SlideShare une entreprise Scribd logo

Compliance Capability

nikatmalik
nikatmalik

This document discusses developing a compliance capability for an organization. It outlines principles for taking an end-to-end view of business processes to ensure compliance. Ownership and accountability for compliance must be clear from leadership down. Compliance processes should be integrated into business functions from the start. Automating compliance functions and integrating compliance into transaction lifecycles can help comprehensively control processes. Self-assessments can identify compliance capabilities and gaps to help define a target compliance state.

Économie & finance
1  sur  7
Towards a Compliance Capability Nikat Malik January 2014 All Rights Reserved Compliance Capability
Compliance Capability - Principles Compliance Capability End-to End View of the process path encompassing the business life cycle to completion. This will provide effective compliance control of functional business processes and activities along the desired path. Ownership of the compliance process must be explicitly clear and accountability held from leadership through to operational level. Compliance processes should be positioned at forefront of business functions , not as an after event. Regulatory and compliance requirements should be addressed as part of the business operating model in a partnering approach to be effective. The compliance function together with processes should be fully automated to account for operational risk and efficiency. Compliance processes should be identified and integrated into the transaction life cycle route for comprehensive control and to ensure business processes are compliant with requirements. Consistency of controls and procedures should be maintained at both strategic and operational level with change methodology applied judiciously. High risk audit points must be examined across business processes and controls applied adequately. Clear escalation path for efficient resolution must be put in place to ensure efficient business operations.
Compliance Capability – Applied Methodology Compliance Capability Understand business model and strategic objectives comprising of profit model, customer model, product model and control model. Evaluate impact of regulation and compliance requirements on business model. Develop and confirm integrated operating model. Undertake self assessment to identify compliance capability and its strengths and weaknesses. Identify gaps in specific level of capability required. Develop the capability framework... In reference to …. • Business Context • Operating Environment • Customer Base • Risk Appetite • Technology Comprising …. • Behaviour • Performance • Conduct • Skills Training • Systems Required
Compliance Capability – Self Assessment (1 of 2) Compliance Capability Objectives • To identify levels of capability required in light of operating environment and regulatory demands in local, regions and host country • To assess current compliance standards • To proactively manage risk exposures • To define target state to fulfil business objectives Self Assessment is completed through facilitated expert judgement that considers risk and controls information to define a set of impacts and directive efforts Risk and Control Framework • Money Laundering • Sanctions • Bribery • Terrorist Financing • PEP Finance/Payments • Cross Border Breech • Unlawful Payments • Conduct / Mis-Selling • Client Identification • Fraud & Security Regulatory Risks Risk & Control Assessment Key Indicators Internal Incidents External Events Expected Loss Self Assessment Results Financial & Reputation Impact Proactive & Remedial Action Governance Identify Risk Appetite Assess Control Report
Compliance Capability – Self Assessment (2 of 2) Compliance Capability Self Assessment Process Scope Build Assess Validate • Develop draft Self Assessment Questionnaire for each risk including drivers and impacts • Ensure appropriate involvement from functional experts, businesses and legal • Agree audit and compliance points for each risk by business / country • Plan Self Assessment workshops and attendees • Leadership provided by Group Risk & Compliance Committee and Self Assessment Task Force • Involvement and input from Business and Global Functions • Agreement on Risks to be included and Businesses to cover • Assess impact of questionnaire results • Assessment to include an assessment of local controls and management actions required taking into account risk appetite • Undertake impact assessment for all possible scenarios incl. typical and rare events • Validate impact of risk and functional review • Undertake quantitative validation incl. severity and benchmarking • Action Plan to Group Risk & Compliance Committee • Annual model review
Compliance Capability – Structure Compliance Capability Front Office Mid Office Back Office Customer Centric Control Centric Service Centric Prevention Investigation Detection EntityFocusRoleComplianceRequirements KYC / KYCC FATCA CDD / PDD / EDD SANCTIONS ATF ABC AML C/P FRAUD DODD FRANK EMIR BCBS 248 BASEL FDSF / Stress Test MIFIR BCBS 239 COREP / FINREP SOX FRAUD – Internal SECURITY
Compliance Capability – In Action Trade Management Process, an example Customer Management Trade Validation Trade Execution Trade Processing Clearing & Settlement Compliance & Accounting Checks: •Terms & product •Legal Agreement •Credit Limit •Collateral •Margin Addl. Compliance Control Checks: •Sanctions •KYCC •FATCA •CDD •ATF •AML •Customer/Country Risk Rating •Capital/Liquidity •Matching •Confirmation •Allocation •Booking •Netting •Exposure Management •Pricing •Valuation •Analytics •Portfolio Position •Trade Initiation •Relationship Management •Client On Boarding •Limit Setting •Payment •Settlement •Custody •Exchange •Collateral Management •P/L •Counter Party Management •Regulatory Reporting •Compliance Control CurrentStateTargetStateProcess “ “ “ “ “ Trade Compliance Committee – escalation & governance procedure to manage Alerts & Suspicious Activity for timely clearance and resolution Value Statement Positions compliance at forefront of business process Mitigates risk at potential point of occurrence Real time feedback result Ease of monitoring & efficient control Clean data ensures accuracy Compliance Capability

Recommandé

Anti Money Laundering Framework
Anti Money Laundering FrameworkAnti Money Laundering Framework
Anti Money Laundering Frameworknikatmalik
 
AML and Compliance Analytics
AML and Compliance Analytics AML and Compliance Analytics
AML and Compliance Analytics Naveen Grover
 
Vendor Management - Compliance Checklist Manifesto Series
Vendor Management - Compliance Checklist Manifesto SeriesVendor Management - Compliance Checklist Manifesto Series
Vendor Management - Compliance Checklist Manifesto SeriesContinuity Control
 
Trends in AML Compliance
Trends in AML ComplianceTrends in AML Compliance
Trends in AML ComplianceAmazon Web Services
 
Iso 27001 awareness
Iso 27001 awarenessIso 27001 awareness
Iso 27001 awarenessÃsħâr Ãâlâm
 
Corporate Compliance Overview
Corporate Compliance OverviewCorporate Compliance Overview
Corporate Compliance OverviewSam Carr
 
What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance BOC Group
 
Introduction to Risk Management via the NIST Cyber Security Framework
Introduction to Risk Management via the NIST Cyber Security FrameworkIntroduction to Risk Management via the NIST Cyber Security Framework
Introduction to Risk Management via the NIST Cyber Security FrameworkPECB
 

Recommandé

Anti Money Laundering Framework
Anti Money Laundering FrameworkAnti Money Laundering Framework
Anti Money Laundering Frameworknikatmalik
 
AML and Compliance Analytics
AML and Compliance Analytics AML and Compliance Analytics
AML and Compliance Analytics Naveen Grover
 
Vendor Management - Compliance Checklist Manifesto Series
Vendor Management - Compliance Checklist Manifesto SeriesVendor Management - Compliance Checklist Manifesto Series
Vendor Management - Compliance Checklist Manifesto SeriesContinuity Control
 
Trends in AML Compliance
Trends in AML ComplianceTrends in AML Compliance
Trends in AML ComplianceAmazon Web Services
 
Iso 27001 awareness
Iso 27001 awarenessIso 27001 awareness
Iso 27001 awarenessÃsħâr Ãâlâm
 
Corporate Compliance Overview
Corporate Compliance OverviewCorporate Compliance Overview
Corporate Compliance OverviewSam Carr
 
What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance BOC Group
 
Introduction to Risk Management via the NIST Cyber Security Framework
Introduction to Risk Management via the NIST Cyber Security FrameworkIntroduction to Risk Management via the NIST Cyber Security Framework
Introduction to Risk Management via the NIST Cyber Security FrameworkPECB
 
Corporate Compliance Management
Corporate Compliance ManagementCorporate Compliance Management
Corporate Compliance ManagementPavan Kumar Vijay
 
Fraud Risk Assessment- detection and prevention- Part- 2,
Fraud Risk Assessment- detection and prevention- Part- 2, Fraud Risk Assessment- detection and prevention- Part- 2,
Fraud Risk Assessment- detection and prevention- Part- 2, Tahir Abbas
 
Enterprise Risk Management.pdf
Enterprise Risk Management.pdfEnterprise Risk Management.pdf
Enterprise Risk Management.pdfSelf Employed
 
Building an effective Information Security Roadmap
Building an effective Information Security RoadmapBuilding an effective Information Security Roadmap
Building an effective Information Security RoadmapElliott Franklin
 
ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3Tanmay Shinde
 
Building Risk Management into Enterprise Architecture
Building Risk Management into Enterprise ArchitectureBuilding Risk Management into Enterprise Architecture
Building Risk Management into Enterprise Architectureiasaglobal
 
ISA 530 Audit Sampling
ISA 530 Audit SamplingISA 530 Audit Sampling
ISA 530 Audit SamplingSazzad Hossain, ITP, MBA, CSCA™
 
Third Party Risk Management
Third Party Risk ManagementThird Party Risk Management
Third Party Risk Managementbanerjeerohit
 
Information Technology Vendor Risk Management
Information Technology Vendor Risk ManagementInformation Technology Vendor Risk Management
Information Technology Vendor Risk ManagementDeepak Bansal, CPA CISSP
 
Certified Compliance Officer - Presentation Slides
Certified Compliance Officer - Presentation SlidesCertified Compliance Officer - Presentation Slides
Certified Compliance Officer - Presentation SlidesAsia Master Training آسيا ماسترز للتدريب والتطوير
 
ISO 27001
ISO 27001ISO 27001
ISO 27001n|u - The Open Security Community
 
Mastering Information Technology Risk Management
Mastering Information Technology Risk ManagementMastering Information Technology Risk Management
Mastering Information Technology Risk ManagementGoutama Bachtiar
 
Business case for information security program
Business case for information security programBusiness case for information security program
Business case for information security programWilliam Godwin
 
NIST CyberSecurity Framework: An Overview
NIST CyberSecurity Framework: An OverviewNIST CyberSecurity Framework: An Overview
NIST CyberSecurity Framework: An OverviewTandhy Simanjuntak
 
Internal Control & Risk Management Framework
Internal Control & Risk Management FrameworkInternal Control & Risk Management Framework
Internal Control & Risk Management FrameworkTreasury Consulting LLP
 
Third Party Risk Management
Third Party Risk ManagementThird Party Risk Management
Third Party Risk ManagementEC-Council
 
CONTROL AND AUDIT
CONTROL AND AUDITCONTROL AND AUDIT
CONTROL AND AUDITRos Dina
 
Cybersecurity Framework - Introduction
Cybersecurity Framework - IntroductionCybersecurity Framework - Introduction
Cybersecurity Framework - IntroductionMuhammad Akbar Yasin
 
Corporate Compliance Management (CCM) : A Systematic Approach
Corporate Compliance Management (CCM) : A Systematic Approach Corporate Compliance Management (CCM) : A Systematic Approach
Corporate Compliance Management (CCM) : A Systematic Approach Pavan Kumar Vijay
 
Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Dinesh O Bareja
 
Creating a compliance assessment program on a tight budget
Creating a compliance assessment program on a tight budgetCreating a compliance assessment program on a tight budget
Creating a compliance assessment program on a tight budgetAshley Deuble
 
Risk assessment for_small_business_-_be_smart
Risk assessment for_small_business_-_be_smartRisk assessment for_small_business_-_be_smart
Risk assessment for_small_business_-_be_smartRana Daniyal
 

Contenu connexe

Tendances

Corporate Compliance Management
Corporate Compliance ManagementCorporate Compliance Management
Corporate Compliance ManagementPavan Kumar Vijay
 
Fraud Risk Assessment- detection and prevention- Part- 2,
Fraud Risk Assessment- detection and prevention- Part- 2, Fraud Risk Assessment- detection and prevention- Part- 2,
Fraud Risk Assessment- detection and prevention- Part- 2, Tahir Abbas
 
Enterprise Risk Management.pdf
Enterprise Risk Management.pdfEnterprise Risk Management.pdf
Enterprise Risk Management.pdfSelf Employed
 
Building an effective Information Security Roadmap
Building an effective Information Security RoadmapBuilding an effective Information Security Roadmap
Building an effective Information Security RoadmapElliott Franklin
 
ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3Tanmay Shinde
 
Building Risk Management into Enterprise Architecture
Building Risk Management into Enterprise ArchitectureBuilding Risk Management into Enterprise Architecture
Building Risk Management into Enterprise Architectureiasaglobal
 
Third Party Risk Management
Third Party Risk ManagementThird Party Risk Management
Third Party Risk Managementbanerjeerohit
 
Information Technology Vendor Risk Management
Information Technology Vendor Risk ManagementInformation Technology Vendor Risk Management
Information Technology Vendor Risk ManagementDeepak Bansal, CPA CISSP
 
Mastering Information Technology Risk Management
Mastering Information Technology Risk ManagementMastering Information Technology Risk Management
Mastering Information Technology Risk ManagementGoutama Bachtiar
 
Business case for information security program
Business case for information security programBusiness case for information security program
Business case for information security programWilliam Godwin
 
NIST CyberSecurity Framework: An Overview
NIST CyberSecurity Framework: An OverviewNIST CyberSecurity Framework: An Overview
NIST CyberSecurity Framework: An OverviewTandhy Simanjuntak
 
Internal Control & Risk Management Framework
Internal Control & Risk Management FrameworkInternal Control & Risk Management Framework
Internal Control & Risk Management FrameworkTreasury Consulting LLP
 
Third Party Risk Management
Third Party Risk ManagementThird Party Risk Management
Third Party Risk ManagementEC-Council
 
CONTROL AND AUDIT
CONTROL AND AUDITCONTROL AND AUDIT
CONTROL AND AUDITRos Dina
 
Cybersecurity Framework - Introduction
Cybersecurity Framework - IntroductionCybersecurity Framework - Introduction
Cybersecurity Framework - IntroductionMuhammad Akbar Yasin
 
Corporate Compliance Management (CCM) : A Systematic Approach
Corporate Compliance Management (CCM) : A Systematic Approach Corporate Compliance Management (CCM) : A Systematic Approach
Corporate Compliance Management (CCM) : A Systematic Approach Pavan Kumar Vijay
 
Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Dinesh O Bareja
 

Tendances (20)

Corporate Compliance Management
Corporate Compliance ManagementCorporate Compliance Management
Corporate Compliance Management
 
Fraud Risk Assessment- detection and prevention- Part- 2,
Fraud Risk Assessment- detection and prevention- Part- 2, Fraud Risk Assessment- detection and prevention- Part- 2,
Fraud Risk Assessment- detection and prevention- Part- 2,
 
Enterprise Risk Management.pdf
Enterprise Risk Management.pdfEnterprise Risk Management.pdf
Enterprise Risk Management.pdf
 
Building an effective Information Security Roadmap
Building an effective Information Security RoadmapBuilding an effective Information Security Roadmap
Building an effective Information Security Roadmap
 
ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3ISO 27001 - Information security user awareness training presentation - part 3
ISO 27001 - Information security user awareness training presentation - part 3
 
Building Risk Management into Enterprise Architecture
Building Risk Management into Enterprise ArchitectureBuilding Risk Management into Enterprise Architecture
Building Risk Management into Enterprise Architecture
 
ISA 530 Audit Sampling
ISA 530 Audit SamplingISA 530 Audit Sampling
ISA 530 Audit Sampling
 
Third Party Risk Management
Third Party Risk ManagementThird Party Risk Management
Third Party Risk Management
 
Information Technology Vendor Risk Management
Information Technology Vendor Risk ManagementInformation Technology Vendor Risk Management
Information Technology Vendor Risk Management
 
Certified Compliance Officer - Presentation Slides
Certified Compliance Officer - Presentation SlidesCertified Compliance Officer - Presentation Slides
Certified Compliance Officer - Presentation Slides
 
ISO 27001
ISO 27001ISO 27001
ISO 27001
 
Mastering Information Technology Risk Management
Mastering Information Technology Risk ManagementMastering Information Technology Risk Management
Mastering Information Technology Risk Management
 
Business case for information security program
Business case for information security programBusiness case for information security program
Business case for information security program
 
NIST CyberSecurity Framework: An Overview
NIST CyberSecurity Framework: An OverviewNIST CyberSecurity Framework: An Overview
NIST CyberSecurity Framework: An Overview
 
Internal Control & Risk Management Framework
Internal Control & Risk Management FrameworkInternal Control & Risk Management Framework
Internal Control & Risk Management Framework
 
Third Party Risk Management
Third Party Risk ManagementThird Party Risk Management
Third Party Risk Management
 
CONTROL AND AUDIT
CONTROL AND AUDITCONTROL AND AUDIT
CONTROL AND AUDIT
 
Cybersecurity Framework - Introduction
Cybersecurity Framework - IntroductionCybersecurity Framework - Introduction
Cybersecurity Framework - Introduction
 
Corporate Compliance Management (CCM) : A Systematic Approach
Corporate Compliance Management (CCM) : A Systematic Approach Corporate Compliance Management (CCM) : A Systematic Approach
Corporate Compliance Management (CCM) : A Systematic Approach
 
Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing
 

En vedette

Creating a compliance assessment program on a tight budget
Creating a compliance assessment program on a tight budgetCreating a compliance assessment program on a tight budget
Creating a compliance assessment program on a tight budgetAshley Deuble
 
Risk assessment for_small_business_-_be_smart
Risk assessment for_small_business_-_be_smartRisk assessment for_small_business_-_be_smart
Risk assessment for_small_business_-_be_smartRana Daniyal
 
Operational innovations in AML/CFT compliance processes and financial inclus...
Operational innovations in AML/CFT compliance processes and financial inclus...Operational innovations in AML/CFT compliance processes and financial inclus...
Operational innovations in AML/CFT compliance processes and financial inclus...CGAP
 
The Challenges of Managing a Global AML Program
The Challenges of Managing a Global AML Program The Challenges of Managing a Global AML Program
The Challenges of Managing a Global AML Program jennyhollingworth
 
StubbsGazette Anti-Money Laundering Workshop presentation
StubbsGazette Anti-Money Laundering Workshop presentationStubbsGazette Anti-Money Laundering Workshop presentation
StubbsGazette Anti-Money Laundering Workshop presentationStubbsGazette
 
mr neeraj - day 2 - aml kyc
mr neeraj - day 2 - aml kycmr neeraj - day 2 - aml kyc
mr neeraj - day 2 - aml kycNeeraj Verma
 
Exposure Measurement
Exposure MeasurementExposure Measurement
Exposure Measurementnikatmalik
 
Regulatory Risk
Regulatory RiskRegulatory Risk
Regulatory Risknikatmalik
 
Lean Transformation
Lean TransformationLean Transformation
Lean Transformationnikatmalik
 
Data Managment
Data ManagmentData Managment
Data Managmentnikatmalik
 
Credit Value Adjustment
Credit Value AdjustmentCredit Value Adjustment
Credit Value Adjustmentnikatmalik
 
Test Automation
Test AutomationTest Automation
Test Automationnikatmalik
 
BCBS 261 - Collateral and Margin Management for Uncleared Derivatives
BCBS 261 - Collateral and Margin Management for Uncleared DerivativesBCBS 261 - Collateral and Margin Management for Uncleared Derivatives
BCBS 261 - Collateral and Margin Management for Uncleared Derivativesnikatmalik
 
BCBS 248 - Intraday Liquidity Management
BCBS 248 - Intraday Liquidity ManagementBCBS 248 - Intraday Liquidity Management
BCBS 248 - Intraday Liquidity Managementnikatmalik
 
2015 09-22 Is it time for a Security and Compliance Assessment?
2015 09-22 Is it time for a Security and Compliance Assessment?2015 09-22 Is it time for a Security and Compliance Assessment?
2015 09-22 Is it time for a Security and Compliance Assessment?Raffa Learning Community
 
LT-Innovate OSCAR Open Standards Compliance Assessment Report Project
LT-Innovate OSCAR Open Standards Compliance Assessment Report ProjectLT-Innovate OSCAR Open Standards Compliance Assessment Report Project
LT-Innovate OSCAR Open Standards Compliance Assessment Report ProjectSerge Gladkoff
 
Scce webinar assessment_061316
Scce webinar assessment_061316Scce webinar assessment_061316
Scce webinar assessment_061316Eric Morehead
 

En vedette (19)

Creating a compliance assessment program on a tight budget
Creating a compliance assessment program on a tight budgetCreating a compliance assessment program on a tight budget
Creating a compliance assessment program on a tight budget
 
Risk assessment for_small_business_-_be_smart
Risk assessment for_small_business_-_be_smartRisk assessment for_small_business_-_be_smart
Risk assessment for_small_business_-_be_smart
 
Operational innovations in AML/CFT compliance processes and financial inclus...
Operational innovations in AML/CFT compliance processes and financial inclus...Operational innovations in AML/CFT compliance processes and financial inclus...
Operational innovations in AML/CFT compliance processes and financial inclus...
 
Compliance Risk Assessment
Compliance Risk AssessmentCompliance Risk Assessment
Compliance Risk Assessment
 
The Challenges of Managing a Global AML Program
The Challenges of Managing a Global AML Program The Challenges of Managing a Global AML Program
The Challenges of Managing a Global AML Program
 
StubbsGazette Anti-Money Laundering Workshop presentation
StubbsGazette Anti-Money Laundering Workshop presentationStubbsGazette Anti-Money Laundering Workshop presentation
StubbsGazette Anti-Money Laundering Workshop presentation
 
mr neeraj - day 2 - aml kyc
mr neeraj - day 2 - aml kycmr neeraj - day 2 - aml kyc
mr neeraj - day 2 - aml kyc
 
Exposure Measurement
Exposure MeasurementExposure Measurement
Exposure Measurement
 
Regulatory Risk
Regulatory RiskRegulatory Risk
Regulatory Risk
 
Lean Transformation
Lean TransformationLean Transformation
Lean Transformation
 
Data Managment
Data ManagmentData Managment
Data Managment
 
Credit Value Adjustment
Credit Value AdjustmentCredit Value Adjustment
Credit Value Adjustment
 
Test Automation
Test AutomationTest Automation
Test Automation
 
BCBS 261 - Collateral and Margin Management for Uncleared Derivatives
BCBS 261 - Collateral and Margin Management for Uncleared DerivativesBCBS 261 - Collateral and Margin Management for Uncleared Derivatives
BCBS 261 - Collateral and Margin Management for Uncleared Derivatives
 
BCBS 248 - Intraday Liquidity Management
BCBS 248 - Intraday Liquidity ManagementBCBS 248 - Intraday Liquidity Management
BCBS 248 - Intraday Liquidity Management
 
Basel III
Basel IIIBasel III
Basel III
 
2015 09-22 Is it time for a Security and Compliance Assessment?
2015 09-22 Is it time for a Security and Compliance Assessment?2015 09-22 Is it time for a Security and Compliance Assessment?
2015 09-22 Is it time for a Security and Compliance Assessment?
 
LT-Innovate OSCAR Open Standards Compliance Assessment Report Project
LT-Innovate OSCAR Open Standards Compliance Assessment Report ProjectLT-Innovate OSCAR Open Standards Compliance Assessment Report Project
LT-Innovate OSCAR Open Standards Compliance Assessment Report Project
 
Scce webinar assessment_061316
Scce webinar assessment_061316Scce webinar assessment_061316
Scce webinar assessment_061316
 

Similaire à Compliance Capability

Internal Audit Strategic Framework
Internal Audit Strategic FrameworkInternal Audit Strategic Framework
Internal Audit Strategic FrameworkJeremy Cheng
 
Risk Based Approach to Auditing Financial Statements.pptx
Risk Based Approach to Auditing Financial Statements.pptxRisk Based Approach to Auditing Financial Statements.pptx
Risk Based Approach to Auditing Financial Statements.pptxhesnib
 
Internal audit RBIA and Lifecyle approach
Internal audit RBIA and Lifecyle approachInternal audit RBIA and Lifecyle approach
Internal audit RBIA and Lifecyle approachsubbusai82
 
What do the changes to ISO14001 mean for business?
What do the changes to ISO14001 mean for business? What do the changes to ISO14001 mean for business?
What do the changes to ISO14001 mean for business? Ardea International
 
kainat aiman wajiha QUALITY ,MANAGEW,MANE TO.pptx
kainat aiman wajiha QUALITY ,MANAGEW,MANE TO.pptxkainat aiman wajiha QUALITY ,MANAGEW,MANE TO.pptx
kainat aiman wajiha QUALITY ,MANAGEW,MANE TO.pptxalihassanfarooq19
 
Covering Your Bases McDonald
Covering Your Bases McDonaldCovering Your Bases McDonald
Covering Your Bases McDonaldEDR
 
Operational Risk | Assessing and Mitigating Operational Risk in a Changing En...
Operational Risk | Assessing and Mitigating Operational Risk in a Changing En...Operational Risk | Assessing and Mitigating Operational Risk in a Changing En...
Operational Risk | Assessing and Mitigating Operational Risk in a Changing En...NICSA
 
Audit practice manual of ICMA Pakistan By: Tariq Mahmood FCA, ACMA
Audit practice manual of ICMA Pakistan By: Tariq Mahmood FCA, ACMAAudit practice manual of ICMA Pakistan By: Tariq Mahmood FCA, ACMA
Audit practice manual of ICMA Pakistan By: Tariq Mahmood FCA, ACMAmichrist75
 
Best Practices & Considerations in “IT Suppliers Audit”
Best Practices & Considerations in “IT Suppliers Audit”Best Practices & Considerations in “IT Suppliers Audit”
Best Practices & Considerations in “IT Suppliers Audit”Shankar Subramaniyan
 
Quality Assurance in Aviation
Quality Assurance in AviationQuality Assurance in Aviation
Quality Assurance in AviationSeema Zaman
 
BCM Institute MTE Jeremy Wong - Business Continuty Management Benchmarking i...
BCM Institute MTE Jeremy Wong - Business Continuty Management Benchmarking i...BCM Institute MTE Jeremy Wong - Business Continuty Management Benchmarking i...
BCM Institute MTE Jeremy Wong - Business Continuty Management Benchmarking i...BCM Institute
 
Danforth Intl Presentation
Danforth Intl PresentationDanforth Intl Presentation
Danforth Intl Presentationkendan4th
 
Outsourcing and Vendor management
Outsourcing and Vendor managementOutsourcing and Vendor management
Outsourcing and Vendor managementRaminder Pal Singh
 
Head of Internal Audit & Compliance Department -Muath Ahmad
Head of Internal Audit & Compliance Department -Muath AhmadHead of Internal Audit & Compliance Department -Muath Ahmad
Head of Internal Audit & Compliance Department -Muath AhmadMuath Ahmad
 
Compliance program requirements for the Volcker Rule of the Dodd-Frank Act
Compliance program requirements for the Volcker Rule of the Dodd-Frank ActCompliance program requirements for the Volcker Rule of the Dodd-Frank Act
Compliance program requirements for the Volcker Rule of the Dodd-Frank ActGrant Thornton LLP
 
Internal Control
Internal ControlInternal Control
Internal ControlSalih Islam
 
Best Practices For Identifying Offshore Vendors
Best Practices For Identifying Offshore VendorsBest Practices For Identifying Offshore Vendors
Best Practices For Identifying Offshore VendorsD2E CONSULTING
 

Similaire à Compliance Capability (20)

Internal Audit Strategic Framework
Internal Audit Strategic FrameworkInternal Audit Strategic Framework
Internal Audit Strategic Framework
 
SFC Plan of engagement
SFC Plan of engagementSFC Plan of engagement
SFC Plan of engagement
 
Risk Based Approach to Auditing Financial Statements.pptx
Risk Based Approach to Auditing Financial Statements.pptxRisk Based Approach to Auditing Financial Statements.pptx
Risk Based Approach to Auditing Financial Statements.pptx
 
Internal audit RBIA and Lifecyle approach
Internal audit RBIA and Lifecyle approachInternal audit RBIA and Lifecyle approach
Internal audit RBIA and Lifecyle approach
 
What do the changes to ISO14001 mean for business?
What do the changes to ISO14001 mean for business? What do the changes to ISO14001 mean for business?
What do the changes to ISO14001 mean for business?
 
kainat aiman wajiha QUALITY ,MANAGEW,MANE TO.pptx
kainat aiman wajiha QUALITY ,MANAGEW,MANE TO.pptxkainat aiman wajiha QUALITY ,MANAGEW,MANE TO.pptx
kainat aiman wajiha QUALITY ,MANAGEW,MANE TO.pptx
 
Covering Your Bases McDonald
Covering Your Bases McDonaldCovering Your Bases McDonald
Covering Your Bases McDonald
 
Operational Risk | Assessing and Mitigating Operational Risk in a Changing En...
Operational Risk | Assessing and Mitigating Operational Risk in a Changing En...Operational Risk | Assessing and Mitigating Operational Risk in a Changing En...
Operational Risk | Assessing and Mitigating Operational Risk in a Changing En...
 
Audit practice manual of ICMA Pakistan By: Tariq Mahmood FCA, ACMA
Audit practice manual of ICMA Pakistan By: Tariq Mahmood FCA, ACMAAudit practice manual of ICMA Pakistan By: Tariq Mahmood FCA, ACMA
Audit practice manual of ICMA Pakistan By: Tariq Mahmood FCA, ACMA
 
Erm talking points
Erm talking pointsErm talking points
Erm talking points
 
Best Practices & Considerations in “IT Suppliers Audit”
Best Practices & Considerations in “IT Suppliers Audit”Best Practices & Considerations in “IT Suppliers Audit”
Best Practices & Considerations in “IT Suppliers Audit”
 
Quality Assurance in Aviation
Quality Assurance in AviationQuality Assurance in Aviation
Quality Assurance in Aviation
 
BCM Institute MTE Jeremy Wong - Business Continuty Management Benchmarking i...
BCM Institute MTE Jeremy Wong - Business Continuty Management Benchmarking i...BCM Institute MTE Jeremy Wong - Business Continuty Management Benchmarking i...
BCM Institute MTE Jeremy Wong - Business Continuty Management Benchmarking i...
 
Danforth Intl Presentation
Danforth Intl PresentationDanforth Intl Presentation
Danforth Intl Presentation
 
Outsourcing and Vendor management
Outsourcing and Vendor managementOutsourcing and Vendor management
Outsourcing and Vendor management
 
Head of Internal Audit & Compliance Department -Muath Ahmad
Head of Internal Audit & Compliance Department -Muath AhmadHead of Internal Audit & Compliance Department -Muath Ahmad
Head of Internal Audit & Compliance Department -Muath Ahmad
 
Compliance program requirements for the Volcker Rule of the Dodd-Frank Act
Compliance program requirements for the Volcker Rule of the Dodd-Frank ActCompliance program requirements for the Volcker Rule of the Dodd-Frank Act
Compliance program requirements for the Volcker Rule of the Dodd-Frank Act
 
Internal Control
Internal ControlInternal Control
Internal Control
 
Bilal ACCA CV
Bilal ACCA CVBilal ACCA CV
Bilal ACCA CV
 
Best Practices For Identifying Offshore Vendors
Best Practices For Identifying Offshore VendorsBest Practices For Identifying Offshore Vendors
Best Practices For Identifying Offshore Vendors
 

Plus de nikatmalik

BCBS 239 - Risk Data Adequacy
BCBS 239 - Risk Data AdequacyBCBS 239 - Risk Data Adequacy
BCBS 239 - Risk Data Adequacynikatmalik
 
Stress Testing
Stress TestingStress Testing
Stress Testingnikatmalik
 
Liquidity Risk
Liquidity RiskLiquidity Risk
Liquidity Risknikatmalik
 
Interest Rate Risk
Interest Rate Risk Interest Rate Risk
Interest Rate Risk nikatmalik
 
Collateral Management
Collateral ManagementCollateral Management
Collateral Managementnikatmalik
 
Applied Risk Process Model
Applied Risk Process ModelApplied Risk Process Model
Applied Risk Process Modelnikatmalik
 
Central Counterparty Clearing
Central Counterparty ClearingCentral Counterparty Clearing
Central Counterparty Clearingnikatmalik
 

Plus de nikatmalik (8)

FRTB
FRTBFRTB
FRTB
 
BCBS 239 - Risk Data Adequacy
BCBS 239 - Risk Data AdequacyBCBS 239 - Risk Data Adequacy
BCBS 239 - Risk Data Adequacy
 
Stress Testing
Stress TestingStress Testing
Stress Testing
 
Liquidity Risk
Liquidity RiskLiquidity Risk
Liquidity Risk
 
Interest Rate Risk
Interest Rate Risk Interest Rate Risk
Interest Rate Risk
 
Collateral Management
Collateral ManagementCollateral Management
Collateral Management
 
Applied Risk Process Model
Applied Risk Process ModelApplied Risk Process Model
Applied Risk Process Model
 
Central Counterparty Clearing
Central Counterparty ClearingCentral Counterparty Clearing
Central Counterparty Clearing
 

Dernier

High Class Call Girls Nagpur Grishma Call 7001035870 Meet With Nagpur Escorts
High Class Call Girls Nagpur Grishma Call 7001035870 Meet With Nagpur EscortsHigh Class Call Girls Nagpur Grishma Call 7001035870 Meet With Nagpur Escorts
High Class Call Girls Nagpur Grishma Call 7001035870 Meet With Nagpur Escortsranjana rawat
 
00_Main ppt_MeetupDORA&CyberSecurity.pptx
00_Main ppt_MeetupDORA&CyberSecurity.pptx00_Main ppt_MeetupDORA&CyberSecurity.pptx
00_Main ppt_MeetupDORA&CyberSecurity.pptxFinTech Belgium
 
Call Girls Service Nagpur Maya Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Maya Call 7001035870 Meet With Nagpur EscortsCall Girls Service Nagpur Maya Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Maya Call 7001035870 Meet With Nagpur Escortsranjana rawat
 
VIP Kolkata Call Girl Serampore 👉 8250192130 Available With Room
VIP Kolkata Call Girl Serampore 👉 8250192130 Available With RoomVIP Kolkata Call Girl Serampore 👉 8250192130 Available With Room
VIP Kolkata Call Girl Serampore 👉 8250192130 Available With Roomdivyansh0kumar0
 
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...ranjana rawat
 
The Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdfThe Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdfGale Pooley
 
03_Emmanuel Ndiaye_Degroof Petercam.pptx
03_Emmanuel Ndiaye_Degroof Petercam.pptx03_Emmanuel Ndiaye_Degroof Petercam.pptx
03_Emmanuel Ndiaye_Degroof Petercam.pptxFinTech Belgium
 
The Economic History of the U.S. Lecture 22.pdf
The Economic History of the U.S. Lecture 22.pdfThe Economic History of the U.S. Lecture 22.pdf
The Economic History of the U.S. Lecture 22.pdfGale Pooley
 
20240417-Calibre-April-2024-Investor-Presentation.pdf
20240417-Calibre-April-2024-Investor-Presentation.pdf20240417-Calibre-April-2024-Investor-Presentation.pdf
20240417-Calibre-April-2024-Investor-Presentation.pdfAdnet Communications
 
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure serviceCall US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure servicePooja Nehwal
 
The Economic History of the U.S. Lecture 21.pdf
The Economic History of the U.S. Lecture 21.pdfThe Economic History of the U.S. Lecture 21.pdf
The Economic History of the U.S. Lecture 21.pdfGale Pooley
 
OAT_RI_Ep19 WeighingTheRisks_Apr24_TheYellowMetal.pptx
OAT_RI_Ep19 WeighingTheRisks_Apr24_TheYellowMetal.pptxOAT_RI_Ep19 WeighingTheRisks_Apr24_TheYellowMetal.pptx
OAT_RI_Ep19 WeighingTheRisks_Apr24_TheYellowMetal.pptxhiddenlevers
 
Vip Call US 📞 7738631006 ✅Call Girls In Sakinaka ( Mumbai )
Vip Call US 📞 7738631006 ✅Call Girls In Sakinaka ( Mumbai )Vip Call US 📞 7738631006 ✅Call Girls In Sakinaka ( Mumbai )
Vip Call US 📞 7738631006 ✅Call Girls In Sakinaka ( Mumbai )Pooja Nehwal
 
The Economic History of the U.S. Lecture 18.pdf
The Economic History of the U.S. Lecture 18.pdfThe Economic History of the U.S. Lecture 18.pdf
The Economic History of the U.S. Lecture 18.pdfGale Pooley
 
Pooja 9892124323 : Call Girl in Juhu Escorts Service Free Home Delivery
Pooja 9892124323 : Call Girl in Juhu Escorts Service Free Home DeliveryPooja 9892124323 : Call Girl in Juhu Escorts Service Free Home Delivery
Pooja 9892124323 : Call Girl in Juhu Escorts Service Free Home DeliveryPooja Nehwal
 
Dividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptxDividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptxanshikagoel52
 
20240429 Calibre April 2024 Investor Presentation.pdf
20240429 Calibre April 2024 Investor Presentation.pdf20240429 Calibre April 2024 Investor Presentation.pdf
20240429 Calibre April 2024 Investor Presentation.pdfAdnet Communications
 
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779Delhi Call girls
 
Russian Call Girls In Gtb Nagar (Delhi) 9711199012 💋✔💕😘 Naughty Call Girls Se...
Russian Call Girls In Gtb Nagar (Delhi) 9711199012 💋✔💕😘 Naughty Call Girls Se...Russian Call Girls In Gtb Nagar (Delhi) 9711199012 💋✔💕😘 Naughty Call Girls Se...
Russian Call Girls In Gtb Nagar (Delhi) 9711199012 💋✔💕😘 Naughty Call Girls Se...shivangimorya083
 

Dernier (20)

High Class Call Girls Nagpur Grishma Call 7001035870 Meet With Nagpur Escorts
High Class Call Girls Nagpur Grishma Call 7001035870 Meet With Nagpur EscortsHigh Class Call Girls Nagpur Grishma Call 7001035870 Meet With Nagpur Escorts
High Class Call Girls Nagpur Grishma Call 7001035870 Meet With Nagpur Escorts
 
00_Main ppt_MeetupDORA&CyberSecurity.pptx
00_Main ppt_MeetupDORA&CyberSecurity.pptx00_Main ppt_MeetupDORA&CyberSecurity.pptx
00_Main ppt_MeetupDORA&CyberSecurity.pptx
 
Call Girls Service Nagpur Maya Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Maya Call 7001035870 Meet With Nagpur EscortsCall Girls Service Nagpur Maya Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Maya Call 7001035870 Meet With Nagpur Escorts
 
VIP Kolkata Call Girl Serampore 👉 8250192130 Available With Room
VIP Kolkata Call Girl Serampore 👉 8250192130 Available With RoomVIP Kolkata Call Girl Serampore 👉 8250192130 Available With Room
VIP Kolkata Call Girl Serampore 👉 8250192130 Available With Room
 
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
 
The Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdfThe Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdf
 
03_Emmanuel Ndiaye_Degroof Petercam.pptx
03_Emmanuel Ndiaye_Degroof Petercam.pptx03_Emmanuel Ndiaye_Degroof Petercam.pptx
03_Emmanuel Ndiaye_Degroof Petercam.pptx
 
The Economic History of the U.S. Lecture 22.pdf
The Economic History of the U.S. Lecture 22.pdfThe Economic History of the U.S. Lecture 22.pdf
The Economic History of the U.S. Lecture 22.pdf
 
20240417-Calibre-April-2024-Investor-Presentation.pdf
20240417-Calibre-April-2024-Investor-Presentation.pdf20240417-Calibre-April-2024-Investor-Presentation.pdf
20240417-Calibre-April-2024-Investor-Presentation.pdf
 
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure serviceCall US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
Call US 📞 9892124323 ✅ Kurla Call Girls In Kurla ( Mumbai ) secure service
 
The Economic History of the U.S. Lecture 21.pdf
The Economic History of the U.S. Lecture 21.pdfThe Economic History of the U.S. Lecture 21.pdf
The Economic History of the U.S. Lecture 21.pdf
 
OAT_RI_Ep19 WeighingTheRisks_Apr24_TheYellowMetal.pptx
OAT_RI_Ep19 WeighingTheRisks_Apr24_TheYellowMetal.pptxOAT_RI_Ep19 WeighingTheRisks_Apr24_TheYellowMetal.pptx
OAT_RI_Ep19 WeighingTheRisks_Apr24_TheYellowMetal.pptx
 
Vip Call US 📞 7738631006 ✅Call Girls In Sakinaka ( Mumbai )
Vip Call US 📞 7738631006 ✅Call Girls In Sakinaka ( Mumbai )Vip Call US 📞 7738631006 ✅Call Girls In Sakinaka ( Mumbai )
Vip Call US 📞 7738631006 ✅Call Girls In Sakinaka ( Mumbai )
 
Veritas Interim Report 1 January–31 March 2024
Veritas Interim Report 1 January–31 March 2024Veritas Interim Report 1 January–31 March 2024
Veritas Interim Report 1 January–31 March 2024
 
The Economic History of the U.S. Lecture 18.pdf
The Economic History of the U.S. Lecture 18.pdfThe Economic History of the U.S. Lecture 18.pdf
The Economic History of the U.S. Lecture 18.pdf
 
Pooja 9892124323 : Call Girl in Juhu Escorts Service Free Home Delivery
Pooja 9892124323 : Call Girl in Juhu Escorts Service Free Home DeliveryPooja 9892124323 : Call Girl in Juhu Escorts Service Free Home Delivery
Pooja 9892124323 : Call Girl in Juhu Escorts Service Free Home Delivery
 
Dividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptxDividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptx
 
20240429 Calibre April 2024 Investor Presentation.pdf
20240429 Calibre April 2024 Investor Presentation.pdf20240429 Calibre April 2024 Investor Presentation.pdf
20240429 Calibre April 2024 Investor Presentation.pdf
 
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
 
Russian Call Girls In Gtb Nagar (Delhi) 9711199012 💋✔💕😘 Naughty Call Girls Se...
Russian Call Girls In Gtb Nagar (Delhi) 9711199012 💋✔💕😘 Naughty Call Girls Se...Russian Call Girls In Gtb Nagar (Delhi) 9711199012 💋✔💕😘 Naughty Call Girls Se...
Russian Call Girls In Gtb Nagar (Delhi) 9711199012 💋✔💕😘 Naughty Call Girls Se...
 

Compliance Capability

  • 1. Towards a Compliance Capability Nikat Malik January 2014 All Rights Reserved Compliance Capability
  • 2. Compliance Capability - Principles Compliance Capability End-to End View of the process path encompassing the business life cycle to completion. This will provide effective compliance control of functional business processes and activities along the desired path. Ownership of the compliance process must be explicitly clear and accountability held from leadership through to operational level. Compliance processes should be positioned at forefront of business functions , not as an after event. Regulatory and compliance requirements should be addressed as part of the business operating model in a partnering approach to be effective. The compliance function together with processes should be fully automated to account for operational risk and efficiency. Compliance processes should be identified and integrated into the transaction life cycle route for comprehensive control and to ensure business processes are compliant with requirements. Consistency of controls and procedures should be maintained at both strategic and operational level with change methodology applied judiciously. High risk audit points must be examined across business processes and controls applied adequately. Clear escalation path for efficient resolution must be put in place to ensure efficient business operations.
  • 3. Compliance Capability – Applied Methodology Compliance Capability Understand business model and strategic objectives comprising of profit model, customer model, product model and control model. Evaluate impact of regulation and compliance requirements on business model. Develop and confirm integrated operating model. Undertake self assessment to identify compliance capability and its strengths and weaknesses. Identify gaps in specific level of capability required. Develop the capability framework... In reference to …. • Business Context • Operating Environment • Customer Base • Risk Appetite • Technology Comprising …. • Behaviour • Performance • Conduct • Skills Training • Systems Required
  • 4. Compliance Capability – Self Assessment (1 of 2) Compliance Capability Objectives • To identify levels of capability required in light of operating environment and regulatory demands in local, regions and host country • To assess current compliance standards • To proactively manage risk exposures • To define target state to fulfil business objectives Self Assessment is completed through facilitated expert judgement that considers risk and controls information to define a set of impacts and directive efforts Risk and Control Framework • Money Laundering • Sanctions • Bribery • Terrorist Financing • PEP Finance/Payments • Cross Border Breech • Unlawful Payments • Conduct / Mis-Selling • Client Identification • Fraud & Security Regulatory Risks Risk & Control Assessment Key Indicators Internal Incidents External Events Expected Loss Self Assessment Results Financial & Reputation Impact Proactive & Remedial Action Governance Identify Risk Appetite Assess Control Report
  • 5. Compliance Capability – Self Assessment (2 of 2) Compliance Capability Self Assessment Process Scope Build Assess Validate • Develop draft Self Assessment Questionnaire for each risk including drivers and impacts • Ensure appropriate involvement from functional experts, businesses and legal • Agree audit and compliance points for each risk by business / country • Plan Self Assessment workshops and attendees • Leadership provided by Group Risk & Compliance Committee and Self Assessment Task Force • Involvement and input from Business and Global Functions • Agreement on Risks to be included and Businesses to cover • Assess impact of questionnaire results • Assessment to include an assessment of local controls and management actions required taking into account risk appetite • Undertake impact assessment for all possible scenarios incl. typical and rare events • Validate impact of risk and functional review • Undertake quantitative validation incl. severity and benchmarking • Action Plan to Group Risk & Compliance Committee • Annual model review
  • 6. Compliance Capability – Structure Compliance Capability Front Office Mid Office Back Office Customer Centric Control Centric Service Centric Prevention Investigation Detection EntityFocusRoleComplianceRequirements KYC / KYCC FATCA CDD / PDD / EDD SANCTIONS ATF ABC AML C/P FRAUD DODD FRANK EMIR BCBS 248 BASEL FDSF / Stress Test MIFIR BCBS 239 COREP / FINREP SOX FRAUD – Internal SECURITY
  • 7. Compliance Capability – In Action Trade Management Process, an example Customer Management Trade Validation Trade Execution Trade Processing Clearing & Settlement Compliance & Accounting Checks: •Terms & product •Legal Agreement •Credit Limit •Collateral •Margin Addl. Compliance Control Checks: •Sanctions •KYCC •FATCA •CDD •ATF •AML •Customer/Country Risk Rating •Capital/Liquidity •Matching •Confirmation •Allocation •Booking •Netting •Exposure Management •Pricing •Valuation •Analytics •Portfolio Position •Trade Initiation •Relationship Management •Client On Boarding •Limit Setting •Payment •Settlement •Custody •Exchange •Collateral Management •P/L •Counter Party Management •Regulatory Reporting •Compliance Control CurrentStateTargetStateProcess “ “ “ “ “ Trade Compliance Committee – escalation & governance procedure to manage Alerts & Suspicious Activity for timely clearance and resolution Value Statement Positions compliance at forefront of business process Mitigates risk at potential point of occurrence Real time feedback result Ease of monitoring & efficient control Clean data ensures accuracy Compliance Capability