How To Manage Risk At Atb Financial



Similar documents
Regulatory Compliance Management (RCM) (formerly Legislative Compliance Management (LCM))

COMPLIANCE GUIDELINE April 2009

OSFI Updates Guidance on Regulatory Compliance Management. By Carol Lyons and Jared Grossman

GUIDELINES ON RISK MANAGEMENT AND INTERNAL CONTROLS FOR INSURANCE AND REINSURANCE COMPANIES

Managing Risk at Bank of America Corporation. Overview

Guidelines for Financial Institutions Outsourcing of Business Activities, Functions, and Processes Date: July 2004

Compliance. Group Standard

FINANCIAL ASSESSMENT CRITERIA (The Assessment Criteria should be read in conjunction with OSFI s Supervisory Framework)

Aegon Global Compliance

Regulatory Compliance Oversight

Operational Risk Management Program Version 1.0 October 2013

Guidance Note: Corporate Governance - Board of Directors. March Ce document est aussi disponible en français.

6/8/2016 OVERVIEW. Page 1 of 9

PRACTICE ADVISORIES FOR INTERNAL AUDIT

Public Sector Pension Investment Board

NOTICE 158 OF 2014 FINANCIAL SERVICES BOARD REGISTRAR OF LONG-TERM INSURANCE AND SHORT-TERM INSURANCE

Guideline. Operational Risk Management. Category: Sound Business and Financial Practices. No: E-21 Date: June 2016

BANK EXAMINERS MANUAL FOR AML/CFT RBS EXAMINATION

CFPB Consumer Laws and Regulations

The Role of Compliance and Supervision. Rules Notice Guidance Note Dealer Member Rules. Introduction

PART I - PRELIMINARY...1 Objective...1 Applicability...2 Legal and Regulatory Provision...2

B o a r d of Governors of the Federal Reserve System. Supplemental Policy Statement on the. Internal Audit Function and Its Outsourcing

Policy (Board Approved)

The PNC Financial Services Group, Inc. Business Continuity Program

Charter. Regulatory and Compliance Committee

ENTERPRISE RISK MANAGEMENT POLICY

Consequence Management

Phase II of Compliance to the Policy on Internal Control: Audit of Entity-Level Controls

EURIBOR - CODE OF OBLIGATIONS OF PANEL BANKS

SEATTLE GENETICS, INC. Charter of the Audit Committee of the Board of Directors

II. Compliance Examinations - Compliance Management System. Compliance Management System. Introduction. Board of Directors and Management Oversight

NORTHERN TRUST CORPORATION BUSINESS RISK COMMITTEE CHARTER

MFDA STAFF NOTICE THE ROLE OF COMPLIANCE AND SUPERVISION

COMPLIANCE MANAGEMENT SYSTEM

Considerations for firms thinking of using third-party technology (off-the-shelf) banking solutions

DRAFT Report on Office of the Superintendent of Financial Report on Institutions Office of the Superintendent of Financial

Board of Directors and Management Oversight

Basel Committee on Banking Supervision. Review of the Principles for the Sound Management of Operational Risk

FEDERAL HOUSING FINANCE AGENCY ADVISORY BULLETIN AB OVERSIGHT OF SINGLE-FAMILY SELLER/SERVICER RELATIONSHIPS. Purpose

Board Oversight Plan of Risk Management, Internal Audit, and COPS Programs

Risk Management. Group Standard

La Trobe University is committed to maintaining a comprehensive and effective Compliance Framework.

Basel Committee on Banking Supervision. Consolidated KYC Risk Management

Compliance Policy AGL Energy Limited

COMPLIANCE CHARTER 1

University of New England Compliance Management Framework and Procedures

Effective Enterprise Risk Management with ErmsCo ERM Foundation

Reserve Bank of Fiji Insurance Supervision Policy Statement No. 8 MINIMUM REQUIREMENTS FOR RISK MANAGEMENT FRAMEWORKS OF LICENSED INSURERS IN FIJI

Basel Committee on Banking Supervision

MISSION VALUES. The guide has been printed by:

Guideline. Outsourcing of Business Activities, Functions and Processes. Category: Sound Business and Financial Practices

Significant Revisions to OMB Circular A-127. Section Revision to A-127 Purpose of Revision Section 1. Purpose

Policy Statement: Licensing Policy in respect of those activities that require a permit under the Insurance Business (Jersey) Law 1996

Compliance Management Systems (CMS) Division of Depositor and Consumer Protection

Capital Adequacy: Advanced Measurement Approaches to Operational Risk

Mission/Purpose: Committee Responsibilities:

Direct Line Insurance Group plc (the Company ) Board Risk Committee (the Committee ) Terms of Reference

The ADT Corporation. Audit Committee Charter. December 2014

PRINCIPLES ON OUTSOURCING OF FINANCIAL SERVICES FOR MARKET INTERMEDIARIES

Align Technology. Data Protection Binding Corporate Rules Processor Policy Align Technology, Inc. All rights reserved.

DEPARTMENT OF THE TREASURY. Office of the Comptroller of the Currency. 12 CFR Parts 30 and 170. [Docket ID OCC ] RIN 1557-AD78

Financial Services FINANCIAL SERVICES UTILITIES 57 FINANCIAL SERVICES AND UTILITIES BUSINESS PLAN. CR_2215 Attachment 1

AUDIT COMMITTEE CHARTER

Sound Practices for the Management of Operational Risk

RISK MANAGEMENT AND COMPLIANCE

Policy and Procedure Statement

GUIDANCE NOTE FOR DEPOSIT-TAKERS. Operational Risk Management. March 2012

Broker-Dealer and Investment Adviser Compliance Programs

1. Establishment of Committee A committee of directors to be known as the Human Resources Committee (the Committee ) is hereby established.

Risk Management Policy

RISK AND COMPLIANCE COMMITTEE CHARTER

Functional and technical specifications. Background

Status Report of the Auditor General of Canada to the House of Commons

COMPLIANCE PROGRAM FOR XL GROUP PLC

CONSULTATION PAPER Proposed Prudential Risk-based Supervisory Framework for Insurers

Operations. Group Standard. Business Operations process forms the core of all our business activities

GUIDELINES ON CORPORATE GOVERNANCE FOR LABUAN BANKS

Gladstone Ports Corporation Limited

ENTERPRISE RISK MANAGEMENT FRAMEWORK

Guidance on Supervisory Interaction with Financial Institutions on Risk Culture. A Framework for Assessing Risk Culture

February Audit committee performance evaluation

Application of King III Corporate Governance Principles

Board of Directors and Senior Management 2. Audit Management 4. Internal IT Audit Staff 5. Operating Management 5. External Auditors 5.

The Regulatory Framework for Social Housing in England Governance and Financial Viability standard requirement: Governance Annual Assessment

Application of King III Corporate Governance Principles

Successfully identifying, assessing and managing risks for stakeholders

HSBC FINANCE CORPORATION CHARTER OF THE RISK COMMITTEE

INTERNAL AUDIT FRAMEWORK

Social Sciences and Humanities Research Council of Canada

PRINCIPLES ON OUTSOURCING OF FINANCIAL SERVICES FOR MARKET INTERMEDIARIES

STANDARDS OF SOUND BUSINESS AND FINANCIAL PRACTICES. ENTERPRISE RISK MANAGEMENT Framework

SYNACOR, INC. AMENDED AND RESTATED AUDIT COMMITTEE CHARTER. As adopted by the Board of Directors on November 16, 2011

SUPERVISION GUIDELINE NO. 9 ISSUED UNDER THE AUTHORITY OF THE FINANCIAL INSTITUTIONS ACT 1995 (NO. 1 OF 1995) RISK MANAGEMENT

Anti-money laundering and countering the financing of terrorism the Reserve Bank s supervisory approach

Charter of the Audit Committee of the Board of Directors of The Ensign Group, Inc. Adopted & Effective April 26, 2007 Last Revised October 29, 2015

HALOGEN SOFTWARE INC. AUDIT COMMITTEE CHARTER. oversee the qualifications and independence of the independent auditor;

HIGHFIELD RESOURCES LIMITED AUDIT, BUSINESS RISK & COMPLIANCE COMMITTEE CHARTER

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014

DTCC RISK COMMITTEE CHARTER

APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES

Transcription:

Guidelines for Financial Institutions Legislative Compliance Management (LCM) Date: July 2004 Introduction Regulatory risk is the risk of non-compliance with applicable regulatory requirements. For the purpose of this Guideline, applicable regulatory requirements include those in (a) the Alberta Treasury Branches Act), regulations and guidelines (referred to collectively as "Governing Legislation") and, since non-compliance by ATB Financial or subsidiary with regulatory requirements applicable to its activities may have a critical impact on ATB Financial s reputation and or safety and soundness, regulatory requirements also include those in (b) other legislation, regulations and regulatory directives applicable to activities of ATB Financial or its subsidiaries (referred to collectively as "Other Legislation"). The term "Legislative Compliance Management" (LCM) in this Guideline refers to the set of key controls through which ATB Financial manages regulatory risk. The Minister of Finance considers effective LCM to be essential to ATB Financial's well being. An effective LCM process will provide a means by which ATB Financial satisfies itself that it is in compliance with Governing Legislation and Other Legislation. The Minister of Finance s key expectation in respect of LCM, which underlies the guidance in this document, is that ATB Financial will establish and maintain an enterprise-wide framework of regulatory risk management controls, and that these controls include oversight by functions (groups or individuals) that are independent of the activities they oversee. The Minister of Finance expects ATB Financial to take an approach to regulatory risk management that suits its circumstances, having regard to its size, complexity, geographical location(s), nature of business, structure and ownership. Accordingly, references in this Guideline to oversight functions are not intended to prescribe legal constructs or organizational models. The Minister of Finance recognizes that at ATB Financial, one person may have more than one set of oversight responsibilities. Supervisory Framework The Minister of Finance expects there to be two levels of control in the management of risk, including regulatory risk: 1) day-to-day controls, for which business operations management is responsible, that include policies, procedures, processes and appropriate staffing in all business operations; and 2) independent oversight, which is provided by

risk management control functions (RMCFs) and ensures that risks are being managed effectively. LCM Framework The Minister of Finance expects LCM to provide a control framework for the mitigation of regulatory risk at ATB Financial. This framework should include an enterprise-wide definition of regulatory risk. It should outline the process through which it is to be identified and assessed, and outline the key controls through which it is to be managed or mitigated throughout ATB Financial and its subsidiaries. The LCM framework should include both day-to-day and independent oversight levels of control. The respective oversight roles and responsibilities of RMCFs should be defined and communicated clearly. The board of directors (board), senior management, compliance and internal audit or other independent review function, however constituted, are important RMCFs in effective LCM. The Minister of Finance expects the LCM framework to include the following key controls: identification, assessment, communication and maintenance of applicable regulatory requirements; day-to-day compliance and oversight procedures that include monitoring and reporting procedures through which significant problems are identified, escalated and resolved; internal audit or other independent validation of the effectiveness of and adherence to the LCM framework and key controls; compliance oversight and internal audit or other independent review function reporting to the board; adequate documentation; and control updates to address changes in products, activities or corporate structure. Lines of responsibility should be clear and control methodology should include a mechanism for holding individuals accountable. The key controls are more fully discussed below. The Minister of Finance expects that the exact approach chosen by ATB Financial for LCM will depend on a range of factors including its size, complexity, geographical location(s), nature of business, structure and ownership. Regardless of where LCM responsibilities reside in ATB Financial, or how they are constructed, The Minister of Finance will focus on the effectiveness of regulatory risk management, that is, its control effect or outcome, rather than its form. Key LCM Controls Key LCM controls are the basic elements of a sound risk control framework. At a minimum, The Minister of Finance expects key LCM controls to include the following, administered through a methodology that establishes clear lines of responsibility and a mechanism for holding individuals accountable. Identification, Assessment, Communication and Maintenance of Applicable Regulatory Requirements

In this Guideline, a regulatory requirement is a provision in Governing Legislation or Other Legislation that requires ATB Financial or subsidiary to do (or prohibits it from doing) certain things or to act or conduct its affairs in a particular manner. The methodology for identifying, assessing, communicating and maintaining knowledge of applicable regulatory requirements should ensure that appropriate individuals have the information they need to manage regulatory risk effectively. The information should be current and accurate, and reflect new and changing requirements as well as those applicable to new and changing products, activities and corporate structure. Compliance Procedures Appropriate procedures for complying with regulatory requirements applicable to activities of ATB Financial and its subsidiaries on a day-to-day basis should be incorporated into and maintained in relevant business operations. These should, like compliance oversight procedures, include monitoring and reporting procedures. Monitoring Procedures Procedures should exist for regularly monitoring adherence to controls established in business operations, evaluating the effectiveness of the controls and the LCM framework, and monitoring material exposures to regulatory risk. Monitoring methodology should include verification of key elements of pertinent information that is to be reported up through those having day-to-day compliance responsibilities to senior management and to the board, and it should extend to significant remediation activities. Reporting Procedures Procedures should exist to ensure that sufficient pertinent and timely information about regulatory risk management effectiveness is communicated to senior management and to the board. Reports should include significant results of monitoring, and findings of compliance oversight and internal audit or other independent review function. Content and frequency of normal course reports should be approved by the chief compliance officer (CCO) (more fully discussed below), and should be sufficient to enable the CCO, senior management and the board to discharge their LCM responsibilities. Strong reporting procedures often include regular formal and informal meetings and other communications within and between functions and management groups throughout ATB Financial, in addition to formal documentation. Compliance Oversight Function Reports to the Board of Directors The Minister of Finance expects the CCO to report material compliance issues to the board on a timely basis. Normal course reports should be made on a regular basis that is approved by the board, but no less frequently than annually. These should cover material results of enterprise-wide compliance oversight. At a minimum, they should provide

information about material LCM framework weaknesses, instances of non-compliance and related remedial action plans, and material exposures to regulatory risk. Information about significant legislative and regulatory developments, industry compliance issues, emerging trends and regulatory risks should also be considered for inclusion, as it may assist the board in its decision making about strategic direction and controls. Internal Audit or other Independent Review Function Reports to the Board Reports to the board by internal audit or other independent review function should include the scope and results of LCM-related reviews and significant recommendations for correcting deficiencies along with management's undertakings with respect to remedial action where appropriate. Like CCO reports to the board, independent review function reports should contain sufficient pertinent information to facilitate the board's periodic reassessment of the LCM framework. The reports should be provided on a rotational or other regular basis that the board considers appropriate. Documentation The Minister of Finance expects day-to-day and independent oversight levels of a compliance function to produce adequate documentation to demonstrate how regulatory risk is managed, to support the flow of reports up to senior management and the board, and to support the board's periodic reassessment of the LCM framework. Regular Review and Improvement The Minister of Finance expects key LCM controls and methodology to be reviewed and updated regularly, in order to address new and changing regulatory risks, products, activities and corporate structure. Role of Board of Directors The Minister of Finance expects the board, ATB Financial s highest level of independent oversight of management and operations, to approve ATB Financial s LCM framework and see that it is established and maintained; to obtain sufficient appropriately aggregated information to address issues that are material to ATB Financial; and, to this end, establish thresholds for the type, content and frequency of reports that it should receive; to monitor remediation progress in respect of material problems; and to periodically reassess the effectiveness of the LCM framework. The Minister of Finance also expects the board to see that the LCM framework is subject to internal audit or other independent review and validation on a rotational or other regular basis that the board considers appropriate; that material findings and

recommendations are brought to the board's attention; and that material recommendations are acted upon. Role of Senior Management The Minister of Finance expects senior management to implement the LCM framework approved by the board. The LCM framework should be implemented throughout ATB Financial in a manner that is tailored to the needs of each area. Senior management should ensure that appropriate policies and procedures are developed and applied effectively by appropriately qualified individuals, and all staff should understand their responsibilities for complying with such policies and procedures. The Minister of Finance also expects senior management to ensure that significant recommendations concerning issues of non-compliance or control improvements made by compliance oversight and or internal audit or other independent review function in ATB Financial, are acted upon in a timely fashion. Role of Compliance Oversight Function The Minister of Finance expects a compliance oversight function to ensure that key dayto-day LCM controls throughout the enterprise are sufficiently robust to control compliance with Governing Legislation and Other Legislation and, where significant issues arise, escalate them to senior management and the board as appropriate. The function should be independent of the activities it oversees and capable of providing the board with the information it needs to obtain an enterprise wide perspective on compliance issues. Overall responsibility for the compliance oversight function should be assigned to a member of senior management who should be designated, at least functionally, as ATB Financial s CCO. The Minister of Finance recognizes that the CCO may have other responsibilities as well. The CCO should have sufficient stature and authority in the organization, as well as the necessary mandate, resources and access to the chief executive officer and the board through the Audit Committee, to achieve an appropriate control outcome. The Minister of Finance considers that appropriate skills and a good knowledge of the business and regulatory environments are essential to the effectiveness of the CCO and all others who have compliance oversight responsibility. Role of Internal Audit or Other Independent Review Function The Minister of Finance expects an internal audit or other review function to validate the effectiveness of and adherence to the LCM Framework throughout the enterprise by riskbased testing on a rotational or other regular basis that the board considers appropriate. Furthermore, the scope of work undertaken routinely by this function should include consideration of material regulatory risks and their corresponding controls. The review

function should be independent of the activities it reviews, have appropriate skills and a good knowledge of the business and regulatory environments. Significant review findings and recommendations should be reported as appropriate to business operations management, senior management and the board. Actions taken in response to significant recommendations should be monitored. For more information, call 1-800-332-8383, or visit any branch of ATB Financial. To locate the branch nearest to you, please use our Branch Locator.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information