Category: Risk Management

The Next Level of Investigations

Many investigations are currently being performed remotely, in concert with the general counsel, the chief compliance officer, the chief audit executive, and depending on the how the allegation was triaged, with outside counsel, a forensic accounting firm, and the board.  Even government prosecutors are interviewing witnesses remotely.

The primary goal of the interview is to elicit information in a non-coercive manner. My personal preference is always to conduct interviews face to face because I can control the subject and the environment, and evaluate the nonverbal behavior of the interviewee.  But, if performing a face-to-face interview is not possible, I suggest using video over the telephone.

This writing provides some suggestions for techniques to consider when conducting internal investigations remotely.

» Read More

Whistleblowers: Tipsters not trusting the system? Here’s how to win them back

Whistleblowers: Tipsters not trusting the system? Here’s how to win them back.

Anonymous hotlines and tip-reporting structures are useless, of course, if informants don’t trust them. Employees won’t blow the whistle if they fear reprisals. So, their concerns often don’t enter case-management systems and frauds continue. Here’s how to earn back their trust, take them seriously and transform raw tips into valuable fraud examinations.

» Read More

Whistleblowers: A Fraud Triage System

As the use of whistleblower programs continues to grow, many organizations find themselves struggling to manage burgeoning caseloads. As a result, serious fraud investigations can be delayed (with mounting losses) while less consequential complaints are being investigated. The lack of a timely, systematic and repeatable process for evaluating and prioritizing whistleblower tips that contain allegations of ethical breaches can also expose an organization to increased regulatory risk.

While there is no single, “right” method for following up on whistleblower complaints, the most effective approaches often resemble the medical triage programs that hospitals and first responders use to allocate limited resources during emergencies, or a crisis situation.

Here are some useful guidelines for designing and implementing a fraud triage system.

» Read More

Board Overconfidence: An Often Unrecognized Risk

Directors on corporate boards are – almost by definition – men and women who are accomplished and successful. So it is only natural that most board members also are highly self-assured and confident in their judgment and abilities.

When that self-confidence is misplaced or overstated, however, the consequences can be costly. This is particularly true when overconfidence causes board members to underestimate or overlook the risks associated with fraud or management incompetence. Moreover, when board overconfidence is compounded by management overconfidence, the risks can multiply quickly.

Once the dangers of overconfidence are understood and appreciated, board and management teams alike can begin taking proactive steps to mitigate the risks. Knowing the warning signs of board overconfidence is an essential first step.

Fraud, Compliance & Integrity Risk During a Crisis and a Downturn

As a crisis unfolds, like Coronavirus, and markets decline globally, fraudsters will be adapting and new risks will emerge and some risks will increase. 

Remember, white collar criminals adapt by profiling us, so they can exploit our weaknesses. That being said, companies need to develop a strategy that enables the deployment of appropriate tactics to manage these new or increasing risks.

This writing explores some fraud, compliance, and integrity risks and is intended to provoke discussion.

» Read More

IIA Philadelphia and Baker Tilly’s Fraud & Ethics Symposium is Postponed! Stay tuned for the new date.

This one-day fraud symposium, sponsored by Baker Tilly’s Global Forensic, Compliance and Integrity Services, and Solutions Practice Group and hosted by the Institute of Internal Auditors, Philadelphia Chapter, will include topics such as:

•Culture
•Current trends in white-collar crime
•Tone is the middle
•Policy management
•Case study on a local fraud

Discover who will be speaking and register for the event!

» Read More

Bribery Schemes and Their Compliance Responses

This writing will highlight some of the more unusual bribery schemes described in 2019 Foreign Corrupt Practices Act (FCPA) enforcement actions and also consider their impact on compliance programs, what they mean for the compliance professional and how the government could potentially use these cases to require more effective compliance programs going forward.
Fraudsters are always looking for loopholes and weak spots to exploit. The same is true for those engaged in bribery and corruption. The role of every compliance professional is to prevent, detect and remediate. By following some of the approaches I have outlined, you can move towards more robust detection.

» Read More

Fraud Tip Friday: Lessons From Recent FCPA Enforcement Actions

The United States government’s fiscal year ended on September 30, 2019. Just as in the business world, where many companies try and clear out any unexecuted deals or open contracts, the Securities and Exchange Commission (SEC) cleared out three outstanding Foreign Corrupt Practices Act (FCPA) enforcement actions. The three enforcement actions involved Quad/Graphics Inc., a Wisconsin-based digital and print marketing provider, and its Peruvian subsidiary, Quad/Graphics Peru S.A.; Barclays PLC; and a Canadian clean fuel company Westport Fuels Systems, Inc. and its former Chief Executive Officer (CEO), Nancy Gougarty of Leesville, South Carolina. The terms of each settlement agreement provide a different lesson for compliance practitioners.

» Read More

DOJ Updates FCPA Corporate Enforcement Policy

On November 20th, 2019, The Department of Justice (“DOJ”) announced updates to its Foreign Corrupt Practices Act (“FCPA”) Corporate Enforcement Policy. While the changes were relatively minor, the modifications underscored important principles surrounding the FCPA Corporate Enforcement Policy.  

This latest update follows extensive revisions made in March of this year and the announcement that the FCPA Policy will apply as non-binding guidance for all criminal cases; all reflect DOJ’s continued efforts to promote self-disclosures and provide clarity on DOJ’s approach for companies deciding whether to self-disclose. There is little doubt the DOJ has landed on a Corporate Enforcement Policy that took years to develop. The FCPA Corporate Enforcement Policy now applies to all corporate criminal prosecutions except Antirust Division criminal prosecutions that are guided by the Leniency Program. The DOJ is consistently applying the principles and appears to be very comfortable with the results.

» Read More

Speaking and Training on Fraud, Compliance, Ethics, and More…

Welcome to my site. I have spoken and been the keynote speaker for many conferences, including the ABA, ACC, ACFE, IIA, and IMA to name a few. I have designed customized training for the board, senior leadership, legal, compliance, internal audit, and others for some of the world’s largest organizations.

» Read More

Fraud: Department of Justice (DOJ) Announces Procurement Collusion Strike Force

On November 5th, the Department of Justice announced the formation of the new Procurement Collusion Strike Force (PCSF) “focusing on deterring, detecting, investigating and prosecuting antitrust crimes, such as bid-rigging conspiracies and related fraudulent schemes, which undermine competition in government procurement, grant and program funding”.

The Strike Force is an inter-agency partnership comprised of prosecutors from the Antitrust Division, and prosecutors from thirteen (13) U.S. Attorneys’ Offices.  Aiding in the prosecutors’ efforts are investigation partners such as the Offices of Inspector Generals from the Department of Justice, Department of Defense, U.S. Postal Service, and General Services Administration Office. The Department of Justice’s announcement proclaimed that investigating and prosecuting those who “cheat, collude and seek to undermine the integrity of government procurement” will have more to concern themselves with when executing their crimes. Prosecutors and investigators alike expressed enthusiasm to be working as a part of this new team.

» Read More

Reputation Risk Management Doesn’t Have a Start or End Date!

How can we protect our brand? What are we doing to protect our brand? Questions all board members should be constantly asking.  Reputational risks can damage the most well-crafted business strategies and is a growing challenge that companies around the world are still learning how to manage.

By definition, reputational risk refers to the potential for negative publicity, public perception, or uncontrollable events to adversely impact a company’s reputation, thereby affecting its revenue.

Board directors covet their company’s reputation because it’s their most valuable asset. A study by Deloitte and Forbes affirmed this conviction, but should not surprise anyone.  Senior-level executives also agreed that their company’s reputation presented the greatest risk to the company’s ability to achieve business strategies.

» Read More

Skepticism – A Key Tool in the Fight Against Fraud

“Trust but verify” could be a downright dangerous approach when applied to audit procedures in particular. A much better slogan for fraud deterrence would be, “Trust is a professional hazard.”

The implication is that because financial management plays a leading role in detecting financial fraud, it is incumbent on executives – not just auditors – to exercise appropriate levels of professional skepticism. Board members and particularly audit committee members also must take care to exercise a skeptical approach to financial reports and supporting information.

» Read More

e-Book Compliance Program Game Plan

This e-book is intended as a guide for Chief Compliance Officers (CCOs) and those responsible for developing and implementing compliance policies and procedures for an organization. Compliance, when done properly

Crisis Management – Lights, Camera, Action!

Some of the biggest mistakes made when handling a crisis are not dealing with the problem head on, thoughtless or insincere comments, lack of communication with stakeholders, unprepared spokespeople, getting defensive after receiving backlash, or, sitting back and letting the problem grow. Domino’s, Sony, Samsung, BP, United Airlines, Equifax, KFC, are all good examples of companies who stumbled with crisis management.  Organizations should study these crises and learn from the mistakes!

» Read More
Skip to toolbar