The Madoff Case
Chapter 5 of 12 · due-diligence

A Riot of Red Flags: Operational Due Diligence as Forensic Discipline

How a short EDHEC working paper became the founding document of post-Madoff operational due diligence

On Greg N. Gregoriou and Francois-Serge Lhabitant · 2009 · EDHEC Risk and Asset Management Research Centre Working Paper; published as 'Madoff: A Flock of Red Flags' in Journal of Wealth Management, Vol. 12, No. 1 · source

Within weeks of the collapse, two finance scholars sat down to perform an autopsy on a body the profession was still pretending it had not failed to examine. Greg N. Gregoriou and Francois-Serge Lhabitant circulated Madoff: A Riot of Red Flags as an EDHEC working paper in January 2009 and placed a slightly tamer version in the Journal of Wealth Management later that year. The paper is short, blunt, and pedagogical — a tour of the structural, organizational, and quantitative anomalies that any competent allocator was paid, sometimes handsomely through layered feeder-fund fees, to detect. It has since become standard reading in alternative-investment courses precisely because it converts an emotionally fraught fraud into a cold catalogue of professional failure.

Where Harry Markopolos approached Bernard L. Madoff as a quantitative puzzle and the SEC Office of Inspector General approached him as an enforcement failure (see Investigation of Failure of the SEC to Uncover Bernard Madoff's Ponzi Scheme, Report No. OIG-509, discussed in [sec-oig-509-madoff-investigation]), Gregoriou and Lhabitant approach him as an operational due-diligence — or ODD — case study. Their organizing claim is that the red flags surrounding Bernard L. Madoff Investment Securities LLC ("BLMIS")1 were not subtle, not technical, and not visible only in hindsight. They were visible to any allocator with a checklist and the institutional courage to enforce it.

The taxonomy below restructures the paper's list into three clusters — operational, performance, and governance — which is how the discipline now teaches the case.

Cluster One: The Operational Architecture That Was Not There

Credible hedge funds rest on a triangle of independent service providers: an executing broker, an independent custodian holding the assets, and a third-party administrator computing net asset value. The triangle exists not because regulators demanded it (in 2008 they largely did not, at least for U.S. advisers) but because each vertex polices the others. BLMIS collapsed the triangle into a single point. Madoff executed the trades, Madoff custodied the securities, and Madoff — through his own broker-dealer arm — generated the confirmations and account statements that purported to verify both. There was no independent witness anywhere in the chain.

This is the chapter's distinctive contribution, and Gregoriou and Lhabitant press it harder than the secondary literature usually does. The absence of a prime broker is not merely the absence of a service provider; it is the absence of an entire epistemic infrastructure. A prime broker provides clearing, margin financing, securities lending, and — most importantly for the allocator — daily position reports that originate from outside the manager's own systems. When an allocator receives a position file from Goldman Sachs Execution & Clearing rather than from the manager being audited, the file is evidence. When the position file comes from the manager, it is assertion. For roughly two decades, every Madoff statement was assertion.

The Investment Advisers Act of 1940 had a tool aimed precisely at this risk. Rule 206(4)-2, 17 C.F.R. § 275.206(4)-2 — the custody rule — required advisers with custody of client assets to submit to a surprise annual verification by an independent public accountant. BLMIS technically complied by routing the verification through Friehling & Horowitz, a three-person shop in New City, New York, whose sole active accountant had for years told the AICPA that he performed no audits. The form of compliance was satisfied; the function was a fiction. The Commission rewrote the rule in 2009 in direct response, tightening the qualified-custodian definition and requiring most advisers to obtain an internal-control report from a PCAOB-registered accountant.

Cluster Two: The Performance Signature

The second cluster is statistical. Across more than 15 years, the BLMIS series reported losses in only a handful of months, against a benchmark population in which roughly four months in 10 are negative. The reported correlation to the S&P 500 was near zero in periods when the disclosed split-strike conversion strategy (buying a basket of large-cap equities, selling out-of-the-money index calls, and buying out-of-the-money index puts) would mechanically have produced sharp positive correlation in up months and dampened but still directional exposure in down months. The reported betas were inconsistent with the disclosed strategy.

The deeper statistical work is done elsewhere in this reader: Carole Bernard and Phelim P. Boyle demonstrate, with disarming arithmetic, that the smoothness of the return series was incompatible with any plausible deployment of the strategy at the disclosed scale (see [bernard-boyle-amazing-returns]). For present purposes the point is narrower. The capacity argument that Markopolos had been pressing on the Commission since 2000 — that BLMIS's reported assets implied option hedges whose notional value exceeded the total open interest in OEX options on the Chicago Board Options Exchange, often by a multiple — is, in Gregoriou and Lhabitant's framing, a counterparty test that any allocator could have run with a Bloomberg terminal and an afternoon. No one ran it.

Cluster Three: Governance and the Family Firm

The third cluster concerns people and rooms. The auditor question is treated quantitatively by Ross D. Fuerman in the preceding chapter (see [fuerman-solo-auditor-red-flag]); the short of it is that a multi-billion-dollar advisory business audited by a strip-mall accountant is not a borderline case requiring further inquiry but a disqualifying datum on its face. Gregoriou and Lhabitant adopt the same view and move on.

The back office compounds it. Madoff's brother, niece, sons, and a small circle of long-tenured employees ran operations. Family-staffed control functions are not categorically improper, but they eliminate the internal whistleblower as a risk-management mechanism — the same individuals who confirmed trades to clients were related by blood or marriage to the man whose performance was being confirmed. Add to this the geography of secrecy: the seventeenth floor of the Lipstick Building, physically separated from the legitimate market-making operation on the nineteenth, was effectively off-limits even to senior firm personnel. Allocators were not permitted to inspect it, interview its staff, or audit its systems. As the authors put it, in a line that has become canonical in ODD training:

The list of due-diligence red flags was so long and so disturbing that potential investors should have stayed well away. (Gregoriou & Lhabitant 2009)

The Discipline That Madoff Made

One reads Riot of Red Flags today inside a profession that did not exist in its present form when the paper was written. Operational due diligence in 2008 was a cottage practice — a few specialist consultancies (Aksia, Albourne Partners, RCM Capital Markets), a handful of in-house teams at the largest funds of funds, and a culture in which the investment team's enthusiasm routinely overrode the operations team's misgivings. By 2015 the picture had reorganized. Most institutional allocators of any size now run a dedicated ODD function with veto power, modeled explicitly on the Madoff post-mortem; consultancy headcount in the specialty grew by an order of magnitude in the decade after 2008; and the diligence questionnaires in industry use treat the Gregoriou and Lhabitant catalogue as a baseline checklist. The most expensive failure of operational due diligence, of course, was conducted by the feeder funds themselves — Fairfield Sentry Limited ("Sentry"), Kingate, and the rest — whose own analytic missteps are the subject of [clauss-roncalli-weisang-risk-lessons].

The awkwardness is unavoidable. ODD exists as a profession because the gatekeepers covered in the preceding chapters of this reader — the auditor, the Commission, the feeders, the prime-broker function that should have existed — did not do their jobs. The discipline is, in a literal sense, a monument to their failure.

Doctrinal Takeaway

For the law student, the chapter clarifies two doctrinal levers. The first is Investment Advisers Act § 206, 15 U.S.C. § 80b-6, the antifraud provision the Commission ultimately invoked against Madoff and which reaches material misstatements and omissions by an adviser regardless of whether a specific rule has been violated. The second is the custody rule, 17 C.F.R. § 275.206(4)-2, the structural prophylactic redrafted in 2009 to prevent a future BLMIS by requiring independent custody and PCAOB-registered verification. The deeper lesson is that antifraud liability operates after the fact and structural rules operate before it; Madoff exploited the gap. The post-2008 ODD profession is the private-ordering response to that gap, and its existence is itself a quiet judgment on the adequacy of the public-law regime that preceded it.

1 Gregoriou and Lhabitant use the acronym "BMIS" throughout their paper. This volume normalizes to "BLMIS" (Bernard L. Madoff Investment Securities LLC) for consistency with the trustee filings and the Second Circuit's usage in In re BLMIS, 654 F.3d 229 (2d Cir. 2011).

Further Reading

  • Greg N. Gregoriou & Francois-Serge Lhabitant, Madoff: A Riot of Red Flags (EDHEC-Risk Inst. Working Paper, Jan. 2009).
  • SEC Office of Inspector General, Investigation of Failure of the SEC to Uncover Bernard Madoff's Ponzi Scheme, Report No. OIG-509 (Aug. 31, 2009).
  • Investment Advisers Act of 1940, Rule 206(4)-2, 17 C.F.R. § 275.206(4)-2 (custody of funds or securities of clients by investment advisers).
  • Harry Markopolos, No One Would Listen: A True Financial Thriller (Wiley 2010).
  • Amy Or, Operational Due Diligence Comes of Age After Madoff, Wall St. J. (Dec. 10, 2010).

Glossary

  • Operational Due Diligence (ODD). The investigative process by which an allocator evaluates a fund's non-investment risks — service providers, controls, governance, legal structure, IT, and personnel — independent of any judgment about the strategy's investment merits. Largely institutionalized as a distinct profession after Madoff.
  • Prime Broker. A bank or broker-dealer that provides clearing, custody, margin financing, securities lending, and independent position reporting to a hedge fund. The prime broker's reports originate outside the manager's systems and therefore serve as third-party evidence of holdings; BLMIS had no prime broker.
  • Segregation of Functions. The principle that execution, custody, and administration of a fund's assets must be performed by independent, unaffiliated entities so that each vertex of the triangle can police the others. BLMIS collapsed all three into a single firm.
  • Split-Strike Conversion. The options strategy Madoff claimed to deploy: hold a basket of roughly 30 to 40 S&P 100 stocks, buy out-of-the-money put options on the OEX index for downside protection, and sell out-of-the-money calls to finance the puts (a 'collar').
  • Rule 206(4)-2 (Custody Rule). The SEC rule under the Investment Advisers Act requiring advisers with custody of client assets to maintain those assets with a qualified custodian and submit to a surprise annual verification by an independent public accountant. Substantially tightened in 2009 in direct response to Madoff.
  • Feeder Fund. A fund (e.g., Fairfield Sentry, Kingate) that pools investor capital and channels it into a single master strategy — here, Madoff's. Feeders typically charged their own management and performance fees on top of the underlying manager's, creating layered incentives examined in [clauss-roncalli-weisang-risk-lessons].