Casey Jones - or How to Stop a Compliance Train Wreck

Friday, August 12, 2011

Thomas Fox


The evaluation of C-Suite leadership can be problematic in the best of times. In the compliance world, if a company has a serious violation of the Foreign Corrupt Practices Act (FCPA), it may be due to tone-deafness at the top.

Worse than simple tone-deafness, the C-Suite can be an active part of the problem. While not FCPA violations, the criminal prosecutions at the highest echelon at Enron, WorldCom and Adelphia certainly speak to ethical lapses at the top.

But the question remains, how can a Board evaluate a company’s top leadership for compliance and ethics?

In a posting on the HBR Blog Network, entitled, News Corp and Questions Boards Need to Ask” author Rob Kaplan poses an interesting solution to this conundrum. Kaplan phrases the question as “how does a board really know the leadership style of its senior operating management and the culture of the company for which it has fiduciary responsibility?”

He acknowledges that Boards often have very little process or procedure in place to judge the leadership style, daily behaviors, and cultural norms being established by their senior operating leadership.

This can deprive Boards of sufficient information to make an informed decision and “by the time directors realize there is a culture or leadership style problem at the company, it is too late to have prevented real damage to the business, reputation, and careers of senior executives.”

While Kaplan discusses this in the context of the ongoing News Corp scandal, he sets forth an interesting mechanism by which a Board can fulfill its duty to make competent compliance and ethics evaluations; he calls it a “360-Review”.

In a 360-Review, an outside professional firm is brought into the company to conduct discreet interviews with a number of company employees who interact with the senior executives under review. The key is that the interviews are discreet and “not for attribution.”

While noting that the 360-Review is “not without controversy”; Kaplan, nonetheless, posits that with improved insights Boards can “clear the air” with a Chief Executive Officer (CEO), or other C-Suite inhabitant.

The 360-Review also can reduce general employee speculation about senior management deficiencies and can provide to the Board a better ability to coach the CEO and flag emerging cultural problems.

He concludes by noting “This and similar types of constructive steps taken by the board can serve to preempt issues before they become a threat to the company and the CEO’s career.”

The UK Bribery Act Six Principles of Adequate Procedures; OECD Good Practices and the Department of Justice (DOJ) Best Practices released with recent Deferred Prosecution Agreements and Non-Prosecution Agreements (DPA/NPA) all speak to a system of disciplines AND incentives for behaviors in accordance with good compliance and ethics.

Most companies which follow such best practices have policies, programs and procedures in place to punish those who violate compliance policies and reward those who conduct business in accordance with these compliance policies.

However, the Board may be overlooking an evaluation of those at the highest level of the company’s management. If the inherent message of the C-Suite is to make quarterly or other numbers, and the pressure is solely on that issue, the Board needs to understand that a train wreck may be coming.

Kaplan’s suggestion of a 360-Review, focused on compliance and ethical behavior, could be a mechanism which assists a Board in slowing down such an oncoming derailment.

This publication contains general information only and is based on the experiences and research of the author. The author is not, by means of this publication, rendering business, legal advice, or other professional advice or services. This publication is not a substitute for such legal advice or services, nor should it be used as a basis for any decision or action that may affect your business. Before making any decision or taking any action that may affect your business, you should consult a qualified legal advisor. The author, his affiliates, and related entities shall not be responsible for any loss sustained by any person or entity that relies on this publication. The Author gives his permission to link, post, distribute, or reference this article for any lawful purpose, provided attribution is made to the author. The author can be reached at

Cross-posted from Tom Fox Law

Possibly Related Articles:
General Legal
Policy Compliance FCPA DOJ Ethics Board of Directors News Corp
Post Rating I Like this!
Chris Rich The inclusion of a 360-review or similar mechanisms for non-intrusive ethical oversight can be established at the beginning of the relationship, or at review, so there are no surprises or miscommunications about the responsibilities for both sides. If an agreement regarding ethical behavior measurements and conditions cannot be met, then perhaps the respective board should consider other candidates more willing to accept the inclusion of such terms in their hiring and compensation agreements. With incidents such as News Corp capturing headlines, I see it as only a matter of time before organizations that put a high-value on ethical behavior start including such terms when hiring their top executives. C-level executives will weigh any condition of employment against meeting their goals, and they should work that out before signing on. If boards weigh the risks of not requiring such oversight in favor of other metrics, they too must live with those decisions.

Chris Rich
Product Manager
NetWrix Corporation
Netwrix is #1 for Change Auditing: Simple, Lightweight, Affordable
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.