Categories
FCPA Compliance Report

Randy Sorrels-A New Law Firm

In this Episode of the FCPA Compliance Report, I am joined by Randy Sorrels, an old colleague in the legal practice from Houston. Randy is also a former President of the State Bar of Texas. He also started a new law firm with his wife Alex at the height of the pandemic. He visits about his new law firm, his innovative use of social media and real commitment to bringing diversity to his practice.

Highlights of this podcast include:

  1. Professional background and what he learned at his prior firms.
  2. A confluence of events led to his open The Sorrels Law Firm.
  3. Hiring talent that is not only diverse racially but also diverse in professional backgrounds beyond law.
  4. Trying cases during a pandemic.
  5. Practicing law as a trial lawyer in 2021.
  6. Innovative use of social media to publicize the new law firm.
  7. The importance of the State Bar of Texas.
  8. What SealPT meant to the both of us.

For more information on The Sorrels Law Firm, check out their website here. Check out Randy’s profile here.

Categories
Blog

ESG and Compliance: Policies and Procedures

This week I will be considering the role compliance and a Chief Compliance Officer (CCO) should play in a corporate Environmental, Sustainable and Governance (ESG) program. Over this series, I will explore how the StoneTurn Group, LLP (StoneTurn) ESG Framework provides a structure through which any compliance professional can create an organization necessary for an ESG program. Today we take up ESG policies and procedures.
There are numerous reasons to put some serious work into your ESG policies and procedures. They are certainly a first line of defense when stakeholders coming knocking. Having ESG policies and procedures that outline responsibilities for compliance within the company, detail proper internal controls, auditing practices, and documentation policies are critical for public companies under ESG regulatory scrutiny. The Securities and Exchange Commission (SEC) and other regulators will take a strong view against a company that does not have well thought out and articulated ESG policies and procedures; all of which are systematically reviewed and updated. Moreover, having policies written out and signed by employees provides what some consider the most vital layer of communication and acts as an internal control. Together with a signed acknowledgement, these documents can serve as evidentiary support if a future issue arises. In other words, the “Document, Document, and Document” mantra applies just as strongly to this area of anti-corruption compliance.
Additionally, a company’s ESG policies provide a basic set of guidelines for employees and others to follow. ESG policies should give general prescriptions and should be supplemented by more specific procedures. By establishing what is and what is not acceptable behavior, a company helps mitigate the risks posed by employees who might not always make the right ESG choices.
Bryan J. Sillaman and Alexandra Poe, Hughes Hubbard & Reed LLP, in an article entitled Five Steps to Establishing a Corporate ESG Policy for the Present Moment, suggested that an organization should focus their ESG policies and procedures that are “applicable generally with respect to your industry and then with greater specificity to the conditions, operations and geographic footprint of your particular company.” In the area of Environmental, that could mean your organization’s “contribution to climate change, including energy use (such as its carbon footprint and use of clean energy), waste management, pollution, resource conservation, impact to habitats and environmental remediation.” From there you could consider if your organization has opportunities to promote positive change, in reducing “energy loads, expanding organic food production, or adopting technologies that repair environmental damage.” Moreover, with the passage of the Germany Supply Chain Act and other legislation such as the UK Anti-Slavery Act, both regulators and investors “want to see companies consider their own operations and impacts arising from your supply chain.”
In the prong of Sustainability, what are your policies and procedures around conduct that affects your organization’s relationship with human communities, from employees to customers and local communities where the company operates? Obviously, social justice is a key component, but it quickly expands out to working conditions, whether a state will provide basic social and healthcare services and employ health and safety. From there it can include such disparate topics as “childcare, education, equal opportunity, pay equity, financial inclusion, job creation and social justice. Companies that make products that have the potential to harm people, like guns, toxic materials, alcohol and other addictive substances, have special considerations in this regard.” But all companies must justify having physical operations in geographic locations which will not protect employees from mass shootings or even pandemic related threats such as Covid-19 to the Delta Variant.
In the area of Governance, compliance continues to play a key role. Here consider your organization’s policies and procedures “relating to regulatory compliance and the conduct of
officers and directors and the expectations of integrity set at the top of the organization.” The concerns are as varied as ranging from “accurate and transparent financial reporting, to executive compensation practices, diversity and inclusion, and avoidance of conflicts of interest, sexual harassment and corrupt practices.” Governance policies and procedures should also evaluate the “composition of a board of directors or executive teams, to assess whether representatives to those bodies are well suited to address concerns of all stakeholders and potential ESG risks.”
Cowen Inc. incorporated all of these concepts into its corporate ESG Statement. In the area of Environmental, Cowen states:
Cowen recognizes that the world faces environmental challenges and is committed to promoting a healthy environment. As an organization that engages in the global financial markets, we believe that our business can and should do things to promote a positive influence in matters that improve the world.
In the area of Sustainability, Cowen states:
At Cowen, we pride ourselves in the long-standing culture of respect and empathy for our employees and the community at-large. 
We employ a fair pay practice which ensures that Cowen’s pay practice is competitive with the market for the same or similar jobs, qualifications and experience. 
We believe that diversity and inclusion strategies are the catalyst for success and innovation in the workplace. We believe that differing opinions and lived experiences are valuable and serve to support our business overall. 
Wellness, both physical and financial, is the cornerstone of our employee benefit programs. Our… programs, such as emergency back-up elder/child care, subsidized health club membership and flexible work arrangements, help employees balance work, life and family matters more effectively. 
We also work to create partnerships with vendors that share a commitment to sustainability. Vendors engaged in providing products and services to Cowen are expected to act in a manner that is consistent with our Code of Business Conduct and Ethics. During vendor evaluations, Cowen takes the appropriate steps to ensure ethical business practices, labor and human rights, vendor diversification and inclusion, environmental stewardship, management systems and governance are considered. 
We intend to further improve our social impact across our organization and within the greater community. 
In the area of Governance, Cowen states:
Strong governance, ethical business practices and prudent risk management are critical ingredients to Cowen’s achievement of its goal for long-term value creation for shareholders and driving sustainability.
 Corporate governance guidelines assist the Board in the exercise of its responsibilities and to promote the effective functioning of the Board and its committees. The Board’s goal is to oversee and direct management in building long-term value for the Company’s stockholders. In addition, the Board’s goal is to assure the strength, integrity and vitality of the Company for its customers, clients, employees and the communities in which it operates. 
Cowen’s Code of Business Conduct and Ethics, which applies to all officers, employees and members of the Board, serves as the foundation for high standards of integrity and ethics, the deterrence of wrongdoing and the promotion of compliance with applicable regulations.
The Board and executive management are ultimately responsible for the review and oversight of risk at Cowen. They are supported by a risk management framework which includes committees, departments and systems which monitor, manage and report on market, liquidity and operational risk.
 As we expand our ESG initiative, we will seek ways to further optimize our governance process.
Clearly a compliance function has a large role in filling out the policies and procedures to implement these statements.

Categories
Sunday Book Review

September 19, 2021, the 2021 Booker edition


In today’s edition of Sunday Book Review:

  • The Promise by Damon Galgut.
  • No One is Talking About This by Patricia Lockwood.
  • Bewilderment by Richard Powers.
  • Through our Enemies’ Eyes by Michael Scheuer.
  • The Great Circle by Maggie Shipstead.
  • The Fortune Men by Nadifa Mohamed.
  • The Passage North by Anuk Arudpragasam.
Categories
Daily Compliance News

September 18, 2021 the Sorry Rudy edition


In today’s edition of Daily Compliance News:

  • Court denies Giuliani request to withhold documents. (WSJ)
  • Companies grapple with the Covid vaccine mandate. (WSJ)
  • IMF chief denies undue influence. (NYT)
  • Treasury to tackle ransomware. (WaPo)
Categories
Compliance Kitchen

EU and Dual Use Sanctions


The EU issued its new and updated dual use items export regulations and The Kitchen took a look at the main points.

Categories
This Week in FCPA

Episode 269 – the Focus on the SEC edition


Jay is once again traveling this week so we are joined by Professor Karen Woody as special guest co-host. I know you will enjoy her comments on this special Focus on the SEC edition.

Stories

1.     Coinbase v. the SEC. Andrew Ross Sorkin previews in NYT Dealbook. Francine McKenna takes a deep dive in The Dig (sub req’d) Gary Gensler testifies before Congress, Paul Keiran in the WSJ.
2.     Why compliance should lead ESG. Kyle Brasseur  in Compliance Week (sub req’d)
3.     Another cheating scandal at KPMG. Matt Kelly on Radical Compliance. Leadership
4.     Leadership lessons from the fall of Kabul. Sandra Erez in CCI.
5.     What are the Big 3 issues from this year’s proxy season? Eric Knox, Sehrish Siddiqui and David Venturella in CCI.
6.     How large a problem is corporate recidivism? Dick Cassin in the FCPA Blog.
7.     The Great Resignation and meaningful work. Brett Beasley in Notre Dame’s Deloitte Center for Ethical Leadership.
8.     Boeing safety woes hit the Boardroom. Wachtel Lipton lawyers in Harvard Law School Forum on Corporate Governance.
9.     On the intersection of culture and corporation reputation. Mike Volkov in Corruption Crime and Compliance.
10.  Learned Hand on leadership and humility. Jeff Kaplan in the Conflict of Interests blog.

Podcasts and Events

11.  CCI surveying stress in compliance. Henry Kronk in CCI. Take the survey here
12.  On Innovation in Compliance, Tom has run a 6-part special podcast series on Looking Back on 9/11, sponsored by Affiliated Monitors. In this series he will visit with professionals from a variety of compliance perspectives who will discuss how 9/11 changed our profession, including three who were in NYC during the attacks. Hear thoughts and reflections from Gabe HidalgoJuan ZarateAlex DillEric FeldmanScott Moritz and John Lee Dumas.
13.  Are you exasperated? Then check out the latest offering from the Compliance Podcast Network, F*ing Argentina. In this podcast series co-hosts Tom Fox and Gregg Greenberg, author of F* Argentina explore the current American psyche of being overworked, over leveraged, overtired and overwhelmed. Find out about modern America’s exasperation with well…exasperation. In Episode 1, the dreaded Parent Meeting night at your child’s elementary school.
14.  Ethisphere’s World Most Ethical Company awards for 2022 are open for submission. For more information on the Application Process, click here.
15.  Breaking News features The Compliance Handbook, 2nd edition. Check out the Breaking News feature here. Purchase The Compliance Handbook, 2nd edition here.
Tom Fox is the Voice of Compliance and can be reached at tfox@tfoxlaw.com.

Categories
Daily Compliance News

September 17, 2021 the Briefcase Companies edition


In today’s edition of Daily Compliance News:

  • DOJ to oppose Sackler bankruptcy deal. (WSJ)
  • SEC awards 2 whistleblowers $114MM? (WSJ)
  • Ex-Kenyan sports minister pleads guilty to corruption charges. (Seattle Times)
  • Glencore trader pleads guilty to FCPA charges, cooperating with DOJ. (YaHooFinance)
Categories
Blog

Culture, Training and Compliance – Part 3: Culture of Compliance

I recently had the chance to visit with Tina Rampino, Associate Managing Director at K2 Integrity. We chatted about the big picture on culture. We began with the basics: that a culture of Compliance is the foundation of an organization’s compliance program. Rampino said it is a measure of how well employees feel empowered to identify, mitigate, and escalate risk within their institution. An institution’s compliance culture is set by an institution’s Board and Executive Leadership team. Their messaging should be continuously reinforced in an institution’s risk appetite statement, policies, training and enterprise-wide communications. A strong compliance culture should be evident at all levels of the financial institution and across all three lines of defense.
Rampino detailed some key questions to ask, such as “What is the tone that is set from the most senior levels of the organization? Are employees motivated by doing any and all business no matter the risk? Are they empowered to act with integrity and choose the right business that aligns with their compliance culture?” She went on to relate, “Many institutions have built training and communications programs to help employees understand what the “right business means” – reinforcing an institution’s risk appetite statement, incorporating policies and procedures, and training on red flags and high-risk issues.” She concluded, “A culture of compliance should empower employees, not just in the second line of defense but in all areas of the institution – to think about the risks being presented through their customers, transactions, and products and services and how they can do their part in mitigating risk to the institution.”
An effective compliance training program can help to ensure that an institution is regularly addressing new issues and emerging risks. It also helps to ensure that employees have the right knowledge and skills necessary to perform their roles, so they understand the risks within the institution and their business area as well as the consequences of non-compliance. Rampino detailed some of the areas your organization should focus on with the following questions, “Do our training programs match the risks of our institution, and the variety of functions within it?”; “Do our employees have the right experience and training to do their jobs?” and “Are we regularly addressing new issues and ensuring our programs help our teams deal with emerging risks?”
We next turned to some of the key actions senior executives and leaders can take to not simply ‘talk-the-talk’ but also ‘walk-the-walk’ of compliance. Senior executive and leaders are responsible for setting the tone from the top which means setting expectations for the importance of compliance throughout the organization and by modeling behaviors for their employees. Rampino details the seven elements of a culture of compliance.

  1. Tone from the Top.
  2. Establishing and communicating enterprise-wide policies and programs.
  3. Defining clear roles and responsibilities across the three lines of defense.
  4. Ensuring adequate staffing and resources for functions responsible for compliance.
  5. Designing and implementing a comprehensive compliance training program.
  6. Establishing compliance incentives
  7. Creating efforts to embed and sustain a compliance culture.

An institution’s leadership must support all those elements to ensure that employees have what is needed to effectively manage their compliance risk.
We concluded by considering the role both training and communication have in a culture of a compliance program. Interestingly, Rampino said it maybe “the MOST important role because it is a means by which these critical messages are delivered to all employees.” The reason is that a comprehensive compliance training program “not only ensures that employees are aware of their responsibilities, it provides them with detailed information on how they should identify, mitigate, escalate, and report risk.” Moreover, “the most important asset to an institution’s compliance program is truly each and every employee.” Comprehensive and well thought-out training should assist in creating awareness, developing, and refining skills needed to ensure compliance. The training program should reflect the risks within the organization and should evolve as emerging risks are identified.
In terms of an effective communications program, institutions should ensure robust and recurring communication. “One and done” is not an effective way to deliver communications or develop an organizational culture. A robust program issues clear messages in a recurring fashion. Rampino concluded with some key takeaways on communications. First, institutions that want to create a culture of compliance should issue policy alerts and remind staff of changes. Second, information should then be easily accessible and readily available for employees. Finally, town halls, quarterly newsletters, and even short video messages explaining changes can be effective ways to ensure that all staff members understand what they must do to support the institution’s focus on compliance.

Categories
Innovation in Compliance

Integrity Matters: Culture, Training and Compliance – Part 5: Operational Aspects of Training

Welcome to this special podcast series, Integrity Matters: Culture, Training and Compliance, sponsored by K2 Integrity. This week I visit with Koby Bambilia, Managing Director, and Tina Rampino, Associate Managing Director. Over the series we have broken down corporate culture, compliance training and communications. Topics included breaking down the big picture on culture, espresso shots of training, skills development and regulatory changes, tailored and risked based training and operational aspects of training. In this concluding Part 5, I am joined again by Tina Rampino who reviews key operational aspects of training, including budget, delivery and more.

We began with a discussion of one of the most critical issues around compliance training, but one I believe does not get nearly enough discussion in the compliance community, that being the issue of budgeting. During times of economic stress compliance training budgets are often tightened. Rampino believes this approach needs to be avoided. The reason is straight forward, “investing in training and professional development for employees can save money in the long-run, both operationally and when it comes to regulatory requirements. An institution’s greatest asset is their employees and especially when you’re entrusting them to protect your institution from risk.”
This means that if you are providing employees with ongoing training to assist them to continuously refine their knowledge and skills; it will also keep them engaged and incentivized to take compliance more seriously. Moreover, as Rampino noted, “developing and retaining employees is beneficial to financial institutions in the long-run and demonstrates sustainability within the compliance program.” Instead of cutting back on training budgets in general, institutions should assess the training needs as they align with the greatest risk and find ways to deliver the most targeted and relevant training across the enterprise. Rampino advocates several different styles of compliance training. These include, having a “balance of online/in-person training; including independent or self-guided training; as well as hands on training with an instructor.”
We then turned to the concept of compliance training as a cost saving exercise. Rampino reiterated that “skilled and experienced employees are a critical part of a sustainable and effective program. While training may not be the highest priority, when a compliance officer is looking at their list of money spend for year; training is critical in proactively reducing compliance errors and risk.” Additionally, employees who receive timely and engaging training often feel that an institution is investing in them and their professional growth, which can lead to less turnover. Rampino concluded, it demonstrates “an institutions appreciates the importance of career pathing and skills development. It is not just for the regulators, but for health and wellbeing of an institution.”
Think about that for a minute; training should also assess the skills needed for each role and provide a career path for employees. Employees want to understand they are growing professionally. Management desires its employees to “understand that people they have in those roles have the right training and are experienced.” Rampino concluded that this means “training is a resource bigger than what it looks like on paper. That’s why budget and resources for training is so important. Training is a way to mitigate risk within the institution—both in terms of real risks that come in the door every day and demonstrating a sustainable way to do so.”
We concluded with Rampino’s thoughts on regulatory expectations around compliance training.  She believes, “Regulators are more interested than ever in seeing that an institution is investing in a sustainable, scalable, and dynamic training program. They want to know that an institution understands their risks and that it demonstrates that with the training that is provided to their employees. Regulators are expecting more targeted and role-based training offerings and that the content is evolving as the risks evolve.”
In the vein of my mantra Document, Document, and Document, Rampino also noted that regulators are “more focused than ever on how the financial institution is assessing compliance skills needed for critical roles and demonstrating that their employees meet the skill requirements for the roles that they are in.” This means a potential audit on areas as wide-ranging as “how an institution provides career pathing, professional development, and cross-training opportunities for their employees.” But this is much more than a myopic view of compliance training only as it “ensures sustainability of the program but also allows for flexibility as financial institutions adapt to the changes and may face organizational or structural changes, as many do due to a host of issues ranging from regulatory remediation to right-sizing.”
Training and its attendant skills development have become critical in empowering employees to move into new roles as needs arise and offers growth opportunity which is valuable beyond measure in the current environment that institutions are operating in. She concluded by stating that regulators “want to know that compliance employees not only understand their institutions internal risk, policies/procedures, and escalation processes but also that they are staying current with industry best practices and emerging risks.”
K2 Integrity has developed an online training platform and resource center, Dedicated Online Financial Integrity Network (DOLFIN), to help clients with their training requirements and provide more diverse options for training content and modalities. Find out more about DOLFIN here. For more information on K2 Integrity click here.

Categories
Compliance Kitchen

Additional Sanctions on Russia


The State Department published a fact sheet of additional sanctions on Russia in regards to the Navalny poisoning situation.  The Kitchen summarizes the latest restrictions.