What do the five pillars of the Bank Secrecy Act have to do with a money laundering, aspiring rapper? They crossed paths this year.
Tongue out, hands up in a nearly Star Trekian gesture, Heather Morgan became her alter ego, Razzlekhan. Calling herself the Crocodile of Wall Street, Morgan was eventually accused in a scheme to launder billions in stolen cryptocurrency alongside her husband. In 2023, Morgan pled guilty to money laundering and conspiracy to defraud the United States government. Having previously called herself a dirty, dirty person, it seems that her money was the most soiled. Now, she’s looking to clean up her act.
Money can be filthy. Dirty funds like Morgan’s – stolen from the crypto exchange Bitfinex – might accrue through illicit activity, corrupt public officials, or finance terrorists. Washing is often attempted by layering or sending the money around the world, depositing it in smaller increments to avoid scrutiny, and converting it to other types of funds. Reports on how Morgan and her husband were caught point to Walmart gift cards the couple thought would hide the source of the funds.
As part of the Bank Secrecy Act, efforts toward Anti-Money Laundering are also made by requiring various institutions to plan and implement structures designed to more easily detect and report suspicious activities. By asking banks, brokers, casinos, cryptocurrencies, and other industries to comply, the federal government creates a system to catch bad actors. Let’s discuss a few pillars of AML rules.
Document Policies and Procedures
Written policies and procedures help prove that your bank has thought through every step of AML compliance, as required. Your policy should be tailored to the institution’s risk profile, but a supervisor will be held responsible for this documentation, so it should be well-designed, reviewed, and ultimately approved by that senior manager.
Policies and procedures should address technological oversight with an eye toward the security and access to storage and sourcing of information. It should include double-checks for all functions and strict segregation of duties to keep integrity high in meeting AML requirements. Policies and procedures should also be updated quickly as any changes to rules are made. Should any bank personnel change, procedures should document a strategy for an uninterrupted workflow surrounding AML cases.
Choose a Compliance Officer
A highly knowledgeable and experienced industry veteran is the perfect candidate for the AML compliance officer role. The officer would not only examine and update or change policies and procedures, but they could also be the liaison to the federal government for communications related to the BSA if they are also designated the AML Contact Person in some firms. The officer would also supervise the training of new employees and ensure that Suspicious Activity Reports are duly filed and also kept on record for five years after their file date. In a bank, the board of directors often selects the person who fills the compliance officer role.
Assess Risk
To stay ahead of any fraud, money laundering, insider trading, and tax evasion that could be happening under your nose, a risk assessment is in order. Stay current and periodically review activity for suspicious patterns. New AI tools promise to simplify the task of recognizing odd money movements and pointing them out for you. Keep an eye out for customers, locations, and specific product services with elevated risk, how well you can analyze that information, and create an agile and informed team to respond to it to meet AML requirements.
Test Independently
Under the guidelines of the AML, testing of the AML system should occur periodically. This testing can be done in-house by an audit department or use an outside auditor, consultant, or qualified party. Banks and other financial institutions should be careful of selecting parties with no conflicting responsibilities or oversight and should test parts or the whole of their system relative to changes made in the bank’s risk profile or significant changes to staffing or processes.
Train Regularly
Eschew one-size-fits-all. When it comes to ongoing training of employees, a key pillar of compliance, you should tailor the training to the employee’s role and the scope of their responsibilities with the enterprise. The training should include an overview of key BSA and AML laws, how they can help comply, and what to look for regarding suspicious activity. Training should also be updated periodically and reviewed as the law is updated. Changes to the bank’s risk profile are another moment for review of applicable AML topics.
Learning and training are key pillars of complying with the AML. Bankers Hub offers courses and certifications for staff in a variety of settings, including sessions on Identifying Suspicious Activity through Client Facing Training. That specific training is for front-line employees who interface with clients directly. We invite you to explore our related in-depth courses, including the self-paced Bankers Hub BSA AML Professional Certification for new and veteran financial professionals. The course delves into training new staff and reporting expectations in addition to the fundamentals of the BSA AML.