Posts Tagged ‘internal control’
SEC Dings Two Firms on Internal Controls
For years regulators have talked about the importance of data analytics in enforcement actions. Now the SEC has demonstrated that point with two enforcement actions for poor internal control and earnings manipulation, driven by the agency’s in-house analytics team. So we can’t say nobody warned us. The enforcement actions were announced Monday, against a carpet…
Read MoreWAC-o Tale of FCPA Misconduct
Some days the WTF-o-meter just doesn’t go high enough, and such is the case with the latest FCPA enforcement action from the Securities and Exchange Commission. Fellow compliance travelers, prepare yourselves. The SEC dinged World Acceptance Corp., a consumer loan business based in South Carolina, for a bribery operation the company’s Mexico subsidiary ran in…
Read MoreOn Internal Control and Mr. Potato Head
Here’s one way to convey the importance of software patch management: a bunch of Canadian Tire retail stores had to close last week because “a downloading error” caused all purchases to be scanned at the checkout register as Mr. Potato Head. The Toronto Star dug up this story last week. Five Canadian Tire stores in…
Read MoreA Security Threat That Evades Internal Control
Well this is sobering stuff for internal auditors and SOX compliance professionals: a cybersecurity firm is raising alarms about flaws in the Oracle business software that countless companies use to manage their finances, which lets hackers steal or alter financial data — all undetectable by standard internal controls or GRC technology. Be warned, this is…
Read MoreFraud Study Shows Benefits of Control Measures
Compliance and audit executives looking to justify all the steps you take to fight fraud, break out your reading glasses! The Association of Certified Fraud Examiners just released a sweeping analysis of corporate fraud that suggests those measures really do pay off. The ACFE’s 2020 Report to the Nations studied more than 2,500 cases of…
Read MoreDiageo Lessons on Internal Control
Talk about going on a bender: the SEC just fined spirits maker Diageo $5 million for forcing its distributors to buy more liquor than they needed, and then neglecting to tell investors that Diageo’s inflated sales numbers would eventually dry out. In the world of funny numbers, what Diageo did is known as channel stuffing,…
Read MoreEricsson Internal Control Lessons
As everyone in the corporate compliance world knows by now, Ericsson settled its long-running FCPA case last week with $1.06 billion in disgorgement and penalties plus a compliance monitor to boot. This is a sprawling case, full of lessons for the rest of us, so let’s start with the internal controls issues enforced by the…
Read MoreManagement Override and Navy SEALs
Keeping pace with all the ethics and compliance lessons one can learn from the Trump Administration is no easy task. Nevertheless, we have yet another one: the perils of management override, as demonstrated by President Trump’s determination to keep a disgraced Navy SEAL in military service. The story evolved quickly over the weekend. It begins…
Read MoreEarly Returns on Critical Audit Matters
Earlier this fall large corporations started to file annual reports that, for the first time ever, included “critical audit matters” identified by their audit firms. CAMs have been a controversial idea for quite some time, but they’re here — and now we have some early research on which subjects audit firms are flagging for CAM…
Read MoreOther Lessons in Verwaltung Case
You may have seen news last week that a Swiss bank, LLB Verwaltung, paid $10.7 million to the Justice Department to settle charges of tax evasion. The deal is notable because the bank’s compliance officer had warned senior executives about the risks they were taking — warnings that senior bank executives chose to ignore. So…
Read More