No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe
Jump to a Section
  • At the Office
    • Ethics
    • HR Compliance
    • Leadership & Career
    • Well-Being at Work
  • Compliance & Risk
    • Compliance
    • FCPA
    • Fraud
    • Risk
  • Finserv & Audit
    • Financial Services
    • Internal Audit
  • Governance
    • ESG
    • Getting Governance Right
  • Infosec
    • Cybersecurity
    • Data Privacy
  • Opinion
    • Adam Balfour
    • Jim DeLoach
    • Mary Shirley
    • Yan Tougas
No Result
View All Result
Corporate Compliance Insights

Internal Controls Enforcement: Hoisting Yourself on Your Own Petard

by Michael Volkov
April 18, 2016
in Uncategorized
Are strong controls enough to mitigate the risk of DOJ or SEC actions?

This article was republished with permission from Michael Volkov’s blog, Corruption, Crime & Compliance.

William Shakespeare’s Hamlet included this often used  phrase – hoist with his own petard (a small bomb). Shakespeare never knew that his eloquence would apply to today’s SEC enforcement of internal controls.

The FCPA requires companies to make and keep accurate books and records and to devise and maintain an adequate system of internal accounting controls. The FCPA also prohibits individuals and businesses from knowingly falsifying books and records or circumventing or failing to implement a system of internal controls.

Importantly, the accounting provisions are not just limited to bribery-related violations. Rather, the accounting provisions ensure that all public companies account for their assets and liabilities accurately and in reasonable detail. These provisions are the fundamental requirement enforced by the DOJ for criminal accounting fraud and by the SEC for civil accounting fraud.

Sarbanes-Oxley, which was promulgated in response to accounting scandals involving major U.S. companies, strengthened these requirements. Section 302 of Sarbanes-Oxley requires a company’s “principal officers” (CEO and CFO) to certify to the integrity of the company’s financial reports on a quarterly basis. Section 404 of Sarbanes-Oxley strengthened the requirements that the company disclose any deficiencies in its internal controls over financial reporting.

In tandem, the FCPA and Sarbanes-Oxley set out a comprehensive regime requiring companies to implement internal controls, to disclose any deficiencies in such controls and to prevent any circumvention of such controls.

The DOJ and the SEC have been aggressive in enforcing compliance with a company’s internal controls. When you take a step back and look at this regulatory and enforcement regime, there are certainly some interesting issues to address.

One the one hand, a company has an incentive to adopt and implement effective internal controls. When doing so, the company pays little to no attention to enforcement risks – criminal or civil – for failing to adhere to such controls.

Another way of looking at this, at least from my prosecutorial vantage, is that the laws set up a situation in which companies are adopting internal controls that operate and are enforced like criminal and civil statutes. In effect, a company is creating its own set of laws that the government can then use against the company to extract criminal and civil penalties – hence the relevance of Shakespeare’s comment – being hoisted on one’s own petard.

Companies never contemplate this risk when designing and implementing internal controls. It should be a factor, however; detailed internal controls create greater enforcement risks. Failure to follow a particular control that has little benefit may in fact open up companies and individuals to aggressive internal controls enforcement.

As the business community adjusts to an aggressive enforcement environment, such risks are no longer remote, but have to be balanced against the potential benefits of internal controls. Companies are under constant scrutiny to design and implement robust and targeted internal controls. To the extent the particular control addresses a risk, the company has to weigh the potential benefit from mitigating an accounting risk, as well as the potential risk of civil or even criminal prosecution for the circumvention of controls.


Previous Post

How to Build the Best Employee Brand

Next Post

Beware Of Cyber Insurance Policy Gaps

Michael Volkov

Michael Volkov

Michael-Volkov-leclairryan Michael Volkov is the CEO of The Volkov Law Group LLC, where he provides compliance, internal investigation and white collar defense services.  He can be reached at mvolkov@volkovlaw.com. Michael has extensive experience representing clients on matters involving the Foreign Corrupt Practices Act, the UK Bribery Act, money laundering, Office of Foreign Asset Control (OFAC), export controls, sanctions and International Traffic in Arms, False Claims Act, Congressional investigations, online gambling and regulatory enforcement issues. Michael served for more than 17 years as a federal prosecutor in the U.S. Attorney’s Office in the District of Columbia; for five years as the Chief Crime and Terrorism Counsel for the Senate Judiciary Committee, and Chief Crime, Terrorism and Homeland Security Counsel for the Senate and House Judiciary Committees; and as a Trial Attorney in the Antitrust Division of the U.S. Department of Justice. Michael also maintains a well-known blog: Corruption Crime & Compliance, which is frequently cited by anti-corruption professionals and professionals in the compliance industry.

Related Posts

Kovr 2F Partnership

Kovr.ai Partners With Second Front Systems for Government Software Accreditation

by Corporate Compliance Insights
May 22, 2025

Kovr.ai and Second Front Systems have partnered to automate software accreditation processes for government agencies through a combined platform that...

SolidusLabs Launch

Solidus Labs Launches AI Agent for Trade Surveillance

by Corporate Compliance Insights
May 22, 2025

Solidus Labs has launched an agentic AI system for trade surveillance workflows at financial institutions. The New York-based firm's platform,...

TrustCloud Funding

TrustCloud Raises $15M

by Corporate Compliance Insights
May 22, 2025

Security assurance platform TrustCloud has raised $15 million in strategic funding led by ServiceNow Ventures. Cisco Investments, Presidio Ventures, OpenView...

Diligent Vault M&A

Diligent Acquires AI E&C Provider Vault

by Corporate Compliance Insights
May 22, 2025

GRC software provider Diligent has acquired Vault, an AI-powered ethics and compliance platform, to integrate speak-up technology and investigation tools...

Next Post
Beware Of Cyber Insurance Policy Gaps

Beware Of Cyber Insurance Policy Gaps

No Result
View All Result

Privacy Policy | AI Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Research
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2025 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
No Result
View All Result
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe

© 2025 Corporate Compliance Insights