Building IT compliance programs that work

Trey Sullivan

After 9/11 and the deluge of new federal regulations that followed, many compliance officers had to re-think their compliance programs from the ground up. The most challenging part can be building the IT infrastructure and processes necessary to keep your financial institution safe. This month’s feature article tells the story of one compliance officer and the impressive IT compliance program she built using a variety of excellent resources.

If you would like to unsubscribe from this newsletter, please click on link at the bottom of the page.
 

New SAR Activity Review Available

The ninth edition of the Financial Crimes Enforcement Network's SAR Activity Review has just been published. The issue provides guidance on disseminating Suspicious Activity Reports to law enforcement and tips on completing SARs.

Download

FDIC Board Approves Audit, Reporting Changes

ABA Banking Journal Online

Bank Director

BAI Banking Strategies Magazine

Bank Systems & Technology

GLBA, FDIC & FFIEC:

Preparing for Your Security Review & Risk Assessment

Learn the guidelines that establish administrative, technical and physical safeguards to protect the privacy of customers’ nonpublic personal information. This Webinar focuses on FFIEC’s final guidelines and will help your organization:

• Understand the specific compliance requirements

• Access your current state of readiness

• Gain insights on comprehensive security risk assessments

• Build a compliance blueprint

Wednesday, December 7, 2:00 p.m. EST

Wednesday, December 14, 2:00 p.m. EST

Last Issue's Dilemma:

Rating your credit policies

Historically, our bank has not given copies of credit bureau reports to customers. With the increase in identity theft all over the country, more and more customers are demanding to see their credit reports for their own protection.

Aware of this pressure — and wanting to be customer-focused — some of our loan officers have become vocal about this policy. We are now re-evaluating the liabilities of providing credit bureau reports to customers. 

I wonder what risks we will run into if we change this policy. Should we please our customers and give them copies of their credit reports or should we stick with our current policy?

— Daniel Stockman, Compliance Officer

Read the best advice from readers
 

This Issue's Dilemma:

When fraud hits close to home

Our small community bank is family owned and has been for over 30 years. We employ a close-knit group of employees, many of whom have ties to the founding family.

Lately, we've had a rash of operational issues that appear to me to be the work of an internal fraudster. I have brought this up several times to our president, along with some suggestions of procedures we could implement in the affected areas. He insists that these were just operational errors, not fraud.

He feels our basic processes are sound and will not let me institute changes to who has access to information or interviews with employees to discuss some of these errors. Don't I owe it to our customers and internal auditor to point out and correct these problems? What are others doing in similar circumstances?

— Mike Gibson, Compliance Officer

Can You Help?

Share your experience. You could win an Apple iPod.

by Steven Marlin - Compliance Pipleline
 

by Joshua Kendall - Banking Strategies
 

by Mayo Clinic - CNN Health Library
 

by Dave Kovaleski - MeetingsNet