OCC issued Bulletin 2019-37 to inform national banks, federal savings associations, and federal branches and agencies (collectively, banks) of sound fraud risk management principles. This bulletin supplements other OCC and interagency issuances on corporate and risk governance, including the references listed in appendix A of the bulletin. Fraud risk management principles can be implemented in a variety of ways and may not always be structured within a formal fraud risk management program. Regardless of the structure, fraud risk management should be commensurate with the risk profile of a bank.
The bulletin highlights that banks with significant and far-reaching retail-oriented business activities should have well-documented fraud risk management programs with appropriate monitoring, measurements and reporting, and mitigation. The risk management principles addressed in the bulletin include the following:
- A bank should have sound corporate governance practices that instill a corporate culture of ethical standards and promote employee accountability.
- A bank’s risk management system should include policies, processes, personnel, and control systems to effectively identify, measure, monitor, and control fraud risk consistent with the size, complexity, and risk profile of a bank.
- A bank’s risk management system and system of internal controls should be designed to prevent and detect fraud and to appropriately respond to fraud, suspected fraud, or allegations of fraud.
- Bank management should assess the likelihood and impact of potential fraud schemes and use the results of this assessment to inform the design of the bank’s risk management system.
- Senior management and the board of directors should measure, monitor, and understand fraud losses across the enterprise and employ tools that appropriately quantify and assess loss experience and exposure.
- Control reviews and audits should include fraud risk as part of their assessments.
Related Link: OCC Bulletin 2019-37
Keywords: Americas, US, Banking, Operational Risk, Governance, Bulletin 2019-37, Fraud Risk, OCC
HM Treasury notified that, after considering all responses, the government intends to bring forward further legislation, when the Parliamentary time allows, to address issues identified in the consultation on supporting the wind-down of critical benchmarks.
EIOPA launched the 2021 stress test for the insurance sector in EU.
UK authorities jointly published the third edition of Regulatory Initiatives Grid setting out the planned regulatory initiatives for the next 24 months.
EC is requesting feedback on the proposed Commission Delegated Regulation on the content, methodology, and presentation of information that large financial and non-financial undertakings should disclose about their environmentally sustainable economic activities under the Taxonomy Regulation.
OSFI has set out the near-term priorities for federally regulated financial institutions and federally regulated private pension plans for the coming months until March 31, 2022.
Under the Italian G20 Presidency, BIS Innovation Hub and the Italian central bank BDI launched the second edition of the G20 TechSprint on the lookout for innovative solutions to resolve operational problems in green and sustainable finance.
ACPR published Version 1.0.0 of the RUBA taxonomy, which will come into force from the decree of January 31, 2022.
EBA proposed the regulatory technical standards on a central database on anti-money laundering and countering the financing of terrorism (AML/CFT) in EU.
ECB published its response to the targeted EC consultation on the review of the bank crisis management and deposit insurance framework in EU.
BCBS, CPMI, and IOSCO (the Committees) are inviting entities that participate in market infrastructures and securities markets through an intermediary as well as non-bank intermediaries to complete voluntary surveys on the use of margin calls.