Supervisory Policy and Guidance Topics

Corporate Compliance

Organizations supervised by the Federal Reserve, regardless of size and complexity, should have effective compliance risk management programs that are appropriately tailored to the organizations’ risk profiles. The implementation and oversight of compliance risk management programs can vary considerably depending upon the scope and complexity of the organization’s activities, the geographic reach of the organization, and other inherent risk factors. Larger, more complex banking organizations tend to conduct a wide range of business activities that are subject to rigorous compliance requirements that frequently transcend business lines and legal entities and, accordingly, present risk management and corporate governance challenges.

Policy Letters

Compliance / Consumer Affairs
SR 19-3 / CA 19-2

Large Financial Institution (LFI) Rating System

SR 19-4 / CA 19-3

Supervisory Rating System for Holding Companies with Total Consolidated Assets Less Than $100 billion

SR 16-11

Supervisory Guidance for Assessing Risk Management at Supervised Institutions with Total Consolidated Assets Less than $100 Billion

SR 13-12

Commodity Futures Trading Commission (CFTC) Swap Clearing Rules

SR 10-11

Interagency Examination Procedures for Reviewing Compliance with the Unlawful Internet Gambling Enforcement Act of 2006

SR 08-8 / CA 08-11

Compliance Risk Management Programs and Oversight at Large Banking Organizations with Complex Compliance Profiles

SR 95-51 (SUP)

Rating the Adequacy of Risk Management Processes and Internal Controls at State Member Banks and Bank Holding Companies

Additional Resources

Manual References

  • Bank Holding Company Supervision Manual
    • Section 1060.31, "Assessment of Risk-Management Processes and Internal Controls of BHCs Having $100 Billion or More in Total Assets"
    • Section 2124.07, "Compliance Risk-Management Programs and Oversight at Large Firms"
Back to Top
Last Update: October 03, 2023