Common Pitfalls - Fraud Risk Assessment
Risk assessments are part of the discipline of risk management, where enhanced frameworks and techniques have emerged. Risk management comprises the identification, assessment, and prioritization of risks followed by the coordinated and efficient use of resources to monitor, minimize, and otherwise control the organization's risks. Risks arise in many forms and range from uncertainty in financial markets, operational failures, natural disasters, and pandemics to legal liabilities and reputational harms.
Still time to join us on February 23-25! Baker Tilly’s 1st Annual Virtual Fraud and Compliance Summit
We are introducing our first annual virtual Baker Tilly Fraud and Compliance Summit, hosted by Jonathan T. Marks, who leads Baker Tilly’s Global Forensic, Compliance, and Integrity Services Practice.
Transparency! The New Anti-Money Laundering Act (AMLA)
On December 11, 2020, the Senate passed the Anti-Money Laundering Act of 2020 (“AMLA” or the “Act”) - DIVISION F of the National Defense Authorization Act for the fiscal year 2021 (the “NDAA”). The House of Representatives had previously passed the measure on December 8, 2020.
2020 Top 10 Articles on Fraud, Compliance, and Risk Management
Happy New Year, and thank you to the more than 100,000 people that visited Board and Fraud in 2020! With everything that happened last year, fraud, compliance, and risk management have arguably become more important than ever.
SEC Sends Message about Being Honest and Transparent Regarding the Effects of COVID-19
SEC and its New Silent Whistleblower: Risk Based Data Analytics
The SEC just announced its first actions arising from investigations generated by the Enforcement Division's EPS (Earnings Per Share) Initiative, which utilizes risk-based data analytics to uncover potential accounting and disclosure violations caused by, among other things, earnings management practices.
Are you ready? New EU Whistleblower Protection Law!
Soon all public and private organizations in the EU with more than fifty (50) employees will soon be required to comply with a new EU Whistleblower Protection law. The new law highlights the importance of responsive, transparent, and timely whistleblowing case management. So just implementing a hotline is not enough. Organizations must consider confidentiality, acknowledgment of the tip or compliant, response times, the competence of persons receiving the reports, communication with the whistleblower, and feedback on how the case is being processed. The new law also includes the right to report concerns externally while remaining legally protected. That's a risk organizations must avoid. With the December 2021 deadline fast approaching, there is no better time for management and boards to act. Read more!
COVID-19 - Fraud On The Rise is No Surprise!
Last week, the Association of Certified Fraud Examiners (” ACFE”) published the results of a survey taken by more than 1,800 anti-fraud professionals in late April and early May 2020, while we were deep into the Covid-19 crisis. The findings, for the most part, are not surprising, but does reveal some disappointing information. While I have not seen a raw copy of the survey, I was surprised the ACFE didn’t ask if the company’s fraud risk assessment was reviewed and modified accordingly.In addition, the survey highlights trends in the overall level of fraud. Survey respondents provided information about their current observations and expected changes regarding ten (10) specific types of fraud.
Whistleblowers: A Fraud Triage System to Manage Burgeoning Caseloads
As the use of whistleblower programs continues to grow, many organizations find themselves struggling to manage burgeoning caseloads. As a result, serious fraud investigations can be delayed (with mounting losses) while less consequential complaints are being investigated. The lack of a timely, systematic, and repeatable process for evaluating and prioritizing whistleblower tips that contain allegations of ethical breaches can also expose an organization to increased regulatory risk. While there is no single “right” method for following up on whistleblower complaints, the most effective approaches often resemble the medical triage programs that hospitals and first responders use to allocate limited resources during emergencies or a crisis situations. Here are some useful guidelines for designing and implementing a fraud triage system.
A Violation of Trust: Fraud Risk in Nonprofit or Not-for Profit Organizations
The risk of fraud is a serious concern for all types of enterprises, but fraud can be particularly damaging to a nonprofit or not-for-profit organization, for which a damaged reputation can have devastating consequences.
IIA Philadelphia and Baker Tilly’s Fraud & Ethics Symposium is Postponed! Stay tuned for the new date.
This one-day fraud symposium, sponsored by Baker Tilly's Global Forensic, Compliance and Integrity Services, and Solutions Practice Group and hosted by the Institute of Internal Auditors, Philadelphia Chapter, will include topics such as:•Culture•Current trends in white-collar crime•Tone is the middle•Policy management•Case study on a local fraudDiscover who will be speaking and register for the event!
Bribery Schemes and Their Compliance Responses
This writing will highlight some of the more unusual bribery schemes described in 2019 Foreign Corrupt Practices Act (FCPA) enforcement actions and also consider their impact on compliance programs, what they mean for the compliance professional and how the government could potentially use these cases to require more effective compliance programs going forward.Fraudsters are always looking for loopholes and weak spots to exploit. The same is true for those engaged in bribery and corruption. The role of every compliance professional is to prevent, detect and remediate. By following some of the approaches I have outlined, you can move towards more robust detection.
Fraud Tip Friday: Lessons From Recent FCPA Enforcement Actions
The United States government’s fiscal year ended on September 30, 2019. Just as in the business world, where many companies try and clear out any unexecuted deals or open contracts, the Securities and Exchange Commission (SEC) cleared out three outstanding Foreign Corrupt Practices Act (FCPA) enforcement actions. The three enforcement actions involved Quad/Graphics Inc., a Wisconsin-based digital and print marketing provider, and its Peruvian subsidiary, Quad/Graphics Peru S.A.; Barclays PLC; and a Canadian clean fuel company Westport Fuels Systems, Inc. and its former Chief Executive Officer (CEO), Nancy Gougarty of Leesville, South Carolina. The terms of each settlement agreement provide a different lesson for compliance practitioners.
DOJ Updates FCPA Corporate Enforcement Policy
On November 20th, 2019, The Department of Justice ("DOJ") announced updates to its Foreign Corrupt Practices Act ("FCPA") Corporate Enforcement Policy. While the changes were relatively minor, the modifications underscored important principles surrounding the FCPA Corporate Enforcement Policy. This latest update follows extensive revisions made in March of this year and the announcement that the FCPA Policy will apply as non-binding guidance for all criminal cases; all reflect DOJ’s continued efforts to promote self-disclosures and provide clarity on DOJ’s approach for companies deciding whether to self-disclose. There is little doubt the DOJ has landed on a Corporate Enforcement Policy that took years to develop. The FCPA Corporate Enforcement Policy now applies to all corporate criminal prosecutions except Antirust Division criminal prosecutions that are guided by the Leniency Program. The DOJ is consistently applying the principles and appears to be very comfortable with the results.
Speaking and Training on Fraud, Compliance, Ethics, and More...
Welcome to my site. I have spoken and been the keynote speaker for many conferences, including the ABA, ACC, ACFE, IIA, and IMA to name a few. I have designed customized training for the board, senior leadership, legal, compliance, internal audit, and others for some of the world's largest organizations.
Fraud: Department of Justice (DOJ) Announces Procurement Collusion Strike Force
On November 5th, the Department of Justice announced the formation of the new Procurement Collusion Strike Force (PCSF) “focusing on deterring, detecting, investigating and prosecuting antitrust crimes, such as bid-rigging conspiracies and related fraudulent schemes, which undermine competition in government procurement, grant and program funding”.The Strike Force is an inter-agency partnership comprised of prosecutors from the Antitrust Division, and prosecutors from thirteen (13) U.S. Attorneys’ Offices. Aiding in the prosecutors’ efforts are investigation partners such as the Offices of Inspector Generals from the Department of Justice, Department of Defense, U.S. Postal Service, and General Services Administration Office. The Department of Justice’s announcement proclaimed that investigating and prosecuting those who “cheat, collude and seek to undermine the integrity of government procurement” will have more to concern themselves with when executing their crimes. Prosecutors and investigators alike expressed enthusiasm to be working as a part of this new team.
Reputation Risk Management Doesn’t Have a Start or End Date!
How can we protect our brand? What are we doing to protect our brand? Questions all board members should be constantly asking. Reputational risks can damage the most well-crafted business strategies and is a growing challenge that companies around the world are still learning how to manage.By definition, reputational risk refers to the potential for negative publicity, public perception, or uncontrollable events to adversely impact a company's reputation, thereby affecting its revenue.Board directors covet their company’s reputation because it’s their most valuable asset. A study by Deloitte and Forbes affirmed this conviction, but should not surprise anyone. Senior-level executives also agreed that their company’s reputation presented the greatest risk to the company’s ability to achieve business strategies.
Skepticism - A Key Tool in the Fight Against Fraud
“Trust but verify” could be a downright dangerous approach when applied to audit procedures in particular. A much better slogan for fraud deterrence would be, “Trust is a professional hazard.”The implication is that because financial management plays a leading role in detecting financial fraud, it is incumbent on executives – not just auditors – to exercise appropriate levels of professional skepticism. Board members and particularly audit committee members also must take care to exercise a skeptical approach to financial reports and supporting information.