How to Identify and Prevent Employee Fraud?

In 2017 the major European ABB conglomerate admitted that an employee took advantage of serious management failings to disappear with $103 million of the firm’s cash. According to CNN business, ABB CEO Ulrich Spiesshofer and Chief Financial Officer Eric Elzvik admitted that the organizations managers had failed to maintain sufficient segregation of duties in the treasury unit of its subsidiary in South Korea and did not provide enough oversight of local treasury activities.

To top it all off, ABB also failed to keep the signature seals of the South Korean unit secure which as a result, has lead the company became “bound to unauthorized financial contracts, resulting in undetected financial obligations.” 

Organizations rely on the honesty and integrity of their employees, however employee fraud does unfortunately cost companies vast sums of money. Employee fraud is a reality across all sectors – no matter how credible a job applicant is and how stringent your hiring process is – your business is at risk.

Tips on Identifying and Preventing Employee Fraud

When you trust your employees, it is difficult to think the worst of them, even when there are red flags – circumstances or patterns that are out of the ordinary – alerting you to the contrary. If you have suspicions of employee fraud, it is recommended to hire a forensic accountant to help you detect fraud, understand your circumstances, and put together evidence to target and confront the employee without tipping them off.

The good news is that you can plan and train your team to prevent this from taking place; the best thing you can do for your business is to learn how to recognise the warning signs of employee fraud and have robust procedures in place to minimise the risks and opportunities for fraud. Employee fraud covers a wide range of fraudulent activities in the workplace and can vary in seriousness including embezzlement.

Embezzlement involves an employee who transfers company funds into their bank account. One example of an act of embezzlement is deliberately writing cheques in the employees’ name or diverting company assets without authorisation, e.g. customers unknowingly pay into an employee-controlled bank account, not the business’. This is serious fraudulent behaviour, but employees usually get away with it without raising any suspicion by creating non-existent suppliers and fake employees or using counterfeit credit notes to hide/disguise misappropriated monies.

An easy way to spot this type of financial fraud is to scour through the bank statements and financial records of your organisation and check for irregular activities or patterns of unusual and unauthorised transactions.

Another common sign of embezzlement is when either an employee or a manager/director begins to enjoy a lavish lifestyle that is obviously beyond their means, e.g. holidays, cars, clothes/jewellery. In the case that you suspect an employee or director might be embezzling funds from within your company, it is essential to be discreet in your employee fraud investigation to prevent the employee from covering their tracks and disposing of substantial evidence.

Other Common Types of Employee Fraud

  • Commission fraud – inflating sales figures to gain a more significant commission than deserved.
  • Petty fraud – for example, embellishing an expense claim or taking office supplies.
  • Money laundering – hiding the origin of illegally obtained money and washing it through your business.
  • Insider Trading – making a profit by using valuable information that is unavailable to the public to their advantage, for example, confidential information that could impact the prices of shares, securities, goods/commodities.
  • Manipulation of accounts – false information on sales, purchases or stock can be used to perpetrate fraud for personal financial gain, e.g. overstated trading profits to receive cash/share bonuses, or get a promotion, creating false trading accounts or stock/fixed asset write-offs to obtain goods.

What Can You Do (as an employer) to Minimize Employee Fraud?

The most effective way to minimize employee fraud as an employer is to implement robust management procedures and employee background screening; the implementation of these preventative measures will ensure staff are adequately investigated and monitored and consider the possibilities for collusion between employees – including a conflict of interest. Paying attention to only the procedures within your accounts department is not sufficient. The same procedures can help you across your operations, including sales and procurement.

Minimize the chances of employee fraud with the following procedures:

  • Separation of employee responsibilities such as placing orders, recording invoices and collecting debts.
  • Requiring purchase or payment authorization by more than one person.
  • Compare actual to budgeted expenditure for unexpected patterns.
  • Examine bank reconciliations thoroughly.
  • Scrutinize cancelled cheques and cheques made out to employees or unusual vendors.
  • Review supplier invoices for significant amounts, pricing or volumes.
  • Verify credit notes and write-offs with receiving records.
  • Install and monitor CCTV to deter theft of stock or equipment.

Fraud Triangle

An American criminologist, Donald R Cressey, devised a theory that involved three aspects that trigger fraud. Understanding these triggers will help you prevent fraud:

  • Opportunity – the lack of internal controls or reporting structure/oversight increase the chance of fraud.
  • Rationalization – the fraudster will rationalize the continued deception, which increases slowly, perhaps over a few years, becoming an entitlement, i.e. I deserve this. This offers the chance to stop some employee fraud early if robust detection procedures are in place.
  • Pressure – overwhelming pressure, be it business factors such as company targets to meet or personal pressures, such as gambling or financial problems.

Implement Pre-employment and Post-employment Employee Screening Now!

Preventing financial loss is crucial for your business’s survival and expansion, which is why it’s essential to know and understand its obvious signs. Use the list above as a guide to protecting your organization.

To detect employee fraud professionally and thoroughly, it is recommended you seek the expertise of a skilled employee fraud accountant as early as possible. They can help you investigate your employees by reviewing your bank statements and financial documents and advise you whether an employee is committing fraud and to what extent. A forensic accountant’s report will also give you the evidence you need to take the necessary action against your employee and act as a deterrent to others.

For a Free and Confidential Chat to Discuss How We Can Help Your Business, contact us. 

 

Risks of Cybercrime and Social Media: NEW PLAYBOOK

The risks of cybercrime claims many victims over many sectors. The PwC Global Economic Crime Survey 2020 found that a company falls victim to six frauds on average. The most common types are customer fraud, asset misappropriation as well as cybercrime. It also proved a roughly even split between frauds committed by internal and external perpetrators, at almost 40% each – with the rest being mostly collusion between the two. Few can deny the enormous technological advancements that are constantly taking place in the modern world. The internet, the computer, and other technological advancements have dramatically changed what it means to socialise, ‘chat’, and even read a book. Both the disadvantages and advantages of such developments are clear, and as technology gains pace, so have the unlawful activities of those who seek to take advantages of such developments.

According to a 2020 cybercrime report from Europol, COVID-19 sparked upward trend in cybercrime. In fact, since the beginning of the pandemic, the FBI has seen a fourfold increase in cybersecurity complaints, whereas the global losses from cybercrime exceeded $1 trillion in 2020. 

In other words, as technology evolves, the risks of cybercrime have become complex. The sense that one is safe from crime in the privacy of one’s own home has been lost. In fact, according to World Economic Forum’s “Global Risks Report 2020” the chances of catching and prosecuting a cybercriminal are almost nil (0.05%).

Take the First Steps Towards Developing Measures Against the Risks of Cybercrime! 

This playbook critically examines the growth of cybercrime, evaluating the risks it poses in terms of the different forms of cybercrime that exist and the regulations that seek to detect, prevent and punish them.

The extension of an old legislation to include cybercrime is not entirely effective – especially not for crimes committed within the realm of social media and social networking. Therefore the need to develop an ‘anti-cybercrime culture emerges. It has to be implemented on an international scale that safeguards these crimes – the promotion of careful use would therefore be facilitated to hinder such crimes before they can materialise. Our playbook includes:

  • What is cybercrime and why is it important?
  • Top corporate cybersecurity risks and 10 types of high-tech crimes
  • How cybercrime impacts business and your company’s growth
  • Cybercrime and regulations in place
  • And how your response as a business matters – how to can you protect your business from cybercrime including advice and tips on how to telework safely

Download the full playbook today and learn step-by-step things your company can do to be better protected from cybercrime. Robust cyber-security, data protection, anti-fraud and risk management all come together to mitigate the dangers posed by hackers, phishers and other cybercriminals.

DOWNLOAD PLAYBOOK

With the playbook in your hands, you’ll learn about the most common cyber attacks. This includes viruses, phishing attacks and website hacks. You’ll also gain a better understanding of the consequences of different types of cybercrime.

To sum it up, the playbook provides best-practices and ways that companies are lessening their risk without spending prohibitive resources to do so. Above all, the right expert advice means that any company can be on the right track to protecting their customers, their assets, and their employees from the risks of cybercrime.

Who is CRI Group™ ?

Based in London, CRI Group works with companies across the Americas, Europe, Africa, Middle East and Asia-Pacific as a one-stop international Risk ManagementEmployee Background ScreeningBusiness IntelligenceDue DiligenceCompliance Solutions and other professional Investigative Research solutions provider. We have the largest proprietary network of background screening analysts and investigators across the Middle East and Asia. Our global presence ensures that no matter how international your operations are, we have the network needed to provide you with all you need, wherever you happen to be. CRI Group also holds B.S. 102000:2013 and B.S. 7858:2012 Certifications, is an HRO certified provider and partner with Oracle.

In 2016, CRI Group launched the Anti-Bribery Anti-Corruption (ABAC®) Center of Excellence – an independent certification body established for ISO 37001:2016 Anti-Bribery Management SystemsISO 37301 Compliance Management Systems and ISO 31000:2018 Risk Management, providing training and certification. ABAC™ operates through its global network of certified ethics and compliance professionals, qualified auditors and other certified professionals. As a result, CRI Group’s global team of certified fraud examiners work as a discreet white-labelled supplier to some of the world’s largest organisations. Contact ABAC™ for more on ISO Certification and training.

New European Parliament Corporate Due Diligence and Corporate Accountability

 

Corporate due diligence and corporate accountability, ending an era of voluntary policing. A new EU mandate places liability on companies unable to assess and mitigate unethical third-party behaviour. New legislation requires companies operating in the EU to ‘identify, address and remedy their impact on human rights and the environment throughout their global value chains.’

Situation Analysis:

  • In 2017, nearly 25 million people categorised as victims of forced labour. International Labour Organization, 2017 report
  • From 2000-2012, nearly 25% of all tropical deforestation was due to illegal agro-conversion for export markets. 2019 study

Global economies have significantly benefited from an increase in cross-border and international business partnerships, which has led to a substantial expansion of the global value chain. Subsequently, more and more companies are being exposed to potential liability by unscrupulous third-party providers in their supply chain pipeline with little respect for business ethics, human rights or the environment.

There is a growing concern worldwide of the many supply chain businesses linked to severe abuses, including exploitative working conditions, modern slavery and child labour, toxic pollution, rampant destruction of rainforests and a general disregard for corporate governance.

For decades, companies have voluntarily monitored supply chain partners for bad behaviour, but this self-policing has limited. But now, the European Union Parliament has presented mandates for EU businesses – under penalties of law – to carry out due diligence to identify, prevent, mitigate and account for actual or potential human rights violations and negative environmental impacts in their operations and supply chain. 

“We live in a world where businesses with the wherewithal can still shift their adverse social and environmental impact to the most vulnerable people and places on the planet.” Lara Ianthe Wolters, Member, European Parliament

The Challenge: You are Liable for the Conduct of Your Partners; Lack of Due Diligence will Get you into Trouble

The legislation requires companies operating in the EU to identify, address and remedy their impact on human rights (including social, trade union and labour rights), the environment (contributing to climate change or deforestation) and good governance (such as corruption and bribery) throughout their value chain.

This is akin to saying that if a company fails to conduct due diligence on a third-party partner that engages in slave labour, pollutes the environment, manipulates the price or violates jurisdictional regulations, that company is essentially complicit in the partnering company’s illegal behaviour. It may be held liable in a court of law.

Aside from legal and monetary penalties, the company further risks a tarnished reputation in the market and a devaluation of its brand.

It’s crucial for businesses utilising global supply chain partners to conduct due diligence and assess the potential risks that a third party may pose to your organisation, particularly when addressing risks associated with environmental damage and human rights violations.

The Solution: Identify Unethical Behaviour and Protect Your Organisation with 3PRM, Corporate Due Diligence and Risk Management

CRI Group™ developed a highly specialised assessment solution for Corporate Due Diligence and Third-Party Risk Management to assist organisations in accurately identifying, preventing, mitigating and addressing actual and potential adverse impacts of affiliating with global partners and complies with all EU mandates.

From enhanced due diligence to identify non-compliance of the regulatory framework and damaging environmental allegations to investigating company (or stakeholder) human rights violations related to labour laws, child labour or human trafficking, CRI Group experts help determine the legal compliance, financial viability, and integrity levels of outside partners and suppliers affiliated with your company’s value chain.

Outcomes

Recent studies have demonstrated a positive correlation between the extent to which companies implement environmental, social and good governance policies, and their overall economic performance, all while contributing to a more stable global marketplace. Such responsible business conduct:

  • Enhances protection for workers
  • Improves access to justice for victims
  • Safeguards the environment
  • Ensures fair products for consumers

Further, apart from general compliance with EU mandates, such organisations enjoy a wealth of intangible benefits, including:

  • Reduced overall liability risks
  • Improved stakeholder protection
  • Lower costs resulting from conflicts
  • Improved company transparency
  • More profound knowledge of the value chain
  • Enhanced reputation in the market 
  • Improved social standards for workers

“The global pandemic has demonstrated that resilient global supply chains that protect both the people and planet will be crucial to companies and economic recovery in the future.” Transparency International EU

CRI Group’s corporate due diligence and accountability solutions can help your organisation comply with a growing list of global regulations and mandates related to human rights and the environment while acting as an integral part of your business decision-making and risk management systems. 

Are you prepared to conduct a due diligence assessment on your global partners? Contact CRI Group to learn more about our Corporate Due Diligence and Accountability solutions and stay one step ahead of the pending EU mandates. We look forward to assisting you.

 

Zafar I. Anjum | MSc, MS, LLM CFE, CIS, MICA, Int. Dip. (Fin. Crime), Int. Dip. (GRC), MBCI, CII Int. Dip. (AML)

Group Chief Executive Officer, Corporate Research and Investigations Limited

e: zanjum@crigroup.com | t:+44 7588 454959

Our enhanced Integrity Due Diligence services will ensure that working with an, i.e. potential trade partner will ultimately achieve your organisation’s strategic and financial goals. To find out more about each level of due diligence, contact CRI Group HERE!

PBSA Annual Conference 2024

Mark Your Calendars for the PBSA Annual Conference 2024 this September in Boston! We are thrilled to announce that Corporate Research and Investigations (CRI Group™) will be proudly sponsoring and exh…
Read More

John Wood Group to Pay $177 Million to Settle Bribery Charges Inherited Through its Merger

John Wood Group Bribery Probe Trace Back to its Merger with Amec Foster Wheeler Plc.

John Wood Group Plc has agreed to pay $177 million to settle the UK led bribery and corruption probe into a British engineering firm it acquired in 2017. The settlement is part of a so-called deferred prosecution agreement with the Serious Fraud Office and the US Department of Justice concerning Amec Foster Wheeler Plc.

The UK agreement is still subject to court approval. As part of the deal, the company can avoid prosecution for three years if it cooperates in the continuing bribery probe. Wood Group’s payment is one of the largest ever obtained in the UK led bribery and corruption case. The biggest was a $1.2 billion settlement with Airbus SE that also involved the US and French authorities.

In 2017, the SFO opened an investigation into Amec’s use of third parties to gain contracts, just weeks after Shareholders approved wood Group’s proposed acquisition. The DOJ said the probe concerned a scheme to pay bribes to officials in Brazil for a $190 million contract to design a gas-to-chemicals complex.

As part of the deal announced, at least $10.1 million will settle charges brought by the US Securities and Exchange Commission. The DOJ said it would get about $18.4 million to resolve its criminal charges in the Brazil bribery probe. Amounts to be paid to the UK and Brazil are yet to be made public.

Wood Group announced that it was close to a settlement. It originally said it expected a deal for $186 million, with about $60 million paid in the first half of 2021 and the rest over three years. The company also agreed to pay $10 million to Scottish authorities earlier this year to settle the case.

“The investigations brought to light unacceptable, albeit historical, behaviour that I condemn in the strongest terms,” Wood Group Chief Executive Officer Robin Watson said in a statement. “Although we inherited these issues through acquisition, we took full responsibility in addressing them, as any responsible business would.”

The company has “cooperated fully with the authorities” and “taken steps to improve further our ethics and compliance program from an already strong foundation,” Watson said. “I’m pleased that, subject to final court approval in the UK, we have been able to resolve these issues and can now look to the future.”

The agreement comes amid criticism of the SFO and its inability to prosecute individuals after securing settlements with companies. Earlier this year, the SFO dropped its probe into former Airbus directors and was dealt a humiliating setback after its trial against two former Serco Group Plc directors fell apart because it failed to disclose evidence.

In May 2021, the SFO opened one of its biggest investigations into suspected fraud and money laundering concerning GFG Alliance and its financing agreements with Greensill Capital. It was after months of intense pressure from lawmakers to investigate Sanjeev Gupta’s empire.

John Wood Group bribery probe.

Source: Financial Crimes News

Join our mailing list and get exclusive industrial insights for subscriber-only!

The Importance of Due Diligence in Merger and Acquisition to Avoid a Similar Incident Happened like in John Wood Group.

Due diligence is understood as the reasonable steps taken to satisfy legal requirements in the conduct of business relations. That allows you to reduce risks – including risks arising from the FCPA (Foreign Corrupt Practices Act) and the UKBA (UK Bribery Act), to make informed decisions and to pursue takeovers or mergers with more confidence.

Unlike other kinds of control (audits, market analysis, etc.), it must be completely independent and rely as little on information provided by the researched subject. The other important difference lies in the methodology: commercial or financial due diligence analyses available information, investigative type provides reliable and pertinent, but raw, information.

Due diligence on potential business partners when adding a new vendor or hiring a new employee is vital to confirm the legitimacy and reduce the risks associated with such professional relationships. Global integrity due diligence investigations provides your business with the critical information it needs to make sound decisions regarding mergers and acquisitions, strategic partnerships, and the selection of vendors, suppliers, and employees.

It will ensure that working with an, i.e. potential trade partner will ultimately achieve your organisation’s strategic and financial goals. CRI Group investigators employ a proven, multi-faceted research approach that involves a global array of databases, courts and public record searches, local contacts, industry and media resources, and in-depth web-based research. Our resources include:

  • International business verification

  • Individual business interest search

  • Personal profile on individual subjects

  • Company profile on corporate entities

  • Historical ownership analysis

  • Identification of subsidiaries & connected parties

  • Global/national criminality & regulatory records checks

  • Politically Exposed Person database

  • International digital media research

  • Company background analysis

  • Industry reputational assessment

  • FCPA, UK Anti-Bribery & corruption risk databases

  • Global terrorism checks

  • Global financial regulatory authorities checks

  • Money laundering risk database

  • Financial reports

  • Asset tracing

  • Country-specific databases that include litigation checks, law enforcement agencies & capital market regulators

DueDiligence360™ from CRI Group™

WHAT DO YOU ACTUALLY KNOW ABOUT THE INTEGRITY OF THE PARTY & THEIR WAY OF DOING BUSINESS? DOES OR DID THIS PARTY ADHERE TO (INTER)NATIONAL REGULATIONS ON ANTI-CORRUPTION & ANTI-BRIBERY? IS IT POSSIBLE THAT THERE IS A LIABILITY RISK?

At CRI Group™, we specialise in Integrity Due Diligence, working as trusted partners to businesses and institutions across the world. Our people work with energy, insight and care to ensure we provide a positive experience to everyone involved – clients, reference providers and candidates.

CRI’s unique identity and vision evolved from our fundamental desire to support our clients and their candidates. Safeguard your business and its integrity with DueDiligence360™.

Our DueDiligence360™ expose vulnerabilities and threats that can cause serious damage to your organisation and can significantly reduce business. CRI Group is trusted by the world’s largest corporations and consultancies – outsource your due diligence to an experienced provider and you will only ever have to look forward, never back. Clients who partner with us benefit from our:

Expertise
CRI Group™ has one of the largest, most experienced and best-trained integrity due diligence teams in the world.

Global scope
Our multi-lingual teams have conducted assignments on thousands of subjects in over 80 countries, and we’re committed to maintaining and constantly evolving our global network.

Flexibility
Our DueDiligence360TM service is flexible and can apply different levels of scrutiny to the subjects of our assignments, according to client needs and the nature of the project.

DueDiligence360™ from CRI Group™

WHAT DO YOU ACTUALLY KNOW ABOUT THE INTEGRITY OF THE PARTY & THEIR WAY OF DOING BUSINESS? DOES OR DID THIS PARTY ADHERE TO (INTER)NATIONAL REGULATIONS ON ANTI-CORRUPTION & ANTI-BRIBERY? IS IT POSSIBLE THAT THERE IS A LIABILITY RISK?

At CRI Group™, we specialise in Integrity Due Diligence, working as trusted partners to businesses and institutions across the world. Our people work with energy, insight and care to ensure we provide a positive experience to everyone involved – clients, reference providers and candidates.

CRI’s unique identity and vision evolved from our fundamental desire to support our clients and their candidates. Safeguard your business and its integrity with DueDiligence360™.

Our DueDiligence360™ expose vulnerabilities and threats that can cause serious damage to your organisation and can significantly reduce business. CRI Group is trusted by the world’s largest corporations and consultancies – outsource your due diligence to an experienced provider and you will only ever have to look forward, never back. Clients who partner with us benefit from our:

Expertise
CRI Group™ has one of the largest, most experienced and best-trained integrity due diligence teams in the world.

Global scope
Our multi-lingual teams have conducted assignments on thousands of subjects in over 80 countries, and we’re committed to maintaining and constantly evolving our global network.

Flexibility
Our DueDiligence360TM service is flexible and can apply different levels of scrutiny to the subjects of our assignments, according to client needs and the nature of the project.

Looking for a Service Provider Due Diligence Checklist?

Due Diligence Checklist

Due diligence checklist and service provider. There are many risks implicit in doing business, and CEO’s and risk management officers face many internal and external threats. Most organisations face preventable risks; however, the burden of identifying risks can be too much, especially when dealing with third-party providers.

Most service providers offerings are often part of organisations’ core functions (i.e. internet-related services or cloud services); they have access to sensitive information, including your clients’ client details (PII), their financial data such as credit cards (PCI), or trade secrets; that impacts your data security or privacy programs; a worrying source of risk and, often than not, they drive up your cost. 

According to Ponemon Institute’s Cost of a Data Breach Report 2020, organisations spend £2.9 million ($3.86 million) recovering from security incidents. And third-party breaches cost $370,000 more than in-house breaches. Third-party breaches do happen, and many organisations aren’t prepared. In fact, Protiviti’s 2019 Vendor Risk Management Benchmark Study found that only 4 in 10 organisations have a fully mature vendor risk management process in place. 

It’s critical to follow a well-defined and comprehensive due diligence process when it comes to service providers. Having a services provider due diligence checklist allows you to see what obligations, liabilities, or any types of risks you’re assuming. 

What Is a Due Diligence Checklist?

A due diligence checklist is an organised way to analyse a service provider you want to work with. Following this checklist, you can learn about the Service Provider liabilities, benefits, and potential problems. Due diligence checklists are usually arranged in a basic format. However, they can be changed to fit different industries and professional relationships. A due diligence checklist can also be used for:

  • Preparing an audited financial statement or annual report
  • A public or private financing transaction
  • Bank financing
  • A joint venture
  • An initial public offering (IPO)
  • General risk management.

However, we developed a complete due diligence checklist for you to use on your service providers for this article. There are six core areas to consider when doing your due diligence vetting a service provider:

  1. General company information
  2. Financial review
  3. Reputational Risk
  4. Insurance
  5. Information Security Technical Review
  6. Policy Review

The questions could change based on your requirements or the company, industry, size, or region. The more you know about potential vendors, the easier it is to assess their risk. Let’s look!

1. Build an inventory of your service providers:

  • List the providers of significant core functions
  • List any smaller providers who might be working with individual departments

2. Rank each service provider based on risk by asking the following questions:

  • What service does this organisation provide?
  • Who owns the relationship with this provider?
  • Is this provider tied to your organisation’s most critical business operations?
  • What data do they have access to?

3. Collect information on each service provider, including basic information:

  • A business charter or articles of incorporation (or similar corporate charter)
  • Business location, and proof of location.
  • Business license: confirm that the company is legitimate
  • Overview of company structure
  • Information about executives and board members
  • Financial information: is the service provider financially solvent? Would you want to partner with a company that may not be in business next year? 
  • Insurance: gather information on general liability insurance, cyber insurance, or insurance-specific capabilities.

4. General risk information:

  • Is the service provider on any watch lists?
  • Any Lawsuits?
  • Any negative news coverage?
  • Any significant complaints or negative reviews from consumers?
  • Is the site physically secure?
  • Policy Review

5. Cyber risk Information:

  • Security rating
  • Assessment questionnaire
  • Retrieve the IT system outline
  • Any assets exposed to the open Internet?
  • Any cases of data breaches?

6. Final risk analysis:

  • Calculate your risk: Risk = Likelihood of a Data Breach X Impact of a Data Breach/Cost
  • Set a risk rating of high, medium, or low
  • Compare the above information with your risk appetite and determine whether your organisation should pursue a relationship with the service provider

How can CRI Group™ Help You Manage and Respond to Risks?

Managing third-party risk can be difficult. The work isn’t done when you understand the risks associated with doing working with third-party providers. With CRI Group™, organisations can make the process simpler and gain a window into their service providers’ risk. 

Due diligence on potential business partners when adding a new vendor or hiring a new employee is vital to confirm the legitimacy and reduce the risks associated with such professional relationships. 

Our global integrity DueDiligence360 investigations provide your business with the critical information it needs in making sound decisions regarding mergers and acquisitions, strategic partnerships, and the selection of vendors, suppliers, and employees. And we offer various levels of due diligence to fit your needs:

  • Level I Basic: Basic due diligence
  • Level I Essential: Essential due Diligence
  • Level II EDD Enhanced Integrity Due Diligence
  • Level II EDD Plus Enhanced Integrity Due Diligence

Our Enhanced Integrity Due Diligence services will ensure that working with an, i.e. potential trade partner will achieve your organisation’s strategic and financial goals. To find out more about each level of due diligence, contact CRI Group™ HERE!

Who is CRI Group™?

Based in London, CRI Group™ works with companies across the Americas, Europe, Africa, Middle East and Asia-Pacific as a one-stop international Risk ManagementEmployee Background ScreeningBusiness IntelligenceDue DiligenceCompliance Solutions and other professional Investigative Research solutions provider.

We have the largest proprietary network of background screening analysts and investigators across the Middle East and Asia. Our global presence ensures that no matter how international your operations are, we have the network needed to provide you with all you need, wherever you happen to be. CRI Group™ also holds BS 102000:2013 and BS 7858:2012 Certifications, is an HRO certified provider and partner with Oracle.

ISO 37001 Solutions for All Industries (Part 3)

In part 1, we discussed how ISO 37001 ABMS can help companies across a wide range of industries, including automotive, aviation and insurance. In part 2, we looked at how pharma and healthcare, property, IT and telecommunications organisations can benefit from Anti-Bribery solutions as well. In this final part, we will explore some aspects of how companies from the financial, oil and energy industries could implement ABAC solutions.

Finance

Bribery and corruption are among the top fraud concerns for all financial organisations. These include banks & financial institutions, real estate lenders, business credit and finance companies, commercial investment corporations, asset-based lenders, debt financing firms, acquisition capital firms and others. Having safeguarding processes in place is required both from a legal and compliance standpoint and from the position of being a trusted, secure financial institution. The financial sector includes new Anti-Money Laundering (AML) rules and legislation, and these regulations are strict and increasingly enforced. As such, remaining in compliance through implementing proper prevention controls is a must.

In one high-profile case, between 2006 and 2013, JPMorgan Chase and its subsidiary, JP Morgan Securities (Asia Pacific) Limited (JPM-APAC) took on about 100 Chinese interns and full-time employees who ended up at the centre of a bribery case spread over two continents and worth hundreds of millions of dollars. In order to win business from members of the Chinese government and state-owned companies, JPM-APAC allegedly targeted their children, offering them high-ranking and well-paid positions in the business in order to curry favour with their parents. JP Morgan fell into trouble for allegedly violating the Foreign Corrupt Practices Act (FCPA), and the DoJ called the scheme ‘bribery by any other name’ – alleging that it had threatened national security. In November 2016, the bank was ordered to pay $264 million to settle the claims against it – $130m to the SEC for violations of the FCPA, $72m to the US Justice Department and $61.9m to the Federal Reserve Board of Governors.

CRI Group™ investigates: Pharma corruption case included CFO

ISO 37001 in Oil, Gas and Energy Industries

The oil and energy sector is a massive portion of the world’s economy, dealing mainly in petroleum – including upstream (exploration, development and production of crude oil or natural gas) and downstream (oil tankers, refiners, retailers and consumers) pipeline. The need to prospect, discover, and realise oil and energy production in various (and often far-flung) locations lends to the vulnerability to fraud – but geographic considerations aren’t the only risk factors.  Perhaps even more impactful is the complexity of business relationships required to operate in the industry – relationships with governments, contractors, regulators, investors/venture partners, equipment suppliers and other parties. Every such interaction and dealing can be considered susceptible to bribery and corruption where cutting corners may be considered profitable or even perceived to be “business as usual.”

An infamous example is the case of Petrobras. In December 2017, the world’s largest builder of offshore rigs agreed to pay $422 million in penalties after entering a guilty plea for bribery charges connected with the Petroleo Brasileiro (Petrobras) scandal. Keppel Offshore & Marine Ltd. made illicit payments to both Petrobras officials and government representatives for more than a decade, between 2001 and 2014 (Reuters, 2017). The sweeping multimillion-dollar bribery scandal that rocked Petrobras led to numerous investor lawsuits and the downfall of disgraced government officials. It also served as the embodiment of the huge risk of bribery and corruption that confronts the entire oil and energy sector. See “Oil and Energy Companies Look to ISO 37001.”

Long-lasting Benefits of Certification of ISO 37001

ISO 37001 provides a strong framework for addressing and isolating risk factors in all industries. The benefits of certification are far-reaching, impacting not just the primary organisation but also influencing contractors, clients, and raising the profile of the company as an ethical entity that is a good trading partner. Even more effective, ABAC™ tailors IS0 37001 to the specific needs of the client.

By achieving ISO 37001:2016 certification, an organisation will ensure that it is implementing a viable anti-bribery management system utilising widely accepted controls and systems. It will also assure management, investors, business associates, personnel and other stakeholders that the organisation is actively pursuing internationally recognised and accepted processes to prevent bribery and corruption. Today, companies cannot afford to be reactive to threats of bribery and corruption. By achieving ISO 37001 Anti-Bribery Management System certification today, an organisation will remain in compliance and better positioned to address risks head-on.

Stay updated 

Stay tuned for Part 2 or follow us on LinkedInFacebook or Twitter for more industry news and insights.

Sign up for risk management, compliance, corporate and background investigations, business intelligence and due diligence related news, solutions, events and publications.

Who is CRI Group?

Based in London, CRI Group™ works with companies across the Americas, Europe, Africa, Middle East and Asia-Pacific as a one-stop international Risk ManagementEmployee Background ScreeningBusiness IntelligenceDue DiligenceCompliance Solutions and other professional Investigative Research solutions provider. We have the largest proprietary network of background screening analysts and investigators across the Middle East and Asia. Our global presence ensures that no matter how international your operations are we have the network needed to provide you with all you need, wherever you happen to be. CRI Group also holds BS 102000:2013 and BS 7858:2012 Certifications, is an HRO certified provider and partner with Oracle.

 

Procurement Risks: The 5 common Risks Every Organisation Needs to Know!

Procurement Risks: Your Lack of Due Diligence can Lead to Harm

Procurement risks: lack of due diligence can lead to harm. Procurement is one of the most critical areas of any organisation, large or small. Procurement officers secure the materials and goods that a business needs to be productive and successful. They ensure the best possible price, quality, delivery efficiency, and other important considerations.

Unfortunately, due to the very nature of dealing with third-party suppliers/vendors, procurement also requires an elevated level of risk management. As many high-profile cases have shown, supply-line problems can cause financial and reputational damage, sometimes on a grand scale.

The infamous horse meat scandal in the UK presents a classic scenario of the damage from risky third-party associations. Widely known international corporations, including Burger King and others, were forced to cut ties with a meat supplier after facing financial and reputational harm from the news that some of the supplier’s products were tainted with horseflesh.

The revelations of tainted meat resulted in international news headlines, waves of criticism from consumers and food products pulled from shelves and freezers in response to the uproar. As damaging as it was, the crisis helped illustrate why due diligence became more important as supply chains expanded and became more complex, especially among international organisations.

The procurement risks: How to minimise them?

The following are some priorities every organisation should have to minimise procurement risks in their procuring process:

Risk #1 – Know who your suppliers are

Due diligence is as vital in procurement as in any other business area, in some cases, more so. Third-Party Risk Management (3PRM™) services help organisations proactively mitigate risks from third-party affiliations, protecting organisations from liability, brand damage, and harm to the business. As part of this service, experts check supplier backgrounds to verify their financial viability, quality control, compliance standards and – most importantly – any prior legal or criminal action. Taking this step before you engage with a supplier or vendor can save some severe headaches down the road. Get our 3PRMTM and DueDiligence360TM brochures to learn more about our tailored investigative solutions.

Risk #2 – Consider your organisation’s reputation

The horsemeat scandal showed how quickly and drastically it can damage a well-respected organisation’s reputation and brand. Your procurement team should know that while the bottom line is essential, nothing is more critical than protecting the image and brand of the company. Cutting due diligence corners to secure the lowest price is not only unwise – it should be strictly against company policy.

Risk #3 – Find sustainable lines of supply

Seek out suppliers with long, successful backgrounds in their business. Find economically sound and socially conscious companies, using fair labour practices and promoting sustainable resources. It harmed the organisation when it discovered that a supplier was using child labour or other unethical or illegal methods to produce their goods. Implement a code of conduct with expectations for your contractors, suppliers and vendors, and review them regularly to ensure they follow your guidelines.

Risk #4 – Have backup suppliers in place

What happens when your primary vendor is suddenly out of compliance? Or folds up completely? If your production chain grinds to a halt, the damage can be severe and lasting to your organisation’s financial and reputational health. Ensure your procurement team has conducted due diligence on backup suppliers that you can turn to in a crisis. Spending a little more to keep the production lines open will be a small price to pay compared to seeing your business come to a standstill.

Risk #5 – Conduct a thorough risk assessment

Any organisation that hasn’t prepared a risk assessment of its procurement process should immediately do so. How else will you know what red flags or gaps make your organisation susceptible to fraud, waste, risk to reputation, or all of the above? Third-party risk management experts can help you develop and put in place an effective third-party risk assessment plan that keeps your organisation protected and minimises your exposure to unseen or unknown trouble spots.

Every organisation needs a successful and efficient procurement process. It also needs to be safe from the inherent risks with connections to third parties, including suppliers, vendors and contractors. When it comes to procurement, let CRI Group™ help you put proper risk management processes in place so you don’t have to worry about your supply chain putting you in tomorrow’s headlines.

Who is CRI Group™?

Based in London, CRI Group™ works with companies across the Americas, Europe, Africa, Middle East and Asia-Pacific as a one-stop international Risk ManagementEmployee Background ScreeningBusiness IntelligenceDue DiligenceCompliance Solutions and other professional Investigative Research solutions provider.

We have the largest proprietary network of background screening analysts and investigators across the Middle East and Asia. Our global presence ensures that no matter how international your operations are, we have the network needed to provide you with all you need, wherever you happen to be. CRI Group™ also holds BS 102000:2013 and BS 7858:2012 Certifications, is an HRO certified provider and partner with Oracle.

 

Tackling Corporate Fraud in the Middle East

Tackling corporate fraud in the middle east has become even more challenging during the pandemic. ICAEW Insights sat down with our founder and chief executive, Zafar Anjum, to discuss the rising levels of corporate fraud in the middle east during the pandemic.

Find out how CR™ is using AI to investigate wrongdoing; from fake degrees and doctored CVs to false insurance claims and bogus bills, our corporate fraud investigators in the Middle East have seen it all. Zafar told ICAEW his firm was busier than ever as the pandemic triggered a rise in white-collar crime cases across the region.

From its base in London, CRI has been helping firms in middle east regions like Qatar, Dubai, Abu Dhabi and Saudi Arabia. Regions where anti-fraud frameworks are still being built out inside the embryonic corporate regulatory regimes that govern the Middle East.

“We’ve seen a lot of insurance fraud claim investigations, fake bills, fake debts and fraudulent certificates designed to cheat insurance companies,” Zafar said. “Covid allowed internal controls to be relaxed; people are working from home, so the usual check and balances are missing.”

Nascent Regulatory Regime

Last year, PwC research found corporate fraud was on the rise across the region, with nearly half of all local companies reporting at least one occurrence in 12 months. Zafar said the lack of counter-corruption model legislation such as the UK Bribery Act 2010 often meant policing the business areas such as the Dubai International Finance Centre (DIFC) fell to private companies as the regulator doesn’t have the resources to cover the scale of the problem. 

“In the Middle East, the issues relating to fraud and corruption are of concern because there isn’t the legislation when compared to developed countries. The definition of fraud and fraudulent activities are different across the Middle East,” he said. 

The DIFC was established in 2004 to create a safe and constant upward regulatory environment for companies to do business. One of its aims was to attract investment from London and Wall Street firms and other corporates from both continents. A regulator was created to monitor the market, and the set-up was replicated for the Abu Dhabi and Qatar financial business districts. 

The economic “free zones” have relied on firms themselves to help shape the regulatory framework, Zafar said, which has created a mixture of frameworks as standards are broadly aligned with the UK or US markets.

“It’s not national-level legislation, which carries its own problems. There have been scandals, and a lot of that centres on fraudulent financial statements, investment scams,” Zafar said. “A prevalent problem is vendor/third-party screening and false claims, especially during the bidding process. Some firms exaggerate their capabilities and are not able to deliver.”

Investor Scams on the Rise

A big part of CRI Group’s work is analysing financial statements, checking backgrounds, and working with compliance teams to root out bad actors. Zafar said investors scams were also on the rise across the UAE; because the country is ripe for development, some fraudsters had found it easy to prey on foreign victims who are drawn to the opportunities but unwilling to carry out proper due diligence. 

The UAE’s family offices are a driving force of industry, and the name carries significant weight regarding deals. “It’s very risky to invest without carrying out the proper checks, and unfortunately, a lot of people come in blind,” Zafar said.

“Fake property claims are rife. It can be individuals who are targeted or small groups of foreign investors. One case involved a handful of US investors who wanted to invest in some economic and humanitarian projects. They wanted to create jobs, other activities, but fell in with people who weren’t with the families they claim to be a part of.”

Family names are often taken by scammers and used to convince investors to part with their cash fairly frequently, Zafar said. Because many people don’t care about due diligence, it can end up costing millions of dollars,” he said. “It’s so hard to recover the money, to catch the fraudster. If the victims don’t have local consultants or experts, it can be hard to trace back and recover the damages.”

An investor group puts its trust — and its funds — in the hands of an outside business partner without considering a due diligence check on the individual.

Eighteen months into the partnership, the individual has succeeded in fleecing the group of more than $6 million and is still at large. Investigators such as CRI™ are increasingly turning to artificial intelligence and machine learning tools to help with screening. Zafar said great strides had been made in tackling corruption and bribery.

Public and Private Investigation Partnerships

Databases of politically exposed individuals, or persons with links to crime, on watchlists or have criminal activity linked to their name or accounts are rapidly being populated for use by regulators and private investigators. 

“We’re trying to prove that there is a role for AI in detecting crime and that it can be a part of the investigative process. Machines will scan publicly available databases, criminal cases and the like, and we can check if firms have been blacklisted by authorities such as the Asian Development Bank, IMF or World Bank, which is really helpful.”

In the past, these checks would have to be carried out by hand, one by one. “It’s hard, almost impossible! Name matches are probably the largest problem in the Middle East.

You cannot find a person with the first name Mohammad or last name Khan; you’ll get billions of matches, so we need to develop a database that builds on this with other information. There isn’t a nationwide electoral database in any Middle East region, so you can see how much work still has to be done.”

Credit history, employment checks and previous addresses are a handful of ways the files can be built out, Zafar said, and his team is working on ways to streamline that process. There was no concept of background screening in 2008 when Zafar’s team started, and despite having come a long way, he said they still encounter fraud on a massive scale. However, they still encounter fraud on a huge scale, he said. 

Alarming Numbers

“Sometimes applicants try to falsely fill the gap in their CV, which is dangerous because we don’t know if they’ve spent time in jail,” he said. “More common red flags are fake degrees and fake previous employment references. We found one in 20 applications for a job had fake degrees, experience letters, or fake references in some regions. It’s a huge number, and some of the universities were prestigious too, which makes it quite alarming.”

Another big area of focus is auditing gifts and donations passed through a company concerning projects carried out. His team works with companies to ensure their anti-bribery controls are as robust as possible, given the tough penalties on offer. 

“It’s a criminal liability for a company, and the directors will be liable if they don’t have the proper anti-bribery procedures in place,” Zadar said. “Accounts and financial teams are critical to making sure firms have proper internal controls.”

CRI is also on a mission to stamp out “box-ticking” compliance, which has traditionally been a problem across the Middle East due to the nascent regulatory framework. “If you’re conducting audits, nothing will happen if this is the way; you’ll never spot the problem,” he said. “The role of accountants, whether internal or external, to shape the controls and make sure they are implemented effectively.”

He said bribery through sales commissions, waste for public service, sexual extortion or sextortion as a form of corruption could be rife in some sectors. It was up to companies to ensure money wasn’t being paid outside official channels to staff. 

“We understand it’s a process for some firms who are not used to doing it this way, but we’re here to help,” he said. “Companies need to establish their compliance documentation and make sure it’s up to the standard. The most important areas are due diligence and anti-bribery policies. This should not be a paper-based box-ticking exercise, it has to be implemented, and every employee must know the company believes in zero-tolerance of corruption.” 

Visit ICAEW’s Fraud hub for related articles and case studies, or to see the original article, click here

 

5 Reasons To Run Employee Screening

Being HR professional, we have to deal with rigorous recruitment cycles, and for this, we must meet with several candidates before closing the vacancy. Every HR person has their style of evaluating the candidates, but one thing that needs to be kept in mind before making the final hiring decision is to “Never judge a book by its cover” (Stonehouse, 2017), since at times we might overlook some critical points, perhaps due to a fancy resume or qualification. Every HR professional should consider a crucial step before taking a candidate on board: run employee screening.

According to Business Week – 16% of executive resumes contain false academic claims and/or material omissions relating to educational experience. The U.S. Department of Labor estimates that the average cost of a bad hiring decision can equal 30% of the first year’s potential earnings. If you are an HR professional and reading this article, then I can assure you that other HR professionals must be thinking, “is it worth investing additional time and money in pre-employment background screening service?” Let me tell you the key benefits that you can gain from conducting pre-employment background screening services:

1. Better Compliance: It Keeps You Out of Legal Issues

Let’s suppose one of your employees commits fraud in your company, and after investigations, you came to know that the employee did the same with previous employers. At this point, you will regret not conducting their background check, as if you had conducted their employment and criminal check, then you wouldn’t have hired them in the first place.

2. Ensures Credibility When Performing Sensitive Tasks

In addition to legal issues, some background checks can verify a candidate’s creditability in performing their on-job duties. For instance, when a candidate is being hired for the accounts department where petty cash and the company’s account handling are their primary responsibilities, their employment check may come across that his previous employment has concluded due to mishandling of accounts.

3. Safer Work Environment: Keep Employees and Clients Safe

Conducting Background checks can also convey a message throughout the company’s stakeholders, especially its clients, that all employees hired in the company have gone through rigorous checks. Therefore, the data shared by the clients are in safe hands, thus increasing the overall integrity of the company and its staff.

4. Verifies Education and Certification

The increase in the number of fake degrees has amplified the importance of pre-employment check of educations. Therefore, all degrees and certificates of the applicant under consideration should be verified. The outcome of verification is not just about checking an applicant’s honesty but also verifying the legal status of the degrees and their issuing authorities.

5. Stronger Hires, More Savings: It Gives an Overall Picture of the Applicants

Apart from the interviews, pre-employment background checks can help the interviewer to make their hiring decision accordingly. For instance, candidates may have successfully cleared the interview process, but in their employment checks, the company found that they had resigned from their services after they were accused of sexual harassment by colleagues. Irrespective of how competent a candidate is for the vacancy, such red flags regarding the candidate’s behaviour can completely change the hiring decision and safeguard the company from future issues.

It is indeed worth spending extra time and money on pre-employment background screening because making a wrong hiring decision can not only increase recruitment cost and time but may also incur the cost of damage that employee has given to the company, whether in the form of litigation’s or damaging the company’s goodwill.

5 Reasons To Run Employee Screening
5 Reasons To Run Employee Screening
5 Reasons To Run Employee Screening
5 Reasons To Run Employee Screening
5 Reasons To Run Employee Screening

 

So, If Your Company is not Conducting Background Screening! Think Again!

Being in HR, you might be creating liability for the company by making the wrong hiring decision. It’s never too late to correct your actions, so contact us, and we can provide our employment background screening services. As it is rightly said, I quote, “better safe than sorry” (Bateson, 2008). 

CRI Group™, based in London, works with companies across the Americas, Europe, Africa, Middle East and Asia-Pacific as a one-stop international Risk Management and Due Diligence solutions provider. We have the largest proprietary network of background screening analysts and Investigators across the Middle East and Asia. Our global presence ensures that no matter how international your operations are, we have the network needed to provide you with all you need, wherever you happen to be. As a result, CRI Group’s global team of certified fraud examiners work as a discreet white-labelled supplier to some of the world’s largest organisations. CRI Group also holds BS 102000:2013 and BS 7858:2012 Certifications, is an HRO certified provider and partner with Oracle.

References

  1. Bateson, J., 2008. Building Hope: Leadership in the Nonprofit World. United States Of America: Greenwood Publishing Group.
  2. Stonehouse, R. A., 2017. You’re Hired! Job Search Strategies That Work. 1st ed. s.l.:eBookIt.com.

 

 

Mubadala Petroleum Achieved ISO 37001 ABMS Certification Through CRI Group™

Corporate Research and Investigations Limited (CRI Group™) announced that Mubadala Petroleum, a leading international oil and gas company, has successfully achieved ISO 37001 Anti-Bribery Management Systems certification.

The announcement was made by Zafar Anjum, CEO at Corporate Research and Investigations Limited. “We are honoured to certify Mubadala Petroleum for ISO 37001, as the ethical and transparent front-runner in the oil and gas industry.”

Mubadala Petroleum is a leading international, upstream oil and gas exploration and production company that manages assets and operations spanning ten countries globally, with a primary geographic focus on the Middle East and North Africa, Russia and Southeast Asia.

The ISO 37001 certification was achieved through ABAC™ Certification, a component of CRI Group’s Anti Bribery and Anti-Corruption (ABAC™) Center of Excellence, accredited by the Emirates International Accreditation Center (EIAC) for administering ISO 37001 ABMS certification.

ABAC’s Scheme Manager, Huma Khalid added: “Mubadala Petroleum was very motivated to achieve the globally recognised certification to prove their commitment to the highest integrity and accountability levels across the world. It is an honour to certify Mubadala Petroleum in the UAE in numerous business areas including but not limited to ABC ethics & compliance, ABC risk assessment and management, business management, investigations and reporting, due diligence and employment procedures. It is encouraging that exponential number of worldwide organisations start deciding to not only commit to their sustainable business commitments but also achieve certification to promote transparency inside and outside their organisations.”

 

ABOUT CRI GROUP™

Since 1990, CRI Group™ (Corporate Research and Investigations Limited) has safeguarded businesses from fraud and corruption, providing insurance fraud investigations, employee background screening, investigative due diligence, third-party risk management, compliance and other professional investigative research services.

CRI Group’s ABAC™ Center of Excellence provides certification and training solutions to local organisations in the field of Anti-Bribery Management Systems, Risk Management Systems, ISO 37301 Compliance Management Systems.

 

Stop Bribery and Corruption Today – With ISO 37001 Certification!

Corruption and bribery affects any organisation, large or small, public or not-for-profit. It has the potential to cause severe harm to your business, including financial loss, dire legal consequences, damage to your brand, company’s reputation and sustainable development. Therefore anti-bribery needs to be managed correctly and effectively.

ISO has developed a standard – ISO 37001:2016 ABMS – to help organisations promote an ethical business culture. “Designed to help your organisation implement an anti-bribery management system (ABMS), and/or enhance the controls you currently have. It helps to reduce the risk of bribery [and corruption] occurring and can demonstrate to your stakeholders that you have put in place internationally recognised good-practice anti-bribery [and anti-corruption] controls”.

ISO 37001 CERTIFICATION