Assess and mitigate the anti-money laundering and countering terrorist financing compliance risks relevant to your organisation
Overview
This standard is about assessing the probability and impact of anti-money laundering and countering terrorist financing non-compliance occurring in your organisation, and completing a risk assessment of external and internal threats or events. You must identify and resolve any gaps in your information about the risks of non-compliance faced by your organisation. You should evaluate any possible conflict of interest within the organisation, with stakeholders and shareholders. You should mitigate the risks identified in the risk assessment, ensuring that they are proportionate, and you must review your risk assessment at regular, agreed intervals and when specific events may affect the assessment.
Performance criteria
You must be able to:
assess the probability and impact of non-compliance occurring in your organisation
determine the jurisdictional scope of the legal and regulatory environment in which your firm operates
complete a compliance risk assessment of your organisation that takes into account external and internal events or threats
assess the compliance risks that are external to your organisation but directly or indirectly affect your organisation’s business or control risks
determine responsibility and accountability of the risk
identify any gaps in the information you have about the compliance risks faced by your organisation and locate this information
develop a compliance risk management strategy to address issues identified by the compliance risk assessment
ensure the compliance risk management strategy is proportionate to the risks posed, in terms of their impact and probability
review the compliance risk assessment at regular, agreed intervals and when specific current or future events may affect the assessment
Knowledge and Understanding
You need to know and understand: