RiskTemplates · The Daily Brief Monday, May 18, 2026

RiskTemplates.

Wire
MAY 15 SEC's Final Judgment Against Black Hawk's Robert Newell: How a $37M Cannabis Fund Became a Ponzi Case Study MAY 14 SEC Adani $18M Settlement: When Anti-Bribery Disclosures Become Securities Fraud MAY 13 SEC and DOJ Charge 21 in BigLaw M&A Insider Trading Ring — What the Document Management Trail Tells You MAY 12 OCC Consent Orders: From Issuance to Termination — A Practitioner's Walkthrough MAY 12 SEC Charges Reign Financial and Berone Capital in $26M Prime Bank Scheme: The Due Diligence Failures Every Adviser Should Audit MAY 10 Parmar's $212M Constellation Healthcare Sentencing: Take-Private Fraud Lessons for Risk and Compliance MAY 15 SEC's Final Judgment Against Black Hawk's Robert Newell: How a $37M Cannabis Fund Became a Ponzi Case Study MAY 14 SEC Adani $18M Settlement: When Anti-Bribery Disclosures Become Securities Fraud MAY 13 SEC and DOJ Charge 21 in BigLaw M&A Insider Trading Ring — What the Document Management Trail Tells You MAY 12 OCC Consent Orders: From Issuance to Termination — A Practitioner's Walkthrough MAY 12 SEC Charges Reign Financial and Berone Capital in $26M Prime Bank Scheme: The Due Diligence Failures Every Adviser Should Audit MAY 10 Parmar's $212M Constellation Healthcare Sentencing: Take-Private Fraud Lessons for Risk and Compliance

Topic Resilience & Continuity

When the system goes down — what your program already had to have ready.

Business continuity, disaster recovery, and SOC 2 templates for the team that needs to prove resilience to regulators, auditors, and bank partners. Aligned with ISO 22301, FFIEC BCM, NIST SP 800-34, and AICPA SOC 2.

◆ ISO 22301 · FFIEC BCM · NIST SP 800-34 · AICPA SOC 2

Browse templates Latest analysis

◆ What you'll find here

Resilience that survives an examiner question.

◆ 01

BCP & BIA

Business impact analysis, recovery time objectives, dependency mapping, and the BCP plan structure that holds up during a real outage. Aligned with ISO 22301 and FFIEC BCM.

◆ 02

Disaster recovery

DR runbooks, technology recovery, tabletop exercises, and the test evidence regulators expect. Mapped to NIST SP 800-34 and FFIEC IT Examination Handbook.

◆ 03

SOC 2 readiness

The trust services criteria mapped to working controls. Built for fintechs and SaaS companies preparing for their first SOC 2 audit or maintaining Type II evidence year-round.

◆ Resilience templates

Tools for resilience teams.

BCP, DR, BIA, and SOC 2 templates with Excel workbooks and PDF guides. Buy once, tailor to your program, deploy in days.

Template
$79

Business Continuity & Disaster Recovery (BCP/DR) Kit

BCP and DR templates with BIA, recovery procedures, and a standalone tabletop exercise kit.

Learn more → Buy now →
Template
$79

SOC 2 Compliance Checklist

151 controls mapped to AICPA Trust Services Criteria with evidence collection guidance.

Learn more → Buy now →

50+

Resilience articles

4

Frameworks · ISO · NIST · FFIEC · AICPA

US

Federal banking + SOC 2 ecosystem

◆ Latest analysis

From the journal.

Business Continuity

Crisis Communication Plan: The BCP Component Most Financial Institutions Treat as an Afterthought

Your BCP has 60 pages on recovery procedures and three paragraphs on communication. Here's what regulators actually test, the four audience streams every plan needs, and the pre-approved templates to build before the crisis hits.

· 11 min read

Business Continuity

50 Essential Questions for Your Business Impact Analysis (BIA) Questionnaire

Master your BIA with our comprehensive 50-question template, designed to identify critical business functions, RTOs, RPOs, and ensure robust business continuity planning. Download free template.

· 8 min read

Business Continuity

Business Impact Analysis (BIA) Questionnaire Template: 50 Essential Questions

Master business continuity with our BIA questionnaire template. Identify critical functions, assess impacts, and set recovery objectives with 50 essential questions.

· 10 min read

Business Continuity

Tabletop Exercise Facilitation Techniques: How to Run Drills That Actually Surface Gaps

The facilitation mechanics that separate tabletop exercises that find real gaps from ones that generate paperwork. Role structure, inject design, hot wash technique, and the common mistakes that turn a good scenario into a wasted afternoon.

· 11 min read

Business Continuity

Operational Resilience vs. BIA: The Regulatory Shift from RTOs to Impact Tolerances

Traditional BIA produces RTOs. Operational resilience requires impact tolerances. They're different questions with different methodology — here's how to update your BIA process.

· 12 min read

Business Continuity

Third-Party Dependencies in BIA: How Deep Should You Go?

When mapping third-party dependencies in your BIA, one tier isn't enough for critical functions. Here's how to scope the analysis — and where going deeper actually matters.

· 10 min read
View all 50 articles →

◆ Immaterial Findings · Weekly

Sharp risk & compliance insights practitioners actually read.

Enforcement actions, regulatory shifts, and practical frameworks — no fluff, no filler.

◆ Practitioners from banks, fintechs, and asset managers · Delivered weekly

Immaterial Findings · Newsletter

The brief, in your inbox.

Enforcement of the week, a framework breakdown, and the prompts that are actually worth running. Delivered to your inbox. Free.