Using the Fraud Triangle to mitigate escalating compliance risk

By Robert Smith, CCEP-I

Robert Smith (robert.smith@serco.com) is Director Business Compliance and Ethics at Serco Group plc in Hook, England.

For thousands of years fraud has been a risk that we all face. Never has this been truer than in these challenging business times. So how should we face this risk? One framework that can be explored is the Fraud Triangle, which provides us with defences to not only address fraud risk head on but also broader compliance risks.

The first recorded incident of fraud dates to around 300 BC when a Greek merchant called Hegestratos[1] took out a large insurance policy known as bottomry; that is, he borrowed money and agreed to pay it back with interest when his cargo of corn was delivered, but if he refused to pay back the loan, the lender could claim the cargo and the boat used for its transportation. The facts though were not quite as they seemed: The hold of the ship was empty. Hegestratos planned to sink the vessel, make it back to the shore on a raft, and pocket the value of the boat and the nonexistent corn. This plan failed, however, when he drowned trying to escape his crew and passengers, who had discovered his secret. This is the first recorded incident of fraud, but it’s safe to assume that the practice has been around since the dawn of commerce.

Since the first report, corrupt business practices have been prevalent, ebbing and flowing but generally increasing in times of crisis. Following the 2008/2009 financial crisis, both corporate and occupational fraud cases rose significantly. In January 2011, the BBC ran a report[2] covering research completed in 2010 by KPMG that showed that the number of financial fraud cases put before the UK’s courts had reached record levels with 314 alleged major fraud cases involving suspected losses of £1.4 billion. The KPMG Fraud Barometer found 42.5% of all cases—higher than those targeting financial services—were leveled at the public purse. They totaled £593 million. This was up nearly 20% from 59 instances in 2009 to 70 in 2010.

So it should be no surprise that many are saying the same phenomenon is happening now. Take an April 2020 article from The Economist,[3] for example, that ran the headline: “The economic crisis will expose a decade’s worth of corporate fraud.” In times of economic crisis, there are always parties who will look to exploit the situation for their own advantage, and a significant increase in fraudulent activity due to COVID-19 is anticipated. This might be through misusing government support packages or misreporting business performance to avoid contract breaches.

When the three points of the Fraud Triangle—Pressure, Opportunity, and Rationalization—come together, the prevalence for fraud increases and the risk of losing trust is heightened. This concept was first put forward in an article[4] by Donald R. Cressey and Edwin Sutherland and later coined by Steve Albrecht. Over history, these drivers have remained the same; though simple and unsurprising, they have prevailed. It is also important to consider the factors from a broader compliance perspective, as the triangle applies to many actions that affect the integrity and trust of an organization. These actions may be by an employee against the company (e.g., benefiting from creating ghost employees on the payroll or skimming cash before it is recorded) or by third parties submitting bogus invoices for personal protective equipment, or it might be an employee wanting to help their company and deliberately misreporting performance so the company can gain a performance bonus.

This document is only available to members. Please log in or become a member.
Become a Member Login
 


Would you like to read this entire article?

If you already subscribe to this publication, just log in. If not, let us send you an email with a link that will allow you to read the entire article for free. Just complete the following form.

* required field

First name field cannot be blank!
Last name field cannot be blank!
We will send you an email that will give you access to this entire article.
Email field cannot be blank!
Enter a valid email!
Company field cannot be blank!
Enter a valid company!
Title field cannot be blank!

We're committed to your privacy. The Society of Corporate Compliance and Ethics (SCCE) & Health Care Compliance Association (HCCA) uses the information you provide us to contact you about our relevant content, products, and services. For more information, check out our Privacy Policy.


About SCCE

The Society of Corporate Compliance and Ethics (SCCE) is a non-profit, member-based professional association. SCCE supports our members' work with education, news, and discussion forums. We are a community of leaders, defining and shaping the corporate compliance environment across a wide range of industries and geographic regions. In developing and maintaining effective ethics and compliance programs, our members strengthen and protect their companies.

952.933.4977

About HCCA

The Health Care Compliance Association (HCCA), is a 501(c)6 non-profit, member-based professional association. HCCA was established in 1996 and is headquartered in Minneapolis, MN. We provide training, certification, and other resources to over 10,000 members. Our members include compliance officers and staff from a wide range of organizations, including hospitals, research facilities, clinics and technology service providers.

952.988.0141

Facebook Twitter LinkedIn
Copyright © 2024 by Society of Corporate Compliance and Ethics (SCCE) & Health Care Compliance Association (HCCA). No claim to original US Government works. All rights reserved. All information provided through this site, including without limitation all information such as the “look and feel” of the site, data files, graphics, text, photographs, drawings, logos, images, sounds, music, video or audio files on this site, is owned and/or licensed by SCCE & HCCA or its suppliers and is subject to United States and international copyright, trademark and other intellectual property laws. Any third party logos and/or content provided herein is owned by such third parties and is used by permission herein. Your use of this site to is subject to our Terms Of Use and Privacy Statement.
Cookie settings