New report explores potential compliance challenges and how they could be addressed.
The Association for Financial Markets in Europe (AFME) and EY have today published a new report considering the role of the compliance function within wholesale investment banks and the potential challenges and changes it faces in its structure and approach.
The report, entitled “The Scope and Evolution of Compliance” outlines the key considerations for banks’ compliance functions as they seek to adjust and enhance their roles in response to the changing nature of the business and regulatory expectations.
James Kemp, a Managing Director at AFME, said: “Against a backdrop of significant regulatory change and conduct issues, expectations for compliance functions have never been higher.Where previously advising on regulatory requirements and monitoring adherence to company policies formed the core of a Compliance Officer’s role, teams are also increasingly expected to take a more strategic and proactive role in anticipating and managing risk. The compliance function needs to be able to evolve and adapt in response to these changes and this report sets out the possible active steps that banks can take to do so.”
Stuart Crotaz, Financial Services Partner at EY, said: “The message from the market is clear – it has never been a more challenging time to be in compliance. Yet this also brings opportunity as boards and regulators increasingly promote the need for a forward-looking compliance team who can provide a broader view on the management of regulatory risk in an increasingly technological world. The speed of that change and the increasing importance of data and analytics means that compliance needs to keep evolving.”
Challenges currently facing compliance teams are driven by:
- Evolution of relationship with the first line of defence;
Compliance has evolved from a quasi-legal function to one that is more focused on the identification and measurement of risks. Nonetheless, compliance has continued to fulfil many of its traditional roles, such as setting standards through policies, advising the business on regulatory requirements and monitoring for compliance with policies and standards. Getting the balance right between ensuring sufficiently independent monitoring oversight is conducted while still providing day-to-day advice is a challenge, particularly with a finite number of resources.
- The speed and automation of processes;
Compliance reporting is largely manual and as a result resource-heavy and time-consuming. However, compliance must keep up to speed with an ever-increasing use of automated trading platforms, algorithmic trading, a variety of different communications media, and the increasingly complex transactions and structures being developed by the business. There is risk inherent in these new processes and compliance officers need to understand these new technologies.
- The increased accountability demands on senior managers.
In order for senior managers to fulfil their Senior Managers and Certification Regime (SMCR) responsibilities, compliance officers must provide a sufficiently holistic view of risk. This means they need the analytical tools to be effective in forming a broader and more strategic view of the compliance profile in their organisations.
To address these challenges, the report discusses possible resources and models for compliance.
Conclusions:
- There is an opportunity for compliance to transition from its traditional role into one that provides enhanced strategic advice to senior management. This includes increased oversight of 1st Line Control Function surveillance and testing as a 2nd Line Control Function, greater use of business data to analyse and provide insights to senior management on changing risks and controls, and a greater influence on the management of the regulatory risk framework as a whole.
- Compliance will become more data and technology dependent as budget challenges and operating effectiveness encourage innovation-driven transformation. But, people and human judgement remain important.
- In order for compliance to transition to a different operating model there should be a shift towards it being a data user, not a data generator. Fundamentally, compliance should take a step back and look to use and leverage all streams of data (transactional, behavioural and social) to identify risks and act as an independent overseer and advisor.
Click here to download the full report.
– Ends –