Skip to content

Exception Tracking Spreadsheet (TicklerTrax™)
Downloaded by more than 1,000 bankers. Free Excel spreadsheet to help you track missing and expiring documents for credit and loans, deposits, trusts, and more. Visualize your exception data in interactive charts and graphs. Provided by bank technology vendor, AccuSystems. Download TicklerTrax for free.

Click Now!


Citibank fined $400M for risk management deficiencies

The OCC announced yesterday it has issued Citibank, N.A., Sioux Falls, South Dakota, a $400 million civil money penalty order related to deficiencies in enterprise-wide risk management, compliance risk management, data governance, and internal controls. The OCC took that action based on the bank’s unsafe or unsound banking practices for its long-standing failure to establish effective risk management and data governance programs and internal controls. This failure also resulted in a violation of 12 CFR Part 30, Appendix D, “OCC Guidelines Establishing Heightened Standards for Certain Large Insured National Banks, Insured Federal Savings Associations, and Insured Federal Branches.”

The agency also issued a cease and desist order requiring the bank to take broad and comprehensive corrective actions to improve risk management, data governance, and internal controls. The order requires the bank to seek the OCC’s non-objection before making significant new acquisitions and reserves the OCC’s authority to implement additional business restrictions or require changes in senior management and the bank’s board should the bank not make timely, sufficient progress in complying with the order.

Further information on the OCC's actions, with links to the consent orders, can be found HERE, in BankersOnline's Penalty pages.

The Federal Reserve Board announced a separate but related action against Citigroup, the bank’s holding company. In a cease and desist order, the Board requires Citigroup to enhance its firm-wide risk management and internal controls. Among other things, the firm has not taken prompt and effective actions to correct practices previously identified by the Board in the areas of compliance risk management, data quality management, and internal controls.

Filed under: 

Training View All

Penalties View All

Search Top Stories