Foreign Corrupt Practices Act (FCPA) enforcement may ebb and flow across administrations, but the recent conviction of a former Corsa Coal executive makes one thing clear: the FCPA is very much alive, and individual accountability is front and center. 

On February 19, 2026, the U.S. Department of Justice’s Office of Public Affairs announced that a federal jury convicted Charles Hunter Hobson, a former Corsa Coal vice president, for his role in a multi‑year bribery and money‑laundering scheme involving Egyptian government officials. According to the DOJ, Hobson orchestrated a plan to funnel bribes through fake commission payments, laundered the funds through U.S. and UAE accounts, and even received personal kickbacks. 

He now faces up to decades in prison across multiple FCPA and money‑laundering convictions. Meanwhile, Corsa Coal (the company Hobson acted on behalf of) previously received a declination with disgorgement in 2023 and has since filed for bankruptcy. 

This contrast underscores a critical lesson: corporate resolutions do not protect individual executives under the Foreign Corrupt Practices Act (FCPA). And in today’s environment, every organization should take note. 

What Is the Foreign Corrupt Practices Act (FCPA)? 

The Foreign Corrupt Practices Act (FCPA) is a U.S. law that prohibits businesses and individuals from bribing foreign officials to obtain or retain business. It has two core components: 

• Anti‑bribery provisions – bans offering anything of value to foreign officials to gain business advantage. 
• Books-and-records and internal controls provisions – requires companies to maintain accurate records and adequate controls to detect and prevent improper payments. 

FCPA violations have led to more than $13 billion in enforcement penalties since its enactment. And as the Corsa Coal case shows, even during periods of shifted enforcement focus, serious misconduct involving foreign officials, third‑party intermediaries, or competitive harm will not be ignored. 

Interested in a deeper breakdown of DOJ’s evolving approach to FCPA enforcement? Our on‑demand webinar, “Decoding DOJ’s Recent Guidance on FCPA Enforcement: What Compliance Officers Need to Know in 2025,” walks through the latest DOJ guidance, enforcement priorities, and what compliance teams should prepare for next.

What Happened in the Corsa Coal Case 

Between 2016 and 2020, Hobson allegedly worked with an Egyptian intermediary who routed more than $4.8 million in fake commission payments to government officials at Al Nasr Company for Coke and Chemicals, a state‑owned enterprise in Egypt. 

The same intermediary also kicked back more than $200,000 directly to Hobson. The scheme went undetected for years, running across borders, involving multiple bank accounts, and touching high‑risk business relationships. 

Key themes that stand out: 

• Bribery masked as commissions 
• Use of third‑party intermediaries 
• Kickbacks to corporate leadership 
• Weak oversight of international sales operations 
• Inadequate internal controls and documentation 

This is a familiar fact pattern for anyone who has followed FCPA cases over the last decade. But the most important takeaway for modern compliance programs? 

The company’s resolution did not protect the individual. 

In fact, the DOJ successfully argued that Corsa’s declination had “no bearing” on Hobson’s criminal exposure. The compliance failures, the misconduct, and the personal enrichment were his, and the consequences were, too. 

Why Organizations Should Pay Attention 

The Corsa Coal case highlights several compliance realities every organization needs to consider:

1. FCPA enforcement against individuals is intensifying

The DOJ has been explicit: corporate leniency does not eliminate personal exposure executives.

2. Third-party risk remains a top vulnerability under the FCPA 

Intermediaries are still the number one source of bribery risk globally.

3. Weak internal controls create space for misconduct

The FCPA’s accounting and internal controls provisions exist for exactly this reason.

4. Fragmented compliance systems create blind spots

If policies, disclosures, training, and third‑party oversight live in different systems, misconduct can thrive unnoticed.

5. Compliance must operate as a connected, intelligent function 

Modern risks move too quickly for manual processes and disjointed oversight. 

This case is a real-world example of what happens when compliance visibility isn’t strong enough to catch misconduct early, and how individuals, not just the organization, pay the price. 

How SAI360 Helps Organizations Strengthen FCPA Readiness 

Strengthening Foreign Corrupt Practices Act (FCPA) readiness requires more than standalone policies or training sessions. Effective compliance depends on a connected approach where all parts of the program work together to surface risks early and provide clear oversight. 

Stronger Internal Controls 

The SAI360 GRC platform helps organizations build and maintain robust internal controls through automated testing, centralized evidence, and SOX‑aligned workflows. These capabilities ensure the controls required under the FCPA’s accounting provisions are consistently applied, documented, and audit‑ready. 

Enhanced Third‑Party Oversight 

Third‑party intermediaries remain one of the highest‑risk areas under the FCPA. SAI360 strengthens oversight by streamlining due diligence, monitoring commission payments, and flagging unusual financial patterns. This helps organizations identify red flags early, before misconduct can escalate. 

Integrated, Continuous Compliance Oversight 

SAI360 brings all core compliance activities into one unified system, including policies, disclosures, training, reporting, gifts and hospitality, conflicts of interest, and third‑party risk. This integrated model reduces blind spots and ensures teams receive consistent, connected insights across the entire program. 

Reliable Books-and-Records Integrity 

Maintaining accurate books and records is a cornerstone of FCPA compliance. SAI360 centralizes documentation, enforces consistent data quality, and provides an accessible audit trail that supports defensible reporting and compliant record‑keeping. 

AI-Driven Early Warning Signals 

To detect risks sooner, SAI360 uses AI to identify patterns, anomalies, or recurring red flags across compliance data. This gives teams the time and visibility they need to take proactive action and reduce exposure. 

Real-Time Visibility for Leadership 

Leadership teams and boards gain real‑time dashboards that clearly reflect compliance posture, risk exposure, and emerging trends. This transparency supports quicker decision‑making and aligns oversight with regulatory expectations. 

Together, these capabilities help organizations build the type of compliance environment regulators expect, one that reduces exposure and protects both the business and its executives from preventable FCPA‑related risks. 

Take the Next Step: Safeguard Your Program and Your People 

Cases like Corsa Coal’s remind us that FCPA exposure can fall on both organizations and individuals. But with the right systems, visibility, and controls in place, organizations can reduce the risk of misconduct and catch problems long before regulators do. 

If your compliance program needs stronger oversight, better third‑party visibility, or a more connected approach to managing FCPA risk, we’re here to help. 

Schedule a conversation with an SAI360 solution expert and explore how modern GRC software can strengthen your compliance program.