Beruflich Dokumente
Kultur Dokumente
The internal mechanisms are centered on three segments – the board of directors, executive
management, and independent control functions – each with its own set of vital, and unique,
responsibilities. In many systems the activities of the three groups are reinforced by codes of
conduct that are intended to promote proper behavior.
If the corporate responsibilities associated with these functions are too vague and diffuse, subject
to too much interpretation, or not diligently followed, the governance process is vulnerable. If
they are too rigid and onerous, enforcement costs mount, shareholder returns decline, and actions
centered primarily on form (rather than substance) may result. Internal mechanisms must
therefore achieve an appropriate balance of flexibility and rigor.
In various national systems the law holds the board of directors and senior executives to certain
standards in order to enforce proper accountability.
These standards revolve around attention to business, fidelity to corporate interests, and exercise
of reasonable business judgment. Theoretically, if these standards are upheld, shareholders and
other stakeholders should be protected.
The relationship between board directors and executive management should be strong and
constructive. Even in preferred situations where a majority of directors is independent, there is
no cause for adversarial relationships. However, it is important for directors to be able to
question, critique, and challenge management, and not simply acquiesce blindly, or take strict
instructions from CEOs. Ideally, board directors should meet frequently with executive
management and should be free to meet among themselves, without any representative of the
management team. In practice this occurs to varying degrees.
2. Executive Management
The tone established by executive management has a considerable influence on the culture and
control practices of any firm.
Management must set the ethical/moral standards for the entire organization and lead by
example; executives who are incompetent, secretive, unethical, or dishonest are likely to tolerate
similar traits in others, which will eventually weaken the control framework. Some of this can be
managed through the code of conduct developed by the board and promulgated by executives.
Executives must also demonstrate vision and knowledge in the tactical and strategic operation of
the firm, and display skill in managing the firm’s daily operations in a controlled manner (and
with a view towards maximizing value).
To prevent the pursuit of “self-interest” – which might lead ultimately to abusive practices –
executive management must remain under the general supervision of directors and be
constrained by certain structural parameters, including those related to internal controls,
dissemination of information, and certification of financial statements. In order to be effective in
working toward the best interests of the company (and, by extension, shareholders), the
economic interests of executives must be aligned with those of shareholders. This is most often
done through a proper compensation package that allows executives to benefit as they create
shareholder value. Indeed, alignment through compensation is an important governance tool
(although one that has to be structured correctly in order to avoid abuses).
Executive management, led by the CEO or equivalent has daily responsibility for guiding the
corporation and its activities, with the basic intent of maximizing enterprise value. Executive
management is the key link between the company and the board, and must convey critical
information to directors. The more effective it is in performing the role, the lower the associated
agency costs.
Executive management must be able to produce accurate information for board of directors and
the marketplace, and be held accountable for any disclosure errors, such as willful misstatement,
negligent misstatement, or failure to disclose a material fact.
In certain cases, the leader of executive management is also the leader of the board of directors.
While this can enhance information flows and cooperation and ensure cohesion between
management and directors, it has the potential of breeding significant conflicts of interest. A
combined CEO and chairperson controls the executive management team and the board of
directors, and must therefore strike a balance between two very important, distinct, and
sometimes conflicting, roles.
To protect against any pressures of self-interest that might arise, their actions must be monitored
on an ongoing basis by both internal forces (such as directors and internal controllers) and
external forces (activist investors and corporate control mechanisms).
In order for internal governance mechanisms to work effectively the board of directors and
executive management must rely on a cadre of technical experts that can independently review,
assess, and control a company’s operations. These groups are the essential link between high-
level policies passed by the board and the daily business that forms the core of every company’s
activities.
Control groups that might be regarded as essential to the effective monitoring of corporate
operations include the following:
i. Financial control/accounting
This unit is typically responsible for independently tracking and monitoring all activities that
impact the firm’s financial operations and statements, and reporting on these activities internally
and externally on a continuous basis. It is common in many companies for the unit to report
directly to the CFO who, in turn, reports to the CEO/president.
ii. Risk management
This unit is generally responsible for monitoring and managing the firm’s financial and operating
risks. Though risks can vary by company and industry, financial risks generally include credit
risk, market risk, and liquidity risk, while operating risks include business interruption risk,
property and casualty destruction, worker safety, and technological and operational risk. The risk
management function may report through the CFO, or directly into the CEO/president.
iii. Legal and compliance
This unit is responsible for all aspects of legal and documentation risk, ensuring that the firm’s
legal interests are properly protected and its relationships with external parties (such as suppliers,
customers, and creditors) are properly considered and documented.
Legal units often act as an interface to regulatory authorities and in some cases may also be
responsible for specific corporate governance activities. The department, headed by chief
counsel, may report directly into the CEO/president.
iv. Internal audit
This unit is typically responsible for conducting internal reviews and audits of the firm’s
business and control processes to ensure they are robust enough to prevent, or at least detect,
problems. It also performs random inspections of financial accounts, and works closely with
external auditors in verifying different aspects of the control framework.
In many companies the chief internal auditor reports directly to the CEO/president and the audit
committee of the board.
v. Operations and technology
This unit is generally responsible for creating and managing processes that permit the firm’s
customer and supplier businesses to function in an efficient, automated, and controlled fashion.
This can include development of appropriate infrastructure (technology, networking,
communications data), and establishment and management of trade/transaction flows. The group
is often charged with implementing disaster recovery and business interruption plans, and
managing dimensions of operational risk. Heads of operations and technology may report
directly into the CEO/president, with matrix lines (but no compensation ties) into the specific
business and control functions they support.
Others might include
vi. Treasury
Responsible for the asset and liability management of the firm’s balance sheet, although this
function is sometimes accorded line/revenue-generating responsibilities and may not thus be a
true control function
vii. Investor relations
Responsible for managing relationships and communications with external parties, including
shareholders, regulators, credit rating agencies, bankers, the media, and so forth.
viii. Human resources
Responsible for managing issues related to a company’s personnel and staffing, including
compensation, reviews, benefits, and counseling.
In addition to specifically declaring ethical parameters, the effective code must provide for
penalties or sanctions for those who violate specific provisions. There is little point in creating
rules if they can be flouted or overlooked without fear of reprisal. In order to be truly effective, a
code of ethics cannot simply be seen as a set of statements of good behavior. It must form part of
a company’s culture and belief system, and become a factor in everyday business dealings.
Importantly, it must be driven from the top of the organization; if a firm’s top management is
seen violating basic ethical principles, there is very little incentive for others to behave properly.
Thus a code of ethics must be believed and followed, in the first instance, by executives and
directors.
A basic code of conduct is likely to include certain fundamental principles, including the
following:
Create an environment, policies, and procedures where internal or external conflicts of
interest are avoided or eliminated.
Make certain that employees do not engage in corrupt practices or other activities that
might prejudice or jeopardize the firm’s reputation.
Treat all stakeholders, including suppliers, clients, employees, and others, fairly and
honestly.
Develop mechanisms where violations of company policy can be reported without fear of
retribution.
EXTERNAL GOVERNANCE MECHANISMS: SYSTEMIC ACCOUNTABILITY
These are governance forces operating outside a corporation. National governments are typically
responsible for establishing, enforcing, and enhancing mechanisms that support external
governance. From a financial markets perspective, a proper system permits efficient mobilization
of capital, management of risks, identification of investment opportunities, and exchange of
assets.
All of these functions support and benefit governance. From a structural perspective, a proper
system creates authorities that enforce rules and regulations, including a judicial process to
handle legal and bankruptcy issues, and supervisory bodies to oversee local capital markets,
external auditors, and credit rating agencies.
1. Regulatory Oversight
Regulations are necessary because individual firms might not design proper checks and balances,
or might choose not to honor them in the future.
Supervisory and regulatory agencies attempt to create frameworks that protect all stakeholders:
not just investors, but also suppliers, creditors, customers, and others. Regulations might be
developed by legislators and then promulgated and enforced by financial supervisors or listing
exchanges (for instance, securities market regulations enforced by exchanges in their capacity as
self-regulatory marketplaces).
Regulators also attempt to protect broader macro-economic mechanisms (such as the stability of
the banking and insurance sectors, without which economic growth might be stifled or
jeopardized). In addition, they are often concerned with protecting social welfare, and limiting or
minimizing adverse externalities (such as excess public costs and environmental hazards and
risks).
2. Legal/Bankruptcy Regimes
Corporations require a legal framework to define their activities and conduct business. Investors,
in turn, need a legal foundation to protect their rights and promote good conduct.
Effective legal system must:
Create and support mechanisms for the incorporation of public and private firms
Enforce key corporate tenets, including limited liability, control rights,
Property rights, shareholder rights, and fiduciary duties
Define and support contracts and other legal mechanisms for conducting business
Establish an unbiased insolvency process and provide legal mechanisms for
reorganization and liquidation; support the role and status of debtors and creditors.
The control rights of investors must be protected properly from a legal perspective. Shareholders
that believe directors or executives have breached their fiduciary duties have the right to take
legal action. Some have argued that even the existence of such legal mechanisms helps ensure
directors and executives adhere to their duties of care and loyalty.
Structurally, a company is organized through legal mechanisms that define and convey property
rights, private ownership of assets, extent of liability, and so forth. Under common law
frameworks the legal creation of a company is relatively standardized and can often be
accomplished “off the shelf.”
Once created, a company’s daily pursuit of business is based on legal principles embodied in
enforceable contracts. For instance, entering into supplier or client relationships is often done
through legal purchase/sales contracts; borrowing from a bank is arranged through loan and
collateral agreements; floating stock or bonds to raise capital is done through bond indentures,
offering circulars, subscription agreements, and prospectuses; entering into long-term plant and
equipment investment is done through legal purchase and sale contracts and sub-contracting
agreements; creating an offshore financing entity is done through legal special purpose entity
contracts, and so on. These are all essential to the business of the corporate world.
A bankruptcy system is equally important to the governance process; companies and their
stakeholders must understand their rights in the event of financial distress and/or bankruptcy.
This is particularly true for the large group of creditors supplying debt risk capital.
Creditors emerge as key stakeholders, outranking even shareholders, when a company enters a
phase of financial distress. The security provided for creditors depends on a country’s default
system and the strength of its creditor rights. For instance, if the national bankruptcy system
indicates that senior secured creditors receive first priority in the event of forced or voluntary
corporate liquidation, and the rights are upheld through bankruptcy proceedings, creditors gain
comfort in the legitimacy of the system. If the senior secured creditor is prejudiced or abused
(perhaps the security interest or charge over the assets is discarded or disallowed, assets held as
security are stripped away, and proceeds from the asset sale are granted to more junior creditors
or shareholders), the bankruptcy system is not functioning as it should. Stakeholders cannot then
predict ex ante how they will fare in bankruptcy, and cannot necessarily assume equitable
treatment through the courts. Ultimately they may be unwilling to supply capital and will not be
present as monitors.
The capital markets are thus the essential conduit between the company, as issuer and user of
funds, and investors, as providers of different forms of risk capital. The secondary trading
marketplace is obviously of considerable importance to investors, as it provides a mechanism by
which to crystallize the value of a security. An investor holding a share of stock and wanting to
reallocate capital to some other venture needs some way to transfer that share (directly or
through a dealer/market maker); a capital market with enough liquidity ensures that the share can
be transferred efficiently and transparently. Intermediaries, primarily large financial institutions,
support the primary and secondary markets by providing services such as due diligence,
arranging, syndication, pricing, distribution, and trading.
Basic duties:
Verify the strength and integrity of internal financial controls.
Test a sample of transactions impacting the income statement, statement of cash flows
and balance sheet.
Review off-balance-sheet structures and transactions (for example, special purpose
entities, derivatives, commitments, contingencies).
Test a sample of asset and liability valuations (for example, historical valuations, mark-
to-market or mark-to-model valuations).
Review reserving and expensing policies and test transactions.
Ensure compliance with relevant accounting standards and principles (for example,
Generally Accepted Accounting Principles, International, Accounting Standards).
Make certain financials meet regulatory reporting requirements/ standards.
Review interim and/or annual statements.
Prepare management letter with audit opinion.
The external auditor works very closely with a company’s internal auditors to investigate the
nature and source of potential control weaknesses.
Indeed, if internal auditors are discharging their duties properly, they should be highlighting
potential areas of concern for independent review by external auditors. The external audit team is
also likely to review issues and findings with executive management and the board. Depending
on the nature of potential issues or problems, it could also engage in additional forensic
accounting work to discover the nature and impact of different errors.
Since credit ratings are an assessment of a company’s ability to repay obligations, they relate to
debt and hybrid securities, rather than equity securities. Agencies thus focus primarily on the
repayment ability and financial condition of companies: liquidity, leverage, cash flows, earnings,
market shares and competition, litigation and contingencies, and so forth.
Although the exercise is largely quantitative, an essential part of diligent credit analysis involves
a qualitative review, including an examination of the nature and quality of the firm’s
management and internal controls. All other things being equal, a company that has sufficient
financial capacity to pay its obligations, and features strong management and controls, will
receive a higher rating that one that has sufficient financial capacity but weak management and
controls. Rating analysis techniques vary by agency, and may be based solely on analysis of
publicly available information, or supplemented by management discussion and the review of
non-public information.