On May 20, the OCC released its Semiannual Risk Perspective for Spring 2019, identifying and reiterating key risk areas that pose a threat to the safety and soundness of the federal banking system, focusing on the following risk areas: credit, operational, compliance, and interest rate. The OCC noted that rapid growth within the fintech and regulatory technology space impacts each of these risk areas, which the agency is monitoring closely in order to implement necessary actions to address concerns. Overall, although the OCC acknowledged that the health of the federal banking system remains strong, specific risk areas of concern include (i) the need to have in place appropriate risk management practices as well as methods for assessing “the quality and timeliness of credit risk identification, risk mitigation, and loan loss reserve methodology”; (ii) elevated operational risk as banks adapt to a changing and increasingly complex operating environment, including cybersecurity threats, fintech innovation, and a reliance on third-party providers; (iii) high compliance risk related to Bank Secrecy Act/anti-money laundering (BSA/AML), as well as challenges facing banks to “effectively manage money-laundering risks in a complex, dynamic global operating and regulatory environment”; and (iv) potential challenges to earnings due to interest rate risk and liquidity risk, which lead to increased difficulties when forecasting liability costs.
Concerning BSA/AML risk, the OCC specifically noted that AML-related deficiencies “stem from three primary causes: inadequate customer due diligence and enhanced due diligence, insufficient customer risk identification, and ineffective processes related to suspicious activity monitoring and reporting, including the timeliness and accuracy of Suspicious Activity Report filings. Talent acquisition and staff retention to manage BSA/AML compliance programs and associated operations present ongoing challenges, particularly at smaller regional and community banks.” The report reminded banks that necessary training, quality assurance, independent testing, and control updates are expected to be implemented during the FY 2019 examination cycle as required under the Financial Crimes Enforcement Network’s customer due diligence rule (previously covered by InfoBytes here).
“Innovation can enhance a bank’s ability to compete by introducing new ways to meet customer product and service needs, improve operating efficiencies, and increase revenue,” the OCC noted, but changing business models or offering new products and services can “elevate strategic risk when pursued without appropriate corporate governance and risk management.”