2 Key Elements of a Successful Compliance Management System from the CFPB

Mark Piccolo

3 min read

Jul 17, 2019

Building a strong compliance management system is one of the top priorities for any compliance officer. In this post, you'll learn the essential elements for any successful CMS.

Over the past few months, the topic of how to build a strong compliance management system has been a major point of focus. For example, it was a key area of discussion during the ABA Regulatory Compliance Conference. In addition, the regulators continue to provide insights into what they expect to see in a CMS.

In this post, you'll learn two key elements of a successful compliance management system.

According to the CFPB, they “share certain key findings from supervisory activities to help the industry limit risks to consumers and comply with the Federal consumer financial laws.” In fact, the CFPB released their updated Compliance Management Review Examination Procedures just a few years ago, in 2017.

The CFPB is not the only regulator talking about compliance management systems! The OCC updated their compliance management systems handbook in June of last year, too.

As you read through these essential elements of a CMS, how to you compare to the best practice guidelines?

The 2 Key Elements of Successful Compliance Management Systems

According to regulatory guidance, when these four control components are strong and coordinated, financial institutions should be successful:

Board of Directors and Management Oversight: Communicate clear expectations, adopt clear policies, and define an appropriately staffed compliance function.
A Compliance Program: A formal, written compliance program. This should include:
- Policies/procedures,
- Training,
- Monitoring, and
- Consumer complaint response.

The Bureau notes that when these two elements "are strong and well-coordinated, an institution should be successful at managing its compliance responsibilities and risks."

We will spend a little more time on each of these areas in the next section.

"To maintain legal compliance, an institution must develop and maintain a sound compliance management system (CMS) that is integrated into the overall framework for product design, delivery, and administration across their entire product and service lifecycle."

- CFPB, "Compliance Management Review Examination Procedures"

Both the CFPB and the OCC are taking this approach to defining the CMS. Here is an image from the OCC's handbook mentioned earlier:

OCC-Compliance-Management-System-Definition

In 2019, all financial institutions will have some form of a compliance management system, but may be missing one of more of the key components to ensure success. Is your compliance management system strong enough to truly address your risks?

Below are a few additional details and links to more resources for each essential component of a strong and successful CMS.

Board and Management Oversight
- The regulators have made it clear that the Board and Management are ultimately responsible for compliance, and may be held personally accountable for violations.
  - Read Also: 5 Ways to Convince Management that Compliance is Important
- A strong compliance culture requires a clear tone from the top, particularly in a rapidly changing compliance landscape.
  - Read Also: 6 Questions to Test Your Compliance Culture
Compliance Program
- Policies and Procedures
  - Written policies and procedures provide the framework for your compliance program.
- Training
  - Training is an essential part of any compliance program. Here are a few best practices:
    - Offer both general and role-specific training as applicable.
    - Include methods to track attendance.
    - Consider including testing to ensure comprehension of materials.
    - Develop repercussions for failing to attend, complete, or pass training.
  - Free Resource: Fair Lending Compliance Training Module
- Monitoring
  - Monitoring includes risk assessments, audits, independent reviews, as well as compliance analytics, to identify and mitigate your risk.
  - We help thousands of financial institutions nationwide monitor their compliance risk. If this is a priority for you, it may be helpful to speak with a consultant today.
- Consumer Complaint Management
  - Your consumer complaint management program needs to include:
    - Complaint Policy
    - Complaint Management Process/Procedure
    - Clear Responsibilities
    - Training
    - Tracking and Reporting
  - Read Also: 5 Things Your Consumer Complaint Management Program Needs to Succeed

Regardless of your regulatory agency, know that any examiner will review the strength of your CMS in a compliance exam. If you're concerned about the strength of yours, it may be worth the time to review, reflect and possibly adjust your existing approach to compliance.

Know that we offer compliance consulting and software to help you address and reduce your compliance risk. To learn more about how we can help, click here.

Contact Us To Learn More About How We Can Help You Strengthen Your CMS

Editor's Note: This article has been entirely updated and rewritten for accuracy in July 2019. However, we did maintain the old URL to ensure that all bookmarks and links would be preserved.

Subscribe to the Nsight Blog

All Topics Risk & Compliance Product Insight Banks Lending Compliance Credit Unions Risk Management Fair Lending Nfairlending Cluster: Risk Management Compliance Lending Compliance Management Integrated Risk Blog Nrisk Regulatory Compliance Management News & Updates HMDA Risk Mortgage Lenders Ncomply Vendor Management Business Resiliency CRA Lending Compliance Blog Vendor CFPB Ncontinuity Third-Party Vendor Management Business Continuity Cybersecurity Fintech NVendor Strategic Planning Ncyber Ntransmittal Audits & Findings Company Culture OCC Regulatory Updates Audit Nverify Regulatory Compliance Exams FDIC Compliance Management Findings Nfindings NCUA Contract Management Employee Intranet Contract FRB Business Continuity Management FFIEC Findings Management Ncontracts manager Third-Party Vendors Enterprise Risk Management Vendor Risk ABA Bank Access Control Audit Findings Board Portal Call Report Due Diligence Efficiency Employee Engagement Exam findings FIEC Inc. 5000 Internal Audit Management Nboardportal Verify Wealth Management

Solutions

Risk Solutions

Vendor Solutions

Compliance Solutions

Lending Compliance

Risk Performance Management

Software Solutions

Risk Management Software

Vendor Management Software

Compliance Management Software

Continuity Management Software

Fair Lending Compliance Software

Findings Management Software

Audit Management Software

Cybersecurity Assessment Software

1071 Compliance Software

Employee Network/Intranet Software

Accredited Certification Program

Banks

Credit Unions

Mortgage Lenders

Fintech

Wealth Management

Nsight Blog

Webinars

Ncast Podcast

Regulatory Pulse

Events

Nsider Community

Dig into our Nstitute Certified Vendor Management Professional Training!

Featured Resources

Webinar: What Does Resilience Look Like?

Regulatory Pulse March 2024

Webinar: The Future of Risk Management

9 Fair Lending Compliance Training Essentials

Podcast: Succeeding All Together, Banking and Company Intranets

Book: The Upside of Risk

Resource Hub

About Us

News

Leadership

Partnerships

Join the Team

Ncontracts Highlights

Ncontracts Launches Nstitute & the Certified Vendor Management Professional (NCVMP) Certification

Ncontracts named Top Workplace for Third Consecutive Year in 2023

Ncontracts and CBANC Release New Report

Event: Ngage 2023 Nashville

2 Key Elements of a Successful Compliance Management System from the CFPB

In this post, you'll learn two key elements of a successful compliance management system.

The 2 Key Elements of Successful Compliance Management Systems

Contact Us To Learn More About How We Can Help You Strengthen Your CMS

Subscribe to the Nsight Blog

Share this

You May Also Like

6 Questions to Test Your Compliance Culture

Lending Compliance Q&A for Lenders

7 Fair Lending Tips Every CEO & Board Member Needs to Know