Risk-Based AML only works if the C-suite agrees what ‘risk’ means
There is a palpable tension that governs most financial crime programs in the United States. Banks build their AML programs on the principle of risk-based compliance. They say it to regulators, write it into policies, and showcase it in governance decks. Yet inside most institutions, the way risk is actually treated often tells a different story.
Ask a compliance officer what the AML program’s mission is, and you’ll get the same answer almost every time: stop financial crime. Ask the C-suite what the institution’s risk appetite is, and you’ll likely hear some variation of make this work, grow responsibly, take smart risks, manage exposure, and keep the business moving. Neither is inherently wrong. But in practice, the distance between those two mindsets is where risk-based AML programs begin to fail.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
OpinionHow banks are responsibly embedding machine learning and GenAI into AML surveillance
As financial crime grows in scale, speed, and sophistication, banks are increasingly turning to artificial intelligence, machine learning, and generative AI to strengthen anti-money laundering and surveillance programs.
-
OpinionWhen AI Is Forced on Compliance: The ECCP as your Guide
When a company rapidly adopts AI, compliance officers can be blindsided, tasked with governance almost immediately. Luckily, there is a guide from the U.S. Department of Justice to help.
-
WebcastFeb 19 | The State of Third-Party Risk Assessments 2026
In this Compliance Week webinar, we’ll explore the most compelling findings from the report, based on independent global research conducted in collaboration with the Ponemon Institute and informed by responses from more than 1,400 third-party risk leaders and practitioners.
More from Opinion
-
OpinionEthics as strategic value: When compliance becomes a board-level decision tool
For many Boards of Directors, compliance reporting feels familiar and reassuring. Dashboards are green. Policies are updated. Training is complete. Incidents are investigated and closed. On paper, the system works.
-
OpinionSafely leveraging generative AI: A practical guide for compliance leaders
Generative AI (GenAI) has moved rapidly from experimentation into day-to-day use across many organizations. Over the past year, teams have shifted from exploratory pilots to relying on these tools for core activities such as contract analysis, research, and software development.
-
OpinionThe illusion of control: How shrinking teams and AI are redefining cyber risk
Over recent years, cybersecurity executives have been tasked with an almost impossible Challenge: reduce headcount, accelerate transformation, integrate artificial intelligence, meet regulatory obligations, and still maintain resilience.