Fool me once

Governance requires keeping one’s eye on the ball, including looking after the acts of employees and contractors.  If a contractor tries to defraud you by getting paid for work they didn’t do, do you then turn around and give them another contract?  Do you first require that they pay back what they stole?  What additional controls, if any, do you require in the new contract?

“U.S. Gives New Contract To Firm That Vetted Leaker,” Wall Street Journal, July 3, 2014 A1  Apparently, taking “shortcuts” in the background investigations of Edward Snowden and the Navy Yard Shooter wasn’t that big a deal.  Apparently you have to do something really bad to be debarred.  But we don’t know what that could be.

Has the culture changed?


Leave a comment

Filed under Compliance, Compliance, Compliance Verification, Culture, Duty of Care, Information, Internal controls, Oversight, Protect, Protect assets, Protect information assets, Risk, Third parties, Value

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s