Empowering Growth: Brady Martz’s Professional Development and Excellence Academy

/in /by

At Brady Martz, we are deeply committed to the professional growth of our financial institutions’ clients. As part of this commitment, we’ve launched The Brady Martz Professional Development and Excellence Academy, a formal mentorship program designed to help financial institution employees thrive in their current roles and build the skills necessary to take on new challenges and responsibilities.  

 

We recently had a chance to sit down with our own Kelly Hoeven, a key figure in creating the academy. Kelly is a Financial Institutions Consultant at Brady Martz, who has a passion for mentoring and building connections among professionals in the field. With a background in banking and regulatory, Kelly has spent time at various financial institutions, and she has also worked as an FDIC examiner. With her strong experience and skillset, Kelly helped create The Brady Martz Professional Development and Excellence Academy with a goal of fostering professional development and setting financial institution employees up for success in their current and future roles. 

 

Why We Created the Academy 

The Brady Martz Professional Development and Excellence Academy was created with one goal in mind: to foster a culture of mentorship that empowers employees within the financial institution community to reach their full potential. We recognized the immense value mentorship brings in developing both technical and soft skills, and we wanted to create an opportunity for financial institutions to offer structured guidance to their employees. Through this program, we aim to help develop stronger, more effective leaders—individuals who are equipped to drive their organizations forward while advancing their careers. 

 

How the Academy Works 

The Brady Martz Professional Development and Excellence Academy offers both one-on-one and group mentorship options, providing flexibility to meet the unique needs of each FI employee. In one-on-one mentorship, mentees are paired with experienced mentors who can provide personalized guidance and advice. Group mentorship, on the other hand, brings together FI employees with similar roles or aspirations, creating a collaborative environment where learning and growth happen through shared experiences. 

The program is designed to be flexible, typically lasting 12 to 18 months. Each mentee works closely with their mentor to establish specific career goals, and the mentorship relationship is centered on achieving those objectives through regular feedback, support, and actionable steps. 

 

Who Participates in the Academy? 

The program is open to all financial Institution employees looking to advance their careers. Whether an individual is aiming to refine their technical skills, develop leadership qualities, or transition into a new role, the academy offers the resources and mentorship they need to succeed. 

The involvement of supervisors and management is key to the program’s success. Supervisors work alongside mentors to ensure that the developmental goals align with both the employee’s aspirations and the firm’s long-term goals. This collaborative approach ensures that both the individual and the organization benefit from the mentorship experience. 

 

Why Mentorship Matters 

Mentorship goes beyond career development. It’s about building meaningful relationships and supporting one another’s growth. At Brady Martz, we believe that mentorship creates an environment where both the mentor and mentee can learn from each other and grow together. Mentors offer more than just professional advice; they provide the perspective, encouragement, and insight that are essential for overcoming obstacles and building confidence in one’s career path. 

Mentorship also fosters a sense of community within your company. By investing in one another’s growth, you create a stronger, more cohesive team that is united by a shared commitment to excellence. 

 

The Benefits of Mentorship 

For mentees, the benefits of participating in a mentorship program are immense. Not only do they gain technical expertise and valuable career insights, but they also develop crucial soft skills such as communication, leadership, and time management. Additionally, mentorship often opens doors to networking opportunities, allowing mentees to connect with other professionals in the financial sector. 

For the mentors, the rewards are equally valuable. Serving as a mentor provides an opportunity to give back, share knowledge, and help shape the next generation of leaders within the financial industry. Mentors also gain fresh perspectives from their mentees, making the relationship mutually beneficial. 

 

The Organizational Impact of Mentorship 

The Brady Martz Professional Development and Excellence Academy isn’t just about developing individual professionals—it’s about strengthening entire financial institutions. By investing in the growth of their employees, community banks and credit unions can enhance retention, improve job satisfaction, and cultivate a more engaged workforce. These benefits contribute to long-term organizational success and reinforce a strong leadership pipeline within the financial sector. 

 

Are You Interested in Learning More? 

If you’d like to learn more about The Brady Martz Professional Development and Excellence Academy and how it can support the growth of your employees, Kelly Hoeven, who leads the program, would be happy to connect with you! Kelly can provide more details about how the program works and how it helps individuals develop both professionally and personally. Reach out to Kelly to find out how you can get involved or learn more about the academy’s impact on your financial institution. 

Regulation B Subpart B Section 1071

/in /by

What’s the Game Plan?  

Regulation B Section 1071 mandatory compliance is quickly approaching and it’s not a small undertaking. This new rule requires an extensive amount of data collection from lenders who have typically stayed out of the compliance spotlight – small business lenders. The rule is designed to create increased transparency on lending practices and opportunities to small businesses loan applicants, identify any unmet credit needs, and enforce fair lending laws.  

 

The mandatory compliance dates are tiered based on the number of covered small business loans originated in each of the previous two calendar years. The table below illustrates the compliance date tiers that financial institutions will need to consider when determining when they must begin collecting data and otherwise complying with the final rule: 

 

Compliance Date Tier  Origination Threshold for the Compliance Date Tier  Date That A Covered Institution Begins Data Collection & Otherwise Complying with the final Rule  Deadline for A Covered Financial Institution to Report First Year of Data to the CFPB 
Tier 1  At least 2,500 covered originations in both 2022 and 2023 (or 2023 and 2024)  July 18, 2025*  June 1, 2025* 
Tier 2  At least 500 covered originations in both 2022 and 2023 but not 2,5000 or more covered originations in both 2022 and 2023 (or 2023 and 2024)  January 16, 2025*  June 1, 2027* 
Tier 3  At least 100 covered originations in both 2022 and 2023 but not 500 or more covered originations in both 2022 and 2023 (or 2023 and 2024)  October 18, 2026*  June 1, 2027 
Additionally, a bank that originates at least 100 covered originations in both 2024 and 2025 must collect data and otherwise comply with the final rule beginning October 18, 2026 (regardless of the number of covered originations it originated in prior years). 

 

*The following dates have been updated to reflect the extended compliance data revised in the June 25, 2024 Interim Final Rule. 

 

If the bank is unable to determine the number of covered credit transactions it originated for small businesses in each of the calendar years 2022 an 2023 (or 2023 and 2024) for purposes of determining its compliance date, because of some or all of this period it does not have readily accessible the information needed to determine whether its covered credit transactions were originated for small businesses as defined in § 1002. 106(b), it is permitted to use any reasonable method to estimate its originations to small businesses for either or both of the calendar years 2022 and 2023 (or 2023 and 2024). 

 

So, what’s next? Here are action items to consider in your implementation plan: 

 

  • Coverage and Compliance Dates: Determine how many covered transactions your institution originated during the two-year lookback period (the final rule allows institutions to use either 2022 and 2023 or 2023 and 2024 as the two-year lookback) and identify the related mandatory compliance date for collecting and reporting.  
  • IT Systems: Identify the software and IT systems that will be used to collect, store, and transmit the data to the small business loan application register (SBLAR). Determine if any new software purchases are necessary and contact your current loan software providers for details on how the current software is going to change to comply with the increased data collection requirements. Schedule a demo with current and any new potential software providers.  
  • Policies and Procedures: Expand or create new policies and procedures to address the expectations for the new rule. The procedures should outline your institution’s process for collecting data in a way that ensures all the required data points are collected and reported in a compliant manner. Additionally, policies and procedures should address updates to roles and responsibilities. All policies should be reviewed and approved by the Board of Directors prior to the mandatory compliance date.  
  • Firewall Component: Section 1071 includes a specific rule related to accessing an applicant’s demographic information. The final rule states that employees and officers of a covered financial institution are prohibited from accessing an applicant’s demographic information that is recorded during the application process. This poses a challenge for many financial institutions whose loan officers are involved in all aspects of the application process. For this reason, the final rule permits financial institutions to simply provide an exception notice to applicable applicants or to a broader group (all) of applicants. However, your financial institution must first determine if it is able to systematically create a firewall or if it will rely upon the exception notice. As a best practice, your institution should retain evidence of how it arrived at the decision to create a firewall or rely upon the notice. 
  • Employee Roles and Responsibilities: Review and update current job descriptions to align with any process changes necessary for implementing Section 1071. It is likely that your institution’s lenders, processors, managers, and compliance personnel will have changes to their roles and responsibilities. Work with your HR professionals to update job descriptions so that their performance can be evaluated based on their updated roles. This will also serve as the support analysis for any firewall decisions. 
  • Written Applications: Determine how your institution will collect the data. With more than 81 data point fields, there is clear justification for using a written application form. Additionally, covered financial institutions can begin collecting data one year prior to their mandatory collection date. 
  • Underwriting Practices and Fair Lending Implications: Review your institution’s current underwriting practices. This data collection rule will have significant fair lending impacts for agricultural and commercial loan portfolios. Regulatory agencies will have access to significant amounts of data and will likely incorporate this into future fair lending examinations. Your institution should identify any potential fair lending red flags related to its underwriting, pricing, and origination/denials practices.  
  • Training and Monitoring: Prepare your loan staff and compliance personnel for the aspects of data collection, review, and reporting that they will be responsible for. This is a crucial step to ensuring regulatory compliance with the final rule. Establish an ongoing monitoring process to identify any gaps in the data collection and reporting processes and to ensure that the demographic data is consistently collected where required.  
  • Audit Expectations and Board Reporting: Update your current risk assessments and audit plans to incorporate Section 1071. Make sure to keep the Board informed of changes to your institution’s audit plans and any significant updates to the risk assessment.  
  • Website Notice: Set a reminder to post the required public notice on your institution’s website by the first reporting date (e.g., June 2026 or 2027).  

 

Implementing the Section 1071 final rule will take careful consideration and effort by your institution. At Brady Martz & Associates, we understand the challenges that come with implementing processes to comply with complex regulations. Our team of experts can help you assess your readiness, develop a tailored implementation strategy, and ensure your institution remains compliant while achieving its business goals. Contact us today to learn how we can support your compliance journey. 

 

Ryan Bakke, CPA 

701-852-0196 

ryan.bakke@bradymartz.com 

 Kelly Hoeven, CCBIA CBVM 

701-223-1717 

kelly.hoeven@bradymartz.com 

 

 

Regulation B Section 1071: Implementation Best Practices for Financial Institutions

/in , /by

The financial industry is facing a significant shift with the implementation of Regulation B Section 1071, as mandated by the Dodd-Frank Act. This new rule introduces extensive data collection and reporting requirements for financial institutions making small business loans. Designed to promote fairness and transparency in lending, Regulation B Section 1071 seeks to uncover and address potential discrimination in credit access for small businesses, particularly those owned by women and minorities.

While the regulation represents a step forward for equitable lending practices, it also introduces operational and compliance challenges. For financial institutions, understanding the requirements and developing a strong implementation plan will be critical for navigating these changes.

In this blog, we’ll explore key considerations and best practices for implementing Section 1071 to ensure compliance while maintaining efficiency in your institution’s processes.

Understanding Regulation B Section 1071

Under Section 1071, financial institutions are required to collect and report data on applications for credit from small businesses. This includes gathering information on the race, ethnicity, and gender of the business owner(s), as well as the loan amount, application outcome, and pricing terms. The goal is to promote fair lending and provide policymakers with insight into access to credit across different demographics.

The rule applies to institutions that originated at least 100 small business loans in the previous two calendar years, covering a wide range of credit products such as term loans, lines of credit, and business credit cards. Noncompliance with Section 1071 can result in regulatory scrutiny, fines, and reputational harm.

With the compliance deadline approaching, financial institutions must take proactive steps to prepare for the implementation of this regulation.

Best Practices for Implementing Section 1071

To ensure a smooth transition and ongoing compliance, financial institutions should consider the following best practices:

  1. Conduct a Gap Analysis

Begin by reviewing your current loan application and reporting processes to identify gaps in compliance with Section 1071. Evaluate your institution’s ability to collect the required data points, and assess whether your existing systems and procedures can support the additional reporting requirements.

Key Considerations:

  • Are your loan officers trained to collect demographic information?
  • Do your current systems accurately capture and store the required data?
  • Is your team aware of fair lending rules and how to handle sensitive customer information?
  1. Upgrade Your Technology and Data Management Systems

Effective implementation of Section 1071 requires robust data collection, storage, and reporting capabilities. Financial institutions may need to upgrade their loan origination systems (LOS), customer relationship management (CRM) platforms, and data analytics tools to meet these demands.

Best Practices:

  • Implement systems that can securely capture and store sensitive demographic data.
  • Automate reporting processes to reduce the risk of errors and streamline compliance efforts.
  • Invest in technology solutions that support efficient data analysis for fair lending reviews.
  1. Train Staff on Compliance and Customer Communication

Collecting demographic information requires careful communication with customers to ensure transparency and compliance with fair lending regulations. Loan officers and other front-line staff should receive training on how to explain the purpose of data collection and handle customer concerns.

Training Tips:

  • Develop clear, customer-friendly explanations about why demographic data is being collected.
  • Train staff to address customer questions while remaining compliant with regulatory requirements.
  • Emphasize the importance of unbiased interactions during the loan application process.
  1. Establish Monitoring and Reporting Protocols

Regular monitoring of your institution’s data collection and reporting processes will be critical to ensuring ongoing compliance with Section 1071. Establish clear protocols for reviewing loan data, identifying discrepancies, and addressing potential issues.

Steps to Take:

  • Develop a reporting schedule to ensure timely submission of data to regulators.
  • Use data analytics to identify trends and detect potential fair lending risks.
  • Conduct internal audits to verify the accuracy of collected data and ensure adherence to regulatory requirements.
  1. Collaborate with Industry Peers and Experts

Compliance with Section 1071 is a complex task that benefits from collaboration. Financial institutions can engage with industry groups, consultants, and legal experts to share insights, develop best practices, and navigate challenges.

Benefits of Collaboration:

  • Gain access to industry-specific resources and case studies.
  • Stay informed about regulatory updates and interpretations.
  • Leverage the expertise of third-party consultants to enhance your compliance efforts.

The Path Forward: Building a Culture of Compliance

Implementing Regulation B Section 1071 is about more than meeting regulatory requirements—it’s an opportunity for financial institutions to foster transparency, fairness, and trust with their small business customers. By developing a robust compliance plan, investing in technology and training, and maintaining a proactive approach to risk management, your institution can successfully navigate this new regulatory landscape.

At Brady Martz, we understand the unique challenges financial institutions face in implementing complex regulations like Section 1071. Our team of experts can help you assess your readiness, develop a tailored implementation strategy, and ensure your institution remains compliant while achieving its business goals. Contact us today to learn how we can support your compliance journey.

Risk Assessments – Not a One and Done

/in , /by

In today’s ever-changing business environment, organizations face new challenges daily, from evolving market conditions to emerging cybersecurity threats. As a result, the concept of risk assessment has become more critical than ever. However, many companies make the mistake of viewing risk assessments as a one-time task instead of an ongoing, strategic process.

This mindset can leave organizations vulnerable, as risks evolve alongside changes in technology, industry regulations, and global markets. To truly protect your business and remain resilient, risk assessments must be treated as a continuous process that adapts to the shifting landscape.

What Is a Risk Assessment?

A risk assessment is the process of identifying, analyzing, and prioritizing potential risks that could impact your business. These risks may include operational inefficiencies, financial vulnerabilities, compliance issues, or cybersecurity threats.

A comprehensive risk assessment typically involves:

  • Identifying potential risks or vulnerabilities.
  • Analyzing the likelihood and impact of those risks.
  • Developing mitigation strategies to reduce risk exposure.

While many businesses conduct risk assessments during audits or after a significant event (such as a data breach), a “set it and forget it” approach often leads to gaps that can compromise an organization’s stability and reputation.

Why Risk Assessments Must Be Ongoing

Risks are not static. Here are some key reasons why businesses should adopt an ongoing approach to risk assessments:

  1. Evolving Threats and Trends

Technology is advancing at an unprecedented rate, and so are the threats. For example, as businesses rely more on digital platforms, cybersecurity risks like ransomware, phishing, and insider threats continue to grow. A risk assessment conducted last year may not account for these new vulnerabilities.

  1. Regulatory Changes

Governments and industry regulators frequently update compliance requirements to address emerging risks. Without periodic risk assessments, businesses may inadvertently fall out of compliance, exposing themselves to penalties, fines, or reputational damage.

  1. Internal Changes

Internal changes such as staff turnover, mergers and acquisitions, or the implementation of new technologies can create unforeseen risks. Conducting risk assessments regularly ensures that new processes, people, or systems are incorporated into your risk management strategy.

  1. Market and Economic Shifts

Market volatility and global events, like inflation, supply chain disruptions, or geopolitical tensions, can introduce new financial and operational risks. Ongoing assessments help organizations stay proactive and ready to pivot as conditions change.

Best Practices for Continuous Risk Assessments

To embed risk assessments into your business processes effectively, consider these best practices:

  1. Schedule Regular Risk Reviews

Conduct risk assessments on a scheduled basis, such as quarterly, semi-annually, or annually, depending on your industry and risk exposure.

  1. Involve Cross-Functional Teams

Risk management isn’t just the responsibility of one department. Involve leaders from IT, finance, HR, operations, and other key areas to ensure all perspectives are considered.

  1. Leverage Technology

Use risk management software or tools to automate parts of the process, such as tracking risks, generating reports, or monitoring compliance metrics in real time.

  1. Align with Strategic Goals

Risk assessments should align with your organization’s long-term objectives. This ensures that resources are allocated toward mitigating risks that could derail your key initiatives.

  1. Perform Scenario Planning

In addition to analyzing current risks, consider potential “what-if” scenarios. This proactive approach can help you prepare for unexpected events.

Don’t Treat Risk Assessments as a Checklist

Risk assessments are not a one-and-done task—they are an ongoing commitment to safeguarding your organization from the unexpected. By adopting a continuous approach to risk management, you can stay ahead of potential challenges, protect your business assets, and build long-term resilience.

At Brady Martz, our experienced professionals can guide you through the risk assessment process, helping you identify vulnerabilities, develop mitigation strategies, and create a proactive plan to keep your business secure. Contact us today to learn how we can help you protect your organization and prepare for the future.

Mitigating Cybersecurity Risks in the Financial Sector: Best Practices for 2025

/in , /by

As financial institutions continue to digitize their services and offer more online solutions to customers, the risk of cyberattacks and data breaches grows exponentially. With sensitive financial data, personal information, and proprietary business intelligence at stake, cybersecurity remains one of the most critical concerns for the financial industry. In 2025, the threat landscape is expected to become even more complex, with cybercriminals employing increasingly sophisticated methods to exploit vulnerabilities.

At Brady Martz, we understand the complexities of cybersecurity in the financial sector. With services like IT audits, we can help financial institutions assess their systems, identify vulnerabilities, and implement stronger safeguards against potential breaches.

In this article, we’ll explore the cybersecurity risks facing financial institutions in 2025 and provide a comprehensive guide to best practices that will help mitigate those risks and safeguard against potential breaches.

  1. The Growing Cybersecurity Threat Landscape

The financial sector has long been a target for cybercriminals due to the valuable data and financial assets it holds. With the rise of digital banking, cloud services, and mobile payments, these threats have become even more prevalent and sophisticated. In 2025, financial institutions can expect to see an increase in:

  • Ransomware Attacks: Cybercriminals continue to use ransomware to target financial institutions, locking them out of critical systems until a ransom is paid.
  • Phishing and Social Engineering: As the sophistication of phishing schemes increases, attackers are likely to target employees, customers, and partners with deceptive emails or phone calls designed to steal sensitive information.
  • Advanced Persistent Threats (APTs): These ongoing, targeted cyberattacks are designed to infiltrate an institution’s network and remain undetected for extended periods.
  • Insider Threats: Employees with access to sensitive data pose an internal threat, either intentionally or accidentally causing harm.

To combat these risks, financial institutions must be proactive in their approach to cybersecurity, employing a multi-layered defense strategy that includes technological, procedural, and educational measures.

  1. Best Practices for Cybersecurity in 2025

In 2025, financial institutions must adopt a comprehensive cybersecurity strategy to protect their digital infrastructure and maintain customer trust. Here are the best practices to mitigate cybersecurity risks effectively:

  1. Strengthening Identity and Access Management (IAM)

One of the key pillars of a secure financial institution is managing who has access to sensitive systems and data. Implementing robust Identity and Access Management (IAM) controls can help ensure that only authorized individuals have access to critical information.

Best practices for IAM include:

  • Multi-factor Authentication (MFA): Requiring two or more forms of verification (e.g., passwords, biometrics, security tokens) adds an extra layer of security to online transactions and internal systems.
  • Role-Based Access Control (RBAC): Limit employee access to systems based on their role within the organization, ensuring that only those who need access to sensitive data can access it.
  • Regular Access Reviews: Conduct periodic audits to review access permissions, removing or adjusting access for employees who no longer require it.
  1. Investing in Advanced Threat Detection and Prevention Tools

Financial institutions must deploy next-generation threat detection systems to identify and respond to cyber threats in real time. Technologies such as AI-powered security systems and behavioral analytics can help detect unusual network activity or unauthorized access attempts before they escalate into serious breaches.

  1. Educating Employees and Customers on Cyber Hygiene

Human error is one of the most common causes of cybersecurity breaches in financial institutions. Financial organizations should invest in ongoing education for both employees and customers about cybersecurity best practices.

  1. The Role of IT Audits in Enhancing Cybersecurity

Regular IT audits play a critical role in identifying potential vulnerabilities and ensuring that financial institutions remain compliant with evolving cybersecurity regulations. An effective IT audit can assess key areas such as access management, incident response readiness, and data encryption protocols, providing actionable insights to strengthen cybersecurity frameworks.

At Brady Martz, we specialize in IT audits tailored to the unique needs of financial institutions, helping them uncover vulnerabilities and implement solutions to mitigate risks proactively.

  1. Staying Ahead of Cybersecurity Trends

As cyber threats evolve, financial institutions must continuously adapt to emerging trends and technologies. In 2025, cybersecurity trends in the financial sector will likely include:

  • AI and Machine Learning in Cybersecurity: Using AI and machine learning to predict and detect cyber threats faster and more accurately.
  • Zero-Trust Security Models: Adopting zero-trust principles where no user or system is trusted by default, regardless of whether they are inside or outside the network.
  • Cloud Security: Ensuring that cloud infrastructure is secure, as more financial institutions shift to cloud-based services.

Mitigating cybersecurity risks in the financial sector is an ongoing, dynamic challenge that requires vigilance, advanced technology, and a commitment to continuous improvement. By implementing these best practices, financial institutions can better protect themselves from cyber threats in 2025 and beyond, ensuring the security and trust of their customers and maintaining a competitive edge in a rapidly evolving digital landscape.

At Brady Martz, we’re here to support your financial institution’s cybersecurity efforts with IT audits that provide the insights you need to strengthen your systems and safeguard sensitive data. Contact us today to learn how we can help your organization stay ahead of the cybersecurity curve in 2025.

2025 Forecast: What Financial Institutions Can Expect in the Coming Year

/in , /by

As we step into 2025, the financial services industry is poised for another year of transformation. With rapid technological advancements, evolving regulatory landscapes, and increasing consumer demands for transparency and sustainability, financial institutions are facing both new challenges and exciting opportunities. To stay competitive and continue driving growth, institutions must adapt to these changes and leverage emerging trends.

Here’s a look at what financial institutions can expect in 2025 and how they can prepare for success in the year ahead:

  1. The Rise of Artificial Intelligence and Automation

Artificial Intelligence (AI) and automation are expected to continue reshaping the financial industry in 2025. Financial institutions are increasingly using AI to streamline processes, enhance customer service, and reduce operational costs. From automated customer service to risk analysis, AI is enhancing efficiencies and providing more personalized services. The continued adoption of AI tools will drive innovation and improve customer experiences, positioning financial institutions for growth.

  1. The Continued Growth of Blockchain Technology

Blockchain technology continues to make significant strides in financial services. In 2025, blockchain will further enhance transaction speed, improve transparency, and reduce fraud. While blockchain is increasingly integrated into cross-border payments, lending, and compliance processes, financial institutions will need to stay aligned with evolving regulations and explore how blockchain can optimize operations and security.

  1. Green Finance and Sustainability

With sustainability becoming a core concern, financial institutions are expected to see more demand for green finance in 2025. Green finance involves investments and projects focused on environmental sustainability, including green bonds and ESG (Environmental, Social, and Governance) funds. Meeting the increasing demand for sustainable investments will not only attract environmentally conscious clients but will also position financial institutions as responsible corporate citizens.

  1. The Evolution of Cybersecurity

As digital banking continues to grow, cybersecurity remains a top priority. Financial institutions will face increasing pressure to protect sensitive client data from rising cyber threats. In 2025, investing in advanced cybersecurity measures such as AI-driven threat detection and multi-factor authentication will be essential to safeguarding customer data and maintaining trust.

  1. Regulatory Changes and Compliance

The regulatory landscape for financial institutions will continue to evolve in 2025, with a focus on transparency, data privacy, and ESG reporting. Financial institutions must remain agile to comply with new regulations, including potential climate-related disclosure requirements. Ensuring strong compliance programs and enhancing reporting capabilities will be critical to avoiding penalties and maintaining industry credibility.

  1. The Rise of Digital Banking and Fintech Partnerships

The digital banking sector will continue to expand as consumers demand more online and mobile banking solutions. Fintech companies, in particular, are disrupting traditional banking models with innovative offerings. Financial institutions that form strategic partnerships with fintech firms will be well-positioned to offer cutting-edge services while reducing operational costs. Expect more collaborations and acquisitions between traditional banks and fintech startups in 2025.

  1. Customer-Centric Banking

In 2025, customer expectations will drive financial institutions to place a greater emphasis on personalized, seamless banking experiences. Using advanced data analytics and AI, financial institutions can create tailored financial solutions that meet individual customer needs, fostering loyalty and differentiation in a competitive market.

  1. The Growing Influence of Digital Currencies and CBDCs

Central Bank Digital Currencies (CBDCs) are expected to make significant strides in 2025. As countries like the U.S. continue exploring the potential for a digital dollar, financial institutions must stay informed and prepared to integrate these new digital currencies into their services as they become more widespread.

Preparing for 2025: Key Takeaways for Financial Institutions

To thrive in 2025, financial institutions must stay ahead of emerging trends, enhance security, and meet the increasing demand for sustainability. By adopting technologies such as AI, blockchain, and cybersecurity, institutions can enhance operations, offer better services, and align with green finance initiatives. Staying prepared for evolving regulations will also be key to maintaining compliance and positioning for long-term success.

At Brady Martz, we understand the challenges and opportunities facing financial institutions in 2025. Our team of experts is here to guide you through these changes and help you navigate the evolving landscape. Whether it’s adopting new technologies, managing regulatory complexities, or exploring sustainable finance options, we’re committed to helping your institution succeed in 2025 and beyond.

 

Three Key Foundations for Implementing AI in Financial Institutions

/in , /by

ARTICLE | August 30, 2024

Authored by RSM US LLP

This article was originally published on bankdirector.com.

In an evolving technological landscape, the integration of artificial intelligence (AI) presents both opportunities and challenges for financial institutions. Before implementing AI across their operations, financial institutions need three key foundational elements to ensure successful AI adoption and risk mitigation: a clear AI governance framework, strong model risk management and centralized standards.

1. Governance framework

A well-structured AI governance framework must comprehensively address the unique risks and regulatory considerations associated with these advanced technologies. Financial institutions should start with exploratory projects, such as proofs of concept, to gain insights into the operational and risk implications of AI. These insights can then guide the development of an AI governance framework that may either stand as an independent initiative or integrate into existing initiatives in areas such as financial modeling or IT governance.

A financial institution’s AI governance framework should draw upon established industry standards and regulatory guidelines while aligning with the organization’s priorities and risk appetite. More importantly, the framework must include mechanisms for evaluating and prioritizing AI use cases, ensuring alignment with the institution’s strategic objectives and operational requirements.

2. Model risk management

Experience with financial and risk models provides financial institutions with a foundation upon which to build AI-specific model risk management practices. However, AI technologies, particularly those with autonomous capabilities, require a reassessment of traditional risk management frameworks. Financial institutions must adopt enhanced risk management strategies that account for the unique characteristics of AI models, including the potential for generative AI technologies to produce novel, sometimes unpredictable outputs.

Strategies such as imposing limitations on data inputs and incorporating human oversight of model outputs are essential for mitigating risks and ensuring the long-term reliability and integrity of AI applications.

3. Centralized standards

To balance the need for both innovation and control around AI, financial institutions must develop and enforce centralized standards. These standards should include ethical use policies, technical development guidelines and protocols for AI oversight. Establishing centralized oversight ensures that AI initiatives are adopted and implemented in a consistent and controlled manner, facilitating seamless integration into the institution’s operations and IT environment.

Takeaway

For financial executives, the transition toward AI-enabled operations requires careful planning and the establishment of robust foundations in governance, risk management and standardization. By addressing these critical areas, financial institutions can navigate the complexities of AI adoption, ensuring that these technologies contribute positively to operational efficiency, risk mitigation and overall competitive advantage.

Source: RSM US LLP.
Reprinted with permission from RSM US LLP.
© 2024 RSM US LLP. All rights reserved. https://rsmus.com/insights/industries/financial-services/3-key-foundations-for-implementing-ai-in-financial-institutions.html

RSM US LLP is a limited liability partnership and the U.S. member firm of RSM International, a global network of independent assurance, tax and consulting firms. The member firms of RSM International collaborate to provide services to global clients, but are separate and distinct legal entities that cannot obligate each other. Each member firm is responsible only for its own acts and omissions, and not those of any other party. Visit rsmus.com/about for more information regarding RSM US LLP and RSM International.

Major regulatory change on the horizon for financial institutions

/in , /by

ARTICLE | November 01, 2023

Authored by RSM US LLP

Although financial institutions have been dealing with the aftermath of bank failures in the first half of 2023, they just received another tidal wave of repercussions, this time in the form of proposed regulations. The industry has been anticipating new interagency proposals, but because bank failures raised urgent questions around both risk management and oversight, the proposals arrived much sooner than expected.

Heightened attention on risk and governance within the banking ecosystem highlights why the recent bank failures will go down in history as landmark events that will permanently change the regulatory landscape.

The Federal Deposit Insurance Corp. has proposed eight rules for financial institutions so far in 2023; several were the culmination of the agency’s work with the Federal Reserve Bank and the Office of the Comptroller of the Currency. (The FDIC has also issued one rule this year that is already in effect and revised another existing rule.)

If finalized, these rules—which are an outcome of the 2023 bank failures—will alter the regulatory environment and be considered one of the key banking developments of this decade. Here’s a look at four of the most significant proposals:

Capital requirements for large banks

The FDIC, FRB and OCC have proposed changes to capital requirements for large banks (those with more than $100 billion in assets) that aim to improve the resiliency of the financial sector by increasing institutions’ existing capital buffers, making it easier to absorb losses in the event of a failure. The proposed rule—known as Basel III Endgame—would also provide more transparency to the regulatory capital framework that larger insured depository institutions use.

Basel III Endgame has been a long time coming, but of course with the banking turmoil that started in March, the proposed rule made an even larger splash than expected, and not just because the proposal is over 1,000 pages.

The proposal makes a number of changes to the existing framework. Three of highest significance would require institutions to:

  1. Include unrealized gains and losses on available-for-sale securities within capital ratios.
  2. Meet the supplementary leverage ratio requirement minimum of 3%.
  3. Comply with the countercyclical capital buffer, a tool that adds extra capital buffer when the economic market is faring well and releasing the buffer in times of hardship.

The first change noted above will have a rather large impact on common equity tier one (CET 1) capital. The rule will no longer allow Category III and IV (those with total assets of $250 billion or more and organizations with at least $100 billion in total assets that don’t fall into categories I-III, respectively) to opt-out of the accumulated other comprehensive income option. Rather, it will require these institutions to recognize most elements (with the exception of the gains and losses that derive from cash-flow hedges) within their capital framework. If implemented immediately, the change is significant, as seen in the graph above. The Q2’23 adjustment would result in a decrease in CET 1 of approximately $129 billion, which would drop the current average CET 1 ratio by 3%.

With these new rules, the agencies are trying to address the issue of consistency across financial institutions, which use a wide range of internal models to calculate their risk-weighted assets. This new standardized approach will help alleviate comparability concerns across institutions, clarify treatment of certain exposures like derivatives and sovereign debt, and overall provide more transparency to the calculations and ultimately to assess capital adequacy.

The agencies will accept comments on their proposal through Nov. 30. Institutions are expected to implement the new framework starting July 2025, but the agencies will allow institutions through June 2028 to fully transition.

Enhanced resolution planning at large banks

Traditionally when it comes to bank failures, the regulators take a purchase-and-assumption transaction approach, typically the least costly option for resolution. But this year’s bank failures posed a new challenge; of the 42 companies (half were financial institutions, the other half were non-bank entities) that were invited to bid on First Republic Bank, only four companies entered a bid. (What’s more is that Silicon Valley Bank only had one viable bid, and Signature didn’t have any.) This market disruption has shown that sizeable failures are not easy to resolve and take much longer to work through than the historical ‘one weekend is all that’s needed’ process.

This shines light on the importance of resolution planning at larger banks, which pose a greater risk in the financial market and could trigger contagion risk if a failure were to occur. The FDIC and FRB have proposed guidance for both domestic and foreign entities, which would require providing a full resolution plan every other year, a full resolution plan every third year or a reduced resolution plan every third year, depending on entity size. This proposal applies to insured depository institutions with $50 billion or more in total assets, however more stringent requirements are in place for institutions sitting above that $100 billion threshold.

To minimize economic disruption, regulators are requiring that institutions consider feedback provided from 2021 resolution reviews alongside incorporating the lessons learned from the 2023 bank failures. Areas of focus may include capital, liquidity, governance mechanisms, and operational capabilities.

One imperative item to consider before creating a strategic analysis is whether your institution will follow a single point of entry strategy, or a multiple point of entry strategy, as the proposed guidance will change dependent on the result.

In addition to this proposed rule for large banks, the regulators released a separate proposal on comprehensive resolution plans, which brings institutions with at least $100 billion in total assets into the spotlight and would require them to submit their plans for review every other year.

This proposal is open for comment through Nov. 30 and is expected to go into effect in 2024.

Requirement for large banks to maintain long-term debt

Under this rule, the FDIC, FRB and OCC for the first time will require financial institutions with $100 billion or more in total assets to maintain long-term debt.

Like the resolution planning rule, the agencies’ aim is to help improve recoverability if a large institution were to fail, and to help the resolution of the failed institution be less burdensome and help alleviate losses incurred by depositors and other creditors.

This rule emphasizes the ability of long-term debt to act as a complex tool and absorb losses if a bank failure were to occur, providing that prioritized financial stability in the market.

As part of its inauguration, the proposed rule will augment loss-absorbing capacity by requiring institutions to maintain, at a minimum, long-term debt that equates to 6% of their risk-weighted assets, 3.5% of their average total consolidated assets and 2.5% of total leverage exposure (if the institution is subject to the supplementary leverage ratio). But the rule will also prohibit institutions from partaking in any transactions that could convolute potential resolution.

The lift won’t be too large based on current financials, as some banks that will be subject to this proposed rule already have enough long-term debt to satisfy the requirements. As of Dec. 31, 2022, average long-term debt as a percentage of risk-weighted assets for institutions with over $100 billion in total assets was 12%. However, when looking at these institutions individually and not in aggregate, current levels indicate that approximately 1% or roughly $11 billion more is needed in long-term debt once this rule has been finalized.

CONSULTING INSIGHT: Financial services compliance

Financial services companies must navigate a complex risk and regulatory environment. Our advisors—many of whom are former regulatory examiners and industry compliance professionals—understand the challenges and intricacies involved with regulations in the financial services environment. Learn how to successfully manage your specific regulatory challenges to reach your business goals.

To top it off, the rule also forces institutions to apply a risk weight of 100% when calculating their risk-weighted assets for any long-term debt issued by other banks, which will deter institutions from doing so and act as a mitigant to interconnectedness within the industry. The comment period will close Nov. 30, and the final rule is expected to be issued in 2024.

“The industry has been anticipating new interagency proposals, but because bank failures raised urgent questions around both risk management and oversight, the proposals arrived much sooner than expected.”

Angela Kramer, RSM US financial services senior analyst

Liquidity risks and contingency planning

Back in 2010, the FDIC, FRB, OCC and other agencies issued guidance to financial institutions to promote sound liquidity risk management. This new interagency guidance, although not a proposal as it was issued in July, acts as an addendum to the initial rule and promulgates the importance of contingency funding plans.

Bank failures this year made clear that unprecedented depositor behavior (intertwined with ever-evolving market conditions) brought into question an institution’s stability in funding sources. No longer can a bank use the same definition to capture their core deposits, nor can they use the same decay rates in stress-testing scenarios.

The guidance requires institutions to have an extensive range of funding sources and highlights the importance of being operationally prepared to borrow. This includes establishing borrowing arrangements, refreshing contracts with the FRB and Federal Home Loan Bank System, regularly testing contingency lines, understanding current collateral positions, analyzing potential collateral movements if needed in an emergency, and the importance of having the discount window as an option.

The recent bank failures continue to be a stark reminder on how integral sound risk and governance practices are for financial institutions and how much they contribute to systematic stability. While the above rules are in the proposal stage, banks would do well to start preparing for these new requirements now.

A readiness assessment can help institutions:

  • Gain a thorough understanding of the proposed rules and their potential impact
  • Assess their capital adequacy and decipher the specific areas they need to strengthen
  • Strategize and develop a plan that includes specific steps to meet the new capital requirements, resolution plans, long-term debt requirements and contingency planning
  • Be transparent with the appropriate stakeholders and effectively communicate the plans in place to internal stakeholders and also to regulators, depositors and shareholders

Perpetual enhancement continues to be a driving force for regulators, and ultimately it is their fiduciary duty to implement the necessary rules and regulations to help financial institutions navigate a rapidly changing world with volatile market conditions.

This article was written by Angela Kramer and originally appeared on 2023-11-01. Reprinted with permission from RSM US LLP.
© 2024 RSM US LLP. All rights reserved. https://rsmus.com/insights/industries/financial-institutions/major-regulatory-change-on-the-horizon-for-financial-institutions.html

RSM US LLP is a limited liability partnership and the U.S. member firm of RSM International, a global network of independent assurance, tax and consulting firms. The member firms of RSM International collaborate to provide services to global clients, but are separate and distinct legal entities that cannot obligate each other. Each member firm is responsible only for its own acts and omissions, and not those of any other party. Visit rsmus.com/about for more information regarding RSM US LLP and RSM International.