Tag Archives: Governance

Hui Chen: Applying DOJ’s Compliance Questions to Supplier/Social Responsibility Auditing

By: Hui Chen, former Compliance Counsel Expert, Fraud Section, Department of Justice

Ed. Note:  Hui Chen gained national attention when she made a “noisy withdrawal” from the Department of Justice this past June.  Afterwards, she graciously agreed to write the following for us.  We applaud her deep commitment to integrity and greatly appreciate her making time to pen this article.

In February 2017, the Fraud Section of the Criminal Division of the Department of Justice (“DOJ”) released a document entitled “Evaluation of Corporate Compliance Programs” (“Evaluation Questions”) which makes public the types of questions the Fraud Sections asks in its evaluation of corporate compliance programs in the context of its criminal investigations. The Evaluation Questions immediately gained the attention and interest of anti-fraud compliance professionals as well as global regulators and law enforcement interested in corporate accountability. The Fraud Section, which prosecutes cases involving foreign corruption, financial,  securities  and healthcare fraud, has brought corporate prosecutions with historic fines and penalties and exerts enormous influence in the those areas of compliance. What is often missed in the narrative, however, is the Fraud Section’s leading role in two of the largest environmental criminal prosecutions in history: the Deepwater Horizon and the VW emission scandal. As the Fraud Section’s Compliance Counsel Expert, I had the privilege of being involved in these cases, and they were very much on my mind as I drafted the Evaluation Questions.

Although the Evaluation Questions are set in the context of criminal investigations, one of the intents of the document is to also provide a framework for companies and compliance professionals to design, implement, and test their compliance programs for effectiveness. That framework is every bit as applicable to EHS and sustainability programs as it is for anti-fraud compliance programs.

At its core, the Evaluation Questions center around the following tenets of effectiveness: credibility, measurements, accountability, and continuous improvement. Let’s briefly explore these principles and see how they apply in the context of supplier/social responsibility auditing.

Credibility

The Evaluation Questions probe the credibility of companies’ boards, senior leadership, and compliance and control functions. It specifically names “audit” as one of the “relevant control functions”. It asks whether “compliance and control personnel ha[ve] the appropriate experience and qualifications for their roles and responsibilities.” How companies define that appropriateness tells a lot about the company. For example, companies that define appropriate experience largely in terms of certifications tend to be less sophisticated: they rely on commercial certification bodies to exercise the judgment and evaluation on their behalf. These types of personnel often do not perform impressively when specific questions involving real experience and expertise are posed to them: i.e. “Explain your sample selection methodology”, “How would you handle specific situations”, “What specific red flags do you look for when you are auditing for X”, etc. In this regard, I find Elm’s Auditor QuickQuiz an intriguing and useful concept and tool. My instinct tells me that this quiz may reveal more about auditors’ competency and judgment than most certifications do.

It is important to note that the notion of credibility, as explored by the Evaluation Questions, goes far beyond experience and qualifications. Corporate and professional credibility comes also in the form of visible commitment, demonstrated conduct, soundness of processes, levels of autonomy, strength of empowerment, and responses to risks, all of which are explored throughout the Evaluation Questions.

Applying these questions to supplier/social responsibility auditing, it means companies need to seriously consider factors more than subject matter expertise and cost of the auditors. Companies need to define auditor competency in terms of independence, judgment, field experience, statistical and analytical sophistication, and interpersonal and intercultural skills. Companies should also examine their auditors’ approach closely, asking specific questions about approach, methodology, and plans to identify and prepare for the types of issues that are likely to arise during the audit process.

Measurements

The Evaluation Questions are rooted in various prior guidance issued by the DOJ and other regulatory agencies and international organizations. The document, however, does bring a very significant new element: the demand for evidence of effectiveness in the form of measurements and data.   Evidence of results is, after all, a foundation to credibility. Not only do the Evaluation Questions ask about “information or metrics” the company collects and uses to help detect misconduct, but also “how has the company measured the effectiveness” of activities such as training and policy implementation. There are many “how” questions such as “How has the company assessed whether…policies and procedures have been effectively implemented?” or “How has the company evaluated the usefulness of …policies and procedures.” Companies that are able to answer these how questions in measurable metrics and data are regarded with far more credibility than those who answer with unsubstantiated adjectives.

Measurement and data are concepts that are expected to be second nature for auditors. What is important for companies is to make sure they work with their supplier/social responsibility auditors to define what to  measure and how. Whether you are auditing for manufacturing quality, environmental compliance, or safety, it is important that you sit down with your auditors to define what satisfaction looks like, and identify ways to measure it.

Accountability

Compliance programs cannot succeed with accountability. This is why the Evaluation Questions are focused on the accountability of both individual players and the company’s systems and processes. Accountability is about clearly defined roles and responsibilities, and visible consequences for words and actions. In line with this emphasis, the Evaluation Questions elevate the inquiry from the traditional “tone from the top” to “conduct at the top”  and ask about “concrete” and “specific” actions. There are questions about whether supervisors are held accountable for failures in oversight and how the companies train relationship managers on their responsibilities in managing third party risks. More importantly, there are questions about the accountability of the company: what happens when “compliance raise[s] concerns or objections”? “Were there prior opportunities to detect the misconduct in question, such as audit reports identifying relevant control failures…” In other words, when issues and risks are identified, how has the company been accountable in addressing and remediating them?

As both an in-house compliance officer and as the DOJ Compliance Counsel Expert, I have seen numerous instances where companies have failed to address audit-identified issues adequately. In the eyes of prosecutors, regulators, and other stakeholders such as investors, this failure speaks volumes about the company’s commitment to accountability and raises serious questions about the company’s operational competency. It reminds me of the TV commercial where the bank security guard tells customers, in the midst of a robbery, that his job is only to notify people when there is a robbery, not to do anything about it. That is why the Evaluation Questions include questions on how audit findings and remediation progress are reported to the management and the board, and how the management and board follow up on such reports. Finding the problem is not the goal: fixing it is.

Continuous Improvement   

Even the best compliance program would become an obsolete compliance program should it not continuously update itself. Everything from business and operational realities to company culture to regulatory and legal requirements changes constantly, and only a persistently self-critical program regularly seeking improvements can remain top of its game. The Evaluation Questions recognize the necessity for continuous improvement, not only in its questions in Section 9 on audit, testing, and updates, but also in how its focus on root cause analysis and risk assessments. Every instances of breach, whether it resulted in actual harm or not, is an opportunity for learning and improvement.

This same principle applies in the supplier/social responsibility auditing process. It is important for companies to ask how their auditors are keeping up with ongoing trends, regulations, audit practices/standards and realities, as well as themselves how they are learning from the audit findings in not just short-term remediation, but long-term improvements in how they manage suppliers.

———————-

Hui Chen may be contacted at www.HuiChenEthics.com

Elm Comments on SEC’s Sustainability Disclosure Concept Release

On April 13, 2016, the SEC published a Concept Release discussing potential modernization of financial disclosures required by Regulation S-K.  A number of questions were posed in the Release and public comment was requested, which closed June 21, 2016. Among the topics included in the Release was “Public Policy and Sustainability Matters,” which the Release terms as Environmental, Social and Governance (“ESG”) concerns. By way of the Release, the Commission is exploring whether ESG matters are material – a term that is subject to much interpretation (we will not discuss that in this post).

As usual, Elm took a pragmatic, client-centric and contrarian position in our comments to the SEC.

Many may be surprised that our comments contrast with potentially increasing our own revenues. However, we put forth our objective views based on 30 years of quantifying environmental, health, safety and sustainability matters, including risk assessment and risk reduction valuation, as well as reviews of dozens of studies on the subject. Our work with companies and their conflict minerals reporting also yielded relevant information.

We welcome any thoughts or comments.

Ethics are Bad for Business

Since the inception of our parent company The Elm Consulting Group International LLC almost 15 years ago, integrity and honesty have been absolutes in how we work with clients, affiliates and partners.  Sure, that sounds like a tagline espoused by every other advisory and audit firm on the planet.  It is so ubiquitous that clients probably don’t even notice anymore.  But for us, it is a daily element of our practice we demonstrate frequently.

Why bring this up?  The formation of Elm Sustainability Partners expanded Elm’s presence in an area that has very few providers with the breadth of expertise we have.  Our client base and market recognition have grown significantly, while the available pool of qualified consultants/auditors is severely limited.  More companies are asking us to provide more support – for which we are tremendously grateful.  But there are times when the requests threaten our independence or create competitive concerns with an existing client.

We are in no way saying that companies are intentionally asking us to go against independence principles.  They are simply seeking our services and it isn’t their responsibility to fully understand our independence position, or know our client list.  It is our obligation to monitor our own position, notify appropriate parties and decline engagements when necessary.  And we have done so – in reality, not in abstract.

We openly state that our position on independence is overly-conservative – we are not ashamed of that.   Doing so provides clients with a higher level of comfort and risk management.  Robert Bray, Managing Director in Southern California, boils it down to the simple guide “go with your gut.”  It means we walk away from very real business opportunities and revenue.

Maybe this restricts our growth, but we are okay with that.

Sustainability is Stupid

Please read the entire article before sending me nasty notes. At the end of this piece, you may actually agree with me.

It’s a pretty inflammatory statement.

But I mean it. Just not in the way you may think.

Stupid Is As Stupid Does.  It is probably worth starting with the background on which my perspective is based. I have about thirty years professional experience cycling through the relevant environmental buzzwords of the times: environmental compliance in the mid-80s, environmental management and value in the 90s, environmental risk and sustainability after the turn of the century, and now corporate responsibility and supply chain sustainability for this decade.

In 1994 I was fortunate to obtain a pre-print copy of Michael Porter’s and Claas van der Linde’s seminal work Toward a New Conception of the Environment-Competitiveness Relationship, (Journal of Economic Perspectives (1995), Vol. 9, No. 4, pp. 97-118). The work was essentially reproduced in Green and Competitive: Ending the Stalemate (Harvard Business Review, September – October 1995). As cliché as this sounds, the article truly changed my career as I began seeking economic-environmental linkages with projects, clients and as in-house environmental staff at a Fortune 150 manufacturer.

I have read hundreds of research papers, articles, studies and analyses that, in a nutshell, attempted to link environmental or social responsibility performance to economic gains of some type. Others tied “intangibles” to financial benefits, defining/creating value, and valuing risk reduction. I have pored over texts on traditional cost reduction, cost accounting, marketing, strategy, etc., even completing executive education on these topics.

And yes, much of this has been put into practice (or at least attempted). I have been through a couple McKinsey exercises and a misguided and inappropriate implementation of Economic Value Added (EVA)1. I helped develop internal environmental performance metrics and reporting and attempted to create in-house sustainability initiatives. I served as a team member for sustainability and LCA tool development in GEMI, AIChE and on the US SubTAG to ISO for the Environmental Performance Evaluation standard.  For clients, I have developed and reviewed sustainability criteria, performance metrics and calculated the economic benefits; developed environmental risk assessment and valuation criteria leveraging traditional risk management/insurance models; and quantified the value of environmental risk avoidance investments/activities.

You get the idea.  My point is that I am fairly competent on the subject, if not a relative old-timer with an appropriately receding (or altogether non-existent) hairline. I don’t claim know every aspect of sustainability, but can speak credibly to the issue.

What’s Stupid About Sustainability?  Really, it isn’t sustainability that is stupid – it’s how sustainability is “sold” to business, including:

  • The lack of a consistent, reasonable and/or actionable definition
  • The flood of (mis)information, articles and studies about sustainability that are highly divergent in approach and results –  due in part to the lack of a consistent, reasonable and/or actionable definition
  • The inherent bias of sustainability media and practitioners that identify inappropriate or inconclusive linkages between economic value/financial returns to sustainability practices.
  • Ignoring customer perceptions of performance tradeoffs for sustainable products

Consistent Inconsistency.  About the only thing everyone can agree on about the word “sustainability” is that in its English form, it has six syllables. There are even disagreements about capitalization – should the “S” be capitalized to signify some importance of the word or not?

Readers can likely offer at least three different definitions of the word. I have no intention of listing various definitions here – it isn’t necessary. If you think about it, sustainability is not about doing more, it’s about doing less – spending less, wasting less, reducing resource use. Probably not everyone will agree on that either, but that is really the point – how can a company take on an initiative that can’t even be defined? And even if there is internal agreement, not all stakeholders will concur.

Buried Alive.  How do you go about establishing a definition from which to work? One answer is look to sustainability subject matter experts, studies, articles and white papers. This sounds straightforward (if not tedious), but the amount of available information is completely overwhelming, only increasing confusion. Just for fun, I did a simple test by doing an Internet search on the word “sustainability” and a few other very popular corporate buzzwords. The results speak for themselves.

sustainability table* Search conducted April 9, 2015

Think about this for a moment – some of the most popular (and ridiculed) Buzzword Bingo lingo rank significantly lower than sustainability in terms of Google results. I was actually surprised by this.

Clearly, this isn’t the answer.

Stupid Money.  As sustainability professionals, our knowledge creates biases that can turn into obstacles – forcing a sustainability solution where one may not exist, or may not be appropriate. This is where many sustainability professionals go wrong – and get stupid.   A major myth stemming from the sustainability bias is that sustainability performance is financially material. We wrote back in 2011 –

A myriad of studies completed dating back to the late 1980s attempt to demonstrate “environmental value”.  Most of these studies have shown rather tenuous linkages or used meaningless metrics. Interestingly, most of these studies link to equity markets – i.e., stock prices.  Maybe because stock prices grab headlines, are tied to compensation or are the target to which Boards and senior executive generally manage.

The thought is still on point2. More interesting, however, is the thought we expressed that sustainability value is more appropriately viewed in the context of bonds rather than equities (long term versus short term). Today, that is proving true as demonstrated by the global growth of clean energy financing through bonds which according to Bloomberg New Energy Finance, rose 16% last year to a record $310 billion, boosted by commitments to sustainability investments from Deutsche Bank, Citigroup, Barclays, Bank of American, Credit Agricole, Goldman Sachs and BlackRock.

As we said in 2011, “Given … the lackluster historical success of valuation of environmental/sustainability matters in the context of stock prices – perhaps it is time to redirect our efforts at finding relevant and credible metrics.”

Are Customers Stupid?  About twenty years ago I wrote a thought piece on sustainability and circulated it to a small group of colleagues. My basic premise was that sustainable products are a luxury for those able to afford the price differential or willing to accept certain trade-offs. For example, alternative fuel vehicles cost more than comparable gasoline powered cars, so alternative fuel vehicles were not likely to be economically successful in low-income populations. On the flip side, those able to pay more for the sustainability attributes of alternative fuel vehicles had to accept trade-offs in vehicle size, performance and selection.

This premise remains valid today, although the situation has improved. We now have more options for electric/hybrid vehicles and prices have come down for many makes/models, so trade-offs have been reduced in this instance. But other sustainable products still cost more, and the perception of performance trade offs still exists.

Four years ago, we wrote about a study undertaken by professors of marketing at William & Mary, Ohio State and the University of Texas. The study results were presented in The Sustainability Liability: Potential Negative Effects of Ethicality on Product Preference. Briefly, the authors’ study demonstrated that customers frequently feel that improving ethical aspects of a product reduces the ability of the product to fully perform its expected function. In addition, the authors demonstrated the impact of bias on the part of customers when they are being observed (such as in a survey scenario) versus when they aren’t observed (or don’t know it). Connect the dots – customers being observed as part of new product research aren’t likely to show their true concerns about sustainable products and may not buy them when they are available 3.

Going back to automobiles, Tesla has done a good job of battling perceptions of driving performance (such as creating an Insane driving mode that rivals traditional supercars in 0-60 times) and range limits. Few other companies or products seem to have attacked the trade-off perceptions in a similar manner.

To sum it up, you need to understand your customers’ key buying criteria, and how their perceptions of sustainability impact their decisions.

Don’t be Stupid.  Approach internal decision makers in their terms and you keep their attention with a higher likelihood of success. Or ignore that and emphasize ill-defined, unproven or irrelevant pie-in-the-sky sustainability concepts and see where that gets you.

To begin, you need to understand the company, how it operates and why it exists. Act as though you are the VP of Operations, Marketing, Communications, Supply Chain, Product Development and HR. Pretend you are working on a case study at Harvard Business School. Learn as much as you can, such as:

  • What does the company make or offer? What need does it fill? Why does that need exist in the first place?
  • What are key internal words, phrases, programs and initiatives?
  • What are the manufacturing processes involved?
  • What is the manufacturing capacity and efficiency?
  • How does the company make money?
  • What are the most critical aspects of revenue generation and profitability?
  • What are the direct and indirect cost drivers with the biggest impact?
  • Why are certain suppliers used? What are your company’s key buying criteria?
  • Why do customers buy from your company? What are your customers’ key buying criteria?
  • What is important in a new product? How is the market analyzed and demand predicted?
  • Who are the most important audiences for the company’s external communications?
  • Why do employees work at the company? What is important to them?
  • What are the different relevant compensation programs, metrics and triggers?

After learning “the business” you can then put on your other hat and identify where sustainability initiatives may make sense. Where you  find a potential project, your pitch should be about the relevant business benefits using the appropriate business words. The word “relevant” is emphasized.  Unless specifically prompted by management, don’t use the word sustainability until near the end of any conversation: “Oh, and we also get to highlight this as a sustainability success, too.”

What? Why de-emphasize the sustainability aspects? Your audience is likely to be focused on traditional drivers/metrics of the company’s financial performance. Capital is limited, revenues need to increase, costs need to decrease, the stock price is too low and competitors are gaining market share. Cynical management only needs one reason to pull the plug and divert attention/funding away from the sustainability initiative.  Remember your audience and what your ultimate goal is.

Conclusion.  I don’t actually believe sustainability is stupid – quite the contrary.  But I do think that the concept is too frequently portrayed in a stupid manner in publications, by service providers and around corporate conference room tables. Being smart about it is easy as long as you can temporarily disconnect your sustainability expertise/bias and focus on your company’s business fundamentals.

Of course there are exceptions to this; numerous companies have embedded sustainability into their corporate culture and don’t operate as I described. The wide-ranging definition of sustainability also creates a broad (perhaps overly broad) set of examples.  All of these will be waved under my nose as examples of how wrong I am. Yes, it is right that I am wrong in those instances, but those companies are very much in the minority. As sustainability professionals, we need to create opportunities for that silent majority so they can reap the real rewards of sustainability.

We just have to be smart about doing that.

________________

1 EVA is intended to evaluate capital expenditure opportunities, but in this instance, each staff member had to demonstrate our own personal economic value added by applying the methodology to our everyday activities. That is why I call it inappropriate and misguided.

2 In contrast, perhaps the best examples we have seen that in our view comes the closest in realistically linking sustainability and equities valuation are (a) the April 17, 2015 letter from Ceres to the SEC on climate disclosure. Technically, the letter is about disclosure of climate risk as material information to investors, discussing the matter in terms of asset risk, materiality of future pricing/demand scenarios and long-term capital expenditure plans/assumptions for oil and gas companies; and (b) a recent study from Harvard Business School Corporate Sustainability: First Evidence on Materiality.  This paper isn’t necessarily easy to understand, but the authors performed a number of tests to validate their findings.  One possible weakness is that the authors relied on materiality guidance and data from the Sustainability Accounting Standards Board (SASB) for determining what sustainability matters are considered material, rather than independently confirming that assumption, or developing their own materiality benchmarks. We are not aware if SASB guidance and methodologies have been independently validated.

3 We recently brought these concepts forward to a major consumer products company who was looking to develop a marketing campaign based on sustainability attributes of a new product. After evaluating the matter further, the company put that campaign on hold.

The Elm Consulting Group International, LLC Enters into a Cooperative Relationship with Milo Belle Consultants, LLC

A cooperative client service relationship to integrate Environmental, Health and Safety (EHS) into Governance Risk and Compliance (GRC) consulting services

August 24, 2009 –  The Elm Consulting Group International, LLC and Milo Belle Consultants LLC announce the formation of a cooperative relationship that will augment Milo Belle’s Governance, Risk and Compliance (GRC) services to include Environmental, Health and Safety (EHS).

Chris Maxwell, Milo Belle Partner in St. Paul:  “We are happy to forge an affiliation with Elm.  They bring highly complementary expertise to our GRC services.  We believe our clients are also integrating EHS management into larger internal GRC initiatives.  Elm allows us to bring highly qualified EHS expertise to the table to support those clients.”

“Our business models and philosophy are very similar, so our mutual learning curves will be short,” said Lawrence Heim, Director in Elm’s Atlanta office.  “We both emphasize high quality client service and innovative business thinking, while minimizing internal administrative processes.  We are confident that clients will find the joint Milo Belle/Elm expertise valuable as corporate EHS departments frequently are considered an element of GRC programs.”

About Milo Belle:  Milo Belle Consultants, LLC is a Governance, Risk and Compliance professional services firm.  With a full staff of experienced finance, accounting and IT professionals our team offers comprehensive consulting and staff augmentation solutions to companies of any size. Our professional staff range from former CFOs and Controllers, IS System designers to Project Management experts and Internal Control specialists. We have backgrounds in almost every industry, including renewable energy, healthcare, transportation, non-profits, construction, manufacturing, agri-business, banking, hospitality and software. Milo Belle’s corporate headquarters are in Sioux Falls, SD, with additional offices in St. Paul, MN, Omaha, NE and Denver, CO.

About Elm:  The Elm Consulting Group International, LLC is an environmental health and safety (EHS) consultancy with offices in Connecticut, California, Georgia, Texas, Mexico, New Zealand and Argentina, and clients in over 60 countries.  Our expertise is assisting our clients with the development and deployment of effective EHS management, compliance, risk reduction and sustainability programs.  Unlike most engineering consultants, ELM has substantial experience developing and implementing tools/strategies that directly integrate EHS into internal risk management functions – in terms relevant to clients’ own internally-established and credible risk benchmarks.

Contact:

Joel Dykstra, Milo Belle Consultants     (605) 275-6527 ext.1018

Lawrence Heim, The Elm Consulting Group International     (678) 200-5220