Categories
Everything Compliance

Everything Compliance – Episode 122, The Auditors Edition

Welcome to the only roundtable podcast in compliance as we celebrate our second century of shows. Everything Compliance has been honored by W3 as the top podcast talk show. In this episode, the quartet of Jay Rosen, Jonathan Marks, Matt Kelly, and Karen Woody, with Tom Fox hosting, consider various topics that caught their collective interest and conclude with the fan favorite Shout Outs and Rants section.

1. Matt Kelly looks at the PCAOB proposal requiring auditors to look into fraud, compliance, and legal issues during an audit. Matt balances the charges against former Harvard professor Francesca Gino, who is charged with falsifying research.

2. Karen Woody looks at whether, when a corporation says litigation is ‘without merit’, this creates a securities law violation if it later loses at trial. Karen shouts out to the Women’s World Cup.

3. Tom Fox shouts out to Montana District Court Judge Kathy Seely for her opinion in Held v. Montana and Mary Shirley for her book Level Up.

4. Jay Rosen unpacks the recent push for an International Anti-Corruption Court. Rosen shouts out penalty kicks as the ultimate approach for ending a tie game, particularly as practiced in the Women’s World Cup.

5. Jonathan Marks considers key issues facing auditors in 2023. Marks shout out to both fruit and baseball in extolling the Savannah Bananas.

The members of the Everything Compliance are:

•       Jay Rosen– Jay is Vice President, Business Development Corporate Monitoring at Affiliated Monitors. Rosen can be reached at JRosen@affiliatedmonitors.com

•       Karen Woody – One of the top academic experts on the SEC. Woody can be reached at kwoody@wlu.edu

•       Matt Kelly – Founder and CEO of Radical Compliance. Kelly can be reached at mkelly@radicalcompliance.com

•       Jonathan Armstrong –is our UK colleague, who is an experienced data privacy/data protection lawyer with Cordery in London. Armstrong can be reached at jonathan.armstrong@corderycompliance.com

•       Jonathan Marks can be reached at jtmarks@gmail.com.

The host and producer, ranter (and sometimes panelist) of Everything Compliance is Tom Fox, the Voice of Compliance. He can be reached at tfox@tfoxlaw.com. Everything Compliance is a part of the Compliance Podcast Network.

Categories
Blog

PCAOB Proposed Rule on Compliance Audits

In the realm of auditors intersecting compliance and fraud risk audits, a fierce battle of perspectives rages on. Compliance professionals yearn for a bigger role, a seat at the table to tackle potential compliance violations. Yet, as the storm brews, the audit community hesitates, fearing the unfamiliar waters of becoming compliance and legal violation experts. Brace yourselves, for the unexpected outcome lies just beyond the horizon.

Compliance professionals are generally accepting of the idea that audit firms might look for compliance violations, as long as the proposal includes meeting with the chief ethics and compliance officer and reviewing the state of the compliance program with the audit committee. Many auditors do not want the additional responsibility, claiming it is outside their area of expertise and the requirement will increase audit costs.

Other trade and industry groups have weighed in as well. The American Bankers Association said in a letter “With respect to the legal function, auditors may be put into a position to second-guess a company’s own legal counsel regarding whether noncompliance may have occurred.  “With respect to the management function, the requirement that auditors perform ‘enhanced risk assessment procedures’ could result in auditors second-guessing how management allocates the company’s financial and human resources. This would not only blur responsibility between the legal, management and audit functions, but would also divert auditors’ time, attention and resources away from auditing financial statements.”

The group went on to note that  “Various federal and state regulatory authorities in the United States have a responsibility to examine, monitor and, where appropriate, bring enforcement actions against companies that do not adhere to laws and regulations. Moreover, given the many and varied private rights of action available against corporations in the United States, companies are subject to even further scrutiny and liability for noncompliance.”

Stephen Foley, writing in the Financial Times, said that some companies have objected that the implementation of the proposal might negatively impact the attorney/client privilege. He wrote “companies said the new rules could mean more correspondence with their lawyers would have to be shared with auditors, with the result that it loses its legal privilege and could become evidence in litigation.” He cited to Ronald Edmonds, controller at the chemicals group Dow, that “Company personnel could be more hesitant to disclose legal violations to their counsel if they fear that the communication will not be privileged. Attorneys may also hesitate to prepare written analysis for their clients for fear that it would end up non-privileged and ultimately in the hands of a legal adversary.”  Amy Johnson, controller at RTX said “The broad scope and volume of information that would be required to be shared with auditors is likely to encompass sensitive attorney advice.”

Conversely, PCAOB Chair Erica Williams told the FT, “Companies’ non-compliance with laws and regulations, including fraud, can really have devastating consequences for investors. This proposal is simply making sure that the protection investors think they’re getting today matches what the standard requires.” Foley cited to Brandon Rees, the AFL-CIO deputy director who said “All too often when a fraud is exposed, it rarely comes to light from the auditors. Auditing standards should require auditors to have uncomfortable conversations with management.”

The PCAOB will have to consider this feedback from its consultation period before deciding whether to push ahead with the proposal, or to amend or scrap it. Two of the five board members have said they are opposed to the new rules, but a simple majority is all that is needed. What are some of the issues that auditors may face if the proposed rule is enacted?

If auditors are mandated to assume more compliance responsibilities as per the proposal, there may be several challenges to address. One of the primary concerns is whether auditors have the requisite knowledge and training to identify and manage compliance violations efficiently. Furthermore, the elevated costs associated with hiring legal experts, coupled with the increased liability facing auditors can potentially create a barrier to the rule’s successful implementation.

The proposal has the potential to shape how audit firms approach their investigations into client companies, particularly with regard to compliance and legal violations. By requiring auditors to look more closely at non-compliance with laws and regulations, the proposal is intended to deliver more comprehensive audits and prevent financial fraud. However, the incorporation of duties usually performed by legal professionals into the auditing process could complicate the auditors’ role, potentially raising costs and increasing liability.

The proposed rule generates divided opinions between compliance professionals and the audit community. Compliance executives generally support the proposal, provided it includes engagement with the chief ethics and compliance officer, and necessitates a comprehensive review of the compliance program with the audit committee. On the contrary, most auditors, represented by the PCAOB, argue against the implementation of this rule, citing a lack of necessary expertise to identify compliance violations, and increased burden of audit fees.

If auditors are mandated to assume more compliance responsibilities as per the proposal, there may be several challenges to address. One of the primary concerns is whether auditors have the requisite knowledge and training to identify and manage compliance violations efficiently. Furthermore, the elevated costs associated with hiring legal experts, coupled with the increased liability facing auditors can potentially create a barrier to the rule’s successful implementation.

Compliance professionals and the audit community clash over a proposed rule on auditors reporting compliance violations. As tensions rise and perspectives collide, can these two groups find common ground or will they remain at odds, leaving the fate of the proposal uncertain?

Categories
Daily Compliance News

Daily Compliance News: August 11, 2023 – The New DD Rules Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance brings to you compliance related stories to start your day. Sit back, enjoy a cup of morning coffee and listen in to the Daily Compliance News. All, from the Compliance Podcast Network. Each day we consider four stories from the business world, compliance, ethics, risk management, leadership or general interest for the compliance professional.

  • ABA agrees to new client due diligence rules. (WSJ)
  • US broadens sanctions against Belarus. (WSJ)
  • US, UK & Canada sanction Lebanon ex-central banker. (Reuters)
  • Lawyers say proposed PCAOB will threaten attorney-client privilege. (FT)
Categories
Compliance Into the Weeds

Compliance into the Weeds: Responses to PCAOB Proposal On Audits

The award-winning, Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject. Looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the PCAOB proposal for fraud and compliance audits.
In this episode, we dive into the heated debate surrounding the proposed rule on auditors and fraud risk audits in this episode of Compliance into the Weeds. Compliance professionals and the audit community have contrasting perspectives on the PCAOB proposal to require audit firms to look more aggressively for compliance and legal violations at their client companies and then report any such violations more promptly to the company’s board of directors.
Discover the stipulations compliance professionals want to include, such as meeting with the chief ethics and compliance officer and reviewing the state of the compliance program. On the other hand, hear why the audit community, represented by the PCAOB, opposes the rule, arguing that auditors lack the necessary expertise and that fees would skyrocket without significant benefits. Gain insights into the complexities and challenges of asking auditors to take on compliance responsibilities. Tune in to understand the potential implications of the proposed rule on audit firms, compliance professionals, and investors.

 Key Highlights

·       The PCAOB proposal implications for auditors, with a focus on effects on fraud risk audits.

·       The difference in how compliance professionals and auditors perceive the impending rule.

·       The practical difficulties auditors face when tasked with compliance roles.

·       What are the potential cost and liability hikes for auditors, heralded by the enforcement of the rule?

·       The uncertainties enveloping the approval and implementation process for the proposed rule.

 Resources

Matt 

LinkedIn

Blog Post in Radical Compliance

Tom 

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Compliance Into the Weeds

Compliance into the Weeds: PCAOB: Expanding Audit Duties – The Impact and Concerns

The award-winning, Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to fully explore a subject. Looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds!

Tom Fox and Matt Kelly are back with another thought-provoking episode discussing the proposed new Audit Standard 2405 by the PCAOB. This new proposal requires auditors to evaluate legal violations and noncompliance that could have a material impact on financial statements. While some people believe this is a good idea, others question the cost and whether audit firms are trained for this task. The discussions covered a range of topics, including internal control evaluations, expanding audit duties, Wells Fargo case study, the potential for increased audit fees, and reporting noncompliance to law enforcement. The hosts urge listeners to read the proposal and provide feedback as the final standard is expected to be approved by the SEC. This is a must-listen for compliance professionals who want to stay up-to-date and think critically about the latest audit news.

 Key Highlights 

·      Auditing Process for Legal and Compliance Issues

·      New Standards for Auditors Beyond Financial Reporting

·      Expanding PCAOB’s Legal Obligations for Auditors

·      Expanding Audit Firm Duties: Impact and Concerns

·      Commenting on Proposed Audit Rule

Notable Quotes:

“This seems like a huge expansion of what auditors have done in the past.”

“Certainly, for example, a large FCPA violation if you’re looking at $1,000,000,000 fine, and that would definitely strike me as material.”

“The proposal to expand the duties of audit firms is a dramatic expansion of what they were previously asked to do, and it is unclear whether they are fully equipped to handle this responsibility.”

“Internal auditors and compliance officers may also have concerns.”

Resources

Matt 

LinkedIn

Blog Post in Radical Compliance

Tom 

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Compliance Into the Weeds

SOX Compliance, PCAOB Inspections and Audits

The award-winning, Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more. Join Tom Fox and Matt Kelly in the latest “Compliance into the Weeds” episode as they delve into the world of SOX compliance. Matt shares insights from recent webinars and Cornerstone Research studies on class action lawsuits related to accounting issues in this discussion. At the same time, Tom emphasizes the importance of preventing accounting fraud through robust internal control systems.

They shed light on the role of IT controls in ensuring the integrity and security of financial systems and the challenges auditors face in verifying their effectiveness. They discuss how companies can mitigate the risk of fraud by implementing strong access and cybersecurity controls and adapting to new business environments. Don’t miss out on this captivating episode offering practical tips and strategies for compliance officers and industry professionals!

Key Highlights

·      Current SOX compliance priorities

·      The cost of lawsuits involving SOX compliance failures, financial accounting, and financial restatements are going up

·      2023 PCAOB inspection priorities

 Notable Quotes:

“None of those numbers are going in the right direction for SOX compliance officers.”

“A lot of what SOX compliance is and a lot of what auditors are looking at relates to IT controls.”

“We rely so much on IT now to run the accounting system, the accounts payable, the finance function, a lot of what you need to ensure a strong accounting system is really how are you governing software running those apps.”

“That, however, assumes that you’ve got strong cybersecurity and strong access controls around getting into that portal.”

 Resources

Matt  on LinkedIn

Matt’s three articles on Radical Compliance

a.     SOX Compliance

b.     Lawsuits over SOX failures

c.     PCAOB Inspection Priorities

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Everything Compliance - Shout Outs and Rants

Episode 114 – Shout Outs and Rants

Welcome to the only roundtable podcast in compliance as we celebrate our second century of shows. Everything Compliance has been honored by W3 as the top podcast talk show. In this episode, we have the quartet of Tom Fox, Jonathan Marks, Matt Kelly, and special guest Scott Garland from Affiliated Monitors for our fan fav Shout Outs and Rants edition.

  1. Matt Kelly has a dual rant. He shouts out to the PCAOB for reminding folks that cryptocurrency ‘reserve reports’ are not worth the paper they are printed on. He rants about crypto being a big circular whackadoo.
  2. Jonathan Marks shouts out to the US House of Representatives for overwhelmingly voting to investigate the origins of Covid-19.
  3. Tom Fox looks rants about the Tennessee legislature’s attempt to ban Shakespeare, movies such as Tootie and Some Like It Hot, and politicians such as George Santos, all in the guise of banning drag shows.
  4. Special Guest Scott Garland shouts out to the Department of Justice for their continued evolution in their thinking about compliance and compliance programs.
Categories
Daily Compliance News

February 22, 2023 – The Going Dark Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen to the Daily Compliance News. All from the Compliance Podcast Network. Each day we consider four stories from the business world, compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Stories we are following in today’s edition of Daily Compliance News:

  • Binance secretly moved money out of the US affiliate. (Reuters)
  • Is supporting DEI now illegal in Texas? (PracticalESG)
  • SEC is becoming increasingly opaque about the whistleblower program. (KU)
  • Does PCAOB have jurisdiction over crypto audits? (WSJ)
Categories
Compliance Into the Weeds

Compliance Issues & Events We Are Looking at for 2023

The award-winning, Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject. In this episode, Matt and I consider a list of compliance issues and events worth watching in the next 12 months, likely to happen in the coming year, that will be most consequential for corporate compliance and audit professionals.

For 2023 (at least at this point), it is the following:

·      SEC rules on greenhouse gases.

·      PCAOB enforcement.

·      The FTC and privacy enforcement.

·      Fallout from the Oracle FCPA enforcement action.

·      New DOJ corporate crime enforcement policies.

·      An ESG controller.

·      Crash and burn of Elon Musk-style corporate governance.

 Resources

Matt Kelly in Radical Compliance

Categories
Everything Compliance

Episode 107 – the Happy Thanksgiving Edition

Welcome to the only roundtable podcast in compliance as we celebrate our second century of shows. Everything Compliance has been honored by W3 as a top talk show in podcasting. In this episode, we have the quartet of Jonathan Marks, Jonathan Armstrong, Karen Woody, Jay Rosen, and Matt Kelly on various regulatory and criminal law topics. We conclude with our fan-fav Shout Outs and Rants section.

1. Matt Kelly’s implosion of Twitter since its takeover by Elon Musk. He shouts out to everyone who votes.

2. Karen Woody looks at court cases attacking the expanded authority of the SEC to use in-house courts and judges rather than Article III courts and judges. She rants about the Russian government’s treatment of Brittney Griner and her shipment to a Russian penal colony.

3. Jonathan Marks at the question of whether the PCAOB should be folded into the SEC. He shouts out to the Houston Astros for winning the World Series and continues his ongoing rant about takeaway food from Chipotle.

4. Jonathan Armstrong looks at the conviction of former Uber CISO Joe Sullivan and explores what it means for CISOs and CCOs. He shouts out the Houston restaurant Mac N’ Wings for having Asian/Southern fusion food and the hottest curry he has ever tasted.

5. Jay Rosen reviews the case of former Santa Clara County Sheriff Laurie Smith, who was recently convicted of corruption. He shouts out to former Patriot Julian Edelman, who spoke forcefully against antisemitism.

6. Tom Fox joins in to shout out to Kerrville City Councilperson Brenda Hughes, who defended the City of Kerrville’s Butt-Holdsworth Memorial Library’s right to have books on LGBTQ+ issues.

The members of Everything Compliance are:

•       Jay Rosen– Jay is Vice President, Business Development Corporate Monitoring at Affiliated Monitors. Rosen can be reached at JRosen@affiliatedmonitors.com

•       Karen Woody – One of the top academic experts on the SEC. Woody can be reached at kwoody@wlu.edu

•       Matt Kelly – Founder and CEO of Radical Compliance. Kelly can be reached at mkelly@radicalcompliance.com

•       Jonathan Armstrong –is our UK colleague, who is an experienced data privacy/data protection lawyer with Cordery in London. Armstrong can be reached at jonathan.armstrong@corderycompliance.com

•       Jonathan Marks is Partner, Firm Practice Leader – Global Forensic, Compliance & Integrity Services at Baker Tilly. Marks can be reached at jonathan.marks@bakertilly.com

The host and producer, ranter (and sometime panelist) of Everything Compliance is Tom Fox, the Voice of Compliance. He can be reached at tfox@tfoxlaw.com. Everything Compliance is a part of the Compliance Podcast Network.