Академический Документы
Профессиональный Документы
Культура Документы
Your internal and external financial However these above questions are
crime risks should be identified based not exhaustive and should not be
on various reliable and accurate sources used as such, there are various other
of information. Sources you could utilise guidance documents available to
include the Financial Action Task Force assist with a FCRA.
or the National Crime Agency alerts.
You should aim to take a holistic
It is your own firm’s responsibility approach to all financial crimes risks.
to ensure that all financial crimes Controls implemented to mitigate
represented within your business a risk in one area e.g. verification
model are identified, articulated of customers to mitigate money
and documented within the FCRA. laundering can also act as a control
to prevent fraud and ensure you have
We would advise consideration to the accurate information for sanction
FCA’s self assessment questions to screening. You will also need to
assist in the completion of a FCRA. consider the impact of your financial
These are stated below; crime risks, not only on the business,
• What are the main financial crime but how these impact your customers.
risks to the business?
• How does your firm seek to The output of your FCRA should be
understand the financial crime risks documented and highlight
it faces? • The financial crime risks which
• When did the firm last update its impact on your business
risk assessment? • The controls you have in place
• How do you identify new or • Any gaps in current controls
emerging financial crime risks? Any recommended actions should
• Is there evidence that risk is be agreed and authorised by
considered and recorded senior management.
systematically, assessments are
updated and sign-off is appropriate?
• Who challenges risk assessments
and how? Is this process sufficiently
rigorous and well documented?
• How do procedures on the
ground adapt to emerging risks?
(For example, how quickly are
policy manuals updated and
procedures amended?)
What Risks should be identified Any agreed upon actions from the
to complete a FCRA? FCRA need to be implemented. New
There are 2 types of risks that need to systems, processes and policies should
be distinguished between to ensure an be appropriately communicated to staff
efficient FCRA. These should be applied ensuring they have an understanding
to all financial crimes your business is of the purpose of their implementation
susceptible to. and understand the role and/or
responsibilities they have to make
them effective.
RRDCG1174 01.16