[cmdkeen]

This is why the financial regulators in the UK have changed to consider the corporate culture when dealing with breaches. A company whose senior staff "live a compliance culture" will be penalised less for the same breach than one operating as described above.

Now you can argue efficacy, being able to pull the wool over the eyes of regulators etc but I think it is a good direction to head in.

All that is way beyond the industry described with institutionalised cheating in tests, it wounds more like the graphics card industry than one with regulators.