 404 Compliance

FloQast

NOVEMBER 27, 2023

Similarly, the segregation of duties ensures that no single individual has control over all aspects of any critical financial transaction, reducing the risk of malicious activity or errors. As businesses grow and financial landscapes shift, risks aren’t static.

Compliance

Compliance Risk Assessment Audit Risk Management

10 Best Practices for FP&A

Economic Crime and Corporate Transparency Act examined: A guide to avoiding failure-to-prevent fraud measures

Fundiin Teams up With Visa to Enhance Credit-scoring Model

Webinars

Planning an Internal Audit Risk Assessment

Navigating AML obligations in the age of virtual IBANs

PCI DSS Requirement 10 – Changes from v3.2.1 to v4.0 Explained

SWIFT Security Controls:Best Practices for Financial Institutions

Merchant Underwriting: What It Is, How It Works, and Why It’s Important

FICO and T-Mobile Share Third Party Risk Management Best Practices

FICO and T-Mobile Share Third Party Risk Management Best Practices

DORA Compliance Checklist: Essential Steps for Successful Implementation

DORA Compliance Checklist: Essential Steps for Successful Implementation

DORA Compliance Checklist: Essential Steps for Successful Implementation

DORA Compliance Checklist: Essential Steps for Successful Implementation

Best Practices in Fraud Management: Q&A with Bob Shiflet

ServiceNow Lands AI Partnerships with Visa and EY

Cyber security measures for small and medium enterprises (SMEs)

Cyber security measures for small and medium enterprises (SMEs)

Mastercard Launches Cyber Resilience Center in Saudi Arabia

PCI DSS Requirement 9 – Changes from v3.2.1 to v4.0 Explained

PCI DSS Requirement 8 – Changes from v3.2.1 to v4.0 Explained

PCI DSS 4.0

PCI DSS Compliance for SaaS Businesses

PCI DSS Compliance for SaaS Businesses

GDPR and Biometric Data: Ethical Considerations and Privacy Implications

Conducting Experiments in Credit Management: 4 Best Practices

Risk Management for Merchants in Payment Processing

Understanding Risk Management Strategies as a PayFac

How to Maintain Anti-Money Laundering Compliance as a PayFac

Regulatory Challenges in Fintech: Balancing Innovation and Consumer Protection

Reminder: Consumer Duty board reports due 31 July 2024

How is Regtech Enabling More Robust Data Protection and Privacy Compliance?

BIS: Central Banks Need to Embrace the AI Era to Stay Ahead of Financial Efficiency

6 Principles for Cyber Risk Scores — and Why We Need Them

How Neopay can help firms adapt to FCA’s updated Financial Crime Guide

Identity Risk Management: Strategic Approaches to Mitigate Risk

How to Streamline Your SaaS Clients’ Merchant Underwriting Process—and Improve Adoption Rates

India’s Ola Enters London To Rival Uber

Radius Bank: Becoming Partners In Crime Prevention Can Help FIs Beat Fraud Rings

Enhancing Your Financial Decision-Making

Gen Z is leading adoption of new payments. Here’s how BNPL is being affected.

Using Machine Learning to Improve Telecom Business Assurance

FCA Authorisations: How are things changing? Are things improving?

How to Achieve SOX Section 404 Compliance

Stay Connected