CFPB Readiness Series: Chief Compliance Officer Responsibilities

Similar documents
CFPB Readiness Series: Compliant Vendor Management Overview

Vendor Compliance Management Series: Performing an Effective Risk Assessment

HOW SECURE IS YOUR PAYMENT CARD DATA?

Operations Guide. Collection Letters

Board of Directors and Management Oversight

HOW SECURE IS YOUR PAYMENT CARD DATA? COMPLYING WITH PCI DSS

How To Protect Yourself From A Hacker Attack

Alaska Court System Class Specification AREA COURT ADMINISTRATOR I. Range: 22 EEO4: 01 SOC: Code: C4201

Any business relationship between a bank and another entity, by contract or otherwise

Achieving Security through Compliance

Understanding SOC Reports for Effective Vendor Management. Jason T. Clinton January 26, 2016

The Other Side of CFPB Compliance

Integrated Management System Software

PCI DSS Overview. By Kishor Vaswani CEO, ControlCase

CFPB COMPLIANCE: Interaction Between Compliance Assessments and Systems Issues

CFPB Examination Resource Guide

Risky Business. Is Your Cybersecurity in Cruise Control? ISACA Austin Chapter Meeting May 5, 2015

The ADT Corporation. Audit Committee Charter. December 2014

Compliance Management Systems (CMS) Division of Depositor and Consumer Protection

7 Top-Line Responses to Healthcare s At-Risk Revenue:

Managing Conflicts of Interest. Michael Malone, Examination Manager, FINRA, Dallas District Office

Introduction to PCI Compliance

A MERCHANTS GUIDE TO THE PAYMENT APPLICATION DATA SECURITY STANDARD (PA-DSS)

IT Insights. Managing Third Party Technology Risk

OFFICE OF FINANCIAL REGULATION COLLECTION AGENCY REGISTRATIONS MORTGAGE-RELATED AND CONSUMER COLLECTION AGENCY COMPLAINTS PRIOR AUDIT FOLLOW-UP

Minimizing Legal and Compliance Risk for Credit Furnishers

Vendor Management Best Practices

Corporate Overview. MindPoint Group, LLC 8078 Edinburgh Drive, Springfield, VA Office: Fax:

VENDOR MANAGEMENT. General Overview

Compliance. TODAY June Meet Lanny A. Breuer. Assistant Attorney General, Criminal Division, U.S. Department of Justice.

Accredited Body Report CPA Australia. For the period ended 30 June 2013

REPORT ON EXAMINATION HHC INSURANCE COMPANY, INC. AS OF DECEMBER 31, 2009

PCI DSS 3.0 Changes Bill Franklin Executive IT Auditor January 23, 2014

Spillemyndigheden s Certification Programme Change Management Programme

Vendor Management Compliance Top 10 Things Regulators Expect

9/14/2015. Before we begin. Learning Objectives. Kevin Secrest IT Audit Manager, University of Pennsylvania

How To Manage Risk At Atb Financial

Remediation, a Key Approach to Reducing Scope

Hans Bos Microsoft Nederland.

The IP3 accreditation process. Bob Hart Chief Assessor September 2008

Time to Revamp the Compliance Management System

Information for merchants. Program implementation details for merchants. Payment Card Industry Data Security Standard (PCI DSS)

Every Cloud Has A Silver Lining. Protecting Privilege Data In A Hosted World

MINNESOTA MUTUAL COMPANIES, INC. Guidelines of the Audit Committee of the Board of Directors

Exhibit B Latest revision: May 13, 2015

Professional Position Description Section I Position Information Position Title

HIPAA in the Cloud. How to Effectively Collaborate with Cloud Providers

Compliance Requirements for Healthcare Carriers

Ecommerce Guide to PCI DSS 3.0

PCI Compliance and the Cloud: What You Can and What You Can t Outsource Presented By:

Compliance and Operational Services for Online Lenders

Intro to QualysGuard IT Compliance SaaS Services. Marek Skalicky, CISM, CRISC Regional Account Manager for Central & Adriatic Eastern Europe

Fortifying the Three Lines of Defense to Combat Compliance Risk

New PCI Standards Enhance Security of Cardholder Data

Close-Up on Cloud Security Audit

The HIPAA Security Rule: Theory and Practice

Compliance Management Systems A Blueprint for Success

Customer-Facing Information Security Policy

AUDITOR GENERAL DAVID W. MARTIN, CPA

Moving your enterprise systems to the cloud? What do you need to know to manage the risks? Jamie Levitt, Director

Service Organization Control (SOC) Reports

What can HITRUST do for me?

IT Cloud / Data Security Vendor Risk Management Associated with Data Security. September 9, 2014

Governance and Greater Financial Awareness in Nonprofit Organizations

COMPLIANCE MANAGEMENT SOLUTIONS THOMSON REUTERS ACCELUS COMPLIANCE MANAGEMENT SOLUTIONS

Navigating Vendor Management Issues in Today s Regulatory Environment

Compliance, Audits and Fire Drills: In the Way of Real Security?

Obtaining Quality Employee Benefit Plan Audit Services: The Request for Proposal and Auditor Evaluation Process

Be prepared for your Mortgage Closing.

Mobile Device Payment Card Processing: How Secure is It? Richard Poworski CISSP, ISP, ITCP, SCF, PCI QSA, PCIP Managing Consultant

DOYLESTOWN FAMILY MEDICINE, P.C. IDENTITY THEFT PREVENTION PROGRAM TEMPLATE ADOPTED AND EFFECTIVE: APRIL 15, 2009 UPDATED:

ACNB CORPORATION & SUBSIDIARIES BOARD AUDIT COMMITTEE CHARTER

BOARD OF DIRECTORS RESPONSIBILITIES FOR COMPLIANCE MANAGEMENT SYSTEMS

Introduction to QualysGuard IT Compliance SaaS Services. Marek Skalicky, CISM, CRISC Regional Account Manager for Central & Adriatic Eastern Europe

Transcription:

CFPB Readiness Series: Chief Compliance Officer Responsibilities

Legal Disclaimer This information is not intended to be legal advice and may not be used as legal advice. Legal advice must be tailored to the specific circumstances of each case. Every effort has been made to assure that this information is up to date as of the date of publication. It is not intended to be a full and exhaustive explanation of the law in any area, nor should it be used to replace the advice of your own legal counsel.

Who is KirkpatrickPrice? KirkpatrickPrice is a licensed CPA firm, providing assurance services to over 250 clients in more than 42 states, Canada, Asia and Europe. The firm has over 10 years of experience in information assurance by performing assessments, audits, and tests that strengthen information security, and compliance controls.

KirkpatrickPrice Services Compliance Management System Program development and consulting Policy & procedure drafting Risk assessment guidance Internal audit plan development CFPB Readiness Audit Information Security Audit Guidance and audit services: PCI DSS 3.0 SSAE 16 SOC 2 FISMA ISO 27001 / 27002

Welcome Jessie Skibbe is a former Chief Compliance Officer with 10 years of ARM industry experience. As Director of Compliance Services for KirkpatrickPrice, she is focused on assisting clients in meeting regulatory compliance & information security objectives. ACA Certified Credit & Collections Compliance Officer (CCCO) ISC2 Certified Information Systems Security Professional (CISSP) DBA Certified Receivables Compliance Professional (CRCP) PCI SSC Qualified Security Assessor (QSA)

Overview CFPB Publications CFPB Examination Procedures for Debt Collection Module 1: Internal Structure, Controls and Compliance Management #7: Review the entity s general compliance management system using the compliance management review section of the CFPB Supervision and Examination Manual CFPB Supervision and Examination Procedures Page 34: Compliance Management Review Page 885: Compliance Management Review Template

Welcome Brit Suttell is Director of Compliance for Burton Neil & Associates, P.C., located in West Chester, Pennsylvania. Ms. Suttell is an attorney who has been with the Firm for 8 years. She handles all client and regulatory compliance as well as oversight, implementation and creation of her Firm s CMS which includes drafting and updating Firm policies and procedures. Ms. Suttell is a member of ACA International as an Attorney Member, Pennsylvania Bar Association, American Bar Association, and NARCA where she serves on the Conference Planning Committee.

Chief Compliance Officer Chief Compliance Officer Key Component of the over all Compliance Management System Required role within the organization Title vs. Role Appropriate qualifications and experience. Collection Law Firms Debt Buyers Collection Agencies

Board/Management Oversight Identify the Chief Compliance Officer Organizational Chart Chief Compliance Officer Bio Policy Review the Role of the CCO Job Description Authority and Accountability Appointment of Authority Policy approved by Board/Management

Compliance Function Identification of new regulatory requirements Policy and Procedure Resources ACA International: Guide to State Laws & Practices ACA International: Fastfax Ballard Spahr LLP: CFPB Monitor Moss & Barnett, PA: The Debt Collection Drill Maurice & Needleman: Consumer Financial Services Blog InsideARM: CFPB Resources CFPB: Newsroom Process of incorporating relevant updates

Compliance Function Review processes for development and implementation of new consumer financial products or services. Involvement of the CCO sooner vs. later. Documented Compliance Program Policies and Procedures Training Monitoring and Corrective Action

Policies and Procedures Designated Authority for Approval Board/Management Involvement Outdated Content Address compliance with Federal consumer financial laws. Reference for employees in their day to day activities.

Training Evidence of Board / Executive Management Training Training materials Log of training session attendance Consistent with policy and procedure Training designed to reinforce documentation Compliance professionals have access to training necessary to administer the program. Annual Training Plan CCO s role in the development of training materials Selecting, reviewing or delivering content

Monitoring and Corrective Action The Chief Compliance Officer s role Policy & Procedure Monitoring Testing Corrective Action Maintain a monitoring and testing schedule Coverage of service providers Compliance Analytics

Consumer Complaint Response The Chief Compliance Officer s role Ensure complaints are promptly addressed Categorized appropriately Review of complaints Analysis of complaints Identify weaknesses in the compliance management system Challenges

Compliance Audit Audit program must maintain sufficient independence, reporting to the board/management. Compliance and unit managers should receive a copy of audit reports Chief Compliance Officer Audit results lead to appropriate, timely corrective action.

Conclusion Chief Compliance Officer Responsibilities: Maintain Operational Independence Direct Access to the Board of Directors/Executive Management Overall Responsibility for Compliance with Consumer Financial Protection Laws Management of the CMS Lifecycle

Compliance Management System

Compliance Management System KirkpatrickPrice CFPB Readiness Audit Review of the overall design Policies, Procedures & Documentation Review of operational effectiveness Testing of controls to ensure compliance with CFPB Examination Procedures

Thank you for attending our Webinar Q & A For further information contact: Todd Stephenson t.stephenson@kirkpatrickprice.com 800.977.3154 Ext. 202 Jessie Skibbe j.skibbe@kirkpatrickprice.com 800.977.3154 Ext. 103

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information