Day 6 of One Month to a Better Compliance Program

Day 6 of One Month to a Better Compliance Program

Where does “Tone at the Top” start. With any public and most private US companies, it is at the Board of Directors. But what is the role of a company’s Board in FCPA compliance? We start with several general statements about the role of a Board in US companies. First a Board should not engage in management but should engage in oversight of a CEO and senior management. The Board does this through asking hard questions, risk assessment and identification. In a White Paper, entitled “Risk Intelligence Governance-A Practical Guide for Boards” Deloitte & Touche laid out six general principles to help guide Boards in the area of risk governance. These six areas can be summarized as follows: Define the Board’s Role-there must be a mutual understanding between the Board, CEO and senior management of the Board’s responsibilities. Foster a culture of risk management-all stakeholders should understand the risks involved and manage such risks accordingly. Incorporate risk management directly into a strategy-oversee the design and implementation of risk evaluation and analysis. Help define the company’s appetite for risk-all stakeholders need to understand the company’s appetite or lack thereof for risk. How to execute the risk management process-the risk management process maintaining an approach that is continually monitored and had continuing accountability. How to benchmark and evaluate the process-systems need to be installed which allow for evaluation and modifying the risk management process as more information becomes available or facts or assumptions change. All of these factors can be easily adapted to FCPA compliance and ethics risk management oversight. Initially it must be important that the Board receive direct access to such information on a company’s policies on this issue. The Board must have quarterly or semi-annual reports from a company’s Chief Compliance Officer to either the Audit Committee or the Compliance Committee. This commentator recommends that a Board create a Compliance Committee as an Audit Committee may more appropriately deal with financial audit issues. A Compliance Committee can devote itself exclusively to non-financial compliance, such as FCPA compliance. The Board’s oversight role should be to receive such regular reports on the structure of the company’s compliance program, its actions and self-evaluations. From this information the Board can give oversight to any modifications to managing FCPA risk that should be implemented. There is one other issue regarding the Board and risk management, including FCPA risk management, which should be noted. It appears that the Securities and Exchange Commission (SEC) desires Boards to take a more active role in overseeing the management of risk within a company. The SEC has promulgated Reg SK 407 under which each company must make a disclosure regarding the Board’s role in risk oversight which “may enable investors to better evaluate whether the board is exercising appropriate oversight of risk.” If this disclosure is not made, it could be a securities law violation and subject the company which fails to make it to fines, penalties or profit disgorgement. CCO reporting to the Audit/Compliance Committee has to be structured carefully to promote ethics and compliance. Here are my five best practices that should guide the reporting: Quarterly Reports — The CCO should report in person to the Audit/Compliance Committee every quarter. If the CCO submits a written report and does not appear before the Committee, the failure to appear before the Committee reflects a defective relationship. The quarterly report is critical for both the CCO and the Committee to hear about compliance performance and challenges. Executive Session – Every quarterly report should be concluded with an executive session where the CCO and the Committee can have a frank discussion on any potential issues. It is a valuable opportunity to raise important issues. An executive session demonstrates that the CCO is independent and empowered within the organization, and reinforces the CCO’s direct access to the Board, if necessary. Sitting In on Other Reports – The CCO should sit in the Committee meeting when other important officers report to the Committee. For example, the CCO should attend the presentations by the Internal Auditor, the General Counsel, and the CFO. The CCO has a macro-view of the company and needs to be informed as to issues in other areas that may be significant and have compliance implications. Informal Relationship – A CCO should actively maintain an ongoing informal relationship with the Chair of the Audit/Compliance Committee. A CCO has to have the ability to pick up the phone and call to Chair to discuss issues that may arise. A weekly meeting for coffee or a meal is important to develop and maintain the relationship. Annual Report to Full Board – A CCO should report to the full Board once a year. The Audit/Compliance Committee quarterly reports are important but the full Board needs to hear about the challenges and risks facing the company, as well as improvements needed for the ethics and compliance program. Three Key Takeaways A Board Compliance Committee should provide oversight not management. A CCO should use multiple reports to communicate with the Board Compliance Committee. Board Compliance Committee oversight makes companies more efficient and at the end of the day more profitable. For more information, check out my book Doing Compliance: Design, Create and Implement an Effective Anti-Corruption Compliance Program, which is available by clicking here. Learn more about your ad choices. Visit megaphone.fm/adchoices

Tämä jakso on lisätty Podme-palveluun avoimen RSS-syötteen kautta eikä se ole Podmen omaa tuotantoa. Siksi jakso saattaa sisältää mainontaa.

Jaksot(1613)

AI in Compliance and Eastward AI’s Continuous Risk “Reality Check”

AI in Compliance and Eastward AI’s Continuous Risk “Reality Check”

Welcome to the award-winning FCPA Compliance Report, the longest-running podcast in compliance. In this episode, Tom welcomes back Gerry Zack, and they discuss the growing use of AI in compliance and ...

13 Heinä 29min

Managing Compliance and National Security Risks When Doing Business in the DRC, Part 2

Managing Compliance and National Security Risks When Doing Business in the DRC, Part 2

In this episode, Tom Fox welcomes David Simon, Partner at Foley & Lardner; Jack Korba, Of Counsel at Foley & Lardner; and Olivier Bustin, a Partner at Pinsent Masons, to discuss doing business in and ...

29 Kesä 24min

Managing Compliance and National Security Risks When Doing Business in the DRC, Part 1

Managing Compliance and National Security Risks When Doing Business in the DRC, Part 1

In this episode, Tom Fox welcomes David Simon, Partner at Foley & Lardner; Jack Korba, Of Counsel at Foley & Lardner; and Olivier Bustin, a Partner at Pinsent Masons, to talk about doing business in a...

22 Kesä 29min

Data Defensibility: The Foundation of AI Readiness with George Tziahanas

Data Defensibility: The Foundation of AI Readiness with George Tziahanas

In this episode, Tom Fox welcomes George Tziahanas, VP of Compliance and Associate General Counsel at Archive360, who brings a practical legal and governance perspective to the challenges of AI and da...

15 Kesä 30min

Leading with Invitation: Communications, Leadership, and Compliance with Dr. Dennis Cummins

Leading with Invitation: Communications, Leadership, and Compliance with Dr. Dennis Cummins

In this episode, Tom Fox welcomes Dr. Dennis Cummins to discuss his latest book, Invitational Selling: The Human Connection Advantage. Dr. Cummins is a renowned expert in the field of invitational sel...

8 Kesä 31min

Matt Ellis on Cartels, FTO Risk, and Corporate Compliance in Latin America

Matt Ellis on Cartels, FTO Risk, and Corporate Compliance in Latin America

In this episode, Tom Fox welcomes Matt Ellis of Miller & Chevalier about the ACI “Cartels, TCOs and Compliance in Latin America” forum (July 20–21, Washington, DC) and why cartel/TCO/FTO risk is a tim...

1 Kesä 25min

Report from Compliance Week 2026 on AI Sessions

Report from Compliance Week 2026 on AI Sessions

In this episode, Tom Fox takes a solo turn behind the mic to report on the AI tracks from the recently concluded Compliance Week 2026 conference. He highlights two AI tracks: practical “creative” use...

11 Touko 21min

Building a Life Sciences Compliance Law Firm with Edye Edens

Building a Life Sciences Compliance Law Firm with Edye Edens

In this episode, Tom Fox welcomes Edye Edens about launching her Life Sciences Law Group (“Eedee Law”) after years of contracting in life sciences compliance across multiple firms. Edye explains she ...

4 Touko 34min

Suosittua kategoriassa Liike-elämä ja talous

sijotuskasti
psykopodiaa-podcast
mimmit-sijoittaa
asuntoasiaa-paivakirjat
rss-rahapodi
rss-oivalluksia-rahasta-elamasta
ostan-asuntoja-podcast
oppimisen-psykologia
pomojen-suusta
rss-rahamania
rss-hilden-kaira-podcast
inderespodi
rss-sami-miettinen-neuvottelija
rahapuhetta
sijoituspodi
hyva-paha-johtaminen
raharesepti
rss-perho-rajoilla
rss-inderes
rss-rahataito-podcast