Effective Risk Management With AML Risk Assessment. January 25, 2017

Similar documents
Anti-Money Laundering and Sanctions Compliance. You Can t Afford the Risks

Internal Audit Solutions:

Michael Lammie Director, PricewaterhouseCoopers

AML model risk management and validation

Crowe Activity Review System

Model Risk Management

READY OR NOT? NAVIGATING THE DFS 504 RULE. AUTHORS Adrian Murphy Austin Hong Aron Cohen CONTRIBUTORS Allen Meyer Alan Morley

7 Key Trends in Enterprise Risk Management

Crowe Caliber. Using Technology to Enhance AML Model Risk Management Programs and Automate Model Calibration. Audit Tax Advisory Risk Performance

Outsourcing banking processes: The question is no longer if, but how to effectively manage extended enterprises

Anti-Money Laundering

DIGITAL CASE STUDIES

BSA BUSINESS RISK ASSESSMENT. America Asia Europe United Kingdom Australasia

NEXT GENERATIONAL AML SOFTWARE. America Asia Europe United Kingdom Australasia

WELCOME. 1

Crowe Activity Review System (CARS ) for Loan Review

Four Strategies for Enabling Innovation in the Face of Risk and Compliance. By John A. Epperson and Clayton J. Mitchell

Compliance 2017: The Year of Regulatory Automation

Risk Based Approach and Enterprise Wide Risk Assessment Edwin Somers / Inneke Geyskens-Borgions 26 September 2017

Enterprise compliance Acting on today s risks to avoid tomorrow s crises

ANTI-MONEY LAUNDERING & SANCTIONS EXPERTS WITH IMPACT

Trends Shaping the Bank of the Future

Preventing Board and Management Liability for Violations of AML Rules

EY Forensic & Integrity Services

Global Trade Advisory Trade Automation Innovation

RSA Solution for egrc. A holistic strategy for managing risk and compliance across functional domains and lines of business.

Data management meets the C-suite

FMS New York/ New Jersey Chapter Meeting January 14, The Impact of Models. by: Scott Baranowski

IBM Algo Managed Data Analytics Service

REGULATORY HOT TOPICS FOR INTERNAL AUDITORS: EVALUATING THE USE OF AML TECHNOLOGY

Practices in Enterprise Risk Management

IIB - INTERNATIONAL BANKING ANTI-MONEY LAUNDERING SEMINAR

KPMG s financial management practice

ENTERPRISE RISK MANAGEMENT USING DATA ANALYTICS. Dan Julevich and Chris Dawes April 17, 2015

Third Party Risk Management ( TPRM ) Transformation

REGULATORY HOT TOPICS FOR INTERNAL AUDITORS: EVALUATING THE USE OF AML TECHNOLOGY

Financial Institution Profitability Measurement and Reporting. by Tom McCarthy

Operational Excellence By Automating Operational Risk Management. February 4, 2016 Doug Hatler, EVP of Sales

A Strategic Approach to Bank Fraud

Broadscope provides a superior fund administration alternative for the Private Equity industry.

Astrus Third Party Intelligence

Fixed Scope Offering For Oracle Fusion HCM SaaS Implementation

Article from: CompAct. April 2013 Issue No. 47

RSM ANTI-MONEY LAUNDERING SURVEY BEST PRACTICES AND BENCHMARKING FOR YOUR BSA/AML PROGRAM

CFO attestation: building a sustainable process

PDI Retail Fuel Pricing

ANTI-MONEY LAUNDERING SERVICES EXPERTS WITH IMPACT

Managing Complex Programs Using Predictive Modeling and Simulation. October 7, 2014

MEGA S SOLUTIONS FOR GOVERNANCE, RISK, AND COMPLIANCE

Delivering Governed Self-Service BI across the Enterprise

Optiv's Third- Party Risk Management Solution

Modernizing Compliance: Evolving From a Foundational Program to a Value-Creating Strategic Partner

Info paper Is your sanctions filter working?

Integrating COSO s Fraud Risk Management Guide on an Enterprise Scale

Extended Enterprise Risk Management

The Strategic Potential of Internal Audit

Comprehensive Enterprise Solution for Compliance and Risk Monitoring

FINANCIAL SERVICES FLASH REPORT

DFSNY Rule 504 Gathering the Evidence

Anti Money Laundering Compliance Solutions. Copyright 2016 Allsec Technologies. All rights reserved.

Agilent Laboratory Business Intelligence. Technical Note

Understanding employee engagement after a corporate acquisition A global communications company. EngagePath client spotlight

The winning tax transformation trinity. Data, technology and operations

Leading the Global. Next Decade Doing More with Less The Lean Internal Audit Model. Larry Rieger

Better Performance, Better Results

Predictive and Prescriptive Analytics in Banking: Transforming Customer Intelligence

Centerity Business Services Management & IT Analytics Platform

RouteONE Helping enhance the real value from SAP GRC Risk Management

ACAMS Update. John J. Byrne, Esq., CAMS Executive Vice President February 5, 2016

AML Regulation in 2014: The New Culture of Compliance. Webinar Participant Poll Results. Copyright 2016 NICE Actimize. All rights reserved.

The power of the Converge platform lies in the ability to share data across all aspects of risk management over a secure workspace.

McKinsey ACQUA Assessment of Capabilities in Quality. Making the organization flow to Quality Excellence

Adding insight to audit Transforming Internal Audit through data analytics

4/26. Analytics Strategy

Crowe Portfolio Analyzer for Sureties and Agents solution

The Smart ERP Choice for the Metals Industry

Big risks require big data thinking: EY Forensic Data Analytics (FDA), powered by IBM

Extended Enterprise Risk Management

Enterprise Compliance Management for Credit Unions

Embracing Opportunity Demands an Internal Audit Transformation

Risk Management: Building an Integrated Program to Drive Business Value

Oilpocalypse Now: Weathering the Storm with Integrated Project Management Samarth Jain Andrew Lavinsky

The Smart ERP Choice for the Metals Industry

The Optanix Platform. Service Predictability. Delivered. Optanix Platform Overview. Overview. 95% 91% proactive incidents first-time fix rate

KPMG Smart Controls. Putting you in control of your controls. kpmg.co.uk

Powered by technology, our experts are unlocking the value of your audit. Dynamic Audit

EY license compliance manager for SAP software. Forensic Technology & Discovery Services

Gain strategic insight into business services to help optimize IT.

Welcome to the 404 Institute Webcast

End-to-end Business Management Solution for Small to Mid-sized Businesses

Law Department Technology Management. July 25th, 2018

Practical Ideas for an Effective BSA/AML Compliance Function: Risk Assessment and Program Development

THOMSON REUTERS CLIENT ON-BOARDING

Modernizing compliance: Moving from value protection to value creation

3 Ways to Reduce the Costs of SOX compliance

Long-Term Care: How Accounting & Finance Platforms Have Advanced

Practical Suggestions and Tips for an Effective BSA/AML Compliance function : Compliance Performance Testing

STRATEGIES FOR REDUCING AML CASE PROCESSING TIMES

To Reach Your Business Goals, Reach for the Cloud.

Transcription:

Effective Risk Management With AML Risk Assessment January 25, 2017 2017 2017 Crowe Crowe Horwath Horwath LLP LLP

Agenda Regulatory Trends in Risk Assessment Crowe Approach to Anti-Money Laundering (AML) and Sanctions Risk Assessments How Crowe Is Taking Action 2017 Crowe Horwath LLP 2

Regulatory Trends and Directional Guidance 2017 Crowe Horwath LLP

Regulatory Actions in the Headlines In 2016 there were at least 21 significant enforcement actions that resulted in more than $637 million in fines or penalties and included reference to an organization s need to address deficiencies in their BSA / AML and Sanctions risk assessment processes. The Bank did not have up-to-date, accurate, and verified information to enable it to conduct its annual risk assessment. (February 2016) Impact Civil money penalty greater than $3,750,000 The Bank shall develop a comprehensive BSA/AML risk assessment that identifies and considers all products and services, customer types, geographic locations, and transaction volumes in determining inherent and residual risks. (July 2016) Impact The Bank's BSA/AML and OFAC Risk Assessments lacked thorough review of Branch customers, products, services, and geographic locations served. It likewise was insufficient in its methodology. (August 2016) Consent order including fines greater than $150,000,000 Impact Consent order including fines greater than $175,000,000 From 2011 through 2012, the Bank failed to conduct a risk assessment that incorporated all of its products and services including wire transfers processed for its domestic and international money service businesses. (December 2016) Impact Civil money penalty greater than $450,000 2017 Crowe Horwath LLP 4

Market Challenges Based upon our work with clients well as a Crowe marketing evaluation, we believe the market has some or all of the following thematic challenges related to risk assessment. Manual and time-intensive processes for collecting information and gathering data Collecting information in a collaborative manner for enterprise risk aggregation Creating a sustainable risk assessment process Developing data analytics to understand why risk matters and what are the biggest drivers Forecasting risk and understanding trends within an organization Aligning with corrective or remediation efforts as a result of the risk assessment 2017 Crowe Horwath LLP 5

Polling Question 1 What is your organization s greatest challenge today in AML risk assessment? a) Ability to execute a sustainable and repeatable process for each assessment period b) Ability to allocate time to conduct the risk assessment c) Ability to leverage qualified and skilled personnel to conduct the risk assessment d) Ability to obtain and leverage accurate and meaningful data during the assessment process e) Unsure, other 2017 Crowe Horwath LLP 6

Crowe Approach to AML and Sanctions Risk Assessment 2017 Crowe Horwath LLP

AML and Sanctions Risk Assessment High Level Process GOAL: A data-driven approach to assessing AML and Sanctions risk, in a manner that facilitates a consistent methodology across other enterprise risk areas, while establishing appropriate governance, reporting, and analytics to drive sustainability to the risk assessment and management function. PROCESS: Apply environmental factors against available data to establish a tailored risk profile Approach must be scalable to address our client s growth ambition and business strategy Assessment and its systems, process, and results should be intuitive to enterprise stakeholders Qualitative Interviews Interviews with AML and Sanctions program members and product specialists about what they do to document AML and Sanctions risk, profile and identify key risk indicators (KRIs) Quantitative Analysis Consider available data and specific defined metrics and measures to evaluate AML and Sanctions risk and define key performance indicators (KPIs) Crowe Experience The final work product is a data driven risk assessment methodology, supported by KPIs and KRIs to evaluate and present enterprise risk to leadership in a manner that facilitates managing the business Assessment must be sustainable to Risk assessment methodology Qualitative and quantitative data is inform risk management decisions principles should facilitate balanced against Crowe s AML application across enterprise and Sanctions experience 2017 Crowe Horwath LLP 8

Differentiated KRIs Utilizing differentiated KRIs for risk factor data collection allows for better and more meaningful risk assessment data analytics. Identify what matters most for AML and Sanctions compliance Identification of supporting data sources 2017 Crowe Horwath LLP 9

Supporting KPIs and Management Reporting Enhance risk and operational management by focusing on the most important factors and developing sustainable infrastructure. Develop performance indicators for management review Provide focused instruction in lagging performance areas Enable ongoing monitoring and risk management Customer Data Transaction Data Issue Management Data 2017 Risk Assessment 2017 Crowe Horwath LLP 10

Scalable Process A scalable process is essential to support ongoing organizational and regulatory change. Establishing a scalable process impacts people, process and technology within the institution. Provide training on the risk assessment methodology and repeatable risk assessment process during execution or after Coach management team on biggest areas of focus and how to best leverage KRIs and KPIs Leverage a methodology that can extend to any type of risk assessment Support growth and changes within the organization and regulatory expectations Develop tools and deliverables that are flexible enough for use across the organization Utilize supporting technology where it makes sense (live database connections, automated reporting) 2017 Crowe Horwath LLP 11

Polling Question 2 How confident are you that your current AML risk assessment process meets regulatory expectations? a) Very confident b) Confident c) Somewhat confident d) Lacking confidence e) Unsure 2017 Crowe Horwath LLP 12

Event-Based Assessment Sustainable risk assessment is built on establishing a baseline risk environment and repeating or updating the risk assessment process at trigger events throughout the year. New Geography New customer types and new geographies can bring new types of risk to the organization New Product New or differentiated products can mean new types of transactions and services that must be assessed New or Updated Control Environment Completion of any major technology project, process improvement, or organizational shift can impact the control environment at the institution Execution at Recurring Frequency Set maximum frequency for risk assessment update and execute if no trigger events take place 2017 Crowe Horwath LLP 13

How Is Crowe Taking Action? 2017 Crowe Horwath LLP

Crowe Collaborative Risk Assessment Solution Overview Major Solution Components Dashboards Reports & Analytics Easy Setup Normalization Customizable scoring and normalization Dynamic question sets and configurable answer libraries Enabling Platform Components Highly configurable workflows Embedded and customizable reporting, dashboards & visualization Import/export documentation & spreadsheet repository Administration and security Purpose-driven database structure supporting integration Full Solution Support (Testing, Documentation, Implementation) 2017 Crowe Horwath LLP 15

Polling Question 3 Do you use a technology solution currently to conduct your AML risk assessment? a) Yes, an in-house solution we developed b) Yes, a vendor solution we purchased c) No d) Not currently, but we re looking to move in that direction e) Unsure 2017 Crowe Horwath LLP 16

Crowe Collaborative Risk Assessment Dashboards Risk Assessment Dashboard Reporting Targeted information at your fingertips Adaptable based on target audience and specific risk Real-time updates to understand the evolution of risk Correction and Preventative Action Dashboard Reporting Real-time updates to understand current progress, trends, and status of open items Increased accountability and awareness 2017 Crowe Horwath LLP 17

Crowe Collaborative Risk Assessment Impactful Reporting & Analytics Analytics Forecasting Corrective Action Risk and Control Rating Analytics Risk and Control Forecasting Corrective and Preventative Action Status Quick visual access to understand where your risk resides and drill-down capability Demonstrate the impact of evolving risk Targeted identification of control weaknesses Ability to quickly demonstrate impact of planned projects Plan for future investments and strategic decisions Leverage trending data to project future risk 2017 Crowe Horwath LLP 18 Link between action plans and identified gaps or weakness to update when completed Maintain real-time status of initiatives Demonstrate progress and movement towards remediation

Crowe Collaborative Risk Assessment 5-Step Easy Setup Risk Topic(s) Scoring Assessment Questions Assessment Responses Control Questions Select from a prepopulated inventory of risk assessment intellectual property (IP) Select multiple risk topics for simultaneous assessment Simple, quick and easy selections Pre-populated inventory of scoring scales Select scoring scales to align to existing organizational policies or preferences Adjustable for direct alignment with your institution s practices Ability to select from existing risk assessment questions Question sets refreshed to reflect current trends and regulatory guidance Based on questions selected, understand and select expected responses Set expectations and support gap assessment Aids comparison across business units Select pre-populated control questions based on assessment topic Review and confirm the control categories for risk mapping 2017 Crowe Horwath LLP 19

Crowe Collaborative Risk Assessment Normalization Help your organization move from Risk Assessment to Risk Management Normalize Scoring Across Assessments Allow for multiple scoring strategies to be normalized Allow for true enterprise risk rating and comparisons Sustainable adjustments as your organization evolves 2017 Crowe Horwath LLP 20

Questions? 2017 Crowe Horwath LLP 21

For more information, contact: Tom Lazard + 1 317 208 2435 thomas.lazard@crowehorwath.com Tyler Warner + 1 630 954 8502 tyler.warner@crowehorwath.com In accordance with applicable professional standards, some firm services may not be available to attest clients. This material is for informational purposes only and should not be construed as financial or legal advice. Please seek guidance specific to your organization from qualified advisers in your jurisdiction. 2017 Crowe Horwath LLP, an independent member of Crowe Horwath International crowehorwath.com/disclosure 22 2017 Crowe Horwath LLP

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback