The Hire the Board Approved

Why senior appointments are a governance decision, not an HR one — and what boards must do differently

Mike Masoud | June 3, 2026

Five Takeaways for Board Members

A poor senior hiring decision can import corruption risk before any transaction, approval, or policy breach ever occurs.
Candidates who sell access, influence, or the ability to “get things done” may be offering risk, not value — and boards may be the last line of defense against approving them.
Hidden conflicts of interest, political connections, and informal loyalty networks must be tested before appointment, not discovered during an investigation.
When the executive sponsoring a candidate dominates the appointment process, the board’s oversight role has already been compromised.
Boards that treat senior hiring as an HR matter rather than a governance decision are systematically exposed to the risk they believe they are managing.

The Appointment the Board Praised

The candidate looks right. The résumé is strong. There are visible roles, recognizable names, and a confident narrative about opening doors, accelerating decisions, and strengthening relationships with regulators, customers, and government.

The CEO is enthusiastic. The process moves quickly. Questions about reputation, prior conduct, or relationship networks are treated as secondary concerns — due diligence that can be handled later. Background checks become routine rather than probing. References are accepted at face value. The board approves.

Months later, the same senior executive is influencing vendor decisions, protecting favored relationships, pressuring staff to accelerate approvals, and discouraging questions about sensitive transactions. The investigation that follows asks how this person was appointed. The answer, almost always, is that the warning signs were visible — but no one in the process was responsible for treating them as governance concerns.

That responsibility belongs to the board.

“The corruption risk did not enter through a payment or a policy breach. It entered through authority — authority the board approved.”

Why This Is a Board-Level Issue

Boards routinely treat senior hiring as a management function. HR leads the process. Legal reviews the contract. The CEO sponsors the candidate. The board ratifies.

That division of responsibility reflects a fundamental misreading of what senior appointments actually involve. At senior levels, one hire can affect approvals, procurement, internal reporting, hiring culture, whistleblowing, vendor relationships, and tone at the top. A single appointment made without integrity scrutiny can distort the decision-making environment of an entire organization.

More precisely, senior authority does not wait for misconduct to create risk. The person controls budgets, approves exceptions, shapes reporting, and influences who gets promoted and who gets silenced. When that person carries hidden conflicts, unexplored loyalties, or a track record of boundary-testing, the organization has not hired an executive — it has imported a corruption risk.

Boards that approve senior appointments without requiring integrity due diligence are not performing oversight. They are ratifying decisions they do not fully understand.

The Signals That Should Stop a Process

Corruption risk enters senior hiring through signals that often appear attractive. Boards and nomination committees should recognize them.

A candidate claims unusual access to regulators, public officials, or politically connected networks and presents that access as a primary qualification. Another is described internally as someone who can “fix problems” or “move things faster than anyone else.” A senior sponsor insists the candidate is too valuable, too well-connected, or too strategically important to be subject to the standard process. Questions about potential conflicts are deferred due to the urgency of the appointment. Disclosure forms are submitted and filed — but not reviewed.

None of these signals automatically proves misconduct. But each one demands scrutiny that most appointment processes are not designed to provide. When a board approves an appointment without asking what lies behind these signals, it is not being decisive — it is being incurious about risk.

Five Controls Boards Should Require

These are not HR policies. They are governance requirements.

1. Require integrity due diligence that is proportionate to authority, not proportionate to seniority expectations

The more authority a role carries, the more rigorous the integrity assessment must be. This means reviewing conflicts of interest, reputation concerns, prior conduct, litigation, and regulatory history where lawful, and any relationships that could impair independent judgment. Enhanced due diligence should not be optional for senior appointments — it should be a board-mandated requirement for any role with material authority.

2. Separate the sponsor from the appointment process

When the executive who wants a candidate also controls the appointment process, independent scrutiny is structurally impossible. Boards should require that HR, legal, and compliance have formal standing to challenge senior appointments — and that the board or a board committee retains the authority to require additional diligence or decline to ratify. Sponsorship and appointment authority must not rest with the same individual.

3. Test influence claims before treating them as value

A candidate who offers access to regulators, public officials, or political networks should be examined carefully. The board should ask what those relationships involve, what they may later demand, and whether they create conflicts, reputational exposure, or the conditions for undue influence. Access is not automatically an asset. At senior levels, it can be the entry point for exactly the kind of pressure and favoritism that corruption controls are designed to prevent.

4. Require conflict disclosure that is reviewed, not merely filed

Business interests, close personal and professional relationships, links to vendors, regulators, competitors, and politically exposed persons must be disclosed before appointment — not during onboarding, and not after a problem surfaces. Equally important: those disclosures must be reviewed by someone with the independence and authority to act on them. A form that is signed and filed without review is not a control. It is paperwork that creates the appearance of governance.

5. Build integrity obligations into the appointment itself

Anti-bribery and corruption expectations, conflict-of-interest rules, disclosure obligations, whistleblowing duties, and the consequences for violating them should be formally acknowledged at the time of appointment — not introduced after misconduct has occurred. When integrity obligations are embedded in the appointment, they become a governance expectation. When communicated reactively, they become responses to failure.

“Many poor hiring decisions are praised at the beginning and investigated at the end. The difference, almost always, is the quality of the questions the board was willing to ask.”

The Questions Boards Are Not Asking

Most boards have anti-bribery policies, codes of conduct, and whistleblowing channels. Fewer have a rigorous answer to the following questions about their own senior appointment practices.

Board Self-Assessment — Senior Hiring

Does our organization apply materially stronger integrity scrutiny to senior appointments than to ordinary hiring, and can we demonstrate that?
Who has the authority to challenge a senior appointment before it is approved, and does that authority function independently of the sponsoring executive?
When a senior candidate’s primary value proposition is access, relationships, or the ability to “get things done,” does our process treat that as a risk signal or a selling point?
Are senior conflict disclosures reviewed by someone with the independence and authority to act on them — or are they filed?
When was the last time a board member or committee raised a substantive challenge to a senior appointment on integrity grounds?
Have we assessed the corruption exposure in our current senior team — not in transactions, but in relationships, loyalties, and undisclosed conflicts?

These questions are uncomfortable. They are also the questions that distinguish governance from ratification.

The Broader Point

Corruption controls that operate only after a transaction has occurred, a policy has been breached, or a payment has been made are controls that arrive too late. The more consequential moment — and the one most often left ungoverned — is the appointment itself.

When a board approves a senior hire without testing judgment, conflicts, and relationships, it is not only accepting a personnel risk. It is potentially important, at a level of authority that affects the entire organization, the very conditions it claims its corruption framework is designed to prevent.

The higher the authority, the earlier integrity must be tested. That is not an HR principle. It is a governance issue—and it belongs with the board.

A senior hire does not become low risk because the résumé is impressive, the sponsor is trusted, or the appointment was unanimous. It becomes lower risk when the board asks the right questions before approving the appointment —and insists on answers.

A Note on Recent Developments — EU Boards | Directive (EU) 2026/1021

A Note on Recent Developments — EU Boards

Directive (EU) 2026/1021: The Legal Floor Has Been Raised

On May 31, 2026, Directive (EU) 2026/1021 on combating corruption entered into force across all 27 EU Member States. This is the most significant development in European anti-corruption law in more than two decades — and it changes the stakes of every argument made in this article.

The Directive establishes, for the first time, a harmonized EU-wide framework of criminal offenses covering both the public and private sectors. It criminalizes bribery, trading in influence, misappropriation, obstruction of justice, enrichment from corruption, and concealment of proceeds. It does so with binding definitions and minimum sanctions that apply across the bloc — closing the patchwork of uneven national regimes that has, until now, created enforcement gaps and jurisdictional loopholes.

For boards in EU-based organizations — and boards of non-EU companies with significant EU operations — the Directive introduces two exposure routes that are directly relevant to the arguments in this article.

Primary liability (Article 13(1)): A company is liable where a corruption offense is committed for its benefit by a person in a “leading position” — meaning anyone with the power to represent the entity, authority to take decisions on its behalf, or authority to exercise control within it. The person the board appointed is, by definition, that person.

Failure-to-supervise liability (Article 13(2)): A company is also liable where a lack of supervision or control by a person in a leading position enabled the commission of a corruption offense for the company’s benefit. This route does not require that the board member committed the offense — only that adequate oversight was absent.

The consequences are not symbolic. Member States are required to implement penalties that reflect the seriousness of the framework.

Corporate fines — bribery & misappropriation

Up to 5%

of total worldwide annual turnover, or €40 million — whichever is higher

Corporate fines — other offenses

Up to 3%

of total worldwide annual turnover, or €24 million — whichever is higher

Individual custodial penalties

3–5 years

minimum maximum terms for individuals, depending on offense category

Beyond financial penalties, sanctions may include exclusion from public procurement and EU funding, disqualification from conducting business, withdrawal of licenses and permits, judicial supervision, and — in the most serious cases — dissolution of the legal entity.

Member States have until June 1, 2028 to transpose the Directive into national law. That two-year window is not a grace period. It is the period in which EU boards should be testing their compliance frameworks, stress-testing their appointment processes, and satisfying themselves — not just their compliance teams — that the governance infrastructure is proportionate to the liability exposure that is now, formally and irrevocably, part of the European legal order.

The argument made throughout this article — that a poorly scrutinized senior appointment can import corruption risk before a single transaction occurs — is no longer only a governance principle. In the European Union, it is the foundation of a criminal liability framework that looks directly at who the board appointed, what authority that person held, and whether adequate supervision existed.

Boards that treat senior hiring as an HR matter, and oversight as a compliance function, are now exposed not only to reputational and organizational risk — but to the consequences of a legal architecture designed specifically to hold them accountable.

Source: Directive (EU) 2026/1021 of the European Parliament and of the Council of 29 April 2026 — Official Journal of the European Union, OJ L 2026/1021, 11 May 2026. Entry into force: 31 May 2026. Transposition deadline: 1 June 2028.

Important Notice

The views expressed in this article are those of the author and are provided for informational and educational purposes only. Nothing in this article constitutes legal, compliance, or regulatory advice, nor does it create any professional relationship between the author and the reader. The discussion of Directive (EU) 2026/1021 reflects information available at the time of publication and should not be treated as a comprehensive or definitive legal analysis. Organizations and board members should obtain independent legal and compliance advice tailored to their specific circumstances and jurisdiction.