DOJ Provides New Guidance to Prosecutors on “Individual Accountability for Corporate Wrongdoing”

On September 9, 2015, Deputy Attorney General Sally Quillan Yates issued a memo to all of DOJ regarding individual accountability for corporate wrongdoing.  It’s been a heavy issue for years – that executives in companies where frauds or misconduct have occurred don’t seem to get prosecuted – and according to this memo, DOJ formed a “working group of senior attorneys from Department components and the United States Attorney community with significant experience in this area” to examine “how the Department approaches corporate investigations, and identified areas in which it can amend its policies and practices in order to most effectively pursue the individuals responsible for corporate wrongs.”  This particular memo was stated as being a product of that working group.

I suppose that many may take this as a long-awaited admission that DOJ wasn’t focusing on individuals enough in corporate fraud matters (criminal and civil).  I don’t know that I believe that to be the case, but I do find it refreshing to see greater emphasis placed on holding individuals accountable.  Personally, when I was an FBI Agent, I was much more interested in putting people in jail than seeing my cases resolved with a settlement agreement of some sort.  We always pursued the people behind the crimes.  But like I said, the statistics and data do seem to indicate that some greater emphasis was needed in this area.

I haven’t analyzed the memo yet and may post some thoughts about it after I do so.  Though I am guessing that many will be doing so very soon, probably better than I, and I look forward to reading their thoughts.  Some of the repercussions that this memo will create are obvious, such as much more intense internal corporate investigations (which the external lawyers, compliance consultants and forensic accountants will welcome), while others are more subtle (e.g. how this will affect disclosures and negotiations).

Anyway, with no further commentary from me, here are the six (6) “key steps” that this memo says will provide guidance to “strengthen our pursuit of individual corporate wrongdoing“:

1. In order to qualify for any cooperation credit, corporations must provide to the Department all relevant facts relating to the individuals responsible for the misconduct;
2. Criminal and civil corporate investigations should focus on individuals from the inception of the investigation;
3. Criminal and civil attorneys handling corporate investigations should be in routine communication with one another;
4. Absent extraordinary circumstances or approved departmental policy, the Department will not release culpable individuals from civil or criminal liability when resolving a matter with a corporation;
5. Department attorneys should not resolve matters with a corporation without a clear plan to resolve related individual cases, and should memorialize any declinations as to individuals in such cases; and
6. Civil attorneys should consistently focus on individuals as well as the company and evaluate whether to bring suit against an individual based on considerations beyond that individual’s ability to pay.

Here’s a copy of the Memo: DOJ Memo – Individual Accountability for Corporate Wrongdoing – Sept 2015 – I suppose it will become referred to eventually as the “Yates Memo”.

Accepting a Fraud Engagement – “Look Before You Leap”

One of the primary considerations when contemplating accepting a fraud examination engagement is whether or not the work justifies the costs to our clients. Just like our clients, among the chief purposes of us being in business is to earn money, so we hate to turn away or minimize work. But if we truly strive to best serve our clients and be perceived as trusted advisers, there are times when we need to advise our clients not to hire us (or anyone else) or to more appropriately align the scope of our work with realistic expectations as to outcomes.

It’s not that unusual to get a call from a company that has cause to believe an employee(s) has committed a fraud and where the company is very angry at the betrayal of trust and worried about how big the loss is. That anger and fear can make them very attractive to inexperienced and/or unscrupulous consultants/fraud examiners/accounting firms, many of whom charge premium rates for this type of work.  Many times have I heard such prospective clients say “It’s a matter of principle, so I don’t care about the costs! I want to get to the bottom of it and put the [expletives] in jail!”

That feeling about costs passes quickly, particularly after the invoices for your work start coming and there is no insurance to cover the costs and the likelihood of recovering any of the stolen funds is remote. Lets face it, most people who embezzle funds from an employer are not hoarding up what they stole. They spend it.  And not on hard assets that may be converted to cash or otherwise benefit our clients. Simply put, it’s usually gone.

As a trusted adviser, when we believe that to be the case and absent some legal, regulatory, or contractual need for the client to conduct a full fraud examination, we are obliged to share our concerns with the client. We need to make the client aware of its risks and set their expectations on the outcome(s) realistically and practically. Where possible, we should devise other ways to help them that provide a reasonable return on their investment for our time and expertise, even if that return is more preventative of future misconduct (e.g. internal control suggestions) and/or just a moral victory (e.g. criminal prosecution) more so than a recovery of misappropriated funds.

In such instances over the many years I have been doing fraud examinations, I have both talked prospective clients out of hiring me for such an examination or into reducing the scope of my examination from that which they initially envisioned.  In either case, I never leave them lacking in understanding about why conducting a formal and/or exhaustive fraud investigation was likely not going to achieve the results they desired. I also never leave them empty-handed, in the sense that, for example, I teach them how to do some investigating themselves and/or provide some ideas on internal controls that might prevent the next internal fraud. I rarely charge for that time (it’s usually minimal time and a nice “thanks” is payment enough) and have found the favors are usually returned somewhere down the road, whether by referral, reference, or selling/maintaining other accounting/tax/financial consulting services for that client.

One great example of this is an embezzlement matter that I took on a few years ago for a relatively small business. The employee at issue, whom I will hereafter refer to simply as “Joe,” had been with the business for over a decade, much of which time was spent in nearly complete control over the accounting function(s). There were no internal controls to speak of and Joe not only had the ability to steal in a wide variety of ways (i.e. payroll, accounts payable, credit card usage, false vendors, accounts receivable, cash, etc.), but also had the knowledge, experience, and ability to well conceal such activities within the books and records of the business.

After meeting with the client to gain a full understanding of the matter, their accounting system(s) & controls (or lack thereof), and learn about Joe (family, lifestyle, etc.), I quickly realized that due to the many ways that Joe could have stolen from the business and could have attempted to conceal it, conducting an exhaustive fraud examination designed to uncover the full extent of Joe’s fraud(s) would be extraordinarily expensive, while the likelihood of recovering much, if any of the stolen funds was poor. I suggested to the client that I be retained, through the client’s counsel, as a “consulting expert” rather than a “testifying expert” (which was the client’s original intent), so that I could better leverage any work to the client and otherwise keep its costs for the examination down.

In this particular matter, I quickly recognized that the facts and timing allowed for an interesting and possibly significant cost-savings option for the client – the possibility that I could interview Joe. Joe’s employment had been terminated on a Wednesday for some cause other than fraud (the fraud concerns were not mentioned to Joe when his employment was terminated) and they called me that Thursday afternoon.  Following my directions, the client quickly identified and documented about $200K in alleged misappropriations. I spent about thirty hours reviewing and testing the work the company had very quickly done at my suggestion and learning as much as I could about Joe. Early the following week, I called Joe, identified myself, explained my purpose, and asked if he would be willing to let me interview him immediately. The ending result from the consensual interview of Joe was a hand-written confession.

The client had no insurance to cover Joe’s thefts and realized through our discussions that the likelihood of recovering much or any of the stolen funds was remote. More so than recovering their losses (which could not be completely quantified without significant work at great costs), the client’s desired outcome became “justice” and a criminal referral that included a hand-written confession was the ideal solution. The guidance and alternative solution that I proposed and undertook saved the client many tens of thousands of dollars in fraud examination and attorney’s fees and helped ensure that Joe became a current resident of a penal facility. In addition to a restitution order from the criminal prosecution, I believe the client eventually got a civil judgment, but to the best of my knowledge, both were more paper than currency. At least justice didn’t cost them much in this case.

I could have easily talked that client into an exhaustive forensic fraud examination.  They initially felt the need for that (it was also recommended by the client’s counsel) and that was why they called me.  But I knew that doing that was not in their best interests and I firmly believed that it was my duty to let them know it, even though I fully understood that if they agreed, the fees generated by my work would be many tens of thousands of dollars less.  I definitely lost some short-term revenue, but I gained a long-term friend who has many needs that I or my firm can be fully trusted to help them with.

The old adage “look before you leap” finds very sound application in this practice area, and it’s our duty as trusted advisers to not just apply it to ourselves when contemplating accepting a fraud examination engagement, but to help our clients apply it as well.

DOJ Hiring a Compliance Expert

In November of 2014, I published a paper entitled “Improving Corporate Settlement Agreements” on JDSupra.  A few media people and industry experts picked it up and made comments on it – all the ones that I read were positive (thanks guys!).

In that paper, one of the issues that I raised was the lack of compliance and ethics program expertise among government agencies in the field of compliance and ethics programs.  For example, while DOJ prosecutors are exceptionally knowledgeable, trained, and experienced in white collar crime matters, I know of very few who can say the same about corporate compliance and ethics programs.  Yet it is exactly the robustness and effectiveness of an organization’s compliance and ethics program that dictates if or how the organization will emerge – prosecution, suspension/debarment, settlement, etc….

I would love to say that some DOJ people read that paper and took it to heart, but that’s probably doubtful.  Nonetheless, I was thrilled when I saw the announcement that the DOJ FCPA Unit was bringing on a compliance and ethics expert to do exactly what I was saying needs to be done in that regard (I had other criticisms in my paper as well that I would love to see addressed).

It has been reported that in July 2015, the Chief of the Fraud Section at DOJ confirmed that this position/role was being filled.  Here’s a link to an article on it.  The article stated: “This new compliance counsel position constitutes a significant change for DOJ, which in the past has relied on its cadre of white collar criminal prosecutors to evaluate compliance programs. The compliance counsel will help DOJ answer the recurring issue of whether an FCPA violation occurred because the company lacked an effective anti-corruption compliance program or because a rogue employee circumvented an otherwise strong program. Should DOJ decide to prosecute the company, the compliance counsel’s evaluation of the company’s compliance program will inform the final resolution with the company, including whether the company will be required to retain an independent compliance monitor.”

Kudos to the DOJ FCPA Unit for recognizing this need and doing something about it.  I and many others in the field will be anxiously awaiting to see it in action.  I also hope we will see this in other DOJ units (e.g. Anti-Trust) – this isn’t just an FCPA issue!

Also, I have seen some non-DOJ units picking up on this need.  For example, key decision makers in the Department of Interior’s Office of Inspector General and Suspension & Debarment Offices have become Certified Compliance and Ethics Professionals through the Society of Corporate Compliance and Ethics.  I have heard that the same is happening in at least one other Agency’s OIG and S&D offices.

There’s a long road ahead, but it seems people are at least seeing that a road exists.

Advanced Forensic Accounting – May 4th, Richmond, VA

On May 4, 2015, I am offering our “Advanced Forensic Accounting” course in Richmond, VA.  The course offers 8 hours of CPE (for CPAs).  Click here for a link to the official advertisement with all the relevant information.

“Advanced Forensic Accounting” is designed primarily to influence the way that one approaches and thinks when analyzing financial records in the course of a financial investigation.  This is an improved and appropriately modified course that was used to train new FBI Agents at the FBI Academy, many of whom had no prior investigative, audit or financial experience. In 2013 and 2014, the Securities and Exchange Commission engaged us to teach this course to its Enforcement Examiners and Examiners in 7 of their 11 Divisions.

The course begins with an introduction to critical thinking in an investigative environment and how that is different from the way in which an auditor thinks.  Time is also spent discussing how financial records can be used to build a profile of a person and how that profile is useful to an investigation.  Specific and technical steps are then discussed related to how to go about collecting, organizing and analyzing financial information and how to document that analysis.  The vast majority of learning is through participation in and discussion on a detailed practical exercise where the class is given three months of bank statements, including the supporting documentation for each transaction, and tasked to conduct analysis using the techniques discussed.

Come join us and see if you can figure out what Samir Samour is up to!

Advanced Forensic Accounting – Norfolk, VA

I am offering my wholly unique and practical “Advanced Forensic Accounting” course on November 5, 2014 in Norfolk, VA. The course is worth 8 hours of CPE for CPAs, which should be accepted also for CFEs, CIAs and others who accept CPA CPE.

Using just three months of bank account information, will you be able to unravel “Sammy’s” plan? Lives may depend on it….

This unique and interactive course is designed primarily to influence the way that one approaches and thinks when analyzing financial records in the course of a fraud or financial investigation. It is an improved and appropriately modified course (i.e. nothing “classified”) that I developed and used to train new FBI Agents at the FBI Academy, many of whom had no prior investigative, audit or financial investigations experience.  In 2013 and 2014, the SEC engaged me to present this course to many of its Enforcement Examiners and Examiners in most of its 11 Divisions.

The course begins with an introduction to critical thinking in an investigative context, followed by a discussion about how financial records can be used to profile a person and how that profile can be critical and useful in an investigation. Specific and technical steps are then discussed about collecting, organizing and analyzing financial information and how to document that analysis.

The vast majority of learning is through participation in and discussion about a detailed practical exercise where you are challenged with a forensic accounting role within a real-life scenario. In the scenario,you work in teams and are provided with three months of bank statements,including the supporting documentation for each transaction, and tasked to conduct analysis and live internet research using the techniques you have learned. The places and people in the scenario are mostly real or otherwise back-stopped on the internet to challenge and enthrall new and experienced financial investigators alike.

The practical based nature of this course, team-work (as small teams and as a larger class) and double-reinforcement of the learning through repeated application works, effectively impacting the way that you think and making you a better financial/fraud investigator.

The course not only works – it’s the most fun eight hours of CPE or similar training you’ll ever have outside of Hogan’s Alley!

Compliance Based Investing

Usually when one thinks about investing in compliance, it is in the context of an organization investing its efforts and resources into its Compliance and Ethics Program (hereafter “Program”).  But that’s not what I’m talking about.

For a long time now, some investors have considered religious, social and/or political stances or actions of organizations when making investment decisions.  It should come as no surprise that the next evolution of “responsible investing” may well be focused on an organization’s Program.

As an expert who routinely assesses such Programs, often due to potentially catastrophic compliance or ethics failings, I greatly appreciate the degree to which a robust and effective Program reduces corporate liability/risk.  In my mind, less risk of corporate liability/penalty (i.e. suspension/debarment, prosecution, de-listing, etc.) = less investment risk.

In 2012, I began incorporating Program design assessments into my personal investment considerations.  It is not without its challenges, as many publicly traded organizations do not make a great deal of information about their Program publicly available.  Moreover, even when a fair amount of information is publicly available, it may only be sufficient to assess the design of the Program and not whether or not the Program has been effectively implemented within an organization.

For those not familiar with such assessment, a “design” assessment is intended to determine the degree to which a Program’s design comports with compliance & ethics industry standards and the United States Sentencing Guidelines (Section §8B2.1 – “Effective Compliance and Ethics Program”).  An “implementation” assessment is intended to determine how effectively the Program is, among other things, overseen, managed, communicated and implemented within an organization.

When I am not able to find any information about a publicly traded organization’s Program on an organization’s website, I immediately disqualify that organization for any further investment consideration.  In my mind, such a glaring lack of regard for compliance and ethics speaks volumes as to ethical tone and risk management, among other things.

For those publicly traded companies that make available some information about its Program, the next hurdle relates to whether or not it is sufficient to allow even a rudimentary Program design assessment.  Where the amount of and type of information falls just short of that necessary to piece together some idea as to how well the Program is designed, I have found that an email to the investor relations contact and/or General Counsel may result in more information.  The response to such a request alone tells me much about the organization’s regard for a Program’s importance.

Where a company makes a great deal of information about its Program publicly available, regardless of the results of my design assessment, I at least take some comfort in seeing that the organization appears to take compliance and ethics seriously.  For a few of these companies where I felt the Programs fell a little short in terms of design, I nonetheless elected to invest in those organizations as they appeared to be on the right compliance and ethics path.

It will be interesting to see if this becomes a more commonly applied piece of analysis for other investors.  There is no data that I am aware of that has been compiled to reflect any correlation between stock price and compliance & ethics programs, but it sure would be interesting to see!

One thing is certain.  If your company has a good compliance program, let people know about it.

Inside the Mind and Behind the Numbers: The Anatomy of a Ponzi Scheme

I updated this article recently and it has received a great deal of attention – all positive (at least so far!).  I’ve made it available again for those interested, especially in light of the many Ponzi schemes that have recently been uncovered and the continuing saga of Madoff.

Here’s the tagline for the article: “John Hanson, a former FBI Agent and practicing forensic accountant, takes you inside of his mind and behind the numbers of a Ponzi Scheme to answer the universal question: “Where did all that money go?”
Based on actual cases and using layman’s language, John uses a simple hypothetical example to take you on an accounting journey through the life-cycle of a common, non-massive, Ponzi Scheme.”
The article can be accessed here.