Not a member? Subscribe Today | Forgot password?

Remember me

Recent Columns By Rick Steinberg On §404, ERM, More

The principal author of COSO's internal control and ERM frameworks, Compliance Week Columnist Richard Steinberg is a well-known governance and auditing expert. The founder and former leader of PricewaterhouseCoopers' corporate governance practice, Steinberg has authored numerous seminal governance reports, including Corporate Governance and the Board—What Works Best. Some of his most recent columns for Compliance Week are below:

Fed's New Rules on Bank Risk a Mixed Bag

February 22, 2012

Along with stress tests and new liquidity requirements, the Federal Reserve is considering a host of new rules for banks and financial institutions that would require them to establish risk committees, designate a chief risk officer, and establish a risk framework. Inside, Columnist Richard Steinberg examines the proposed rules and finds some good ideas along with some that raise concerns.

Boneheaded Plays in Risk and Compliance

January 24, 2012

If you watch football on ESPN, you've probably seen the segment "C'mon, man!" where analysts shout, "C'mon, man!" after showing clips of players making particularly "boneheaded" plays—plays that are really dumb or sometimes just inept. Well, much the same can be said for corporate governance and risk management. This week, columnist Rick Steinberg offers his best of the worst in 2011.

Revised COSO Internal Control Framework Is Here!

December 20, 2011

The Committee of Sponsoring Organizations released a proposal for a major update to its Internal Control—Integrated Framework, which has become the authoritative document on internal control. Inside, Columnist Richard Steinberg, who played a role in working on the original and the update, provides a sneak peak at what is in the revised version, including a discussion of the "principles" and "attributes" of internal control.

Daimler Gets This One Right

November 22, 2011

The stumblings of others make for great case studies on how to improve compliance programs. But on occasion a company's actions serve as a model to follow on how to get it right. When Daimler removed its U.S. CEO for what appear to be lapses in integrity, Columnist Richard Steinberg finds just such an example. Details inside.

One More for the Rogues Gallery

October 13, 2011

The $2.3 billion in losses racked up by a single trader at Swiss bank UBS is just the latest result of a series of breakdowns in controls at large banks that let rogue traders gamble recklessly with massive sums. UBS's former CEO claims that there's "nothing you can do," but he should know better. Inside, Columnist Richard Steinberg surveys the wreckage and hunts for lessons on how to create effective controls.

We Won't Get Fooled Again ... and Again, and Again

September 20, 2011

Too often companies fail to correct an underlying problem and continue to get tripped up by the same issues. Much of governance, risk management, and compliance is about dealing with the unknown—what could happen—which includes what did happen in the past. Inside, Columnist Richard Steinberg takes a look at three real-life cases where the same set of difficulties, left unaddressed, comes back to haunt.

Lessons From the Fall: Where News Corp. Went Wrong

August 23, 2011

The phone-hacking scandal at News Corp. has led to the closure of a 168-year-old newspaper, the resignation—and in some cases arrests—of high-ranking company officials, and a hit to the reputation of the company and its bold chairman. The company's response could be considered a case study in how not to respond to a crisis. Inside, Columnist Richard Steinberg considers the lessons of News Corp.'s debacle.

Why Some Companies Fail and Others Succeed

July 26, 2011

When things go wrong, they can go really wrong, and how senior management and the board react can be the difference between survival or failure. Inside, Columnist Richard Steinberg analyzes the common factors at play when once-great companies sink, while others weather any storm and continue to grow and reap the rewards of success.

The Foreclosure Fiasco Rolls On

June 21, 2011

Just when they thought it couldn't get any worse, problems in the foreclosure process are multiplying for major banks. Lawsuits are piling up, federal agencies are launching investigations, and the potential for financial penalties is growing. Inside, Columnist Richard Steinberg follows the latest missteps and draws some risk-management lessons from the crisis.

Toyota's Risk-Management Failings Emerge

May 24, 2011

The natural disasters in Japan in March caught plenty of companies off-guard. Toyota was among the hardest hit, with production in North America reduced by as much as 75 percent, even though its 17 plants in Japan were relatively undamaged. So how did it happen? Inside, Compliance Week Columnist Richard Steinberg examines some lessons of the automaker's risk management failure.

What's Keeping Directors Up at Night?

April 19, 2011

A recent shareholder lawsuit and SEC enforcement actions against corporate directors have raised eyebrows in boardrooms, especially with directors already concerned about reputational damage and potential financial loss. Inside, Columnist Richard Steinberg looks at the risks and finds some reasons for directors to rest easier.

The 'Mundane' World of Internal Control

March 22, 2011

Because of misunderstandings and a lack of board oversight, critical elements of the internal control system are woefully lacking at some companies. Inside, Columnist Richard Steinberg dispels some of the myths of internal controls and explains why it's not enough to simply comply with Section 404 of the Sarbanes-Oxley Act.

Using the New COSO Risk-Management Guidance

February 15, 2011

Last month the Committee of Sponsoring Organizations issued two reports designed to help companies improve their enterprise risk management processes. Inside, Columnist Richard Steinberg culls the reports for valuable nuggets for getting ERM started or for improving an existing program.

Governance Challenges of Performance Measurement

January 25, 2011

Choosing the right performance measures is never easy, but add increased shareholder scrutiny and new performance-related disclosure requirements and the task becomes much more difficult. Inside, Columnist Richard Steinberg discusses the governance challenges of choosing the right performance measures.

What 2011 Holds for Governance, Risk, and Compliance

December 21, 2010

2010 was busy year for compliance officers—and so far at least, 2011 is looking like it could be even busier, with the SEC's whistleblower program and possible proxy access on the way. Inside, Columnist Richard Steinberg makes some predictions about what to expect in the coming year.

Where Were the Banks’ Internal Controls?

November 16, 2010

After suffering through one of the worst crises in financial history, the big banks that survived the collapse in 2008 now find themselves dealing with another crisis: the foreclosure fiasco. First, banks lost billions on bad home mortgages and now theyre finding they often dont have proper paperwork showing ownership of the properties on which theyre trying to foreclose.

Shareholders, Be Careful What You Wish For

October 19, 2010

There’s no doubt shareholders have made great strides in gaining more information and power. They’ve won more disclosure on a series of points, including the experience and skills of director candidates, what the board does to oversee risk management, the role of compensation consultants, and the structure of board leadership, just to name a few. Yes, shareholders have worked long and hard to obtain relevant information, and to wield greater influence on what happens in the boardroom.

Did Mark Hurd Deserve to Be Fired From HP? Yes

September 21, 2010

As Compliance Week readers know, Mark Hurd, the hard-charging chief of Hewlett-Packard—who through acquisitions, layoffs, and cost cutting raised the company’s fortunes—was recently fired. The surrounding circumstances are the stuff of tabloids, including allegations of sexual harassment by a female consultant. We may never know exactly what transpired, and we probably don’t need to. But there are some lessons here worth examining.

Common Questions About GRC, and Some Answers

August 24, 2010

Earlier this summer I participated on a panel at the Institute of Internal Auditors international conference, held this year in Atlanta. The subject of the panel was governance, risk, and compliance, covering a range of matters raised by the moderator and enthusiastic participants. Compliance Week readers often have similar issues on their minds, so I’d like to share my responses to some of the questions raised. Since I don’t have notes, I’ll do my best in reconstructing my remarks.

How Did BP’s Risk Management Lead to Failure?

July 20, 2010

We all know the damage caused so far by the explosion of BP’s Deepwater Horizon offshore oil rig in April: 11 workers killed, economic ruin across the Gulf Coast states, environmental ruin along the Gulf Coast itself. And efforts to stop the continuing undersea oil spill keep falling far short of the solution that’s desperately needed.

When to Consider Splitting CEO, Chairman Roles

June 22, 2010

The question of whether to combine the roles of board chairman and CEO or to separate them generates robust debate, with visceral feelings and often-strained relationships. Many institutional investors and leading governance experts, and indeed many sitting directors, argue in favor of splitting the jobs; many CEOs holding the chairman title insist their authority and the company itself would be badly damaged should they be forced to wear only one hat.

Wall Street Can Learn From WaMu’s Meltdown

May 18, 2010

At hearings of the Senate Permanent Sub-committee on Investigations looking into causes of the financial crisis, Kerry Killinger, CEO of the now-defunct bank Washington Mutual, contended that his company hadn’t been treated fairly. Documents were released that disclosed how he compared liquidity to oxygen—which, he complained, was provided to other banks in distress, but not to WaMu.

Composing a Competent Board of Directors

April 20, 2010

Does your company have the right directors comprising the board? As a member of the senior management team, it’s certainly of concern to you—and of course the company’s shareholders—to determine whether the men and women providing corporate oversight do the job well. And board members themselves, as they look around the boardroom table, must be comfortable that fellow directors are people you can “go to war” with, your reputation (and possibly personal assets) in their hands.

Learning From Culture Mistakes at Toyota, J&J

March 23, 2010

Oh, how the mighty have fallen—or at least seen their reputations for quality products and “doing the right thing” for customers badly damaged. Let’s take a look at two recent high-profile cases.

Providing Directors the Risk Information They Need

February 17, 2010

My column last month outlined the kind of information boards of directors need to execute their responsibilities, viewed from the director’s perspective. This month I want to continue that discussion, but looking at the opposite side of the coin: what information chief executives, chief compliance officers, chief risk officers, and other top executives should be providing to help directors in their oversight activities.

How to Manage Communication About Risks

January 20, 2010

Every corporate director knows he or she needs relevant information to carry out oversight responsibilities effectively. But it’s not easy to know exactly what that information should be, the form it should take, or where it should come from. Unfortunately, experience shows that too often boards of directors don’t sufficiently focus on these issues, get caught by surprise, and pay a high price.

What’s Coming in Governance in 2010

December 15, 2009

Adhering to a year-end tradition, once again I offer a wish list of governance enhancements I’d like to see in the coming year. So, with fireplace aglow and coffee-mug close by, here’s what we can hope for in 2010.

Board of Directors’ Hot Buttons

November 17, 2009

With memories of the financial crisis still fresh in our minds and questions of “Where were the boards?” still abounding, today’s directors face extraordinary challenges.

New Models for Broken Board Governance System

October 20, 2009

To say that these are challenging times to be a corporate director is an understatement. Shareholders are clamoring for greater ability to determine what happens in the boardroom and who sits in the seats; the SEC is proposing a host of new rules requiring a broad range of expanded disclosures; the pace of new lawsuits continues unabated. All this occurs with memories still fresh of the financial system’s near collapse, against a backdrop of an economy still struggling emerge from the “Great Recession.”

All Our Governance Mistakes, in One News Cycle

September 22, 2009

Like most people, I read the daily news … and, unfortunately, little shocks me anymore. Recently, however, I was especially distressed to read—in just one day—how many major companies were found to have gone terribly wrong! The reports shed light on what goes on behind closed doors, and how these organizations’ tone at the top had become so tainted.

The Shareholder Rights Express Rolls On

August 18, 2009

Well, the shareholder rights express continues to roll down the track.

Management’s Role in Merrill Lynch Downfall

July 21, 2009

Many people have analyzed the meltdown of platinum-branded financial institutions, amazed at how quickly they went from supposedly sound and powerful to being taken over or filing for bankruptcy. The lessons to be learned, and hopefully not forgotten, are far-reaching at several levels.

Will Shareholder Proposals Benefit or Destroy?

June 23, 2009

The resentment and anger over recent corporate performance, especially in the financial services sector, has gone from bubbling up to boiling over.

What Boards Should Know About Groupthink

May 19, 2009

Last month’s column described the dangers of “keeping up with the Joneses” and how businesses seeking to do so have suffered disastrous consequences. I mentioned two corollaries: the risk of blindly following supposed best practices, and of buying into “groupthink.” We explored the former risk in detail last month; this month I want to turn to the latter.

A “Best Practice” Lesson: Don’t Follow the Herd

April 21, 2009

When you work with senior executives and boards of directors as long as I have, troubling behaviors that directly affect corporate performance become all too clear. And a number of major corporate failures we’ve all seen in the news can be traced back to these behavioral characteristics. I’ve coined names for these bad habits. Worst is “keeping up with the Joneses” syndrome, followed by its two corollaries: “best practices” and “groupthink.”

The Simple Truth Behind the Complex Idea of Risk

March 24, 2009

Perhaps nothing in business circles today generates more heated debate than risk and risk management—not only in financial institutions, but also in every industry, and from the lowest manager level to the boardroom.

Corp. Culture: Who Failed, Who Got It Right

February 18, 2009

The concept of corporate culture is difficult to get one’s arms around. We know it exists within every organization, although trying to identify or define it is challenging. That notwithstanding, executives who have been through the “wars” know well that shaping a company and its people to the desired culture plays a major role in how the organization is run and how successful it will be.

Governance Challenges Facing Corporate Boards

January 20, 2009

Not long ago, I was interviewed for RiskCenter and the Global Association of Risk Professionals, where I had the opportunity to discuss a range of governance challenges faced today by boards and management. As a change of pace from my usual monthly essay, I'm going to share some of those thoughts again here in an edited version.

When Executives Discuss ERM Challenges

August 19, 2008

Recently I had the privilege of leading a forum of senior executives experienced in risk management in a discussion of the challenges of developing, implementing, and gaining the benefits of ERM.

CEO Pay—Can We Get It Right?

July 15, 2008

This is the second in a two-part series on the subject of CEO pay.

Tracing the Past and Future of CEO Pay

June 17, 2008

Editor’s note: This is the first in a two-part series on the subject of CEO pay.

The Big Risk: CEOs Never See It Coming

May 20, 2008

When the fraud at Societe Generale burst into view several months ago, I analyzed what went wrong and why in “Why It’s So Shocking Societe Generale Was Shocked” (in the March 2008 edition). Well, now we see that CEO Daniel Bouton is stepping down, which comes as no surprise. He was at the helm when the SocGen ship hit an iceberg that clearly should have been seen and avoided. Management knew the company was in dangerous waters (regulators and others apprised them that damage appeared to have already been done), but did nothing to investigate and steer clear of disaster.

Why Using the Right Words Really Does Matter

April 22, 2008

We all know the importance of effective communication, in both formal and informal settings, to get our messages across as intended. But how many times have we been misunderstood, or we didn’t understand an idea someone else was trying to convey? The consequences of bad communication range from simply extending a conversation to gain clarity, to talking at cross-purposes resulting in extraordinarily bad business decisions. Yes, tone of voice and body language are important in sending the right message, but using the right words is usually critical.

Delivering Peace Amid Shareholder Anger

March 18, 2008

It’s extraordinarily clear that shareholders are angry! They’re angry about lots of things, from opaque or otherwise bad financial reporting to outrageous CEO compensation, poison pills, staggered boards, and anything else that emanates from the thought that boards of directors are not doing their jobs. The underlying cause, some say, is a still too-cozy relationship between the board and CEO, and directors uncaring of legitimate shareholder needs.

Why It’s So Shocking Societe Generale Was Shocked

February 20, 2008

By now we’ve all seen the headline—“French Bank Rocked by Rogue Trader!”—heralding the debacle at Societe Generale as the largest bank fraud in history.

How Governance Failed in the Sub-prime Mess

January 23, 2008

It’s difficult to pick up a newspaper or visit a business news Web site without encountering yet more information about the sub-prime mortgage mess—and “mess” is probably too kind a word. With the extraordinary losses and personal pain, terms like “debacle,” “fiasco,” or “disaster” are more accurate. With each new report we learn a bit more about what went wrong and the extent of the consequent suffering.

What’s Coming in Governance in 2008

December 18, 2007

For several years now in my holiday season columns I’ve put forth a wish list for improvements in corporate governance. This year (again with a mug of hot chocolate in hand) I’d like to take a crack at predicting what we might see in governance in the coming years. So, as you listen to the pitter-patter of Santa’s reindeer on the roof or enjoy the light of candles fueled by miracle oil, or however you celebrate the holidays, sit back with me and ponder what the future holds.

Empowering CEOs in a Shifting Landscape

November 20, 2007

My last two columns dealt with the tug of war between boards of directors and shareholders and how boards are best comprised to effectively carry out their responsibilities. Central to these issues is the relationship with the chief executive officer; specifically, how to provide the kind of oversight that enables the CEO to run the business and achieve growth and return objectives.

Composing Your Board the Right Way

October 23, 2007

Last month’s column, “Tug of War Between Board and Shareholders,” focused on shareholders’ demands for greater involvement in governance, including determining who sits in the boardroom. My message was to be careful what you wish for; there’s great danger in having board composition driven by disjointed parties with self-appointed agendas.

Tug of War Between Board and Shareholders

September 18, 2007

The war between boards of directors and shareholders has been raging for many years, heating up and cooling down based on success or failure, evolving goals and opportunities, and opponents’ actions. Some might not see it as a tug of war, instead viewing the respective roles of boards and shareholders as continuing to evolve and mature with the common purpose of enhancing share value. Probably both viewpoints are accurate, depending on one’s perspective and where we are at a particular point in time.

Subscribe to the RSS for this page [view all our RSS feeds here]

Thought Leadership

Compliance and the Road Ahead
Sponsored by Alix Partners

Compliance Week Podcasts ...

Every week we chat with leading thinkers in compliance, auditing, risk management, public policy and more. These short (10-15 minutes) interviews are free to all. Follow Compliance Week podcasts on iTunes.

Compliance Week LinkedIn Group

Compliance Week now has a companion group on LinkedIn, where members can network and discuss the compliance and governance news of the day. Open to all compliance professionals, free to join.

Survey

2012 Compliance Trends, Challenges
Sponsored by Lockpath

COMPLIANCE WEEK SITEMAP

RSS

This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization.

Your use of this website constitutes acceptance of Haymarket Media's Privacy Policy and Terms & Conditions

Compliance Week provides general information only and does not constitute legal or financial guidance or advice.