[Verse 1] SEC demands disclosure when material risks appear Public companies can't hide what shareholders should hear Dodd-Frank carved new rules for banks to navigate Federal guidelines reward ethics programs first-rate [Chorus] Navigate the maze of laws across each domain US, EU, Canada - regulations reign HIPAA, SOX, and PCI - industry chains COSO twenty-seventeen weaves through legal plains Map the rules, know your space Every jurisdiction sets the pace [Verse 2] European Union shifts to sustainability's call Non-Financial Reporting now demands you tell it all ESG factors must be measured, risks exposed to light AI Act creates new categories overnight [Chorus] Navigate the maze of laws across each domain US, EU, Canada - regulations reign HIPAA, SOX, and PCI - industry chains COSO twenty-seventeen weaves through legal plains Map the rules, know your space Every jurisdiction sets the pace [Verse 3] OSFI's E-twenty-one governs operational scope B-ten tackles third parties - vendor risks to cope CSA staff notices guide disclosure's art PIPEDA guards privacy - data's beating heart [Bridge] Healthcare needs HIPAA's shield Payment cards must never yield Defense contracts CMMC-bound Sarbanes-Oxley keeps controls sound Every industry has its code Every framework shares the load [Chorus] Navigate the maze of laws across each domain US, EU, Canada - regulations reign HIPAA, SOX, and PCI - industry chains COSO twenty-seventeen weaves through legal plains Map the rules, know your space Every jurisdiction sets the pace [Outro] Practitioners must weave together every thread Legal landscape's complexity - look ahead COSO framework holds the center, strong and true While regulations orbit all around you
← 4 ERM Technology Architecture | 6 Third-Party and Supply Chain Risk →