Categories
Compliance Kitchen

EU and Dual Use Sanctions


The EU issued its new and updated dual use items export regulations and The Kitchen took a look at the main points.

Categories
This Week in FCPA

Episode 269 – the Focus on the SEC edition


Jay is once again traveling this week so we are joined by Professor Karen Woody as special guest co-host. I know you will enjoy her comments on this special Focus on the SEC edition.

Stories

1.     Coinbase v. the SEC. Andrew Ross Sorkin previews in NYT Dealbook. Francine McKenna takes a deep dive in The Dig (sub req’d) Gary Gensler testifies before Congress, Paul Keiran in the WSJ.
2.     Why compliance should lead ESG. Kyle Brasseur  in Compliance Week (sub req’d)
3.     Another cheating scandal at KPMG. Matt Kelly on Radical Compliance. Leadership
4.     Leadership lessons from the fall of Kabul. Sandra Erez in CCI.
5.     What are the Big 3 issues from this year’s proxy season? Eric Knox, Sehrish Siddiqui and David Venturella in CCI.
6.     How large a problem is corporate recidivism? Dick Cassin in the FCPA Blog.
7.     The Great Resignation and meaningful work. Brett Beasley in Notre Dame’s Deloitte Center for Ethical Leadership.
8.     Boeing safety woes hit the Boardroom. Wachtel Lipton lawyers in Harvard Law School Forum on Corporate Governance.
9.     On the intersection of culture and corporation reputation. Mike Volkov in Corruption Crime and Compliance.
10.  Learned Hand on leadership and humility. Jeff Kaplan in the Conflict of Interests blog.

Podcasts and Events

11.  CCI surveying stress in compliance. Henry Kronk in CCI. Take the survey here
12.  On Innovation in Compliance, Tom has run a 6-part special podcast series on Looking Back on 9/11, sponsored by Affiliated Monitors. In this series he will visit with professionals from a variety of compliance perspectives who will discuss how 9/11 changed our profession, including three who were in NYC during the attacks. Hear thoughts and reflections from Gabe HidalgoJuan ZarateAlex DillEric FeldmanScott Moritz and John Lee Dumas.
13.  Are you exasperated? Then check out the latest offering from the Compliance Podcast Network, F*ing Argentina. In this podcast series co-hosts Tom Fox and Gregg Greenberg, author of F* Argentina explore the current American psyche of being overworked, over leveraged, overtired and overwhelmed. Find out about modern America’s exasperation with well…exasperation. In Episode 1, the dreaded Parent Meeting night at your child’s elementary school.
14.  Ethisphere’s World Most Ethical Company awards for 2022 are open for submission. For more information on the Application Process, click here.
15.  Breaking News features The Compliance Handbook, 2nd edition. Check out the Breaking News feature here. Purchase The Compliance Handbook, 2nd edition here.
Tom Fox is the Voice of Compliance and can be reached at tfox@tfoxlaw.com.

Categories
Daily Compliance News

September 17, 2021 the Briefcase Companies edition


In today’s edition of Daily Compliance News:

  • DOJ to oppose Sackler bankruptcy deal. (WSJ)
  • SEC awards 2 whistleblowers $114MM? (WSJ)
  • Ex-Kenyan sports minister pleads guilty to corruption charges. (Seattle Times)
  • Glencore trader pleads guilty to FCPA charges, cooperating with DOJ. (YaHooFinance)
Categories
Blog

Culture, Training and Compliance – Part 3: Culture of Compliance

I recently had the chance to visit with Tina Rampino, Associate Managing Director at K2 Integrity. We chatted about the big picture on culture. We began with the basics: that a culture of Compliance is the foundation of an organization’s compliance program. Rampino said it is a measure of how well employees feel empowered to identify, mitigate, and escalate risk within their institution. An institution’s compliance culture is set by an institution’s Board and Executive Leadership team. Their messaging should be continuously reinforced in an institution’s risk appetite statement, policies, training and enterprise-wide communications. A strong compliance culture should be evident at all levels of the financial institution and across all three lines of defense.
Rampino detailed some key questions to ask, such as “What is the tone that is set from the most senior levels of the organization? Are employees motivated by doing any and all business no matter the risk? Are they empowered to act with integrity and choose the right business that aligns with their compliance culture?” She went on to relate, “Many institutions have built training and communications programs to help employees understand what the “right business means” – reinforcing an institution’s risk appetite statement, incorporating policies and procedures, and training on red flags and high-risk issues.” She concluded, “A culture of compliance should empower employees, not just in the second line of defense but in all areas of the institution – to think about the risks being presented through their customers, transactions, and products and services and how they can do their part in mitigating risk to the institution.”
An effective compliance training program can help to ensure that an institution is regularly addressing new issues and emerging risks. It also helps to ensure that employees have the right knowledge and skills necessary to perform their roles, so they understand the risks within the institution and their business area as well as the consequences of non-compliance. Rampino detailed some of the areas your organization should focus on with the following questions, “Do our training programs match the risks of our institution, and the variety of functions within it?”; “Do our employees have the right experience and training to do their jobs?” and “Are we regularly addressing new issues and ensuring our programs help our teams deal with emerging risks?”
We next turned to some of the key actions senior executives and leaders can take to not simply ‘talk-the-talk’ but also ‘walk-the-walk’ of compliance. Senior executive and leaders are responsible for setting the tone from the top which means setting expectations for the importance of compliance throughout the organization and by modeling behaviors for their employees. Rampino details the seven elements of a culture of compliance.

  1. Tone from the Top.
  2. Establishing and communicating enterprise-wide policies and programs.
  3. Defining clear roles and responsibilities across the three lines of defense.
  4. Ensuring adequate staffing and resources for functions responsible for compliance.
  5. Designing and implementing a comprehensive compliance training program.
  6. Establishing compliance incentives
  7. Creating efforts to embed and sustain a compliance culture.

An institution’s leadership must support all those elements to ensure that employees have what is needed to effectively manage their compliance risk.
We concluded by considering the role both training and communication have in a culture of a compliance program. Interestingly, Rampino said it maybe “the MOST important role because it is a means by which these critical messages are delivered to all employees.” The reason is that a comprehensive compliance training program “not only ensures that employees are aware of their responsibilities, it provides them with detailed information on how they should identify, mitigate, escalate, and report risk.” Moreover, “the most important asset to an institution’s compliance program is truly each and every employee.” Comprehensive and well thought-out training should assist in creating awareness, developing, and refining skills needed to ensure compliance. The training program should reflect the risks within the organization and should evolve as emerging risks are identified.
In terms of an effective communications program, institutions should ensure robust and recurring communication. “One and done” is not an effective way to deliver communications or develop an organizational culture. A robust program issues clear messages in a recurring fashion. Rampino concluded with some key takeaways on communications. First, institutions that want to create a culture of compliance should issue policy alerts and remind staff of changes. Second, information should then be easily accessible and readily available for employees. Finally, town halls, quarterly newsletters, and even short video messages explaining changes can be effective ways to ensure that all staff members understand what they must do to support the institution’s focus on compliance.

Categories
Innovation in Compliance

Integrity Matters: Culture, Training and Compliance – Part 5: Operational Aspects of Training

Welcome to this special podcast series, Integrity Matters: Culture, Training and Compliance, sponsored by K2 Integrity. This week I visit with Koby Bambilia, Managing Director, and Tina Rampino, Associate Managing Director. Over the series we have broken down corporate culture, compliance training and communications. Topics included breaking down the big picture on culture, espresso shots of training, skills development and regulatory changes, tailored and risked based training and operational aspects of training. In this concluding Part 5, I am joined again by Tina Rampino who reviews key operational aspects of training, including budget, delivery and more.

We began with a discussion of one of the most critical issues around compliance training, but one I believe does not get nearly enough discussion in the compliance community, that being the issue of budgeting. During times of economic stress compliance training budgets are often tightened. Rampino believes this approach needs to be avoided. The reason is straight forward, “investing in training and professional development for employees can save money in the long-run, both operationally and when it comes to regulatory requirements. An institution’s greatest asset is their employees and especially when you’re entrusting them to protect your institution from risk.”
This means that if you are providing employees with ongoing training to assist them to continuously refine their knowledge and skills; it will also keep them engaged and incentivized to take compliance more seriously. Moreover, as Rampino noted, “developing and retaining employees is beneficial to financial institutions in the long-run and demonstrates sustainability within the compliance program.” Instead of cutting back on training budgets in general, institutions should assess the training needs as they align with the greatest risk and find ways to deliver the most targeted and relevant training across the enterprise. Rampino advocates several different styles of compliance training. These include, having a “balance of online/in-person training; including independent or self-guided training; as well as hands on training with an instructor.”
We then turned to the concept of compliance training as a cost saving exercise. Rampino reiterated that “skilled and experienced employees are a critical part of a sustainable and effective program. While training may not be the highest priority, when a compliance officer is looking at their list of money spend for year; training is critical in proactively reducing compliance errors and risk.” Additionally, employees who receive timely and engaging training often feel that an institution is investing in them and their professional growth, which can lead to less turnover. Rampino concluded, it demonstrates “an institutions appreciates the importance of career pathing and skills development. It is not just for the regulators, but for health and wellbeing of an institution.”
Think about that for a minute; training should also assess the skills needed for each role and provide a career path for employees. Employees want to understand they are growing professionally. Management desires its employees to “understand that people they have in those roles have the right training and are experienced.” Rampino concluded that this means “training is a resource bigger than what it looks like on paper. That’s why budget and resources for training is so important. Training is a way to mitigate risk within the institution—both in terms of real risks that come in the door every day and demonstrating a sustainable way to do so.”
We concluded with Rampino’s thoughts on regulatory expectations around compliance training.  She believes, “Regulators are more interested than ever in seeing that an institution is investing in a sustainable, scalable, and dynamic training program. They want to know that an institution understands their risks and that it demonstrates that with the training that is provided to their employees. Regulators are expecting more targeted and role-based training offerings and that the content is evolving as the risks evolve.”
In the vein of my mantra Document, Document, and Document, Rampino also noted that regulators are “more focused than ever on how the financial institution is assessing compliance skills needed for critical roles and demonstrating that their employees meet the skill requirements for the roles that they are in.” This means a potential audit on areas as wide-ranging as “how an institution provides career pathing, professional development, and cross-training opportunities for their employees.” But this is much more than a myopic view of compliance training only as it “ensures sustainability of the program but also allows for flexibility as financial institutions adapt to the changes and may face organizational or structural changes, as many do due to a host of issues ranging from regulatory remediation to right-sizing.”
Training and its attendant skills development have become critical in empowering employees to move into new roles as needs arise and offers growth opportunity which is valuable beyond measure in the current environment that institutions are operating in. She concluded by stating that regulators “want to know that compliance employees not only understand their institutions internal risk, policies/procedures, and escalation processes but also that they are staying current with industry best practices and emerging risks.”
K2 Integrity has developed an online training platform and resource center, Dedicated Online Financial Integrity Network (DOLFIN), to help clients with their training requirements and provide more diverse options for training content and modalities. Find out more about DOLFIN here. For more information on K2 Integrity click here.