{"id":17021,"date":"2006-09-12T06:00:34","date_gmt":"2006-09-12T11:00:34","guid":{"rendered":"http:\/\/www.sequenceinc.com\/fraudfiles\/?p=17021"},"modified":"2016-04-03T18:00:04","modified_gmt":"2016-04-03T23:00:04","slug":"the-elusive-world-of-nonfinancial-fraud","status":"publish","type":"post","link":"https:\/\/www.sequenceinc.com\/fraudfiles\/the-elusive-world-of-nonfinancial-fraud\/","title":{"rendered":"The Elusive World of \u201cNonfinancial\u201d Fraud"},"content":{"rendered":"<p><img decoding=\"async\" class=\"lazyload alignright\" src=\"data:image\/svg+xml,%3Csvg%20xmlns%3D%27http%3A%2F%2Fwww.w3.org%2F2000%2Fsvg%27%20width%3D%27185%27%20height%3D%2754%27%20viewBox%3D%270%200%20185%2054%27%3E%3Crect%20width%3D%27185%27%20height%3D%2754%27%20fill-opacity%3D%220%22%2F%3E%3C%2Fsvg%3E\" data-orig-src=\"http:\/\/www.sequenceinc.com\/images\/logos\/complianceweek.gif\" alt=\"\" width=\"185\" height=\"54\" align=\"right\" border=\"0\" \/><em><strong>Compliance Week<\/strong><\/em><br \/>\nBy Tammy Whitehouse<\/p>\n<p>Now that Sarbanes-Oxley has made big progress buttoning down internal controls over financial reporting, the next great frontier for potential abuse is emerging: nonfinancial fraud.<\/p>\n<p>That\u2019s the lesson, at least, from companies like BP and State Farm, both caught up in accusations that employees manipulated nonfinancial information in ways that seemed to achieve some immediate gain for the companies.<span id=\"more-258\"><\/span><\/p>\n<p>BP, for example, either ignored or pushed the limits on pipeline maintenance, leading to the catastrophic failure of a stretch of pipeline in Alaska that caused a 270,000-gallon spill and sent oil prices soaring earlier this year. The company is under investigation not only for neglecting its duty to maintain corrosion-free pipes, but also for potential violations of safety rules and possible manipulation of propane prices.<!--more--><\/p>\n<p>Meanwhile, insurance giant State Farm is faced with allegations that it pressured engineers to issue reports that would minimize the claims the company would have to pay in the wake of Hurricane Katrina. (State Farm denies any wrongdoing, and describes the allegations against it as \u201cgrossly unfair.\u201d)<\/p>\n<p>And at the same time, the Securities and Exchange Commission has apparently ended its pursuit of charges against officers of oil producer Shell, which already paid a fine in 2004 for overstating proven oil and gas reserves to help boost its valuations. The SEC declined to confirm reports from Shell attorneys that the investigation is closed.<\/p>\n<p>All three situations are public-relations fiascos no company would want to endure, and could lead (and in Shell\u2019s case, did lead) to significant regulatory headaches. They also have something else in common: They are types of fraudulent behavior that SOX doesn\u2019t address.<\/p>\n<p>\u201cSOX is good for the internal control environment,\u201d says Bruce Gavioli, national leader of anti-fraud programs at Deloitte Financial Advisory Services. \u201cNow the next place for people to look is for external or collusive risks. Those may not have gotten the attention they deserved through the Sarbanes process.\u201d<\/p>\n<p>The risks are as varied and as numerous as the companies that must identify them, experts say. Anywhere an operational issue becomes financially relevant, companies must examine how their documentation could be manipulated, says Chris DeGallier, assistant director of business controls at Regence, a private health insurer that adheres to SOX voluntarily.<\/p>\n<p>In a manufacturing environment, for example, paperwork can be doctored to show materials have been consumed when in fact they have not, or environmental studies can be altered to reflect a reduced liability for the company. In retail settings, companies routinely struggle with theft of merchandise throughout the supply chain.<\/p>\n<p>In virtually any company, electronic payroll deposits present the risk of fictitious employees drawing paychecks, DeGallier says. \u201cIt\u2019s a good idea once in a while to hand checks to people instead of electronically depositing them, to make sure the checks match the people,\u201d he says.<\/p>\n<p>Tom Wardell, a partner in the corporate practice at the law firm McKenna Long &amp; Aldridge, warns that any time a company is negotiating a merger or acquisition, the risk of misbehavior exists. Although those involved in negotiations are bound to secrecy and are barred from buying or selling shares in anticipation of an announced transaction, Wardell says analyses still show an otherwise inexplicable spike in trading often precedes the revelation of a deal.<\/p>\n<p>\u201cThat suggests somebody knew and others didn\u2019t,\u201d he says. \u201cThe opportunity still exists for someone to trade.\u201d<\/p>\n<p>Zero-based assets also present a problem area for companies, Wardell says. Anytime a company has an asset on the balance sheet with no value (often the case with retired assets), the potential for abuse exists if the equipment in question still has some residual value in its parts.<\/p>\n<p>\u201cIf an asset on the balance sheet is valued for less than what its parts can be sold for, there\u2019s a chance that someone will do just that, and it won\u2019t be on the corporation\u2019s behalf,\u201d he says. \u201cThat reduces the revenue that would otherwise show up on the company\u2019s books.\u201d<br \/>\n<strong><br \/>\nWhither The Internal Controls?<\/strong><br \/>\nInternal controls monitored under SOX create the right tools for control, but don\u2019t necessarily guarantee good behavior, Wardell contends. \u201cIt really still only gives a company a framework for enforcing compliance within its culture,\u201d he says. \u201cIf that culture\u2019s not there, people will still find their way around the controls.\u201d<\/p>\n<p>Al Vondra, a partner with PricewaterhouseCoopers, says multinational companies often face their greatest risk as a result of overseas operations, depending on where they do business. In countries where bribery and other kinds of corruption are still the norm, U.S. companies may face an internal cultural battle over how best to do business. Vondra says enforcements arising from the Foreign Corrupt Practices Act have been on the rise in recent years as SOX enforcement has exposed overseas vulnerabilities to corrupt behavior.<\/p>\n<p>Gavioli says the best defense against fraud problems is a good offense. \u201cIt all comes down to having a robust anti-fraud program and controls in place,\u201d he says. He advocates a five-part approach that follows the five components of the internal control framework published by the Committee of Sponsoring Organizations: the control environment, risk assessment, control activities, information and communication, and monitoring.<\/p>\n<p>COSO\u2019s framework is largely in place among public companies to establish the internal control environment that facilitates SOX compliance. COSO has since published an enterprise risk management framework as well for an even wider view of control and risk.<\/p>\n<p>Companies need to conduct a fraud risk assessment to identify potential fraud schemes and scenarios, not just within the finance function but throughout the organization, Gavioli says. They need to establish anti-fraud control activities with both preventive and detective controls in place to discourage and identify fraud.<\/p>\n<p>Companies also need to establish a system of information sharing and communication so that people know their role in helping prevent and detect fraud, Gavioli continues. Entities need to monitor the program to assure it works properly, and they need to check the tone at the top to assure the appropriate signals are being sent from the board of directors and management.<\/p>\n<p>The American Institute of Certified Public Accountants even goes a step further, to say the audit committee should have responsibility for brainstorming on how management might game the internal controls to their favor and establish similar preventive and detective controls in that arena.<\/p>\n<p>It\u2019s an area more companies need to address, Gavioli says, based on Deloitte\u2019s findings in a recent survey. The company <img class=\"lazyload\" decoding=\"async\" src=\"data:image\/svg+xml,%3Csvg%20xmlns%3D%27http%3A%2F%2Fwww.w3.org%2F2000%2Fsvg%27%20width%3D%2771%27%20height%3D%2781%27%20viewBox%3D%270%200%2071%2081%27%3E%3Crect%20width%3D%2771%27%20height%3D%2781%27%20fill-opacity%3D%220%22%2F%3E%3C%2Fsvg%3E\" data-orig-src=\"http:\/\/www.sequenceinc.com\/images\/tracy\/confirms.jpg\" alt=\"\" width=\"71\" height=\"81\" align=\"left\" border=\"0\" \/>asked 1,600 listeners of a recent Webcast seminar if they have such an anti-fraud program in place, and only 49 percent indicated they do. Even further, only 39 percent said they have at least performed a fraud risk assessment.<\/p>\n<p><strong>Tracy Coenen, president of the forensic accounting firm Sequence<\/strong>, said it\u2019s a stretch even to assume companies have adequately tightened internal controls themselves, let alone looked beyond internal controls for other potential risks.<\/p>\n<p>\u201cA lot of companies went through the exercise of tightening controls, but it hasn\u2019t caused as much of a shift as many people think,\u201d she says. \u201cThey did the paperwork and now we can see how the controls really work, but the paperwork is just a document of what we do. It\u2019s not really forcing them to fix the problems or do anything better. I think there\u2019s so much that can still be done in internal controls that they needn\u2019t bother (to look for other risks.)\u201d<\/p>\n<p><em>Tracy\u2019s clarification: Companies should first do more to improve their internal controls to prevent fraud. After their internal controls are better, THEN they should look toward identifying and controlling non-financial risks. <\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Compliance Week By Tammy Whitehouse Now that Sarbanes-Oxley has made big progress buttoning down internal controls over financial reporting, the next great frontier for potential abuse is emerging: nonfinancial fraud. That\u2019s the lesson, at least, from companies like BP and [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[810,5],"tags":[],"class_list":["post-17021","post","type-post","status-publish","format-standard","hentry","category-financial-investigations","category-fraud-news-stories"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p6Z0e-4qx","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.sequenceinc.com\/fraudfiles\/wp-json\/wp\/v2\/posts\/17021","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.sequenceinc.com\/fraudfiles\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.sequenceinc.com\/fraudfiles\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.sequenceinc.com\/fraudfiles\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.sequenceinc.com\/fraudfiles\/wp-json\/wp\/v2\/comments?post=17021"}],"version-history":[{"count":0,"href":"https:\/\/www.sequenceinc.com\/fraudfiles\/wp-json\/wp\/v2\/posts\/17021\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.sequenceinc.com\/fraudfiles\/wp-json\/wp\/v2\/media?parent=17021"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.sequenceinc.com\/fraudfiles\/wp-json\/wp\/v2\/categories?post=17021"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.sequenceinc.com\/fraudfiles\/wp-json\/wp\/v2\/tags?post=17021"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}