© 2026 I-Spy Detectives

Procurement Fraud Red Flags

Signs of Procurement Fraud

Procurement Fraud Red Flags

Jamie Styles | June 2, 2026 | 9:52 pm

Of all the forms of internal fraud I investigate, procurement fraud tends to produce the largest losses and the most entrenched concealment. Where expense fraud often involves one person exploiting[…]

Of all the forms of internal fraud I investigate, procurement fraud tends to produce the largest losses and the most entrenched concealment. Where expense fraud often involves one person exploiting a process, procurement fraud frequently involves relationships — between an employee and a supplier, between colleagues with aligned interests, sometimes between networks of individuals operating across multiple organisations. Those relationships take time to build, and they take time to unravel.

The other thing that distinguishes procurement fraud is how thoroughly it can be normalised. I have investigated organisations where inflated supplier contracts, undisclosed conflicts of interest, and systematic kickback arrangements had been operating for so long that they had become, in a practical sense, part of how the business worked. The people involved did not think of what they were doing as fraud. It had simply become the arrangement.

This article sets out what procurement fraud looks like in practice, the red flags that experienced investigators look for, and how these cases are approached when a concern is raised.

What Is Procurement Fraud?

Procurement fraud is any deliberate dishonesty in the purchasing process, committed by an employee, a supplier, or both acting in concert, for financial gain. It encompasses a wide range of conduct: manipulating a tender process, accepting payments in exchange for awarding contracts, establishing fictitious vendors, overstating delivery, or structuring supplier relationships to channel funds to a connected party.

The ACFE consistently identifies billing schemes — which encompass most forms of vendor and procurement fraud — as one of the most costly categories of occupational fraud globally, with median losses per case that significantly exceed those of asset misappropriation schemes such as expense fraud or petty theft. The reason is structural: procurement processes involve large sums, they operate through relationships that are difficult for outsiders to scrutinise, and the individuals managing them often have both the access and the authority to manipulate outcomes with limited oversight.

In England and Wales, procurement fraud can constitute offences under the Fraud Act 2006, the Bribery Act 2010, and — where public procurement is involved — additional statutory provisions. The Bribery Act in particular creates serious exposure for organisations whose employees offer or accept payments to influence purchasing decisions, including conduct that takes place outside the UK.

Common Procurement Fraud Schemes

Procurement fraud rarely arrives as a single, isolated act. In the cases I work on, it tends to operate through a combination of methods, layered over time and often supported by personal relationships that predate the fraud itself. These are the schemes I encounter most consistently.

Bid Rigging

Bid rigging involves manipulating a competitive tender process to predetermine its outcome. It can be operated from inside the organisation, from outside, or — most commonly in my experience — through collusion between both. The internal participant may share tender specifications or bid pricing with a preferred supplier before the process closes, set evaluation criteria that favour a particular outcome, or structure the scoring methodology to neutralise competitive bids.

The supplier side of bid rigging sometimes involves cover bidding — where competing tenderers submit deliberately inflated or non-compliant bids to create the appearance of a competitive process while ensuring the predetermined winner prevails. In sectors with a concentrated supplier base, these arrangements can persist for years, with the same group of firms rotating contract awards between themselves.

What makes bid rigging particularly difficult to detect from the inside is that the process documentation looks correct. There was a tender. There were multiple bids. There was an evaluation. The problem lies in the conduct that surrounded the process, which the documents do not reflect.

Kickbacks and Corrupt Payments

A kickback is a payment — financial or otherwise — made by a supplier to an employee in exchange for a commercial advantage: a contract award, a favourable price assessment, accelerated payment, or the suppression of a legitimate complaint. It is the most direct expression of purchasing corruption, and it is far more common than most organisations are prepared to accept.

Kickbacks rarely look like bribes. They tend to be structured to maintain plausible deniability: consultancy fees paid to a connected entity, ‘referral arrangements’ with no genuine commercial basis, gifts or hospitality that exceed what would be considered reasonable in the relevant industry context, or equity interests in a supplier business that are not disclosed to the employer.

In one investigation I worked on, a procurement manager at a construction company had been receiving payments from a groundworks contractor through a limited company registered in his partner’s name. The payments were described as consultancy fees for ‘project management support’. There was no genuine service being provided. The arrangement had been running for four years before a change of financial controller prompted a review of the contractor’s invoicing history. The total diverted was in excess of £300,000.

False and Fictitious Vendors

The false vendor scheme involves the creation of a supplier entity — sometimes a registered company, sometimes a purely fictitious construct — through which fraudulent invoices are submitted and paid. The employee controls both sides of the transaction: they raise the purchase order or approve the payment on behalf of the organisation, and they receive the funds on the other side.

False vendor fraud exploits the separation between the people who approve payments and the people who verify that the underlying goods or services were actually received. In organisations where those functions are combined in a single individual, or where vendor onboarding processes are weak, the scheme can operate without external detection for extended periods.

In my experience, fictitious vendors tend to share certain characteristics. They have minimal digital footprint. Their registered addresses are residential properties, mail forwarding services, or the same address as other entities connected to the employee. Their invoices are formatted identically, submitted at regular intervals, and cluster just below approval thresholds. A basic vendor verification exercise would surface most of these indicators immediately — but that exercise is rarely part of a standard payment approval process.

Undisclosed Conflicts of Interest

Not every conflict of interest in procurement amounts to fraud. But an undisclosed conflict — where an employee has a financial or personal interest in a supplier and has not declared it — is both a governance failure and, depending on the circumstances, a criminal one under the Bribery Act 2010.

The most common forms I encounter are directorship or shareholding in a supplier entity, a family member employed by or owning a supplier, a former employer relationship that has not been disclosed, and personal friendship with a supplier’s principals that creates an informal obligation to favour their bids. None of these requires money to change hands directly. The benefit to the individual may be entirely relational — maintaining a relationship, securing future employment, building a network of commercial obligations that will be called upon later.

What makes undisclosed conflicts particularly significant in an investigation context is that they often sit at the root of other, more direct forms of procurement fraud. Bid rigging and kickback arrangements almost always involve a pre-existing relationship that was never properly declared. Identifying and mapping those relationships is frequently the first step in understanding how a procurement fraud operated.

Procurement Fraud Warning Signs

The following indicators are drawn directly from the investigations I and my colleagues have conducted. As with any fraud indicators, no single red flag is conclusive. What matters is the pattern — and where that pattern consistently involves the same individual, the same supplier, or the same process, it warrants serious attention.

  • A single employee manages the full procurement cycle for specific suppliers — raising purchase orders, approving invoices, and authorising payment — without independent oversight at any stage.
  • Contract awards that consistently favour the same supplier, particularly where the margin of victory in tender evaluations is narrow or where competing bids are repeatedly non-compliant.
  • Supplier invoices that arrive without a corresponding purchase order, or that are approved by a single individual without secondary sign-off.
  • Suppliers whose registered addresses, contact details, or banking information match those of an employee or an employee’s known associates.
  • A supplier’s pricing that increases materially after a specific employee takes over the relevant procurement relationship.
  • Contract values that are consistently structured just below the threshold requiring formal tender or board approval.
  • An employee who resists changes to the vendor approval or payment process, particularly upgrades that would introduce greater transparency or automated controls.
  • Supplier relationships that are managed entirely by one individual, with no contact permitted between the supplier and others in the organisation.
  • An employee who socialises extensively with supplier contacts, receives gifts or hospitality from them, or whose lifestyle appears inconsistent with their declared income.
  • Documentation anomalies: contracts that are difficult to locate, variations that lack written authority, or delivery records that cannot be matched to corresponding goods or services received.

One pattern I return to consistently is what I call the single point of contact supplier. An organisation has dozens of vendor relationships managed by teams. Then there is this one supplier — always this one — where everything goes through a specific individual. Queries are deflected. Meetings are attended alone. The relationship exists, in practical terms, between two people rather than between two organisations. That structural isolation is almost always deliberate, and it is almost always significant.

Investigation Techniques

Procurement fraud investigations differ from other internal fraud enquiries in one important respect: the evidence trail typically runs outside the organisation as well as within it. Understanding what happened requires investigating not just the employee but the supplier — its ownership structure, its beneficial interests, its financial history, and its connections to other entities. That external dimension is where a significant part of the investigative work takes place.

The approach we take at iSpy Detectives to a suspected procurement fraud typically combines the following:

Vendor due diligence and ownership mapping: a systematic review of all suppliers connected to the individual or function under scrutiny, including Companies House searches, beneficial ownership analysis, registered address verification, and cross-referencing against employee personal data. In a significant number of cases, the connection between an employee and a fraudulent vendor is visible in public records — it simply has not been looked for.

Financial data analysis: a structured review of payment history, invoice patterns, contract values, and procurement process documentation to identify anomalies — duplicate payments, pricing irregularities, clustering of contract values below approval thresholds, or payments to accounts that do not correspond to verified supplier banking details.

Open source intelligence (OSINT): a review of publicly available information relating to the individuals and entities involved — social media, professional networks, property records, company filings, and directorship histories — to establish connections that may not be apparent from internal records alone.

Communications analysis: where appropriate authority exists, a review of email and messaging records between the employee and supplier contacts. In procurement fraud cases, communications often contain the clearest evidence of intent — references to arrangements, acknowledgements of payments, or coordination around tender processes that the formal documentation does not reflect.

Covert enquiries: in cases where the full scope of the fraud is unclear, or where there is reason to believe the arrangement extends beyond the initial concern, background intelligence gathering prior to any overt step. This may include surveillance where the circumstances justify it and the legal framework permits.

Witness interviews: structured, sequenced interviews with relevant parties — finance staff, procurement colleagues, other suppliers — before the subject is approached. By the time we interview the individual under investigation, the evidential picture should be as complete as possible.

One of the most consistent findings from procurement fraud investigations is that the fraud was visible in the data all along. The payments were there. The vendor relationships were there. The pattern was there. What was missing was someone looking at it with investigative intent rather than administrative routine. That is a structural issue, and it is one that proper investigation — and proper controls — can address.

Preventing Procurement Fraud

After an investigation concludes, the conversation about prevention is one I have with almost every client. What they discover is usually not that their controls were entirely absent, but that they existed on paper in ways that were not reflected in practice. The gap between the policy and the process is where procurement fraud lives.

The measures that make the most practical difference are:

  • Enforce segregation of duties across the full procurement cycle. The same individual should not be able to raise a purchase order, approve an invoice, and authorise payment without independent sign-off at each stage. This is the most fundamental structural control and the one most often compromised in practice.
  • Implement a rigorous vendor onboarding process that includes beneficial ownership verification, registered address confirmation, and bank account validation — and repeat that process periodically for existing suppliers, not just at point of onboarding.
  • Require formal declaration of conflicts of interest from all employees involved in procurement, and treat undeclared conflicts — when discovered — as a serious disciplinary matter rather than an administrative oversight.
  • Set procurement thresholds that require competitive tender, and ensure those thresholds cannot be circumvented by splitting contract values across multiple smaller orders.
  • Conduct periodic data-driven reviews of supplier payment histories, contract award patterns, and procurement outcomes — looking specifically for the indicators described in this article rather than waiting for a concern to be raised.
  • Apply enhanced scrutiny to sole-source contracts and long-standing supplier relationships. Duration is not evidence of legitimacy. Some of the most significant procurement frauds I have investigated operated precisely because the relationship was old enough to be taken for granted.
  • Create a genuinely confidential reporting mechanism and communicate it actively. Colleagues are often the first to notice that something about a supplier relationship is not quite right. They need a safe and credible route to raise that concern.

The organisations that handle procurement fraud risk well tend to share one characteristic: they treat procurement as a governance function rather than an operational one. The people managing supplier relationships have commercial objectives, and those objectives can create pressure — conscious or otherwise — to maintain arrangements that should be challenged. Independent oversight, regular review, and a clear framework for declaring and managing conflicts are what keep that pressure from becoming a structural vulnerability.

Concerned about supplier or procurement fraud? Speak to our corporate investigations team about our supplier and procurement investigation service.

Related Services

If you are dealing with broader internal fraud concerns, the following pages may be relevant:

Previous
Next

Contact Us

Freephone: 0800 002 9153

Text: 07537 182 918

Email:
office.ispydetectives@gmail.com



Our offices are open 24/7

Head Office Address
I-SPY Detectives, The Clacton Centre
Kepoch Street, Roath, Cardiff, CF24 3JW

Website Information

Terms and Conditions
GDPR Policy
Image Attribution
Areas We Cover

© 2026 I-Spy Detectives. Created with ❤ using WordPress and Kubio

I-Spy Detectives
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.