Compliance Management Systems A Blueprint for Success
|
|
- Audra Bishop
- 8 years ago
- Views:
Transcription
1 Compliance Management Systems A Blueprint for Success Date or subtitle May 13, Tim Tedrick, CRCM, CRP Partner ttedrick@wipfli.com 2 Page 1
2 Regulatory FDIC df/ii-3.1.pdf OCC CFPB vision-and-examination-manual-v2.pdf 3 Regulatory FRB ttachment CA_13-19 Riskfocused_Supervision_Program_Document.pdf 4 Page 2
3 Implementing a Compliance Management System Management must first decide how to structure the compliance management system. Committee Officer Team Split responsibility (Loan Compliance Officer and Deposit Compliance Officer) Develop a policy to fit the structure your institution decided on. 5 Five areas of focus Board and Management Oversight (governance) Compliance Program (Policies and Procedures) Training (continuous, based on job impact) Monitoring, Testing, and Auditing (testing for weakness) Complaint Management (listen to customers) 6 Page 3
4 Board and management oversight Set clear expectations/set policy statements Appoint a compliance leader with accountability Concurring Engagement Partner and Partner-in-Charge Partner authority Allocate resources Evaluate audit results Care Partner Percentage of Completion Engagement Manager Partner-in-Charge Manufacturing Practice Partner Interest Rate Swaps Senior Manager IT Controls Director of Business Valuation Services Business Valuation Practice Senior Manger Continuous Improvement 7 Compliance Program Documented! Such a document provides guidance to staff and establishes Board expectations Designed to prevent violations and protect customers Must be up to date Must be available to employees 8 Page 4
5 What should the Compliance Program include? Designation of a Compliance Officer or presence of a functioning Compliance Committee Has knowledge of Laws and impact to the institution Coordinates compliance efforts across the organization Manages compliance monitoring and audit findings, as well as corrections 9 What should the Compliance Program include? Policies and Procedures Policies state management s compliance goals Procedures provide detail for performing transactions They provide consistency Biggest aid to achieve compliance 10 Page 5
6 Training is also a key piece of a compliance program For everyone, including directors Cover regulations AND FI s own Policies and Procedures Have a schedule Use various methods Maintain a training file Assess knowledge retention Refresh as things change 11 Compliance Management System What is the difference between monitoring, testing, and auditing? 12 Page 6
7 Three lines of defense - Monitoring Think of monitoring as quality control testing as the production occurs. This provides more immediate results to management regarding internal production successes or failures. Should be done at regularly scheduled intervals Should be done by department staff 13 Three lines of defense - Monitoring Results should be reported Include disclosures, calculations, transactions, posted notices, marketing literature, anything recently changed 14 Page 7
8 Three lines of defense - Testing Internal Quality Control Making sure the monitoring is effective Should be done at regularly scheduled intervals Can be done by compliance staff Results should be reported Include disclosures, calculations, transactions, posted notices, marketing literature, anything recently changed 15 Three lines of defense - Auditing A formalized testing program based on a set schedule. The schedule is determined by a formalized risk assessment. Tests the effectiveness of the Compliance Program Identifies noncompliance with laws and policy gaps Assesses if Board directives are being followed Complements monitoring & testing activities 16 Page 8
9 Three lines of defense - Auditing Should be independent Results should be reported to Board or Audit Committee Risk-based scope 17 Compliance Risk Assessments The compliance risk assessment should: Cover all areas of the Bank (loans, deposits, operations, trust, nondeposit investment products). Detail areas rated. Contain an analysis of how the ratings were defined. Be presented to the Board and/or Audit Committee for approval. Be revisited at least annually or when major changes occur. 18 Page 9
10 Compliance Risk Assessments For many community institutions, a simple rating system of low, medium, or high risk from the outset is the best way to begin. Define functional areas, products, or regulations to cover. Document your risk assessment. Be able to justify your ratings. 19 Compliance Risk Assessments Prior Exceptions Potential financial reimbursement or civil money penalties Quality of written procedures and policies and implementation Complexity of regulation Regulatory priority and newness of the regulations Centralization of document preparation and standard of software used or reliance on third parties Volume of transactions impacted by regulation Asset size number of bank offices Staff stability and knowledge 20 Page 10
11 Complaint Management Establish a system to receive and manage complaints Determine if there are trends Evaluate for possible violations of law Use information to improve customer service 21 Closing CMS Comments Successful compliance management is ongoing; you don t set up a CMS and think that s it Successful compliance management involves everyone at the institution, not just the compliance officer Successful compliance management should result in a good regulatory examination Successful compliance management isn t hard if you tackle it in components (how many? 5!) 22 Page 11
12 One More Time! Board and Management Oversight (governance) Compliance Program (Policies and Procedures) Training (continuous, based on job impact) Monitoring, Testing, and Auditing (testing for weakness) Complaint Management (listen to customers) 23 Questions? 24 Page 12
13 i.com 25 Page 13
14 Area of Responsibility Develop and coordinate the Financial Institution s efforts to comply with laws and regulations. Develop compliance policies and procedures. Implement compliance policies and procedures. Revise compliance policies and procedures. Maintain current knowledge of applicable laws, regulations and issues. Monitor legislative and regulatory developments for the Financial Institution and report important compliance developments to management and other Financial Institution personnel. Research regulatory issues and respond to compliance questions from Financial Institution personnel, utilizing legal and regulatory reference manuals or contacting consultants, professional associations and organizations as appropriate. Develop training to educate Financial Institution personnel on compliance requirements and procedures in their respective areas of responsibility. Implement training to educate Financial Institution personnel on compliance requirements and procedures in their respective areas of responsibility. Conduct training to educate Financial Institution personnel on compliance requirements and procedures in their respective areas of responsibility. Monitor compliance with laws and regulations throughout the Financial Institution. Develop internal controls as well as provide for external reviews to test compliance. Coordinate responses and corrective actions to these reviews, if necessary. Assess the effectiveness of Financial Institution compliance efforts. Develop procedures to address corrective action and time frames guidelines for corrections. Assist Financial Institution management with the handling of substantive consumer complaints against the Financial Institution, working with legal counsel and regulatory agencies when appropriate. Review forms, notices, brochures and advertisements for compliance with laws and regulations. Participate in meetings to bring the compliance perspective to the development of new products and services and modification of existing ones. Assist in preparing for audits and regulatory examinations, coordinate audit and examination efforts, provide responses to examinations and audits, and provide support in the Financial Institution s regulatory relations. As time permits, coordinate analysis of proposed regulations and develop position papers and comment letters to regulatory bodies. Develop plan(s) to correct any violations reported by regulatory agencies. Record and maintain minutes of compliance related meetings. Compliance Officer Compliance Committee Department Supervisors Page 14
15 Page 15
16 Page 16
17 BOARD & MANAGEMENT OVERSIGHT (Detail) Key Actions to demonstrate commitment to maintaining an effective compliance management system and to set a positive climate for compliance include: 1) Demonstrating clear and unequivocal expectations about compliance; - The Board and senior management should discuss compliance topics during their meetings. They should include compliance matters in their communications to institution personnel and the general public. Institution management and staff should have a clear understanding that compliance is important to the Board and senior management, and that they are expected to incorporate compliance in their daily operations. 2) Adopting clear policy statements; - Policy statements on compliance topics provide a framework for the institution's procedures and provide clear communication to management and employees of the Board's intentions toward compliance. 3) Appointing a compliance officer with authority and accountability; - Board and senior management must grant a compliance officer sufficient authority and independence to cross departmental lines; have access to all areas of the institution's operations; and effect corrective action. 4) Allocating resources to compliance functions commensurate with the level and complexity of the bank's operations -- To be effective at overseeing compliance and maintaining a strong compliance posture, a compliance officer must be provided with ongoing training, as well as sufficient time and adequate resources to do the job. The compliance officer may utilize third-party service providers or consultants to help administer the compliance program or audit functions. However, the compliance officer should perform sufficient due diligence to verify that the provider is qualified, because ultimately the institution is accountable for compliance with consumer protection laws and regulations. 5) Conducting periodic compliance audits; - A compliance audit is an independent review of an institution's compliance with consumer protection laws and regulations and adherence to internal policies and procedures. The audit helps management ensure ongoing compliance and identify compliance risk conditions. It complements the institution's internal monitoring system. The Board of Directors of the institution should determine the scope of an audit, and the frequency with which audits are conducted 6) Providing for recurrent reports by the compliance officer to the Board Page 17
Compliance Management Systems (CMS) Division of Depositor and Consumer Protection
Compliance Management Systems (CMS) What is a Compliance Management System (CMS)? A CMS is how an institution: Learns about its compliance responsibilities Ensures that employees understand these responsibilities
More informationII. Compliance Examinations - Compliance Management System. Compliance Management System. Introduction. Board of Directors and Management Oversight
Compliance Management System Introduction Financial institutions operate in a dynamic environment influenced by industry consolidation, convergence of financial services, emerging technology, and market
More informationCOMPLIANCE MANAGEMENT SYSTEM
COMPLIANCE MANAGEMENT SYSTEM INTRODUCTION Financial institutions operate in a dynamic environment influenced by industry consolidation, convergence of financial services, emerging technology, and market
More informationCOMPLIANCE MANAGEMENT SYSTEM
COMPLIANCE MANAGEMENT SYSTEM Ensuring Your Bank Meets Regulatory Standards Overview of Compliance Exams Examination Purpose: Assess the quality of an institution s compliance management system (CMS) for
More informationBOARD OF DIRECTORS RESPONSIBILITIES FOR COMPLIANCE MANAGEMENT SYSTEMS
BOARD OF DIRECTORS RESPONSIBILITIES FOR COMPLIANCE MANAGEMENT SYSTEMS Shannon Phillips Jr. Independent Bankers Association of Texas 1700 Rio Grande Street Austin, Texas 78701 sphillips@ibat.org 512.275.2221
More informationCFPB Consumer Laws and Regulations
General Principles and Introduction Supervised entities within the scope of CFPB s supervision and enforcement authority include both depository institutions and non-depository consumer financial services
More informationVendor Management Compliance Top 10 Things Regulators Expect
Vendor Management Compliance Top 10 Things Regulators Expect Paul M. Phillips, CFA Attorney, Adams and Reese Pamela T. Rodriguez, AAP, CIA, CISA EVP, Risk Management & Education, EastPay 2014 EastPay.
More informationAny business relationship between a bank and another entity, by contract or otherwise
An Overview for Bank Directors Managing the Third Party Relationship Patrick Neuman Boardman & Clark LLP Madison, Wisconsin Any business relationship between a bank and another entity, by contract or otherwise
More informationUMDNJ COMPLIANCE PLAN
UMDNJ COMPLIANCE PLAN INTRODUCTION...2 COMPLIANCE OVERSIGHT 3 COMPLIANCE COMMITTEE STRUCTURE...4 CHIEF COMPLIANCE OFFICER S RESPONSIBILITIES...5 RESEARCH COMPLIANCE.5 UNIT IMPLEMENTATION.6 COMPLIANCE POLICIES
More informationVendor Management Compliance Top 10 Things Regulators Expect
Vendor Management Compliance Top 10 Things Regulators Expect Peter Davey, AAP VP & Director, Enterprise Payments, CapitalOne Pamela T. Rodriguez, AAP, CIA, CISA EVP, Risk Management & Education, EastPay
More informationNavigating Vendor Management Issues in Today s Regulatory Environment
Navigating Vendor Management Issues in Today s Regulatory Environment May 6, 2015 Elizabeth E. McGinn, Partner Moorari K. Shah, Counsel 1 Disclaimer The information contained herein is for informational
More informationBoard of Directors and Management Oversight
Board of Directors and Management Oversight Examination Procedures Examiners should request/ review records, discuss issues and questions with senior management. With respect to board and senior management
More informationVendor Management: An Enterprise-wide Focus. Susan Orr, CISA CISM CRISC CRP Susan Orr Consulting, Ltd.
Vendor Management: An Enterprise-wide Focus Susan Orr, CISA CISM CRISC CRP Susan Orr Consulting, Ltd. Why Focus on Vendor Management Increased financial regulatory scrutiny GLBA and Identity Theft Red
More informationWashington Update. Payments News from our Nation s Capital. October 2014. Contents. CFPB Finalizes Two Rules Related to International Money Transfers
Washington Update Payments News from our Nation s Capital October 2014 Contents CFPB Finalizes Two Rules Related to International Money Transfers $25 per Issue $200 Annual Subscription Authors: Craig Saperstein
More information9/13/2013. 20/20 Vision for Vendor Management & Oversight. Disclaimer. Bank Service Company Act - FIL-49-99
20/20 Vision for Vendor Management & Oversight 2013 WBA Technology Conference September 17, 2013 Ken M. Shaurette, CISSP, CISA, CISM, CRISC, IAM Director IT Services Disclaimer The views set forth are
More informationGUIDANCE FOR MANAGING THIRD-PARTY RISK
GUIDANCE FOR MANAGING THIRD-PARTY RISK Introduction An institution s board of directors and senior management are ultimately responsible for managing activities conducted through third-party relationships,
More informationThird-Party Risk Management: Busting Myths and Telling Truths
Third-Party Risk Management: Busting Myths and Telling Truths Richik Sarkar, Esq. McDonald Hopkins LLC 600 Superior Avenue, East, Suite 2100 Cleveland, OH 44114 (216) 430-2009 rsarkar@mcdonaldhopkins.com
More informationTo: Our Clients and Friends March 25, 2014
Financial Services Group To: Our Clients and Friends March 25, 2014 A Significant Change Is Occurring Regarding Regulatory Oversight of Banks and Their Third Party Relationships. Both Banks and their Vendors
More informationFEDERAL DEPOSIT INSURANCE CORPORATION WASHINGTON, D.C.
FEDERAL DEPOSIT INSURANCE CORPORATION WASHINGTON, D.C. ) ) In the Matter of ) CONSENT ORDER, ) ORDER FOR ACHIEVE FINANCIAL SERVICES, LLC, as an ) RESTITUTION, AND institution-affiliated party of ) ORDER
More informationVendor Risk Management in the New Regulatory Environment. kpmg.com
Vendor Risk Management in the New Regulatory Environment kpmg.com Vendor Risk Management in the New Regulatory Environment 2 Vendor Risk Management in the New Regulatory Environment Background Regulators
More information2014 Financial Services Industry Compliance Benchmark Study
2014 Financial Services Industry Compliance Benchmark Study Presented By: and Executive Summary Beginning in early December 2013, SAI Global Compliance conducted a survey among compliance professionals
More informationTime to Revamp the Compliance Management System
By William (Wylli) J. Foote, CRCM Time to Revamp the Compliance Management System Compliance professionals have long used guidance by the regulatory agencies as the starting point for building a comprehensive
More informationVendor Management: Who the CFPB is Watching and Who They Are Expecting You to be Watching
Vendor Management: Who the CFPB is Watching and Who They Are Expecting You to be Watching John Barnes 713.210.7441 jbarnes@bakerdonelson.com Jessica Hinkie 713.210.7405 jhinkie@bakerdonelson.com Kat Statman
More informationData Privacy and Gramm- Leach-Bliley Act Section 501(b)
Data Privacy and Gramm- Leach-Bliley Act Section 501(b) October 2007 2007 Enterprise Risk Management, Inc. Agenda Introduction and Fundamentals Gramm-Leach-Bliley Act, Section 501(b) GLBA Life Cycle Enforcement
More informationPutting the Management Back in Vendor Management February 20, 2014
Putting the Management Back in Vendor Management February 20, 2014 Moderator: Brian O Reilly The Collingwood Group, LLC Panelists: Calvin Hagins, CFPB Ken Markison, MBA Jonathan McKernan, Wilmer Hale Dan
More informationIX 2.1. IX. Retail Sales Insurance. Retail Insurance Sales. Introduction. Regulatory and Policy Requirements. Examination Procedures
IX. Retail Sales Insurance Retail Insurance Sales Introduction The following supervisory information and examination procedures apply to retail sales, solicitation, advertising, or offers of any insurance
More informationAre You Ready for the New Foreclosure Processing Regulations?
Are You Ready for the New Foreclosure Processing Regulations? New regulator guidance provides banks servicing residential mortgages with expectations in effectively assessing foreclosure processing. The
More informationFEDERAL DEPOSIT INSURANCE CORPORATION WASHINGTON, D.C.
FEDERAL DEPOSIT INSURANCE CORPORATION WASHINGTON, D.C. In the Matter of THE BANCORP BANK WILMINGTON, DELAWARE (INSURED STATE NONMEMBER BANK) CONSENT ORDER AND ORDER TO PAY CIVIL MONEY PENALTY FDIC-11-698b
More informationHIPAA. HIPAA and Group Health Plans
HIPAA HIPAA and Group Health Plans CareFirst BlueCross BlueShield is the business name of CareFirst of Maryland, Inc. and is an independent licensee of the Blue Cross and Blue Shield Association. Registered
More informationWhite Paper on Financial Institution Vendor Management
White Paper on Financial Institution Vendor Management Virtually every organization in the modern economy relies to some extent on third-party vendors that facilitate business operations in a wide variety
More informationHow To Manage Risk At Atb Financial
Guidelines for Financial Institutions Legislative Compliance Management (LCM) Date: July 2004 Introduction Regulatory risk is the risk of non-compliance with applicable regulatory requirements. For the
More informationHIPAA Privacy Rule Policies
DRAFT - Policies and Procedures PRIVACY OFFICE ASSIGNMENT AND RESPONSIBILITIES APPROVED BY: SUPERCEDES POLICY: Policy #1 ADOPTED: REVISED: REVIEWED: Purpose This policy is designed to assure the establishment
More informationSusan Costonis, C.R.C.M. Compliance Training & Consulting for Financial Institutions
The Directors Education Series Fair Lending Training for the Board of Directors Part I Presented by: Susan Costonis, C.R.C.M. Compliance Training & Consulting for Financial Institutions YOUR PRESENTER
More informationNew CFPB mortgage servicing rules present significant challenges for mortgage servicers
New CFPB mortgage servicing rules present significant challenges for mortgage servicers Prepared by: Jose Vivar, Director, McGladrey LLP 312-634-4394, jose.vivar@mcgladrey.com Michael Sher, Partner, McGladrey
More informationOutsourced Third Party Relationship Management/ Vendor Management. TTS Webinar July 15, 2015 Susan Orr CISA, CISM, CRISC, CRP
Outsourced Third Party Relationship Management/ Vendor Management TTS Webinar July 15, 2015 Susan Orr CISA, CISM, CRISC, CRP 1 Risk Management Guidance 2 3 Appendix J: 4 - Key Elements Third Party Management
More informationFortifying the Three Lines of Defense to Combat Compliance Risk
Fortifying the Three Lines of Defense to Combat Compliance Risk Today s Presenters Thomas Grundy CRCM, Senior Regulatory Consultant, Wolters Kluwer 30 years regulatory/compliance experience: OCC and Federal
More informationNATIONAL CREDIT UNION ADMINISTRATION OFFICE OF INSPECTOR GENERAL
NATIONAL CREDIT UNION ADMINISTRATION OFFICE OF INSPECTOR GENERAL OFFICE OF FOREIGN ASSET CONTROL COMPLIANCE REVIEW Report #OIG-06-09 December 18, 2006 William A. DeSarno Inspector General Released By:
More informationNavigating OFAC demands a map. Access valuable information and key details to stay informed.
White Paper Navigating OFAC demands a map. Access valuable information and key details to stay informed. February 2010 Risk Solutions Financial Services Introduction This white paper introduces the Office
More informationCompliance at Hartwick College: An executive summary of a Special Report to the President of the College
Compliance at Hartwick College: An executive summary of a Special Report to the President of the College Compliance study background. The higher education sector operates in a vast and complex regulatory
More informationINSTITUTIONAL COMPLIANCE PLAN
INSTITUTIONAL COMPLIANCE PLAN Responsible Party: Board of Trustees Contact: Institutional Compliance Office Original Effective Date: 02/16/2012 Last Revised Date: 10/13/2014 Contents I. SCOPE OF THE PLAN...
More information2012-CFPB-0002 Document 1 Filed 10/01/2012 Page 1 of 35 FEDERAL DEPOSIT INSURANCE CORPORATION CONSUMER FINANCIAL PROTECTION BUREAU WASHINGTON, D.C.
2012-CFPB-0002 Document 1 Filed 10/01/2012 Page 1 of 35 FEDERAL DEPOSIT INSURANCE CORPORATION CONSUMER FINANCIAL PROTECTION BUREAU WASHINGTON, D.C. In the Matter of AMERICAN EXPRESS CENTURION BANK SALT
More informationUnfair, Deceptive or Abusive Acts or Practices Act (UDAAP)..It May Not Be What You Think
Unfair, Deceptive or Abusive Acts or Practices Act (UDAAP)..It May Not Be What You Think November 15, 2012 Mary Thorson VP, Chartwell Compliance/ICBA CRM I. UDAAP Overview Background II. UDAAP An emerging
More informationFAQs about ALTA Best Practices for Real Estate Settlement Attorneys and Title Companies
Why do I need to have ALTA Best Practices policies and procedures in place and have a CPA give assurance on my compliance to mortgage lenders? In accordance with Consumer Financial Protection Bureau (CFPB)
More informationVIRGINIA ASSOCIATION OF COMMUNITY BANKS
VIRGINIA ASSOCIATION OF COMMUNITY BANKS Spring Internal Audit / Risk Seminar Presented by Lee G. Lester May 26, 2016 Regulatory Hot Topics > De-Risking > Marketplace Lending > Consumer protection initiatives
More informationConsumer Affairs Laws Section 1380 and Regulations
Insurance Consumer Protection The Gramm-Leach-Bliley Financial Services Modernization Act (the Act) was enacted on November 12, 1999. Section 305 of the Act required the federal banking agencies (the Agencies)
More informationRETIREMENT PLAN FIDUCIARY GUIDE
RETIREMENT PLAN FIDUCIARY GUIDE CONGRATULATIONS You re sponsoring a valuable retirement plan for your employees, and BB&T is delighted to assist you in that effort. Employees will appreciate this important
More informationWhite Paper Achieving GLBA Compliance through Security Information Management. White Paper / GLBA
White Paper Achieving GLBA Compliance through Security Information Management White Paper / GLBA Contents Executive Summary... 1 Introduction: Brief Overview of GLBA... 1 The GLBA Challenge: Securing Financial
More informationRegulatory Compliance Management (RCM) (formerly Legislative Compliance Management (LCM))
Guideline Subject: Category: (RCM) (formerly Legislative Compliance Management (LCM)) Sound Business & Financial Practices No: E-13 Date: November 2014 I. Purpose and Scope of the Guideline The purpose
More informationCompliance and Operational Services for Online Lenders
Compliance and Operational Services for Online Lenders VP Compliance Services, LLC October 2014 Company Overview VP Compliance Services (VPCS) is a leading provider of compliance and operational services
More informationAnti-Money Laundering Policy Manual Table of Contents [Sample Client] Table of Contents
Table of Contents [ Client] Table of Contents TABLE OF CONTENTS... 1 CHAPTER 1 INTRODUCTION... 3 1.1 GOALS AND OBJECTIVES... 3 1.2 REQUIRED REVIEW... 3 1.3 APPLICABILITY... 3 1.4 MONEY LAUNDERING DEFINED...
More informationCompliance Policy AGL Energy Limited
Compliance Policy AGL Energy Limited November 2013 Table of Contents 1. About this Document... 3 2. Policy Statement... 4 3. Purpose... 4 4. AGL Compliance Context... 4 5. Scope... 5 6. Objectives... 5
More informationFEDERAL DEPOSIT INSURANCE CORPORATION WASHINGTON, D.C. In the Matter of CONSENT ORDER, ORDER FOR RESTITUTION, AND ORDER TO PAY CIVIL MONEY PENALTY
FEDERAL DEPOSIT INSURANCE CORPORATION WASHINGTON, D.C. In the Matter of MERRICK BANK SOUTH JORDAN, UTAH (INSURED STATE NONMEMBER BANK) CONSENT ORDER, ORDER FOR RESTITUTION, AND ORDER TO PAY CIVIL MONEY
More informationBoard Responsibility. A bank can outsource a task, but it cannot outsource the responsibility.
Third-Party Risk Board Responsibility The Board of Directors and senior management are ultimately responsible for managing activities conducted through third-party relationships as if the activity were
More informationCommunity Bank Risk-Focused Consumer Compliance Supervision Program
Community Bank Risk-Focused Consumer Compliance Supervision Program I. INTRODUCTION Overview of the Risk-Focused Framework The consumer compliance risk-focused supervision program is designed to promote
More informationRegulatory Compliance - What You Need to Know. John Zasada Principal CliftonLarsonAllen 218 790 1086 John.zasada@claconnect.com
Regulatory Compliance - What You Need to Know John Zasada Principal CliftonLarsonAllen 218 790 1086 John.zasada@claconnect.com Compliance Risk Defense or move forward It exists for all FIs Identify, rank,
More informationCompliance and Enforcement Information Bulletin CRTC 2014-326
Compliance and Enforcement Information Bulletin CRTC 2014-326 PDF version Ottawa, 19 June 2014 Guidelines to help businesses develop corporate compliance programs Introduction 1. The purpose of this information
More informationOUTSOURCING DUE DILIGENCE FORM
OUTSOURCING DUE DILIGENCE FORM SERVICE TO BE OUTSOURCED 1. Type of service to be outsourced: Accounting/Finance: Compliance Consulting: Legal Services: Administrative Functions: Information Technology:
More informationTable of Contents... 1. Chapter 1 Introduction... 5. 1.1 Goals & Objectives... 5 1.2 Required Review... 5 1.3 Applicability...
... 1 Chapter 1 Introduction... 5 1.1 Goals & Objectives... 5 1.2 Required Review... 5 1.3 Applicability... 5 Chapter 2 Company Culture... 6 Chapter 3 Risk Management Governance... 7 3.1 Board of Directors...
More informationHealthcare Compliance and Hybrid Entity Designation
[New OP initial posting 8/28/14] Operating Policy and Procedure : Healthcare Compliance and Hybrid Entity Designation DATE: August 28, 2014 PURPOSE: The purpose of this Texas Tech Operating Policy and
More informationCFPB COMPLIANCE: Interaction Between Compliance Assessments and Systems Issues
CFPB COMPLIANCE: Interaction Between Compliance Assessments and Systems Issues Presented by: Stefanie H. Jackman Consumer Financial Services Group 678.420.9490 jackmans@ballardspahr.com Trevor Salter Consumer
More informationVII 4.1. VII. Unfair and Deceptive Practices Third Party Risk. Third Party Risk. Introduction. Background
Third Party Risk Introduction The board of directors and senior management of an insured depository institution (institution) are ultimately responsible for managing activities conducted through third-party
More informationMeeting the HIPAA Training and Business Associate Requirements Questions and Answers, with HIPAA Security Expert Mike Semel
Meeting the HIPAA Training and Business Associate Requirements Questions and Answers, with HIPAA Security Expert Mike Semel Questions Answers 1 Is a Business Associate (BA) responsible for assuming a Covered
More informationFinTech Webinar Series: Vendor Management Principles
FinTech Webinar Series: Vendor Management Principles Evolving Best Practices of Bank Service Providers February 14, 2013 Speakers Russell Bruemmer Partner Eric Mogilnicki Partner Jeffrey Hydrick Special
More informationBank Secrecy Act Anti-Money Laundering Examination Manual
Bank Secrecy Act Anti-Money Laundering Examination Manual Core Overview - Customer Identification Program Assess the bank's compliance with the statutory and regulatory requirements for the Customer Identification
More informationFEDERAL FINANCIAL INSTITUTIONS EXAMINATION COUNCIL. Docket No. FFIEC-2016-0001. Uniform Interagency Consumer Compliance Rating System
FEDERAL FINANCIAL INSTITUTIONS EXAMINATION COUNCIL Docket No. FFIEC-2016-0001 Uniform Interagency Consumer Compliance Rating System AGENCY: Federal Financial Institutions Examination Council (FFIEC) ACTION:
More informationManaging specialty finance compliance requirements with a compliance management system
Managing specialty finance compliance requirements with a compliance management system Prepared by: Andrew Amrine, Supervisor, RSM US LLP andrew.amrine@rsmus.com, +1 253 382 2239 September 2013 For over
More informationHow To Be A Successful University
TUSDM Patient Billing and HIPAA Privacy Compliance Program Adopted: 12/14/12 TABLE OF CONTENTS Section 1. Definitions 2. Objectives Page 1 1 3. Oversight Responsibility 2 4. Compliance Procedures for Submitting
More informationFIRST CITIZENS BANCSHARES, INC. FIRST-CITIZENS BANK & TRUST COMPANY CHARTER OF THE JOINT AUDIT COMMITTEE
FIRST CITIZENS BANCSHARES, INC. FIRST-CITIZENS BANK & TRUST COMPANY CHARTER OF THE JOINT AUDIT COMMITTEE As amended, restated, and approved by the Boards of Directors on July 28, 2015 This Charter sets
More informationVendor Management Best Practices
23 rd Annual and One Day Seminar Vendor Management Best Practices Catherine Bruder CPA, CITP, CISA, CISM, CTGA Michigan Texas Florida Insight. Oversight. Foresight. SM Doeren Mayhew Bruder 1 $100 billion
More informationMontgomery County, Unique Aspects of the Medicaid Control System
MONTGOMERY COUNTY POLICY AND PROCEDURE Date Drafted: 12/07/09 Date Approved: 12/15/09 Date(s) Revised: I. POLICY: It is the policy of Montgomery County to promote compliance with all federal, state, and
More informationThe CFPB and Medical Collections: Unknown Territory in the Face of Sweeping Regulatory Change
The CFPB and Medical Collections: Unknown Territory in the Face of Sweeping Regulatory Change Agenda What is the CFPB? Brief chronology of the CFPB CFPB investigations and examinations; the cost of non-compliance
More informationOECD GUIDELINES FOR PENSION FUND GOVERNANCE
OECD GUIDELINES FOR PENSION FUND GOVERNANCE These Guidelines were approved by the Working Party on Private Pensions on 5 June 2009. OECD GUIDELINES FOR PENSION FUND GOVERNANCE 1 I. GOVERNANCE STRUCTURE
More informationGUIDELINES ON COMPLIANCE FUNCTION FOR FUND MANAGEMENT COMPANIES
GUIDELINES ON COMPLIANCE FUNCTION FOR FUND MANAGEMENT COMPANIES Issued: 15 March 2005 Revised: 25 April 2014 1 P a g e List of Revision Revision Effective Date 1 st Revision 23 May 2011 2 nd Revision 16
More informationA Guide to Corporate Governance for QFC Authorised Firms
A Guide to Corporate Governance for QFC Authorised Firms January 2012 Disclaimer The goal of the Qatar Financial Centre Regulatory Authority ( Regulatory Authority ) in producing this document is to provide
More informationCredit Union Board of Directors Introduction, Resolution and Code for the Protection of Personal Information
Credit Union Board of Directors Introduction, Resolution and Code for the Protection of Personal Information INTRODUCTION Privacy legislation establishes legal privacy rights for individuals and sets enforceable
More informationINTERNAL AUDIT CHARTER AND TERMS OF REFERENCE
INTERNAL AUDIT CHARTER AND TERMS OF REFERENCE CHARTERED INSTITUTE OF INTERNAL AUDIT DEFINITION OF INTERNAL AUDIT Internal auditing is an independent, objective assurance and consulting activity designed
More informationProcess Safety Management Program
Process Safety Management Program Title: Compliance Guidelines for Management System to Address Action Items Document #: PSM-SY-UN-017 Issued: 09/24/2014 Responsible Dept.: EHS Version: New Approved By:
More informationCOUNTY OF ORANGE DEPARTMENT OF HEALTH. Corporate Compliance Plan
COUNTY OF ORANGE DEPARTMENT OF HEALTH Corporate Compliance Plan COUNTY OF ORANGE DEPARTMENT OF HEALTH CORPORATE COMPLIANCE PLAN I. Corporate Compliance Plan It is the policy of the Orange County Department
More informationOur mission is to help our clients. maintain 401(k) compliance and avoid unnecessary risk. COLLABORATION. COMPLIANCE. CONVENIENCE.
Our mission is to help our clients maintain 401(k) compliance and avoid unnecessary risk. COLLABORATION. COMPLIANCE. CONVENIENCE. More Info: d o n a l.fo rd @ 3 1 6 f i d u ciary.com w w w. 3 1 6 f i d
More informationConstruction Management Standards of Practice
Construction Management Standards of Practice 2010 Edition Advancing Professional Construction/ Program Management Worldwide. 7926 Jones Branch Drive, Suite 800 McLean, VA 22102-3303 USA 703.356.2622 703.356.6388
More informationwww.pwc.com/modelrisk New supervisory guidance on model Overview, analysis, and next steps
www.pwc.com/modelrisk New supervisory guidance on model risk management: Overview, analysis, and next steps Features of new guidance Issued as supervisory guidance (21 pages) not as a risk bulletin. This
More informationQuestion: 1 Which of the following should be the FIRST step in developing an information security plan?
1 ISACA - CISM Certified Information Security Manager Exam Set: 1, INFORMATION SECURITY GOVERNANCE Question: 1 Which of the following should be the FIRST step in developing an information security plan?
More informationInternal and External Audits Table of Contents
Internal and External Audits Table of Contents Supplemental Examination Procedures...61 Planning the Audit Review...61 Board and Committee Oversight...64 Internal Audit...69 External Audit...93 Overall
More informationCredit Union Liability with Third-Party Processors
World Council of Credit Unions Annual Conference Credit Union Liability with Third-Party Processors Andrew (Andy) Poprawa CEO, Deposit Insurance Corporation of Ontario Canada 1 Credit Union Liability with
More informationFINAL May 2005. Guideline on Security Systems for Safeguarding Customer Information
FINAL May 2005 Guideline on Security Systems for Safeguarding Customer Information Table of Contents 1 Introduction 1 1.1 Purpose of Guideline 1 2 Definitions 2 3 Internal Controls and Procedures 2 3.1
More informationCore Monitoring Guide
Core Monitoring Guide April 2005 eta UNITED STATES DEPARTMENT OF LABOR EMPLOYMENT AND TRAINING ADMINISTRATION Core Monitoring Guide April 2005 United States Department of Labor Employment and Training
More informationFraud-Related Compliance
Fraud-Related Compliance Areas of Compliance, Part 1: FCPA, SOX, PCAOB, Dodd-Frank 2015 Association of Certified Fraud Examiners, Inc. Foreign Corrupt Practices Act (FCPA) Enacted to prohibit corrupt payments
More informationVendor Compliance Management Series: Performing an Effective Risk Assessment
Vendor Compliance Management Series: Performing an Effective Risk Assessment Legal Disclaimer This information is not intended to be legal advice and may not be used as legal advice. Legal advice must
More informationAnti-Money Laundering
Bank Secrecy Act and Anti-Money Laundering FDIC Atlanta Region s Regulatory Conference Call March 20, 2014 2 Speakers Assistant Regional Director Timothy Hubby Special Activities Case Manager Danielle
More informationAudit of Community Futures Program
Audit of Community Futures Program WESTERN ECONOMIC DIVERSIFICATION CANADA Audit, Evaluation & Disclosure Branch April 2009 Table of Contents 1.0 EXECUTIVE SUMMARY 1 2.0 STATEMENT OF ASSURANCE 2 3. 0 INTRODUCTION
More informationAUDIT COMMITTEE BEST PRACTICES CHECKLIST
AUDIT COMMITTEE BEST PRACTICES CHECKLIST General 1. Members have the appropriate predefined qualifications to meet the objectives of the audit committee s charter, including appropriate financial literacy.
More informationBroker-Dealer and Investment Adviser Compliance Programs
Lori A. Richards Principal, PricewaterhouseCoopers Financial Services Regulatory Practice Broker-Dealer and Investment Adviser Compliance Programs Regulatory Requirements, Common Minimum Elements, Other
More informationBANK EXAMINERS MANUAL FOR AML/CFT RBS EXAMINATION
BANK EXAMINERS MANUAL FOR AML/CFT RBS EXAMINATION 1 Contents 1. EXAMINATION PROCEDURES ON SCOPING AND PLANNING 1..1 2. EXAMINATION PROCEDURES OF AML/CFT COMPLIANCE PROGRAM...3.. 3 3. OVERVIEW OF AML/CFT
More informationCompany s Audit and a Review of the Outside Auditor
CLARCOR INC. AUDIT COMMITTEE OF THE BOARD OF DIRECTORS CHARTER PURPOSES: The purpose of the Committee is to: (a) assist Board oversight of (i) the integrity of the Company s financial statements, (ii)
More informationOSFI Updates Guidance on Regulatory Compliance Management. By Carol Lyons and Jared Grossman
Introduction OSFI Updates Guidance on Regulatory Compliance Management By Carol Lyons and Jared Grossman More than 10 years have passed since OSFI 1 first issued Guideline E-13 entitled Legislative Compliance
More informationINSURANCE ACT 2008 CORPORATE GOVERNANCE CODE OF PRACTICE FOR REGULATED INSURANCE ENTITIES
SD 0880/10 INSURANCE ACT 2008 CORPORATE GOVERNANCE CODE OF PRACTICE FOR REGULATED INSURANCE ENTITIES Laid before Tynwald 16 November 2010 Coming into operation 1 October 2010 The Supervisor, after consulting
More informationPERSONNEL RECORDS. Unit: Subject: Sarbanes-Oxley Act Review - Human Resources and Payroll Title: Risk and Control Identification Year end: OBJECTIVE
Unit: Subject: Sarbanes-Oxley Act Review - Human Resources and Payroll Title: Risk and Control Identification Year end: POTENTIAL PERSONNEL RECORDS Personnel files contain accurate, valid and complete
More informationSupporting Effective Compliance Programs
October 2015 Supporting Effective Compliance Programs The Oversight Roles of the Board Audit and Risk Committees in Regulatory Compliance By Paul Osborne, CPA, CAMS, AMLP, and Peggy Sepp, CIA To be effective,
More information