Skip to main content

NATIONAL CREDIT UNION ADMINISTRATION Priorities for 2016

Supervisory Priorities for 2016
NATIONAL CREDIT UNION ADMINISTRATION
1775 Duke Street, Alexandria, VA 22314
DATE:
January 2016
LETTER No.:
16-CU-01
TO:
Federally Insured Credit Unions
SUBJ:
Supervisory Priorities for 2016
Page Content

Dear Board of Directors and Chief Executive Officer:
     This letter is intended to assist you in preparing for your next NCUA examination.  NCUA field staff will continue to use the streamlined small credit union exam program procedures for credit unions with assets up to $50 million and CAMEL ratings of 1, 2, or 3.  For all other credit unions, field staff will conduct risk-focused examinations, which concentrate on the areas of highest risk, new products and services, and compliance with federal regulations.
     Below are NCUA’s top areas of supervisory focus that are broadly applicable for credit unions in 2016.

Cybersecurity Assessment
     Cybersecurity threats continue to represent significant potential operational risks to financial institutions.  Cyberattacks are expected to increase in frequency and severity as worldwide interconnectedness grows and the capabilities to conduct cyberattacks become more sophisticated and easier for criminals or terrorists to obtain.  As in 2014 and 2015, NCUA will continue to carefully evaluate credit unions’ cybersecurity risk management.  
     In June 2015, NCUA released a Cybersecurity Assessment Tool jointly with the other member agencies of the Federal Financial Institutions Examination Council (FFIEC).  The tool provides a structured methodology for credit unions to manage information security and protect member information more effectively. 
The tool is designed to enhance cybersecurity oversight and management capabilities, and to identify any gaps in an institution’s risk-management practices.  Credit unions can use this tool to enhance their cybersecurity preparedness. 
     NCUA encourages all credit unions to use the FFIEC tool to manage cybersecurity risks.  NCUA also plans to begin incorporating the Cybersecurity Assessment Tool into our examination process in the second half of 2016.
     Throughout 2016, NCUA will continue to foster and facilitate sharing of best practices to strengthen credit unions’ existing cybersecurity programs.  For additional cybersecurity resources, please visit the Cybersecurity Resources Page on NCUA’s website.

Response Programs for Unauthorized Access to Member Information
     Incident response procedures are a key part of a credit union’s information security program.  In 2016 examinations, NCUA field staff will be reviewing credit unions’ incident response programs. 
     Appendix B to Part 748 of NCUA rules and regulations, Guidance on Response Programs for Unauthorized Access to Member Information and Member Notice, outlines the minimum components of an incident response program that federally insured credit unions need to develop and implement.  An incident response program is needed to address unauthorized access to, or use of, member information that could result in substantial harm or inconvenience to a member. 

Bank Secrecy Act Compliance
NCUA remains vigilant in ensuring the credit union system is not used to launder money or finance criminal or terrorist activity.  All federally insured credit unions must perform certain recordkeeping and meet reporting requirements to detect this type of activity as required by the Bank Secrecy Act.  
     NCUA field staff are required to review credit unions’ compliance with the Bank Secrecy Act and to complete the related examination questionnaire at every examination.  In 2016, NCUA field staff will focus on credit unions’ relationships with money services businesses, also known as MSBs. 
     Credit unions can provide services to an MSB while meeting BSA requirements, but should be aware of the unique risk exposure MSBs can present and the corresponding need for commensurate expertise and monitoring systems.  In 2014, NCUA issued guidance to field staff and credit unions on Identifying and Mitigating Risks of Money Service Businesses.  The guidance describes the steps credit unions should take to mitigate any money-laundering risks posed by MSBs.
     If your credit union provides services to an MSB, field staff will verify that you meet the following minimum expectations established by NCUA and federal banking agencies:
  • Perform customer identification program procedures;
  • Ensure each MSB is registered with the Financial Crimes Enforcement Network (FinCEN) and is in compliance with state and local licensing requirements; and
  • Conduct a BSA/anti-money laundering risk assessment to document the level of risk associated with each MSB account and determine whether greater due diligence is necessary.
For compliance information and additional resources, see the Bank Secrecy Act page on NCUA’s website.

Interest Rate Risk
     Interest rate risk (IRR) remains a key supervisory focus as interest rates have begun to rise.  Rising rates may prove challenging for those credit unions that hold high concentrations of long-term assets funded with short-term liabilities.
     NCUA is in the process of updating interest rate risk management supervisory guidance, which will be published in 2016.  As part of this effort, NCUA field staff will transition to the updated IRR examination procedures over the course of 2016.  The new procedures will improve the efficiency of reviews by focusing field staff resources on those credit unions with elevated levels of IRR and streamlining related exam procedures.
     Field staff will receive specialized training on evaluating IRR at the national exam program training in April 2016 and throughout the remainder of the year during regularly scheduled group meetings and other customary training venues.  Field staff will evaluate credit unions’ compliance with NCUA’s interest rate risk rule, which requires federally insured credit unions with more than $50 million in assets to develop and adopt a written policy on IRR management, and establish a program to identify, measure, monitor, and control IRR.  
Credit union officials should be prepared to provide NCUA field staff with documentation supporting the credit union’s ability to successfully manage their IRR through changing market conditions, including rising rate environments.
     For the IRR rule and guidance, see 12 CFR Part 741, Requirements for Insurance and Appendix B to Part 741, Guidance for an Interest Rate Risk Policy and an Effective Program.

TILA-RESPA Integrated Disclosure Rule
     Credit unions that have accepted applications for real estate loans on or after October 3, 2015 (except for home equity lines of credit, reverse mortgages, and commercial loans) are required to comply with the TILA-RESPA integrated disclosure rule, which the Consumer Financial Protection Bureau adopted to help consumers better understand mortgage transactions.1 
The CFPB rule requires loan originators to provide consumers with two disclosures: 

Loan Estimate Disclosure – Combines the Truth in Lending Act disclosure and the Good Faith Estimate.  The loan estimate disclosure must be delivered or placed in the mail no later than the third business day after receiving a consumer’s mortgage application. 

Closing Disclosure – Combines the final TILA disclosure and the HUD-1 Settlement Statement.  The closing disclosure must be provided to the consumer at least three business days before the consummation of a mortgage.
     The TILA-RESPA integrated disclosure rule also imposes record retention requirements and restricts mortgage originators from imposing certain fees, providing estimates, or requiring consumers to verify information before providing a loan estimate to a consumer.  Field staff will be reviewing credit unions’ compliance with the relevant provisions.
For additional information, please visit the Consumer Compliance Regulatory Resources page on NCUA’s website.

CUSO Reporting
     Regulatory requirements associated with NCUA’s CUSO rule became effective June 30, 2014.2  One of the primary changes to the rule requires all federally insured credit unions that invest in or lend to a CUSO to enter into a written agreement requiring the CUSO to submit annual reports directly to NCUA and the state supervisory authority, if applicable.
     CUSOs will start providing their annual reports through the CUSO Registry in 2016.3  Once the deadline for CUSOs to register with NCUA has passed, field staff will check to ensure any CUSO a credit union has loaned to or invested in has registered with NCUA.  
More information on the CUSO Registry is forthcoming in a separate Letter to Federally Insured Credit Unions.

Conclusion
     NCUA remains committed to protecting the safety and soundness of America’s federally insured credit unions and their more than 102 million members.  Our examiners worked successfully with thousands of credit unions in 2015 to significantly reduce losses to the National Credit Union Share Insurance Fund.
Signature SC

​Sincerely,

Debbie Matz
Chairman

Comments

Post a Comment

Please no profanity or political comments.

Popular posts from this blog

NCUA Board briefed on four topics

The NCUA Board heard briefings on four topics during its meeting Thursday, including the status of the deregulation initiative, a clarification regarding existing rules applicable to brokered and reciprocal deposit arrangements, and the agency’s 2026-2030 Strategic Plan and 2026 Annual Performance Plan.   Acting Director of the Office of Examination and Insurance Amanda Parkhill provided an overview of Phase 1 of the agency’s Deregulation Project, which focuses on targeted, technical changes to remove outdated or unnecessary requirements and improve clarity. The agency made it clear that the effort will likely continue into late 2026 or early 2027, evolving over time based on policy priorities and stakeholder input.   NCUA General Counsel Frank Kressman briefed the board on brokered and reciprocal deposit arrangements and the NCUA’s FAQs on this topic. The briefing demonstrated how a brokered deposit network operates with respect to low-income designated (LID) FICUs ...
Post a Comment
Read Complete Article HERE>»

How Your Bank/Credit Union Can Fight ‘Soft Switching’ — and Even Steal a Few Accounts of Your Own

Your Members Aren't Leaving in a Huff, They're Just Fading Away. Here's How to Stop It. “Soft switching” is picking up as Americans’ financial activity continues to fragment among multiple players, according to new research from JD Power. This trend has implications both for banks and credit unions that want to retain and grow existing relationships, as well as those that would also like to expand by snapping up accounts from other institutions. Key risk:  Once someone establishes a relationship with another provider, their one-time primary financial institution risks slipping into second place — or even losing the relationship entirely. Need to Know: The average checking account customer now has three deposit accounts at different institutions, the study found. One out of five consumers moved money away from their primary financial institution in the past three months, according to the study, an increase over the 17% rate seen in the previous edition. Departures aren’t sud...
Post a Comment
Read Complete Article HERE>»

Sunday Reading - Landmine Rat Honored

  Landmine Rat Honored   Cambodia unveiled the world’s first statue honoring a landmine-detecting rat (w/photo) Friday. Magawa the rat lived to 8 years old and identified more than 100 landmines and other explosives from 2016 to 2021.  There are more than 100 African pouched rats deployed in landmine detection operations across the world. To identify mines, the rats are trained to sniff out explosive compounds like trinitrotoluene, or TNT. (The rats are not heavy enough to trigger detonation.) In Cambodia, up to 6 million landmines remain undiscovered, most planted during three decades of conflict, from the Vietnam War era through Cambodia's civil war . Since 1979, roughly 20,000 people have been killed in Cambodia, and roughly 40,000 wounded as a result of the mines. Magawa cleared more than ...
Post a Comment
Read Complete Article HERE>»

It All Starts in the Boardroom

It all starts in the boardroom—but the consequences are felt far beyond it. When Governance Breaks Down, Members Pay the Price Credit unions are built on a simple but powerful idea: they are owned by their members. Unlike traditional banks, where shareholders drive decisions, credit unions are meant to operate democratically—guided by a volunteer board elected by the very people they serve. But that model only works when participation exists. A governance breakdown happens when the people elected to oversee an institution stop truly representing the people who own it. In credit unions, this breakdown doesn’t usually come from scandal or sudden failure. It happens quietly, over time—through disengagement. The Root of the Problem: Low Engagement Most credit union members don’t vote. Board election turnout is typically in the low single digits. In some cases, it’s barely measurable. That means a very small percentage of the membership is effectively deciding who governs an institution th...
Post a Comment
Read Complete Article HERE>»

It's Financial Literacy Month

April is Financial Literacy Month—a time dedicated to empowering individuals and families with the knowledge and tools needed to make informed financial decisions. Whether you're budgeting, saving, managing debt, or planning for the future, improving your financial literacy can have a lasting impact on your well-being. We invite you to explore our Consumer Education website, where you'll find helpful resources, tips, and guidance to support your financial journey. If you find it valuable, please share it with your family and friends—because financial knowledge is even more powerful when it’s shared. https://www.ncofcu.org/financial-literacy  ================================================= Remember, you're not alone with  NCOFCU.org Join/Upgrade Check out some of NCOFCU's additional features: Annual Conference First Responder Credit Union Academy Financial Literacy Podcasts YouTube Mini's Advocacy  
Post a Comment
Read Complete Article HERE>»

Sunday Reading - Why the IRS is necessary

  'Taxman'   Why the IRS is necessary The Internal Revenue Service, or IRS, is a division of the US Treasury Department created in 1862   that enforces the Internal Revenue Code —Title 26 of the US Code, a compilation of federal statutes—and, effectively, oversees tax collection. In 2024, the IRS's roughly 75,000 employees collected roughly $5T in tax revenue.   Given its role in diverting household income streams, it also has a bad reputation. Half of Americans had an "unfavorable view" of the IRS as of 2024 ( see data ). In a ranking of 16 well-known federal agencies by popularity that year, t...
Post a Comment
Read Complete Article HERE>»

Where are your children banking?

  Grant Sheehan CCUE | CCUP | CEO, NCOFCU The B reach  Between Purpose and Experience Just recently, I came across a story that has stayed with me. It wasn’t dramatic in the traditional sense. There was no scandal, no crisis, no headline-grabbing failure. In fact, it was something much quieter than that. It was simply the story of an eighteen-year-old leaving his credit union. On the surface, that might not sound remarkable. Young people move their money frequently. They open new accounts, experiment with apps, follow trends, and often make financial decisions influenced by the digital tools at their disposal. But this story was different. This young man had been a credit union member since he was a few weeks old, as many credit unions do. His mother has spent her career working inside the credit union movement as an executive. For eighteen years, his financial life was connected to a credit union. If anyone might be expected to remain a lifelong member, it wou...
Post a Comment
Read Complete Article HERE>»

Guardians Credit Union Moves Management Of Its ATM Fleet To Dolphin Debit

WEST PALM BEACH, Fla.—The $306-million  Guardians Credit Union  has turned management of its ATM fleet over to  Dolphin Debit . Minire Syla The credit union has four ATMs at branches and 10 at various select employee group sites. The decision was a big move for Guardians, which had always managed its own ATM fleet, the CU stated. “Dolphin stood out because of their experience, reliability, and the fact that they could truly take the burden off our staff,” said Chief Financial Officer Minire Syla. “Their ability to manage everything seamlessly, combined with the marketing opportunities on ATM screens, made them the best choice for us.” The credit union said it had a number of key priorities for the move, and Syla explained that while reducing the burden on staff, compliance, and cost savings were all important, what was paramount was providing “the best possible experience for our members.” “The convenience and reliability of our ATMs are crucial and outsourcing to Dolphin...
Post a Comment
Read Complete Article HERE>»

The Promise of Financial Technology. NCUA Board Member Rodney Hood

KEY WEST, Fla.–In what he said were his first remarks before a live audience in a year, NCUA Board Member Rodney Hood told a NAFCU meeting here he believes attention to financial technology (fintech) should be a priority, and that the agency will have some related regulatory guidance coming in the near future. Speaking to NAFCU’s CEOs and Senior Executives Conference here, Hood told his audience that as the pandemic subsides he wanted to focus his remarks on a single topic: “the promise of financial technology.” He related a discussion he had with the president of a small financial institution in Charlottesville, Va., that earlier this year started providing Bitcoin access at its branch locations and ATMs after customers had expressed interest. “They wanted to prove that smaller institutions could be just as innovative as the big national players,” said Hood. “Now, time will tell how this plays out. As I noted, we should view it as an experiment in customer service for now, until we ha...
Post a Comment
Read Complete Article HERE>»

Lots of Interest in Crypto, But 60% Say They Don’t Understand It, Survey Finds, Even As…

10/31/2022 CUTodayu WILTON, Conn.–Cryptocurrency investors are attracted by the opportunity for growth, but a high level of skepticism and lack of understanding remains, according to new research. In fact, 60% of respondents to the survey of more than 10,000 people admitted they don’t understand cryptocurrency The research by consumer insights provider  Toluna  surveyed people between the ages of 18 and 64 years from four regions and 19 markets to understand consumer perceptions around cryptocurrency during August 2022. The survey builds on previous waves of research carried out in December 2021 and June 2022, and examines how perceptions of cryptocurrency have continued to develop and change over time, the company said. ...
Post a Comment
Read Complete Article HERE>»