David Middendorf, former head of KPMG’s National Office, also known as the Department of Professional Practice (DPP) in the US, has been sentenced to one year and one day in Federal prison for participating in a scheme to defraud the Public Company Accounting Oversight Board (PCAOB) by obtaining, disseminating, and using confidential lists of which KPMG audits the PCAOB would be reviewing so that KPMG could improve its performance in PCAOB inspections. Middendorf was convicted of wire fraud charges in March 2019 following a month-long trial before US District Judge J. Paul Oetken, who imposed the sentence.
Manhattan U.S. Attorney Geoffrey S. Berman said: “As the head of the KPMG department responsible for the quality of its audits, David Middendorf was at the top of a chain of corruption that threatened to corrupt KPMG and the PCAOB’s inspections process. Today’s [11 September] sentence recognizes the harm this fraudulent scheme caused to the PCAOB and the auditing profession more generally.”
Evidence presented at trial showed:
In recent years, KPMG fared poorly in PCAOB inspections and in 2014 received approximately twice as many comments as its competitor firms. By at least in or about 2015, KPMG was engaged in efforts to improve its performance in PCAOB inspections, including but not limited to recruiting and hiring former PCAOB personnel. At the time, Middendorf was head of KPMG’s DPP, which was broadly responsible for the quality of KPMG’s audits and KPMG’s performance in PCAOB inspections.
KPMG’s efforts to improve inspection results, however, were not limited to legitimate means. Instead, between 2015 and 2017, Middendorf and others worked to illicitly acquire valuable confidential PCAOB information concerning which K
PMG audits would be inspected in an effort to game the system and improve inspection results. For example, beginning in 2015, Brian Sweet, a former PCAOB employee who had joined KPMG, provided Middendorf, Thomas Whittle, and others with the PCAOB’s confidential 2015 list of inspection selections, at Middendorf’s request, so that the information could be used by Middendorf, Whittle, and others to improve KPMG’s performance on PCAOB inspections.
In March 2016, Jeffrey Wada, an Inspections Leader at the PCAOB, provided Cynthia Holder, a KPMG employee, with confidential information on certain of the PCAOB’s 2016 inspection selections. Holder, in turn, provided the 2016 inspection selections to Sweet, who passed them to Middendorf, Whittle, and others. Middendorf, Whittle, Sweet, and others then agreed to launch a stealth program to “re-review” the audits that had been selected, and agreed to keep their stealth re-reviews within their “circle of trust.” In order to cover up their illicit conduct, other KPMG engagement partners were given a false explanation for the re-reviews. The stealth re-review program allowed KPMG to strengthen its work papers, and, in some cases, identify deficiencies or perform new audit work that had not been done during the live audit.
In January 2017, Wada, who had been passed over for promotion at the PCAOB, again stole valuable confidential PCAOB information, misappropriating a preliminary list of confidential 2017 inspection selections for KPMG audits and passing it on to Holder, referring to it in a voicemail as the “grocery list.” At the same time, Wada provided Holder with his resume and sought Holder’s assistance in helping him to acquire employment at KPMG. Sweet shared with Whittle the preliminary inspection selections provided by Wada; Wada in turn shared them with Middendorf, who approved their use to improve the audits on the list.
In February 2017, Wada texted Holder saying, “I have the grocery list. . . . All the things you’ll need for the year.” Wada then spoke to Holder and provided her with the full confidential 2017 final inspection selections. Holder again shared the stolen information with Sweet, who shared it with Middendorf, Whittle, and others so that it could be acted upon to improve the audits on the list.
In 2017, a KPMG partner who received early notice that her engagement was on the confidential 2017 inspection list reported the matter, and it was ultimately reported to KPMG’s Office of General Counsel.
In addition to a prison sentence, Middendorf, 55, of Marietta, Georgia, was sentenced to three years of supervised release. A determination of the restitution amount was deferred to a later date.