Thursday, February 25, 2021
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Articles
    • See All Articles
    • NEW: COVID-Related
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Vendor News
  • Jobs
    • Compliance & Risk
    • Information Security
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Articles
    • See All Articles
    • NEW: COVID-Related
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Vendor News
  • Jobs
    • Compliance & Risk
    • Information Security
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home Risk

The Importance of a Risk Assessment

by Michael Volkov
March 12, 2014
in Risk
The Importance of a Risk Assessment

This article was republished with permission from Michael Volkov’s Corruption, Crime & Compliance.

Sometimes people operate with blinders.  I don’t mean to suggest that people deliberately put blinders on to ignore issues; they sort of just grow into a person’s personality.

John Lennon said its best: “Living is easy with eyes closed.”

The same applies to people who fail to listen.  Deliberately or not, people avoid what they do not want to hear. There are numerous reasons for not listening.

In the relatively narrow field of anti-corruption compliance, it is interesting to see how many companies appear to be avoiding the very clear requirement of conducting a risk assessment as the foundation of a company’s compliance program.

The Justice Department and the SEC provided very useful guidance in November 2012 to the business community: an effective compliance program must be tailored to a risk assessment.  In addition, the DOJ and the SEC advised companies to update the risk assessment as needed to ensure that its compliance program is tailored to a current assessment of risks.

Companies need to heed those words.  They are important.  Instead, some companies want to live with their “eyes closed” and ignore the risk assessment requirement and jump ahead to implementing a compliance program, with all of the usual elements.

The danger of this approach is readily apparent.  It inevitably leads to a misallocation of compliance resources.  This problem is not catastrophic on its face; the compliance program will appear to be operating quite well and addressing what are perceived as potential compliance issues.

As the Wizard of Oz famously bellowed, “Pay no attention to the man behind the curtain!”  The same rings true for the company that never conducted a risk assessment, implemented a compliance program and marveled at its own creation.

The danger lies in a clear reality: the compliance program is not effectively addressing its risks.  There will be large risks which are unattended and ignored in favor of smaller risks which may have overblown policies and procedures.

One important indication of a misalignment of resources is the resources, policies and procedures companies dedicate to gifts, meals, entertainment and travel expenses.  Compliance officers love creating policies and procedures, forms and requirements, and seldom stopping to ask the question, is this really appropriate?

While creating this elaborate system for monitoring gifts that pose little to no risk of bribery, the compliance officer has no clue what the business development and sales staff, or the company’s third-party agents, are doing in their interactions with foreign officials on a set of RFPs for multimillion-dollar contracts.

The compliance officer is afraid to inject himself or herself into this risky interaction and ensure compliance.  Instead, the compliance officer rationalizes to himself or herself that “training” the business development and sales staff (and possibly the third-party agents) is sufficient to address the risk in such interactions.

This is a very common scenario. Eventually, however, this system breaks down when company sales staff, business development officers and/or third-party agents are caught bribing foreign officials.

There may be many explanations for such conduct but one thing is for sure: the absence of a risk assessment is a major contributor to a failure to detect and prevent bribery.


Previous Post

A Seat at the Table for the Compliance Officer

Next Post

Workplace Bullying: From the Playground to the Office and Beyond

Michael Volkov

Michael-Volkov-leclairryan Michael Volkov is the CEO of The Volkov Law Group LLC, where he provides compliance, internal investigation and white collar defense services.  He can be reached at mvolkov@volkovlaw.com. Michael has extensive experience representing clients on matters involving the Foreign Corrupt Practices Act, the UK Bribery Act, money laundering, Office of Foreign Asset Control (OFAC), export controls, sanctions and International Traffic in Arms, False Claims Act, Congressional investigations, online gambling and regulatory enforcement issues. Michael served for more than 17 years as a federal prosecutor in the U.S. Attorney’s Office in the District of Columbia; for five years as the Chief Crime and Terrorism Counsel for the Senate Judiciary Committee, and Chief Crime, Terrorism and Homeland Security Counsel for the Senate and House Judiciary Committees; and as a Trial Attorney in the Antitrust Division of the U.S. Department of Justice. Michael also maintains a well-known blog: Corruption Crime & Compliance, which is frequently cited by anti-corruption professionals and professionals in the compliance industry.

Related Posts

blue road sign with arrow on black asphalt background

Dynamic Risk Governance: Linking Strategy and Risk Management

February 15, 2021
three red dice on green felt tabletop

The COVID Trio: 3 Top Risks from a Year of Upset

February 4, 2021
Deloitte: Global Risk Management Survey, 12th Edition

Deloitte: Global Risk Management Survey, 12th Edition

February 2, 2021
illustration of businessman holding giant shield to protect him from falling arrows

Is Your Risk Culture Aligned With the Realities of the Digital Age?

February 2, 2021
Next Post
Workplace Bullying: From the Playground to the Office and Beyond

Workplace Bullying: From the Playground to the Office and Beyond

Access realtime data
Addressing systemic racism in the workplace SAI Global
Dynamic Risk Assessments with Workiva
Top 10 Risk and Compliance Trends

Special Coverage

Special COVID page graphic

Jump to a Topic:

anti-corruption anti-money laundering/AML Artificial Intelligence/A.I. automation banks board of directors board risk oversight bribery CCPA/California Consumer Privacy Act Cloud Compliance communications management Coronavirus/COVID-19 corporate culture crisis management cyber crime cyber risk data analytics data breach data governance decision-making diversity DOJ due diligence fcpa enforcement actions financial crime GDPR GRC HIPAA information security KYC/know your customer machine learning monitoring ransomware regtech reputation risk risk assessment Sanctions SEC social media risk supply chain technology third party risk management tone at the top training whistleblowing
No Result
View All Result

Privacy Policy

Follow Us

  • Facebook
  • Twitter
  • LinkedIn
  • RSS Feed

Category

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Whitepapers

© 2019 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
  • Articles
  • Vendor News
  • Podcasts
  • Videos
  • Whitepapers
  • eBooks
  • Events
  • Jobs
  • Subscribe

© 2019 Corporate Compliance Insights