A Guide to Anti-Money Laundering for US Broker-Dealers
Discover how to optimize broker-dealer AML programs in light of the latest regulatory trends.
Get your copyEven the most advanced anti-money laundering and countering of terrorist financing (AML/CFT) technology depends on a well-conceived underlying governance structure to serve its intended purpose. Indeed, U.S. regulators expect firms to designate specific individuals solely responsible for AML/CFT functions – and a specially-designated AML team.
Firms relying on a department dedicated to other duties to carry out its AML functions can experience inefficiencies that could impact compliance and effective risk management. With this in mind, how can broker-dealers ensure their anti-money laundering compliance framework is built on sound governance practices?
Based on key Financial Industry Regulatory Authority (FINRA) priorities, here are six areas broker-dealers should focus on to ensure sound AML/CFT governance.
Any sound AML program must be risk-based, which means being built on a solid risk profile. To establish this, broker-dealers need to conduct regular and thorough risk assessments that allow them to determine their risk tolerance and appetite.
Once a broker-dealer has established a sound risk profile, it can tailor its AML/CFT program to its needs. Still, the U.S. Securities and Exchange Commission (SEC) notes that it’s important to include the following, as relevant:
The SEC guide for broker-dealers is an excellent starting point for broker-dealers wishing to establish or revamp a risk-based AML/CFT program.
Passed in 1970 by the United States Congress, the Bank Secrecy Act (BSA) was modified to support the PATRIOT Act after the 2001 September 11 attacks. FINRA highlights that the BSA “applies to all broker-dealers, without exception” and calls on firms to create procedures and policies to ensure BSA compliance. Although exhaustive, broker-dealers’ strategies should include:
Any robust and BSA-compliant AML program should include appropriate risk-based ongoing customer due diligence (CDD) procedures. Every program should be tailored to a given firm’s risk assessments and appetite, but FINRA emphasizes that it should include:
Understanding the nature and purpose of customer relationships for the purpose of developing a customer risk profile
Conducting ongoing monitoring to identify and report suspicious transactions and, on a risk basis, to maintain and update customer information, including information regarding the beneficial owners of legal entity customers.
Source: FINRA
Customer risk assessments should look at elements like the nature of the product taken out by the customer, any linked geographies (checked against firms’ internal country risk models), and specific risk indicators presented by the customer’s status, such as political exposure.
Broker-dealers should document their customer assessment model and standardize their approach to all customers. And as with their policies, firms should review risk assessment models at least annually for relevancy and effectiveness.
Even the most robustly-conceived AML program can fall short of firms’ risk management goals in practice. Accordingly, broker-dealers must conduct annual, independent tests to validate their AML program. These evaluations should check for BSA compliance and the program’s ability to meet firms’ internal, risk-based criteria. As a rule, firms must schedule independent testing every calendar year per FINRA Rule 3310, with some exceptions.
How can broker-dealers be sure their tests are adequate and reliable? Though the details should be tailored to each firm’s unique profile, thorough tests should evaluate two main areas:
These evaluations can be performed either by a dedicated internal audit department or a qualified third party. If resources permit, enlisting a dedicated third-party Business Controls Partner is best, which helps ensure true independence.
The AML compliance officer is a business-critical role. Per FINRA, firms must nominate a team or person to carry out and supervise daily AML/CFT responsibilities. Once they’ve filled the role, firms must provide FINRA with the relevant contact information. If the compliance officer changes, the firm must update the relevant information within 30 days.
To ensure FINRA requirements are met, broker-dealers should establish written procedures to follow if the person performing that role changes. Somebody senior within the organization should own the process. That person should also commit to re-confirm the name of the chief AML compliance officer each new year.
Finally, FINRA Rule 3310 calls for firms to ensure that AML/CFT personnel receive continuous training. Once again, every broker-dealer must tailor their training program to their unique risk profile and needs. That said, here are a few practices that may increase training program effectiveness:
As part of the change management process, it’s crucial to periodically assess whether recent business changes require a training content refresh.
In a fast-moving financial services landscape, it can be tempting to make good governance practices an afterthought. Firms saturated with day-to-day work pressures may hesitate to plan sound governance from the ground up. But with rapidly evolving, vigilant AML regulations and the human cost of financial crime, the investment is worthwhile. Firms can see significantly improved efficiency and reduced risk when they standardize approaches, clarify roles, document processes, and plan regular reviews. And supported by effective risk management technology, well-governed AML programs stand prepared for many more changes ahead. Discover how to optimize broker-dealer AML programs in light of the latest regulatory trends.A Guide to Anti-Money Laundering for US Broker-Dealers
Originally published 19 July 2023, updated 24 July 2024
Disclaimer: This is for general information only. The information presented does not constitute legal advice. ComplyAdvantage accepts no responsibility for any information contained herein and disclaims and excludes any liability in respect of the contents or for action taken based on this information.
Copyright © 2024 IVXS UK Limited (trading as ComplyAdvantage).