Skip to main content

NATIONAL CREDIT UNION ADMINISTRATION Priorities for 2016

Supervisory Priorities for 2016
NATIONAL CREDIT UNION ADMINISTRATION
1775 Duke Street, Alexandria, VA 22314
DATE:
January 2016
LETTER No.:
16-CU-01
TO:
Federally Insured Credit Unions
SUBJ:
Supervisory Priorities for 2016
Page Content

Dear Board of Directors and Chief Executive Officer:
     This letter is intended to assist you in preparing for your next NCUA examination.  NCUA field staff will continue to use the streamlined small credit union exam program procedures for credit unions with assets up to $50 million and CAMEL ratings of 1, 2, or 3.  For all other credit unions, field staff will conduct risk-focused examinations, which concentrate on the areas of highest risk, new products and services, and compliance with federal regulations.
     Below are NCUA’s top areas of supervisory focus that are broadly applicable for credit unions in 2016.

Cybersecurity Assessment
     Cybersecurity threats continue to represent significant potential operational risks to financial institutions.  Cyberattacks are expected to increase in frequency and severity as worldwide interconnectedness grows and the capabilities to conduct cyberattacks become more sophisticated and easier for criminals or terrorists to obtain.  As in 2014 and 2015, NCUA will continue to carefully evaluate credit unions’ cybersecurity risk management.  
     In June 2015, NCUA released a Cybersecurity Assessment Tool jointly with the other member agencies of the Federal Financial Institutions Examination Council (FFIEC).  The tool provides a structured methodology for credit unions to manage information security and protect member information more effectively. 
The tool is designed to enhance cybersecurity oversight and management capabilities, and to identify any gaps in an institution’s risk-management practices.  Credit unions can use this tool to enhance their cybersecurity preparedness. 
     NCUA encourages all credit unions to use the FFIEC tool to manage cybersecurity risks.  NCUA also plans to begin incorporating the Cybersecurity Assessment Tool into our examination process in the second half of 2016.
     Throughout 2016, NCUA will continue to foster and facilitate sharing of best practices to strengthen credit unions’ existing cybersecurity programs.  For additional cybersecurity resources, please visit the Cybersecurity Resources Page on NCUA’s website.

Response Programs for Unauthorized Access to Member Information
     Incident response procedures are a key part of a credit union’s information security program.  In 2016 examinations, NCUA field staff will be reviewing credit unions’ incident response programs. 
     Appendix B to Part 748 of NCUA rules and regulations, Guidance on Response Programs for Unauthorized Access to Member Information and Member Notice, outlines the minimum components of an incident response program that federally insured credit unions need to develop and implement.  An incident response program is needed to address unauthorized access to, or use of, member information that could result in substantial harm or inconvenience to a member. 

Bank Secrecy Act Compliance
NCUA remains vigilant in ensuring the credit union system is not used to launder money or finance criminal or terrorist activity.  All federally insured credit unions must perform certain recordkeeping and meet reporting requirements to detect this type of activity as required by the Bank Secrecy Act.  
     NCUA field staff are required to review credit unions’ compliance with the Bank Secrecy Act and to complete the related examination questionnaire at every examination.  In 2016, NCUA field staff will focus on credit unions’ relationships with money services businesses, also known as MSBs. 
     Credit unions can provide services to an MSB while meeting BSA requirements, but should be aware of the unique risk exposure MSBs can present and the corresponding need for commensurate expertise and monitoring systems.  In 2014, NCUA issued guidance to field staff and credit unions on Identifying and Mitigating Risks of Money Service Businesses.  The guidance describes the steps credit unions should take to mitigate any money-laundering risks posed by MSBs.
     If your credit union provides services to an MSB, field staff will verify that you meet the following minimum expectations established by NCUA and federal banking agencies:
  • Perform customer identification program procedures;
  • Ensure each MSB is registered with the Financial Crimes Enforcement Network (FinCEN) and is in compliance with state and local licensing requirements; and
  • Conduct a BSA/anti-money laundering risk assessment to document the level of risk associated with each MSB account and determine whether greater due diligence is necessary.
For compliance information and additional resources, see the Bank Secrecy Act page on NCUA’s website.

Interest Rate Risk
     Interest rate risk (IRR) remains a key supervisory focus as interest rates have begun to rise.  Rising rates may prove challenging for those credit unions that hold high concentrations of long-term assets funded with short-term liabilities.
     NCUA is in the process of updating interest rate risk management supervisory guidance, which will be published in 2016.  As part of this effort, NCUA field staff will transition to the updated IRR examination procedures over the course of 2016.  The new procedures will improve the efficiency of reviews by focusing field staff resources on those credit unions with elevated levels of IRR and streamlining related exam procedures.
     Field staff will receive specialized training on evaluating IRR at the national exam program training in April 2016 and throughout the remainder of the year during regularly scheduled group meetings and other customary training venues.  Field staff will evaluate credit unions’ compliance with NCUA’s interest rate risk rule, which requires federally insured credit unions with more than $50 million in assets to develop and adopt a written policy on IRR management, and establish a program to identify, measure, monitor, and control IRR.  
Credit union officials should be prepared to provide NCUA field staff with documentation supporting the credit union’s ability to successfully manage their IRR through changing market conditions, including rising rate environments.
     For the IRR rule and guidance, see 12 CFR Part 741, Requirements for Insurance and Appendix B to Part 741, Guidance for an Interest Rate Risk Policy and an Effective Program.

TILA-RESPA Integrated Disclosure Rule
     Credit unions that have accepted applications for real estate loans on or after October 3, 2015 (except for home equity lines of credit, reverse mortgages, and commercial loans) are required to comply with the TILA-RESPA integrated disclosure rule, which the Consumer Financial Protection Bureau adopted to help consumers better understand mortgage transactions.1 
The CFPB rule requires loan originators to provide consumers with two disclosures: 

Loan Estimate Disclosure – Combines the Truth in Lending Act disclosure and the Good Faith Estimate.  The loan estimate disclosure must be delivered or placed in the mail no later than the third business day after receiving a consumer’s mortgage application. 

Closing Disclosure – Combines the final TILA disclosure and the HUD-1 Settlement Statement.  The closing disclosure must be provided to the consumer at least three business days before the consummation of a mortgage.
     The TILA-RESPA integrated disclosure rule also imposes record retention requirements and restricts mortgage originators from imposing certain fees, providing estimates, or requiring consumers to verify information before providing a loan estimate to a consumer.  Field staff will be reviewing credit unions’ compliance with the relevant provisions.
For additional information, please visit the Consumer Compliance Regulatory Resources page on NCUA’s website.

CUSO Reporting
     Regulatory requirements associated with NCUA’s CUSO rule became effective June 30, 2014.2  One of the primary changes to the rule requires all federally insured credit unions that invest in or lend to a CUSO to enter into a written agreement requiring the CUSO to submit annual reports directly to NCUA and the state supervisory authority, if applicable.
     CUSOs will start providing their annual reports through the CUSO Registry in 2016.3  Once the deadline for CUSOs to register with NCUA has passed, field staff will check to ensure any CUSO a credit union has loaned to or invested in has registered with NCUA.  
More information on the CUSO Registry is forthcoming in a separate Letter to Federally Insured Credit Unions.

Conclusion
     NCUA remains committed to protecting the safety and soundness of America’s federally insured credit unions and their more than 102 million members.  Our examiners worked successfully with thousands of credit unions in 2015 to significantly reduce losses to the National Credit Union Share Insurance Fund.
Signature SC

​Sincerely,

Debbie Matz
Chairman

Comments

Post a Comment

Please no profanity or political comments.

Popular posts from this blog

NCUA Board Approves Final Rule on Dependent Care and Board Member Reimbursement

Alexandria, VA (June 8, 2026) ― The National Credit Union Administration today issued a final rule for Dependent Care and Board Member Reimbursement. The NCUA Board amended its regulations concerning the reimbursement of reasonable expenses for federal credit union officials to remove potential barriers to volunteer service. This final rule provides flexibility for a federal credit union’s board to adopt more family-friendly policies tailored to its size, region, and operations. Previously, dependent care costs had not been considered reasonable expenses under NCUA regulation 12 C.F.R. 701.33.  The final rule applies to all federal credit unions, including corporate federal credit unions. It will not apply to federally insured, state-chartered credit unions, which remain subject to state law. The final rule is effective 30 days from the date of publication in the Federal Register and takes into consideration public comments received from the proposed rule that was issued on Januar...
Post a Comment
Read Complete Article HERE>»

Update from TruStage - Forecast for CU, Economic Performance for Remainder of 2026, 2027

MADISON, Wis. — Credit unions are expected to post stronger loan, deposit , and asset growth in 2026 despite a slowing economy, persistent inflation, geopolitical uncertainty, and continued pressure on consumers, according to TruStage’s latest  Credit Union Trends Report . The report, prepared by TruStage Chief Economist Steve Rick and based on December 2025 data, forecasts credit union loan growth will accelerate to 5.5% in 2026 from 4.6% in 2025, while savings growth is projected to increase to 6.5% from 5.5%. Asset growth is expected to improve to 6.2% in 2026 from 5.4% in 2025. Credit union membership growth is forecast to reach 1.8% in 2026 and 2.0% in 2027. The CU Daily has separate reporting on credit union performance by category here .  According to TruStage, a changing global economic environment has altered its outlook for both the U.S. economy and the credit union system. The report noted disruptions stemming from the closing of the Strait of Hormuz have created su...
Post a Comment
Read Complete Article HERE>»

The Widely Cited Mortgage Lending Benchmark 45% DTI May No Longer Reflect How Lenders Evaluate Borrowers, Says Fed Bank

In an analysis of more than 30 million home-purchase mortgage applications filed between 2018 and 2024, researchers found that the long-discussed 43% debt-to-income ratio threshold has little apparent impact on mortgage approval decisions. Instead, denial rates begin to rise sharply once applicants exceed a debt-to-income ratio of 50%. The findings were published as part of a four-part series examining barriers facing prospective homebuyers. ‘Practical Lesson is Clear’ “For borrowers, the practical lesson is clear: A debt-to-income ratio of 45% is treated by lenders much like a ratio of 35%,” the researchers wrote. “But crossing 50% changes the game entirely.” The 43% debt-to-income ratio gained prominence under the 2010 Dodd-Frank Act, which established it as a key threshold for so-called qualified mortgages. Loans meeting that standard provided lenders with legal protections against ability-to-repay lawsuits. However, in 2021, the Consumer Financial Protection Bureau replaced the rat...
Post a Comment
Read Complete Article HERE>»

Twenty-Five Years of Showing Up

www.NCOFCU.org/Tucson-AZ-2026    Attendee Registration Schedule at a Glance ...
Post a Comment
Read Complete Article HERE>»

Boston Firefighters Credit Union Becomes First Responders Credit Union

New name reflects nearly 80 years of service and a growing commitment to first responders across Massachusetts BOSTON, MA, June 15, 2026 — Boston Firefighters Credit Union today announced that it has officially changed its name to First Responders Credit Union , reflecting the broader first responder community the organization serves while honoring the firefighters who founded it nearly 80 years ago. Founded in 1947 by members of the Boston Fire Department, the credit union was established to serve the financial needs of firefighters and their families. Over the decades, it has grown into a trusted financial institution serving firefighters, law enforcement professionals, EMS personnel, civilian employees of first responder agencies, and their families throughout Massachusetts. Today, more than 12,000 members rely on the credit union for banking, lending, and financial guidance tailored to the unique demands of first responder life. While the name is new, the mission is not. ...
Post a Comment
Read Complete Article HERE>»

NCUA Issues Final Rule to Revise Record Preservation Requirements

ALEXANDRIA, Va. ― The National Credit Union Administration has issued a final rule revising record preservation requirements for credit unions in the event of a catastrophic act. This rule is codified at 12 CFR 749.   “Maintaining vital records is essential to the safety and soundness of any federally insured credit union’s operations and its ability to best serve members,” NCUA Chairman Kyle Hauptman said in a statement. “But NCUA, unlike other regulators, didn’t have a limit on how long records had to be kept. This led to unnecessary cost, hassle and uncertainty. This final rule will ease unnecessary and overly prescriptive preservation requirements, while ensuring that credit unions retain the critical documents needed in instances of disaster”  According to the agency, the vital records preservation program rule was first created in 1972 to ensure that federally insured credit unions keep duplicate records that can be used for reconstruction purposes in the event of ...
Post a Comment
Read Complete Article HERE>»

Just Out! - NCUA Stablecoin Plan Opens Door To Credit Union-Backed Digital Dollar Issuers

ALEXANDRIA, Va.—A sweeping new NCUA proposal to implement the GENIUS Act could open the door for credit union-backed stablecoin issuance, but only through separately licensed subsidiaries operating under an extensive new federal regulatory framework that limits risks to the Share Insurance Fund. The 269-page supplemental proposed rule issued Friday lays out how “permitted payment stablecoin issuers” affiliated with federally insured credit unions would be supervised, examined and regulated by the NCUA, while also establishing rules covering reserves, liquidity, custody, operational risk, cybersecurity, anti-money laundering compliance and disclosure standards. The proposal supplements an earlier February 2026 proposal by the agency focused primarily on licensing and investments in stablecoin issuers. Federally insured credit unions themselves would still be prohibited from directly issuing payment stablecoins under the GENIUS Act. Instead, issuance would have to occur through a separa...
Post a Comment
Read Complete Article HERE>»

Can Small CUs Survive the 4rth Industrial Revolution?

By Homer Fager The Third Industrial Revolution period of the 1950s through 1990s witnessed the beginning of the decline of the small credit unions. In the 1960s the number of credit unions, including state and federal institutions, exceeded 20,000. The 1980s brought new technology to the industry from personal computers to the introduction of the first credit union-sponsored ATM. During the next three decades 10,000 credit unions were lost and in the last decade alone 2,000 have vanished. Continuation of this rate of decline means the “small entity” credit unions may be lost within the next 15 to 20 years. These Third Industrial Revolution banking structural changes were the beginning of the decline of the “small entity”credit union. The Fourth Industrial Revolution, also referred to as 4IR or Industry 4.0, has changed the 21st century and will continue to change our society as did none of the other three revolutions. More has been accomplished in the last 250-plus years of human his...
Post a Comment
Read Complete Article HERE>»

NCUA Board Meeting Coverage: NCUA Approves New Cyber Incident Reporting Rule

02/16/2023 CUToday ALEXANDRIA, Va.–By a 3-0 vote, the NCUA board has approved a final rule on cyber incident reporting for federally insured credit unions. The rule requires credit unions to inform NCUA of any “reportable” incident within 72 hours. Such incidents are those where the credit union “reasonably believes” a cyber incident has occurred, with such events defined as those in which the integrity, confidentiality or availability of information has been compromised. The rule is to go into effect on Sept. 1, 2023. Todd Harper The NCUA board was updated on the rule by Ke...
Post a Comment
Read Complete Article HERE>»