Skip to main content

NATIONAL CREDIT UNION ADMINISTRATION Priorities for 2016

Supervisory Priorities for 2016
NATIONAL CREDIT UNION ADMINISTRATION
1775 Duke Street, Alexandria, VA 22314
DATE:
January 2016
LETTER No.:
16-CU-01
TO:
Federally Insured Credit Unions
SUBJ:
Supervisory Priorities for 2016
Page Content

Dear Board of Directors and Chief Executive Officer:
     This letter is intended to assist you in preparing for your next NCUA examination.  NCUA field staff will continue to use the streamlined small credit union exam program procedures for credit unions with assets up to $50 million and CAMEL ratings of 1, 2, or 3.  For all other credit unions, field staff will conduct risk-focused examinations, which concentrate on the areas of highest risk, new products and services, and compliance with federal regulations.
     Below are NCUA’s top areas of supervisory focus that are broadly applicable for credit unions in 2016.

Cybersecurity Assessment
     Cybersecurity threats continue to represent significant potential operational risks to financial institutions.  Cyberattacks are expected to increase in frequency and severity as worldwide interconnectedness grows and the capabilities to conduct cyberattacks become more sophisticated and easier for criminals or terrorists to obtain.  As in 2014 and 2015, NCUA will continue to carefully evaluate credit unions’ cybersecurity risk management.  
     In June 2015, NCUA released a Cybersecurity Assessment Tool jointly with the other member agencies of the Federal Financial Institutions Examination Council (FFIEC).  The tool provides a structured methodology for credit unions to manage information security and protect member information more effectively. 
The tool is designed to enhance cybersecurity oversight and management capabilities, and to identify any gaps in an institution’s risk-management practices.  Credit unions can use this tool to enhance their cybersecurity preparedness. 
     NCUA encourages all credit unions to use the FFIEC tool to manage cybersecurity risks.  NCUA also plans to begin incorporating the Cybersecurity Assessment Tool into our examination process in the second half of 2016.
     Throughout 2016, NCUA will continue to foster and facilitate sharing of best practices to strengthen credit unions’ existing cybersecurity programs.  For additional cybersecurity resources, please visit the Cybersecurity Resources Page on NCUA’s website.

Response Programs for Unauthorized Access to Member Information
     Incident response procedures are a key part of a credit union’s information security program.  In 2016 examinations, NCUA field staff will be reviewing credit unions’ incident response programs. 
     Appendix B to Part 748 of NCUA rules and regulations, Guidance on Response Programs for Unauthorized Access to Member Information and Member Notice, outlines the minimum components of an incident response program that federally insured credit unions need to develop and implement.  An incident response program is needed to address unauthorized access to, or use of, member information that could result in substantial harm or inconvenience to a member. 

Bank Secrecy Act Compliance
NCUA remains vigilant in ensuring the credit union system is not used to launder money or finance criminal or terrorist activity.  All federally insured credit unions must perform certain recordkeeping and meet reporting requirements to detect this type of activity as required by the Bank Secrecy Act.  
     NCUA field staff are required to review credit unions’ compliance with the Bank Secrecy Act and to complete the related examination questionnaire at every examination.  In 2016, NCUA field staff will focus on credit unions’ relationships with money services businesses, also known as MSBs. 
     Credit unions can provide services to an MSB while meeting BSA requirements, but should be aware of the unique risk exposure MSBs can present and the corresponding need for commensurate expertise and monitoring systems.  In 2014, NCUA issued guidance to field staff and credit unions on Identifying and Mitigating Risks of Money Service Businesses.  The guidance describes the steps credit unions should take to mitigate any money-laundering risks posed by MSBs.
     If your credit union provides services to an MSB, field staff will verify that you meet the following minimum expectations established by NCUA and federal banking agencies:
  • Perform customer identification program procedures;
  • Ensure each MSB is registered with the Financial Crimes Enforcement Network (FinCEN) and is in compliance with state and local licensing requirements; and
  • Conduct a BSA/anti-money laundering risk assessment to document the level of risk associated with each MSB account and determine whether greater due diligence is necessary.
For compliance information and additional resources, see the Bank Secrecy Act page on NCUA’s website.

Interest Rate Risk
     Interest rate risk (IRR) remains a key supervisory focus as interest rates have begun to rise.  Rising rates may prove challenging for those credit unions that hold high concentrations of long-term assets funded with short-term liabilities.
     NCUA is in the process of updating interest rate risk management supervisory guidance, which will be published in 2016.  As part of this effort, NCUA field staff will transition to the updated IRR examination procedures over the course of 2016.  The new procedures will improve the efficiency of reviews by focusing field staff resources on those credit unions with elevated levels of IRR and streamlining related exam procedures.
     Field staff will receive specialized training on evaluating IRR at the national exam program training in April 2016 and throughout the remainder of the year during regularly scheduled group meetings and other customary training venues.  Field staff will evaluate credit unions’ compliance with NCUA’s interest rate risk rule, which requires federally insured credit unions with more than $50 million in assets to develop and adopt a written policy on IRR management, and establish a program to identify, measure, monitor, and control IRR.  
Credit union officials should be prepared to provide NCUA field staff with documentation supporting the credit union’s ability to successfully manage their IRR through changing market conditions, including rising rate environments.
     For the IRR rule and guidance, see 12 CFR Part 741, Requirements for Insurance and Appendix B to Part 741, Guidance for an Interest Rate Risk Policy and an Effective Program.

TILA-RESPA Integrated Disclosure Rule
     Credit unions that have accepted applications for real estate loans on or after October 3, 2015 (except for home equity lines of credit, reverse mortgages, and commercial loans) are required to comply with the TILA-RESPA integrated disclosure rule, which the Consumer Financial Protection Bureau adopted to help consumers better understand mortgage transactions.1 
The CFPB rule requires loan originators to provide consumers with two disclosures: 

Loan Estimate Disclosure – Combines the Truth in Lending Act disclosure and the Good Faith Estimate.  The loan estimate disclosure must be delivered or placed in the mail no later than the third business day after receiving a consumer’s mortgage application. 

Closing Disclosure – Combines the final TILA disclosure and the HUD-1 Settlement Statement.  The closing disclosure must be provided to the consumer at least three business days before the consummation of a mortgage.
     The TILA-RESPA integrated disclosure rule also imposes record retention requirements and restricts mortgage originators from imposing certain fees, providing estimates, or requiring consumers to verify information before providing a loan estimate to a consumer.  Field staff will be reviewing credit unions’ compliance with the relevant provisions.
For additional information, please visit the Consumer Compliance Regulatory Resources page on NCUA’s website.

CUSO Reporting
     Regulatory requirements associated with NCUA’s CUSO rule became effective June 30, 2014.2  One of the primary changes to the rule requires all federally insured credit unions that invest in or lend to a CUSO to enter into a written agreement requiring the CUSO to submit annual reports directly to NCUA and the state supervisory authority, if applicable.
     CUSOs will start providing their annual reports through the CUSO Registry in 2016.3  Once the deadline for CUSOs to register with NCUA has passed, field staff will check to ensure any CUSO a credit union has loaned to or invested in has registered with NCUA.  
More information on the CUSO Registry is forthcoming in a separate Letter to Federally Insured Credit Unions.

Conclusion
     NCUA remains committed to protecting the safety and soundness of America’s federally insured credit unions and their more than 102 million members.  Our examiners worked successfully with thousands of credit unions in 2015 to significantly reduce losses to the National Credit Union Share Insurance Fund.
Signature SC

​Sincerely,

Debbie Matz
Chairman

Comments

Post a Comment

Please no profanity or political comments.

Popular posts from this blog

Cutting Through The Stablecoin Noise—What Credit Unions Actually Need To Know Now

By Ray Birch DOVER, Del.—By any measure, stablecoins have quickly become one of the most talked-about—and least understood—topics in credit union boardrooms. The pressure to “do something” is building, fueled by headlines, fintech momentum and a growing fear of being left behind. But according to InvestiFi CEO Kian Sarreshteh, that urgency may be misplaced. “There’s a lot of FOMO right now,” Sarreshteh said. “If I don’t adopt a stablecoin solution this year, I’m going to be left behind. I would argue pretty strongly that’s very far from the truth.” Instead of rushing to sign up for a Stablecoin pilot, Sarreshteh said credit unions should begin with a more fundamental question: what problem are you actually trying to solve? While stablecoins are often discussed as a potential challenger to traditional payment rails dominated by Visa and Mastercard, he believes that kind of mass-market disruption remains years away—especially in the U.S., where consumers already have fast, convenient opt...
Post a Comment
Read Complete Article HERE>»

Senate Banking To Vote Thursday On Landmark Digital Assets Bill

“NCOFCU appreciates the Senate Banking Committee’s continued work during next week’s markup hearing to establish a clear and responsible regulatory framework for digital assets,” said the National Council of Fire Fighter Credit Unions (NCOFCU) leadership. “As lawmakers consider this legislation, it is essential that first responder credit unions are recognized as a vital part of the financial services ecosystem and are not overlooked in the evolving digital asset landscape. Credit unions serving police, fire, EMS, and other emergency personnel must have equitable access to innovation, regulatory clarity, and the tools necessary to continue supporting the financial readiness and resilience of America’s first responders.” Grant Sheehan CEO WASHINGTON—The Senate Banking Committee will vote on the long-awaited CLARITY Act this Thursday, Committee Chairman Tim Scott (R-SC) announced Friday. Tim Scott The announcement marks a potentially major step forward for legislation that would establis...
Post a Comment
Read Complete Article HERE>»

NCUA Identifies Supervisory Priorities for 2024

ALEXANDRIA, Va.–In a new  Letter to Credit Unions , NCUA has outlined its supervisory priorities and other updates for its 2024 examination program. The agency said the areas identified are those with the highest risk to credit union members and the insurance fund. As CUToday.info has previously reported, growing financial strains and liquidity risks are cited by the agency, as well as the growth in the number of composite CAMELS code 3, 4, and 5 credit unions.  The agency further noted: Its exam flexibility initiative will continue in 2024, extending the exam cycle for certain credit unions. It will continue its Small Credit Union Exam Program in most federal credit unions with assets of $50 million or less. Supervisory Priorities f...
Post a Comment
Read Complete Article HERE>»

Hood: Credit unions are safe and sound

Hood’s term on the NCUA Board will expire in August.  NCUA Board Member Rodney Hood appeared via live stream with Brad Barnes, Air Academy Credit Union, and Amy McGraw, Tropical Financial Credit Union. The regulator lauds strong membership, asset, and loan growth. Despite recent headwinds, including high-profile bank failures, the credit union movement is still safe and sound, says Rodney Hood, NCUA board member, and immediate past chairman. “We’re not seeing the contagion like at other financial institutions,” says Hood, who addressed the 2023 CUNA Finance Council Conference Monday via live stream. The Silicon Valley Bank (SVB) crisis was one of confidence, he says. Ninety percent of SVB’s deposits were uninsured. In comparison, more than 91% of credit union deposits are insured. “We don’t have those entanglements,” Hood says. “That bodes well for our future.”  He lauded America’s 4,800 credit unions for growing membership to 135 million, assets to $2.2 trill...
Post a Comment
Read Complete Article HERE>»

The Most Overlooked Growth Opportunity in First Responder Credit Unions

Credit unions spend enormous amounts of time, energy, and marketing dollars trying to acquire new members. But many institutions — especially sponsor-based first responder credit unions — are sitting on one of the most valuable growth opportunities already inside their existing membership base. The joint owner population. Every day, firefighters, police officers, EMTs, dispatchers, and other first responders join credit unions through sponsor relationships. During account opening, spouses or partners are often added as joint owners for convenience. They help manage the household finances. They use the debit card. They log into online banking. They interact with the credit union regularly. Yet in many cases, they never actually become full member-owners of the cooperative. They are connected to the institution — but not fully part of it. And that creates a major strategic opportunity. Why Joint Owner Conversion Matters For sponsor-based credit unions, converting joint owners into full m...
Post a Comment
Read Complete Article HERE>»

7 Secrets For Merger Success | Credit Unions

These best practices will ensure your next merger won’t be your last. By Aaron Pugh  With six mergers completed since 2009 and three more on the immediate horizon, Credit Union of Southern California ($781.8M, Whittier, CA) — commonly referred to as CU SoCal — attributes just over half of its branch footprint and about 70% of growth achieved in the past five years to merger activity. On the opposite side of the country, The Summit Federal Credit Union ($723.7M, Rochester, NY) averaged close to one merger a year between 2003 and 2011, increasing its assets by more than $445 million and adding 12 branches in three regional markets beyond its original Rochester and Seneca Falls footprint. Despite the prevalence of this activity, neither of these institutions has ever actively sought out any merger partner. Instead, they’ve been responding to increased demand from small-to-mid-sized credit unions for cooperative alliances, both for survival and for the enhanced economies of scale ...
Post a Comment
Read Complete Article HERE>»

Ransomware: 'It's A Growing Issue'

MADISON, Wis.—Ransomware attacks, already a quiet concern that has been growing among credit unions, are expected to dramatically increase this year—with one analyst saying there is “no silver bullet” to prevent the threat. Ransomware is a type of malicious software designed to block access to a computer system or PC until a sum of money is paid. In the case of a financial institution, crooks first use the malware to encrypt the contents of the FI’s data and then extract a ransom in exchange for decrypting the information and allowing the victim to regain access. It’s an issue, according to one regulator source who asked for anonymity that has been growing within credit unions, many of which have paid ransoms to regain access to their data and have chosen not to speaking publicly about the crime. “This has become a huge problem,” said Ken Otsuka, senior consultant in CUNA Mutual Group’s risk management department, adding that CUNA Mutual Group’s cyber liability coverage data d...
Post a Comment
Read Complete Article HERE>»

Visa, Mastercard Revisions Will Cost Merchants more Than $475 Million Annually, Economist Says

 NEW YORK—The two biggest U.S. card networks are preparing revisions to their interchange schedules that at least one research firm says will cost U.S. merchants an estimated $475 million in additional transaction fees. Though Visa Inc. and Mastercard Inc. have historically revised their rate schedules each April and October, “this April is particularly significant,” Callum Godwin, the Atlanta-based chief economist for CMSPI, a United Kingdom-based research firm, told Digital Transactions. The firm’s estimates indicate the changes in Visa’s rates will add up to a net $145 million in additional cost to acquirers. For Mastercard, the impact will net out to $330 million. The networks do not collect interchange. Merchant processors pay in...
Post a Comment
Read Complete Article HERE>»

A Perfect Example - What Makes Credit Unions Different from Banks!

When the government shutdown hit in October and paychecks stopped, thousands of federal employees were left wondering how to make ends meet. Credit unions across the country stepped up—but Keesler Federal Credit Union went above and beyond. No loans, no hassle—just your paycheck Instead of making members apply for emergency loans, Keesler Federal launched its Paycheck Relief Program. Revolutionary in its simplicity, it worked like this: if you were a federal employee with direct deposit at Keesler Federal, your paycheck kept coming—interest-free, fee-free, and stress-free. Each qualified member could receive up to $6,000 per pay period for as long as 90 days. No hoops, no headaches. From October 1 until the shutdown ended, Keesler Federal advanced more than 5,000 paychecks totaling $6.5 million to 1,710 members. For non-members, they even offered zero-interest loans up to $6,500 with a year to pay it back. This proactive approach meant that before the first missed paycheck, Keesler Fed...
Post a Comment
Read Complete Article HERE>»

ACU Calls For Full Political Engagement As Election Cycle Heats Up, Warns Of Well-Funded Opposition

  WASHINGTON--Credit unions need every advocacy resource at their disposal, and in an election year, that means supporting credit union champions, America’s Credit Unions emphasized. ACU President/CEO Scott Simpson and Head of Political Affairs Trey Hawkins outlined credit unions’ role in supporting those champions in the 120th Congress as the 2026 election cycle resumes with primaries next week. Scott Simpson “It’s important that we defend those who defend us, that we help those who help us,” Simpson said, referring to policymakers who have supported the credit union tax status and regulatory relief, while opposing new interchange mandates, to name a few issues. “This is an opportunity for us to lean in, to marshal all the available resources that we can. Our counterparts in the for-profit financial space, those who are devoted to harming us, can vastly out-resource us.” Hawkins shared potential outcomes for control of chambers of Congress, but noted credit unions have support reg...
Post a Comment
Read Complete Article HERE>»