IAHFP | Reading Room

“Mirror, mirror on the wall, who in this land is fairest of all?”

Children’s fiction can open up new perspectives for adults. Black swan events, exercising (or failing to exercise) the zero trust principle, risks and opportunities are all there.

Investigating the facts is the next pleasure. In 1994, Eckhard Sander claimed that the character of Snow White was based on the life of Margaretha von Waldeck, a German countess born in 1533. At the age of 16, Margaretha was forced by her stepmother, Katharina of Hatzfeld, to move away to Brussels. There, Margaretha fell in love with a prince who would later become Philip II of Spain.

Graham Anderson compares the story of Snow White to the Roman legend of Chione, recorded in Ovid's Metamorphoses. The name Chione means "snow" in Greek and, in the story, she is described as the most beautiful woman in the land, so beautiful that the gods Apollo and Hermes both fell in love with her.

For Snow White, the death of her real mother and the arrival of a stepmother is a disaster. Snow White is forced to leave home, but she discovers who she is, and moves along the path to self-discovery and resilience. This is a story about development set in motion by the arrival of evil. Does it look familiar?

Monthly newsletters

Compliance LLC, Business Units

Compliance LLC is a company incorporated in Wilmington, NC, with offices in Washington, DC, a provider of risk and compliance training in fifty-eight countries. Several of its business units are associations, offering a wide range of services to their members, including membership programs, regular updates (weekly or monthly), specialized training, certification, Authorized Certified Trainer (ACT) programs, advocacy, and other professional services.

Some of the business units of Compliance LLC:

A. The Sarbanes Oxley Compliance Professionals Association (SOXCPA).

The Sarbanes Oxley Compliance Professionals Association (SOXCPA) is the largest association of Sarbanes Oxley professionals in the world.

https://www.sarbanes-oxley-association.com

Is Sarbanes-Oxley compliance still necessary many years after its enactment?

https://www.sarbanes-oxley-act.com

Basel iii Compliance Professionals Association (BiiiCPA)

B. The Basel ii / Basel iii / Basel iv Associations.

The Basel ii Compliance Professionals Association (BCPA) was the largest association of Basel ii Professionals in the world.

https://www.basel-ii-association.com

Basel II was a groundbreaking step forward in global banking regulation. It introduced a more refined, risk-sensitive framework, enhanced supervisory oversight, and greater transparency through market discipline.

https://www.basel-ii-accord.com

The Basel iii Compliance Professionals Association (BiiiCPA) is the largest association of Basel iii Professionals in the world.

https://www.basel-iii-association.com

The Basel III Accord is a comprehensive set of reforms developed by the Basel Committee to enhance the stability and resilience of the global financial system.

https://www.basel-iii-accord.com

For a Basel IV framework to exist officially, we need a formal announcement from the Basel Committee on Banking Supervision (BCBS), supported by a clear naming convention. As of now, the Committee refers to the post-2017 reforms as the "finalization of Basel III," not as a new framework. Unless the BCBS decides to issue a distinct, standalone set of rules under a new name, Basel IV for example, there will be no official Basel IV framework.

But what would need to happen for “Basel IV” to move from an informal term to an official regulatory framework? What steps would lead to formal recognition?

https://www.basel-4.com

The Basel iv Compliance Professionals Association (BivCPA) is under development, much like Basel IV itself.

https://www.basel-iv-association.com

In the USA, the term 'Basel IV' is not, as of now, an official term recognized by the Federal Reserve, the Office of the Comptroller of the Currency (OCC), or the Federal Deposit Insurance Corporation (FDIC).

Basel IV in the United States | Progress, Challenges, Outlook.

https://basel-iv.us

C. The Solvency ii Association.

The Solvency ii Association is the largest association of Solvency ii Professionals in the world.

https://www.solvency-ii-association.com

There is no official “Solvency III” directive or framework, at least not yet. The term Solvency III is used informally by some industry professionals to describe a set of significant revisions to the Solvency II framework. These reforms, however, are officially considered part of Solvency II.

The Solvency II Association will continue to monitor developments as they unfold and keep you informed of any updates.

https://www.solvency-iii.com/

The Solvency III Association is under development, much like Solvency III itself.

https://www.solvency-iii-association.com

D. The International Association of Risk and Compliance Professionals (IARCP).

The Certified Risk and Compliance Management Professional (CRCMP) certificate, from the IARCP, has become one of the most recognized certificates in risk management and compliance. There are CRCMPs in fifty-eight countries. Companies and organizations around the world consider the CRCMP a preferred certificate.

You can find more about the demand for CRCMPs at: https://www.risk-compliance-association.com/CRCMP_Jobs_Careers.pdf

https://www.risk-compliance-association.com

Risk Officers play a crucial role in identifying, assessing, and mitigating risks that could impact an organization’s objectives. They ensure compliance with regulations and promote a strong risk culture across all levels of management.

https://www.risk-officer.com

The Chief Risk Officer (CRO) is responsible for the establishment, implementation, and continuous supervision of the organization’s risk management framework. The CRO ensures that the organization operates within its defined risk appetite, and enhances decision-making, regulatory compliance, and overall resilience.

https://www.chief-risk-officer.com

The Compliance Officer is entrusted with ensuring that the organization conducts its activities in full conformity with applicable laws, regulations, and internal policies.

https://www.compliance-officer.org

The Chief Compliance Officer (CCO) develops and maintains the compliance program, including policies, procedures, and control mechanisms, and conducts compliance risk assessments to identify, evaluate, and mitigate legal, regulatory, and ethical risks.

https://www.chief-compliance-officer.org

Risk management is the process through which an organization identifies, assesses, monitors, and mitigates risks that could adversely affect the achievement of its objectives. Effective risk management ensures that material risks are properly understood, measured, and managed within approved limits.

https://www.risk-management.us

Risk governance is the system of principles, roles, responsibilities, and accountability structures through which an organization’s board and senior management direct and oversee the risk management framework. It defines the decision-making hierarchy, reporting lines, and oversight mechanisms ensuring that risk-taking activities remain aligned with the organization’s strategy, risk appetite, and legal obligations.

https://www.risk-governance.us

E. The International Association of Potential, New and Sitting Members of the Board of Directors (IAMBD).

The IAMBD offers independent guidance on rapidly evolving responsibilities, and supports informed decision-making. It assists boards worldwide in addressing hybrid, cyber, and other emerging threats, and in managing the complexities inherent in modern regulatory frameworks, technological advancements, and geopolitical challenges.

https://www.iambd.org

F. The International Association of Hedge Funds Professionals (IAHFP).

The IAHFP provides independent, specialized guidance on the evolving regulatory, fiduciary, and risk management obligations governing hedge fund formation, operations, and investment activities. It enhances the ability to identify and address hybrid, cyber, and other emerging threats, and to understand better the strategic implications for hedge fund models, operations, and investment approaches.

https://www.hedge-funds-association.com

Cyber Risk GmbH

Cyber Risk GmbH (Dammstrasse 16, 8810 Horgen, Switzerland, CHE-244.099.341) is a trusted strategic partner delivering tailored services to support the association’s objectives. The company specializes in providing advanced cybersecurity and compliance training, helping organizations navigate and implement complex European, U.S., and international cybersecurity regulations. Cyber Risk GmbH supports professionals in completing online training programs, passing exams, and obtaining Certificates of Completion, which serve as independent verification of their expertise for firms and organizations.

Cyber Risk GmbH carefully monitors the regulatory challenges and opportunities in the EU, and offers online training programs for the NIS 2 Directive (NIS 2), the Digital Operational Resilience Act (DORA), the Critical Entities Resilience Directive (CER), the Digital Services Act (DSA), the Digital Markets Act (DMA), the European Chips Act, the European Data Act, the European Data Governance Act, and the European Artificial Intelligence Act.

Cyber Risk GmbH offers a $100 discount on each distance learning program listed below to individuals who have previously purchased any of the association’s distance learning programs.

1. NIS 2 Directive Trained Professional (NIS2DTP)

2. Digital Operational Resilience Act Trained Professional (DORATPro)

3. Critical Entities Resilience Directive Trained Professional (CERDTPro)

4. Data Act Trained Professional (DataActTPro)

5. Data Governance Act Trained Professional (DatGovActTP)

6. European Chips Act Trained Professional (EChipsActTPro)

7. Digital Services Act Trained Professional (DiSeActTPro)

8. Digital Markets Act Trained Professional (DiMaActTPro)

9. Artificial Intelligence Act Trained Professional (AIActTPro)

To receive the URL for the discounted rate, please email us with the subject line: "Request for Discounted Program URL."

In the email, please let us know:

a. Which was the name and email address of the person or legal entity that had purchased the program from the Sarbanes-Oxley Compliance Professionals Association (SOXCPA).

b. Which is the program you want to purchase now at $197 instead of $297.

You will receive the URL for the discounted price for your second and subsequent programs within 48 hours (business days).

Cyber Risk GmbH websites include the following:

a. General, Sectors, Industries.

1. Hybrid Risk

2. Hybrid Risk Management

3. Hybrid Stress Testing

4. The Hybrid Resilience Initiative (HRI)

5. Cyber Risk GmbH

6. Social Engineering Training

7. Healthcare Cybersecurity

8. Airline Cybersecurity