broker-dealer was fined and censured for failing to act against a longtime broker
charged with participating in pump-and-dump transactions. The SEC faults the firm for ignoring red flags
including emails outlining the illegal activity, FINRA arbitrations, and
customer complaints. One supervisor
explained that he did not act more aggressively because the broker worked at
the firm for 30 years and her business partner was a partial owner of the firm.
The SEC asserts that the firm’s supervisory system “lacked any reasonable
coherent structure to provide guidance to supervisors and other staff for
investigating possible facilitation of market manipulation.” The SEC also maintains that the firm “lacked
reasonable procedures regarding the investigation and handling of red flags.”
Reasonable policies and procedures must do more than simply restate the law and the firm’s commitment to comply with the law. The compliance manual or WSPs must specifically describe HOW a firm will prevent and address regulatory misconduct.
The SEC charged a broker-dealer with failing to supervise because its Written Supervisory Procedures failed to adequately detail how firm employees should respond to regulatory red flags. The SEC asserts that the firm failed to supervise a broker that charged with participating in a penny stock pump-and-dump scheme. The SEC maintains that the firm uncovered multiple red flags including a supervisor’s report, customer emails, arbitrations, and FINRA examinations. However, the SEC alleges, the firm’s WSP’s did not specify who should investigate or how such investigations should proceed. The firm did conduct two “flawed investigations” that failed to document its findings or detail a remedy. The Director of the SEC’s New York Regional Office advised broker-dealers that this case “sends a clear message that we will not tolerate broker-dealers that fail to exercise appropriate supervision over employees.”
OUR TAKE: This case shows the difference between policies and procedures. A policy states a firm’s position on a course of conduct or practice. Procedures are then required to implement that policy and ensure compliance. Firms that stop at broad policy statements have not implemented an adequate compliance program.