If an organization’s tone at the top could be measured and correlated with higher earnings and lower rates of financial reporting fraud… most directors would almost certainly want to assess that tone.
Contrast: If directors or senior management could determine that a unit’s leadership paid mere lip service to compliance and ethics but did not “walk the talk” in day-to-day conduct, executives would theoretically want to know about that in order to correct the potentially toxic influence on employees and overall productivity.
Important: Research indicates that “in stronger as opposed to weaker [corporate] cultures, rates of misconduct are roughly halved from 77 percent to 40 percent and retaliation against [whistleblowers] diminishes from a rate of one in four to one in 20.”
How to Measure Tone at Your Organization
There are at least 10 ways for directors, compliance officers, auditors and risk management executives to measure tone at the top. The conclusions drawn from these assessments can then be used as part of a broader evaluation of the organization’s fraud risk…
1. Measure the extent and nature of wrongdoing. Benchmarking against other companies in your industry, the number and nature of known fraud cases may provide clues about the extent to which tone at the top promotes the organization’s compliance with ethics and anti-fraud policies.
Example: If management dismisses or ignores minor instances of fraud as unimportant, this may indicate a culture of tolerance of wrongdoing which is one of the drivers of elevated fraudulent activity.
2. Monitor the use of anonymity in incident reporting. A higher-than-average proportion of whistleblower reports being made anonymously may point to reluctance on the part of employees to report fraud openly, based on their fear of retribution.
3. Conduct a social media reputation assessment. Monitoring publicly accessible comments and criticisms of the organization on Facebook and other social media sites may offer clear—and surprising— indicators of how employees feel about the organization’s culture and management’s principles and values.
4. Conduct employee surveys. Many organizations already use this tool, but may not include questions specifically designed to elicit feedback from employees about whether management “walks the talk” on integrity and proactive fraud risk mitigation.
Key: Carefully worded questions can elicit responses that offer substantive insight into employee perceptions about the organization’s culture. For large organizations, consider conducting these surveys on a unit-by-unit basis and compare results for more accurate feedback about where in the organization tone at the top may need improvement.
5. Encourage group discussion by audit committee members, compliance executives, risk management officers and human resources managers.
Aim: Exchanging perceptions of management attitudes and activities can help to build a consensus among key people about the organization’s tone at the top and encourage them to take action when tone at the top may be in need of repair.
6. Perform facility visits. Rotate the meeting locations for the Board, as well as your compliance and risk teams to observe different parts of the organization’s operations.
Key: Building contact with regional or local management facilitates future communication when fraud concerns arise.
Also effective: Independent visits by the audit committee to remote locations. Impromptu encounters with local management may produce valuable insights into how local management views the C-suite’s ethics and integrity.
7. Conduct carefully planned exit interviews. When employees leave because of, or with knowledge about, management misconduct, they may be reluctant to “spill the beans” to an exit interviewer. Others will do so as soon as the question is asked.
Key: There are several ways to solicit feedback from departing employees, such as online surveys sent several months after departure with the option of responding anonymously.
8. Monitor management communication to staff. Announcements, updates and other messages sent from the C-suite via the organization’s intranet, notice boards, office walls and website may reveal signs of poor tone at the top.
Example: Internal memos sent by a CEO may be written in a manner that is contrary to the organization’s asserted values and desired tone at the top.
9. Interview key employees and/or conduct internal focus groups. Interviews of individual employees can be productive in assessing tone at the top when using a thoughtfully worded sequence of questions. When employees are reluctant to blow the whistle on fraud, or when employee surveys identify potentially significant but nonspecific suspicions about wrongdoing, focus groups led by an independent third party may help uncover the underlying concerns—including knowledge of fraud or unethical conduct on the part of top management.
Helpful: Anonymous messaging or handheld voting devices, along with an experienced facilitator, may coax sensitive information from reluctant individuals.
10. Analyze and respond to customer complaints. Monitor trends and patterns in customer feedback to gather insight into your organization’s culture.
Key: Swift and transparent handling of grievances can be an indicator that the organization is committed to compliance and ethics. By contrast, poor response to customer complaints could reflect management attitudes and values associated with antisocial activities such as fraud and abuse.
“White-Collar Crime Fighter” source: The Tone at the Top: Ten Ways to Measure Effectiveness, by Mohammed Ahmed, CPA, CFF, CCEP, senior manager in the Forensic & Dispute Services practice of Deloitte Financial Advisory Services LLP and Donna Epps, CPA, partner and national leader of Anti-Fraud Consulting for Deloitte Financial Advisory Services LLP. They can be reached, respectively at [email protected] and [email protected].
“White-Collar Crime Fighter” is a publication of FraudResourceNet, the premier online center for expert, “how-to” information for detecting, preventing and investigating fraud. For a FREE trial of FraudResourceNet, please visit http://www.fraudresourcenet.com.
This article first appeared on www.fraudresourcenet.com.
About the Author
Donna Epps is a partner in the Forensic & Dispute Services practice of Deloitte Financial Advisory Services LLP, the national leader of the Anti-Fraud Consulting group, and co-leader of Deloitte’s Governance and Risk Management practice.
Donna brings a wide range of client service experience to her insights on governance and risk management issues, including 20 years of auditing public and private companies, carrying out regulatory filings with the SEC, and leading regulatory compliance examinations at the state and federal level. In addition, she has worked with the senior management teams of multinational clients in several industries — including telecommunications, manufacturing, and oil and gas — in conducting complex, multi-year restatements of financial statements, leading Sarbanes-Oxley preparation projects, and providing merger and acquisition related services.
Her current focus is in proactive risk services and enterprise risk management. She works with companies to become risk intelligent with a focus on value protection and value creation.
Donna received her Bachelor of Business Administration degree from Texas A&M University.
