Daily Rambam · Startup Mensch · Standard

Mishneh Torah, Testimony 11

StandardStartup MenschDecember 20, 2025

Hook

Let's be brutally honest. As a founder, you're constantly weighing risk. Market risk, product risk, financial risk. But what about people risk, beyond just skills? You hire for competence, sure, but what about character? How many times have you been burned by a brilliant hire who turned out to be a cultural cancer? The charismatic salesperson who inflated numbers, the rockstar engineer who undermined the team, the seemingly loyal co-founder who siphoned off IP? These aren't just "bad hires"; they're existential threats. The cost isn't just a lost salary; it’s IP theft, reputational damage, shattered team morale, legal fees, and ultimately, a direct hit to your bottom line and valuation.

You operate in a high-trust environment, or at least, you aspire to. You delegate authority, share sensitive information, and rely on people's word. But how do you know who to trust, especially when scaling rapidly? When you’re moving fast, due diligence often gets compressed. You might rely on a gut feeling, a polished resume, or a strong network reference that focuses solely on technical prowess. This text from the Mishneh Torah isn't some abstract theological debate; it's a hard-nosed, ROI-driven framework for assessing human credibility and managing internal risk. It forces you to ask: What constitutes trustworthiness in the people you empower? What’s the real cost of not knowing?

This isn't about creating a "religious" workplace; it's about leveraging ancient wisdom for modern business survival. It’s about understanding the subtle, yet critical, differentiations in human integrity that determine who you can rely on, and in what context. Because if you get this wrong, the text warns, you risk "forfeiting the financial resources" of your enterprise. And frankly, that's a risk no founder can afford.

Text Snapshot

The Mishneh Torah, Testimony Chapter 11, outlines who is disqualified as a witness, distinguishing between those whose lack of Torah study and "ordinary social relationships" renders them suspect, and those whose righteous conduct makes them acceptable despite being unlearned. It highlights that "base people" who lack concern for their own shame are untrustworthy. Crucially, it differentiates between trustworthiness for "Torah's prohibitions" versus "monetary loss," noting that "the wicked fear the Torah's prohibitions, but they do not fear causing others monetary loss." Finally, it identifies "informers, epicursim, and apostates" as actively malicious, even "inferior to the gentiles," and demands their total exclusion.

Analysis

Insight 1: Fairness - Beyond Skills, Judge Character for Trustworthiness

Founders often over-index on raw talent and technical skills. We want the best engineer, the most aggressive salesperson, the visionary designer. But this text immediately pulls us back to a foundational truth: competence without character is a dangerous liability. "When one does not read the Written Law, nor study the Oral Law, nor carry on ordinary social relationships, he can be assumed to be wicked and is disqualified as a witness according to Rabbinic decree." This isn't about religious observance in a startup context; it's about a holistic assessment of an individual's engagement with knowledge, ethics, and basic human decency. Steinsaltz clarifies "ordinary social relationships" (דרך ארץ) as "whose association with people is not with refinement and courtesy." In a business context, this means: does the person interact with colleagues, customers, and partners with respect, honesty, and basic social grace? A brilliant coder who is rude, dismissive, or constantly undercuts others lacks "derech eretz" and, according to this text, is fundamentally untrustworthy. Their word, their commitment, their collaboration, becomes suspect.

The text doesn't stop there. It offers a critical caveat: "unlearned people should not be designated as witnesses, nor do we accept such a person's testimony unless it has been established that he observes the mitzvot, performs acts of kindness, conducts himself in an upright manner, and carries on normal social relationships." This is a profound instruction on due diligence. You can't just assume an individual is trustworthy based on their lack of formal "learning" (or, in our context, their lack of a specific prestigious background or credential). Instead, you must establish their character through observation of their "acts of kindness," "upright manner," and "normal social relationships." This means looking for a demonstrated pattern of ethical behavior, empathy, and constructive engagement with others. It's about observable actions, not just stated intentions or a polished interview performance.

The implications for hiring and team building are clear. The text concludes, "Thus one may conclude any Torah scholar may be assumed to be acceptable as a witness unless he is disqualified, and any unlearned person may be assumed to be unacceptable unless it is established that he follows just paths." In a business parallel, a "Torah scholar" could represent someone with a proven track record of integrity, ethical leadership, and consistent high performance within a strong moral framework – someone whose reputation precedes them as reliable. Conversely, an "unlearned person" is someone without that established track record. The burden of proof for trustworthiness lies squarely on them. You, as the founder, have a responsibility to actively seek that proof. This isn't about being judgmental; it's about pragmatic risk management. The ROI of hiring for character is immense, preventing the hidden costs of internal conflicts, fraud, and reputational damage. Your KPI here could be Employee Net Promoter Score (eNPS) related to team trust and respect, specifically tracking qualitative feedback on how employees perceive their colleagues' and managers' integrity and collaborative spirit. A low eNPS, especially with themes of backstabbing or disrespect, signals a breakdown in "derech eretz" that will erode productivity and retention faster than any market downturn.

Insight 2: Truth - Context Matters: What Kind of Trust Do You Need?

The text presents a nuanced, almost chillingly pragmatic, view of human integrity: "The testimony of one witness is acceptable with regard to the Torah's prohibitions, even though his testimony is not accepted with regard to other matters... For the wicked fear the Torah's prohibitions, but they do not fear causing others monetary loss." This is a masterclass in calibrated trust. It tells us that an individual might be reliable in some domains, particularly where the consequences of transgression are severe, clear, and non-negotiable (like "Torah's prohibitions" – think regulatory compliance, safety protocols, ethical data handling). The fear of severe, immediate repercussions (or a clear moral code) might compel even "the wicked" to adhere to these rules.

However, the same individual might be entirely unreliable when it comes to matters where the consequences are perceived as less direct, less personal, or less severe – specifically, "causing others monetary loss." This is where internal fraud, expense report padding, IP theft, or deliberately misleading financial projections often occur. The personal gain outweighs the perceived risk of "causing others monetary loss." As a founder, you must recognize this distinction. Don't assume that an employee who scrupulously follows safety protocols will automatically be honest with company funds or intellectual property. Trust is not monolithic; it is contextual.

Furthermore, the text offers another layer of insight: "When, however, a person is suspected of violating a particular prohibition frequently, his word is not accepted with regard to his own matters. His word is accepted, however, with regard to others. For this reason, a person suspected of violating a particular prohibition may serve as a judge and as a witness for others. We operate under the assumption that a person will not transgress so that others will benefit." This is crucial for internal controls and delegation. An individual with a known conflict of interest or a history of self-serving actions in their own domain (e.g., abusing company perks, misrepresenting their own performance metrics) might still be reliable when acting on behalf of others or in a neutral oversight role. The logic is that "a person will not transgress so that others will benefit." This insight underpins the separation of duties, independent audit functions, and peer review processes in business. A finance manager who has a history of questionable personal investments might still be trustworthy to audit a different department's budget, as long as their personal interests are not involved. You can leverage a person's skills even if their individual trustworthiness in specific contexts is compromised, provided you structure their responsibilities to align with where their truthfulness can be relied upon. Your KPI here could be Variance in reported vs. actual financial performance or compliance adherence, broken down by department or individual responsibility, to identify where "monetary loss" or "prohibition" transgressions are occurring. A high variance in financial reports from a specific team lead, for example, would indicate a breakdown in trust in their "own matters."

Insight 3: Competition - Protecting the Enterprise from Internal Threats

This text is a stark warning against naive leadership. It doesn't just describe problematic individuals; it dictates the severe consequences for those who empower them: "Whoever accepts the testimony of an unlearned person before it is established that he possesses the above positive qualities or before witnesses come and testify that he observes the mitzvot and carries on ordinary social relations is a commoner and will be required to face judgment, for he has forfeited the financial resources of Jews on the basis of the testimony of the wicked." This is a direct indictment of founders and leaders who fail to conduct proper due diligence on the character of those they bring into the fold. If you, as a founder, empower an untrustworthy individual without establishing their "just paths" and they subsequently cause financial or reputational harm (which always translates to financial loss), you are directly responsible for "forfeiting the financial resources" of your company. This isn't about blaming the bad actor alone; it's about holding the leadership accountable for the systemic risk introduced by their negligence. This rule demands proactive, rigorous vetting and continuous monitoring, especially for roles with significant financial or strategic impact.

The text then escalates to a category of individuals even more dangerous: "Our Sages had no need to list informers, epicursim, and apostates among those who are not acceptable as witnesses. For they listed only the wicked among the Jewish people. These rebellious deserters of the faith are inferior to the gentiles... These deserters of the faith should be pushed into a pit and should not be saved from one; they will not receive a portion in the world to come." This is strong language, and its business application is equally severe. Steinsaltz clarifies these terms: "Mosrim" (informers) are those who "hands over an Israelite or his property to a gentile or a violent person." "Epikorsim" and "Minim" are those who deny fundamental principles or engage in idolatry, while "Meshumadim" are those who "transgress the commandments of G-d with malice and rebellion." In the business context, these are not just unreliable employees; they are active, internal threats. They are the saboteurs, the IP thieves, the chronic leakers, those who actively undermine the company's mission, values, or financial stability, often for external gain or personal malice. They are "inferior to the gentiles" because, unlike external competitors who are known threats, these operate from within, leveraging internal access and trust to cause maximum damage. The instruction "should be pushed into a pit and should not be saved from one" (and Steinsaltz's commentary stating "It is even a mitzvah to cause their death") translates to a zero-tolerance policy for such individuals. They must be identified swiftly, isolated, and decisively removed from the organization to protect the enterprise. Failing to do so is to invite existential risk. Your KPI here is Cost of Internal Malfeasance (CIM), which aggregates financial losses from internal fraud, IP theft, data breaches, and significant reputational damage directly attributable to employee actions. A rising CIM indicates a failure to identify and neutralize these "internal threats."

Policy Move

To operationalize these insights and safeguard the enterprise, I propose implementing a Tiered Trust & Vetting Framework (TTVF), coupled with a Zero-Tolerance Internal Threat Protocol. This moves beyond basic background checks to a holistic, character-driven risk assessment embedded in our talent lifecycle.

  1. Character & Competence Matrix for Hiring & Promotion:

    • Standardized Behavioral Interviews (Derech Eretz Focus): Integrate structured behavioral questions into all interview processes, specifically designed to probe for "refinement and courtesy," "acts of kindness," and "upright manner" (as per Steinsaltz's commentary on "ordinary social relationships"). Examples: "Describe a time you had to deliver difficult feedback to a colleague while maintaining respect." "How do you handle disagreements within a team?" "Tell me about a time you went above and beyond to help a teammate or customer, even when it wasn't your direct responsibility." We will train hiring managers on these specific interview techniques, moving beyond technical prowess to assess underlying character.
    • Validated Reference Checks: Beyond standard reference checks, hiring managers will be required to ask targeted questions to validate character claims, focusing on "acts of kindness," "upright manner," and "normal social relationships." We will explicitly ask previous employers about the candidate's interpersonal skills, ethical conduct, and team collaboration. For senior roles, we'll mandate speaking with unprovided references to get a broader, more unbiased perspective.
    • Probationary Period Performance Reviews: Extend and formalize probationary periods (e.g., 6-12 months for critical roles). Reviews during this period will explicitly include assessment against company values related to integrity, collaboration, and respect, not just task completion. Failure to demonstrate "just paths" during this period will result in non-confirmation.
  2. Tiered Trust & Access Framework:

    • Tier 1 (High Trust Roles): C-suite, Finance, IP-critical R&D, Legal, Senior Sales (deal-making authority), and any role with access to highly sensitive data or significant financial authority.
      • Vetting: Enhanced background checks (financial, criminal, social media footprint), multiple validated references (including former direct reports and peers), psychometric assessments for integrity and ethical reasoning, and a 3-month "shadowing" period where new hires operate under direct, intensive supervision before full autonomy.
      • Monitoring: Annual 360-degree feedback focused on "upright manner" and "normal social relationships," mandatory annual Conflict of Interest (COI) declarations, and regular internal audits of financial and data access activities.
      • Rationale: This rigorous approach directly addresses the risk of "forfeiting the financial resources" by empowering individuals whose trustworthiness isn't "established." It mitigates the risk of those who "do not fear causing others monetary loss."
    • Tier 2 (Medium Trust Roles): Team leads, project managers, mid-level sales, most operational roles.
      • Vetting: Standard background checks, behavioral interviews, peer references.
      • Monitoring: Annual performance reviews including values assessment, COI declarations.
    • Tier 3 (Lower Trust Roles): Entry-level positions, roles with limited access or financial authority.
      • Vetting: Basic background checks, skill-based interviews, and a clear onboarding program emphasizing company values.
      • Monitoring: Regular performance reviews.
  3. Zero-Tolerance Internal Threat Protocol:

    • Clear Definition of "Internal Threats": Establish clear policy definitions for behaviors akin to "informers, epicursim, and apostates" – e.g., IP theft, sabotage, intentional data breaches, chronic and malicious undermining of company mission/values, or actions that "hand over an Israelite or his property to a gentile or a violent person" (i.e., leaking sensitive data to competitors, engaging in corporate espionage). This is distinct from poor performance or cultural fit issues.
    • Rapid Response Team: Designate an internal team (e.g., HR, Legal, Security) with a clear mandate and process for immediate, discreet investigation of suspected internal threats.
    • Decisive Action: For confirmed "internal threats," immediate termination and, where appropriate, legal action will be pursued. There will be no leniency or extended coaching periods for these behaviors, directly echoing the directive that "these deserters of the faith should be pushed into a pit and should not be saved from one." This is about protecting the entire enterprise from existential harm.

This TTVF, by creating structured processes for assessing and managing human integrity, aims to proactively prevent the costs associated with untrustworthy individuals, ensuring that the company's "financial resources" are not "forfeited" due to negligence in character assessment.

Board-Level Question

"Given the Mishneh Torah's stark warning against 'forfeiting the financial resources' by misjudging character and its clear hierarchy of internal threats, how is our board currently measuring and mitigating the systemic risk of internal untrustworthiness, especially in roles with high financial or strategic impact, and what is our plan to specifically identify and neutralize 'internal threats'—those actively malicious actors akin to 'informers, epicursim, and apostates'—before they metastasize and cause irreparable damage?"

This isn't a question about external market forces or competitor analysis; it's an introspective challenge to the very foundation of internal governance and trust. Most boards focus on financial statements, market share, and external compliance. This question pushes beyond that, directly to the human element that underpins all these metrics. It forces a strategic dialogue on the quality of our internal fabric.

Specifically, it probes:

  1. Current Measurement of Internal Untrustworthiness: How do we quantify the risk? Do we have metrics beyond basic employee turnover or Glassdoor scores? Are we tracking incidents of internal fraud, IP leakage, or significant cultural toxicity that can be traced back to specific individuals or leadership failures in character assessment? The text warns about "base people" who "are not concerned with their own shame," and "the wicked" who "do not fear causing others monetary loss." Are we actively monitoring for these behavioral patterns in our high-impact roles, and what are the leading indicators we rely on?

  2. Mitigation Strategies in High-Impact Roles: For our C-suite, critical R&D, finance, and other strategic roles, what specific, rigorous processes are in place beyond skills-based hiring to "establish that he observes the mitzvot, performs acts of kindness, conducts himself in an upright manner, and carries on normal social relationships"? Are our executive onboarding processes robust enough to continuously assess character beyond the initial honeymoon period? The text also mentions that "Kings of Israel may not testify, nor is testimony given against them, because they are strong-armed men of power who do not subjugate themselves to the yoke of the judges." This is a warning against creating untouchable "star performers" or leaders who operate outside the ethical framework. How do we ensure that even our most powerful leaders are subject to the same rigorous character assessment and accountability as every other employee, preventing a culture where ethical oversight is ignored for those deemed indispensable?

  3. Identification and Neutralization of "Internal Threats": The text calls out "informers, epicursim, and apostates" as inherently malicious actors, worse than external threats. Steinsaltz further defines an "informer" as one who "hands over an Israelite or his property to a gentile or a violent person." This is corporate espionage, IP theft, and malicious internal sabotage. Do we have a proactive, clear, and swift protocol, distinct from standard performance management, to identify, investigate, and decisively remove these existential internal threats? Or are we allowing such individuals to fester, causing "distress to Israel and remov[ing] them from following G-d" (i.e., disrupting our mission and culture), effectively "forfeiting the financial resources" of the company through inaction? This isn't about fostering paranoia, but about strategic defense against malicious internal actors who can cripple the organization from within.

This board-level question demands not just a superficial answer, but a deep dive into our organizational resilience against the most insidious form of risk: internal human failure and malice.

Takeaway

Trust is not a given; it's a strategic asset that must be rigorously earned and continuously validated. This text is a founder's guide to building a resilient enterprise by understanding the nuanced landscape of human integrity. Don't let ethical blind spots be your Achilles' heel. Proactive character assessment, calibrated trust, and decisive action against internal threats aren't just good practices – they are non-negotiable for safeguarding your "financial resources" and ensuring long-term success. Your business depends on it.