Skip to content
BOL Conferences
Thread Options Tools
#2202739 - 01/11/19 04:56 PM Compliance Officer Title
ahkcompliance Offline
Diamond Poster
Joined: Sep 2008
Posts: 2,474
Midwest
We are and FDIC regulated bank. Is it required that we have someone with the official title of Compliance Officer? We want to move compliance into overall risk management. The risk management officer will have oversight of all risk and compliance activities. The CMS function will be within the Risk Management area.

Return to Top
General Discussion
#2202742 - 01/11/19 04:58 PM Re: Compliance Officer Title ahkcompliance
MScarn6942 Offline
Platinum Poster
Joined: Aug 2015
Posts: 756
Land Lacking in Lakes, IL
I'd think that as long as you have someone filling the role that you can point to when examiners say "I want to talk to the compliance officer," you'd be fine regardless of their title.
_________________________
"Pressure is something you feel when you don't know what you're doing" - Peyton Manning

Return to Top
#2202743 - 01/11/19 05:01 PM Re: Compliance Officer Title ahkcompliance
ahkcompliance Offline
Diamond Poster
Joined: Sep 2008
Posts: 2,474
Midwest
That is what our thoughts as well.

Return to Top
#2202745 - 01/11/19 05:03 PM Re: Compliance Officer Title ahkcompliance
P*Q Offline

Power Poster
P*Q
Joined: May 2001
Posts: 8,458
Somewhere
There are still some banks that manage the function through a committee or split between various departments (i.e. lending compliance, deposit compliance) versus having a designated "compliance officer". I think as long as CMS pillars are being thoroughly addressed and managed it would be fine. That being said, I'm a big proponent of having one person responsible to ensure the CMS is being managed appropriately and as banks grow I think regulators look for that.

Return to Top
#2202746 - 01/11/19 05:04 PM Re: Compliance Officer Title ahkcompliance
JC (Darth HMDA) Offline
Diamond Poster
JC (Darth HMDA)
Joined: Dec 2013
Posts: 1,399
CA
I would not say a specific job title, but would recommend naming the risk officer as the compliance officer, or the person responsible for the CMS in the CMS or Compliance Policy.
_________________________
The opinions expressed are mine, do not represent the opinions of my employer, and they are not to be taken as legal advice.

Return to Top
#2202747 - 01/11/19 05:05 PM Re: Compliance Officer Title ahkcompliance
ahkcompliance Offline
Diamond Poster
Joined: Sep 2008
Posts: 2,474
Midwest
It will one person. That person will just oversee both risk and compliance.

Return to Top
#2202749 - 01/11/19 05:06 PM Re: Compliance Officer Title ahkcompliance
P*Q Offline

Power Poster
P*Q
Joined: May 2001
Posts: 8,458
Somewhere
You're fine with that set up IMO

Return to Top
#2202752 - 01/11/19 05:09 PM Re: Compliance Officer Title JC (Darth HMDA)
ahkcompliance Offline
Diamond Poster
Joined: Sep 2008
Posts: 2,474
Midwest
Originally Posted By Darth HMDA, CRCM
I would not say a specific job title, but would recommend naming the risk officer as the compliance officer, or the person responsible for the CMS in the CMS or Compliance Policy.


Yes, we will explain this in our CMS program.

Return to Top
#2202836 - 01/14/19 02:30 PM Re: Compliance Officer Title ahkcompliance
ACBbank Online
Power Poster
ACBbank
Joined: Jul 2006
Posts: 4,344
New York City
Compliance (Regulatory and financial crime) can set within the Risk Department. At the end of the day the regulators want to know that the person(s) who is responsible for compliance. I've seen various titles (Compliance Officer, CCO, CRO, etc.). and it almost always more about the persons qualifications and ability to execute.
_________________________
"100 victories in 100 battles isnt the most skillful. Subduing the other's military w/o battle is the most skillful." Sun-Tzu

Return to Top
#2202861 - 01/14/19 04:24 PM Re: Compliance Officer Title ahkcompliance
Richard Insley Offline
10K Club
Richard Insley
Joined: Oct 2000
Posts: 10,179
Toano, VA
Long long ago (most of the '80s and '90s), I was responsible for what the industry commonly called "compliance" and the people who did the work were called "compliance officers" (and similar titles for the sub-officer level assistants.) If my office had a door, it would have been titled "Compliance Department." I thought I knew what I did and where my responsibility began and ended.

SOP was that whenever something of a regulatory nature hit the fan in any department of the bank, the department's manager labeled it a "compliance problem." Since the Les Nessman door to my office said "Compliance Department," the problem was delivered to me...no additional resources, no additional staff, and no authority to change procedures or policy in the affected business unit...just the problem. Eventually, I realized that the "Compliance Department" was a 5-lb bag and something needed to change.

Condensing a story that played out over several years, I scraped the name off the office door and replaced it with my unit's newly authorized title "Regulatory Management." My mission statement changed from "do it" to "help affected business units understand their regulatory obligations and meet them, and be ready at any time to sell our results to regulators."

I was required to maintain the highest level of knowledge of all regulations already affecting our company, and awareness of potential/new/revised regulations, our regulators' hot-button items, and common regulatory problems throughout the industry. I managed our relationship with all regulators before, during, and after any type of examination. I assisted with structural issues like policies and DP. Whenever a situation demanded, I rolled up my sleeves and joined the fire fight.

We did our best to decentralize the responsibility for day-to-day compliance, but settled for a hybrid. The biggest business units (credit card, mortgage company, trust company) had already evolved to that arrangement. It was extremely important for them to control the flow of their businesses and a woefully-understaffed and underbudgeted central office support unit (me) was an unacceptable bottleneck. Their execs happily set up internal compliance support units and managed and budgeted them directly. I worked with them when they asked and coordinated with them when regulators were in. My department worked with the smaller business units and other central office units (marketing, facilities, in-house DP, HR/training) however made the most sense.

At the end of the day, my bank realized that the words "compliance officer" were almost meaningless. What mattered was thorough risk assessment and a good plan to protect the bank from the consequences should risk become reality.
_________________________
...gone fishing.

Return to Top