GRC Solutions for Bank Asset Managers

We provide bank asset management groups engaged in trust, custody, and investment management activities with risk, compliance and internal audit consulting services leveraging techniques used by banking regulators and industry leaders. ACA specializes in asset management, and its true value and competitive advantage is the breadth and depth of expertise at all levels of the firm including prior regulatory experience at agencies like the Office of the Comptroller of Currency (OCC), Department of Labor (DOL) and Securities Exchange Commission (SEC).

Our solutions

We help internal audit departments maintain their stature and credibility within their organizations by lending our experienced consultants to execute audit plans, including required annual fiduciary reviews. Our solutions fit any phase of the audit process including planning, fieldwork, wrap-up and reporting. We also support first- and second-line risk and compliance professionals by helping them efficiently and effectively manage fiduciary risk.

Risk Advisory

ACA supports first and second line risk and compliance professionals by helping them efficiently and effectively manage fiduciary risk. Risk advisory consulting engagements include policy development, risk and control reviews and gap analysis, regulatory issue remediation (MRAs), control testing, and more. ACA’s services and level of involvement can be tailored to our clients’ needs.

Internal Audit

ACA’s expertise in asset management is a valuable resource for Chief Audit Executives (CAE) who engage our firm to:

  • Comply with fiduciary audit requirements
  • Verify the completeness of their auditable entities
  • Assess the reasonableness of risk ratings and annual plans
  • Plan, execute, wrap-up or report on internal audits through co-sourcing or outsourcing arrangements
  • Train internal staff to transfer more audit work to in-house resources
Compliance
  • 12 CFR 9
  • Regulation R
  • Servicemember Civil Relief Act
  • Military Lending Act
  • Bank Secrecy Act
  • OFAC
  • Identity Theft Red Flag Monitoring
  • Privacy rules and regulations
  • Investment Company Act for SIDDs
  • Other federal and state banking standards
Trust Operations
  • Custody
  • Transaction processing
  • Trade settlement
  • Reconciliations
  • Pricing
  • Income collection
  • Disbursements
  • Cault controls
Investment Management
  • Post-acceptance and annual reviews
  • Investment policy
  • Asset allocation
  • Subadvisor due diligence and monitoring
  • Best execution
  • Valuations
  • Performance calculation and reporting
  • Alternative investments
Collective Investment Funds
  • Administration
  • Operations
  • Investment management
  • Compliance
Trust Administration
  • Pre-acceptance reviews
  • Account administration
  • Unique assets
Conflicts Management and Disclosures
  • Trading
  • Fee arrangements
  • Affiliate transactions
  • Soft dollars
Other Services
  • Retail nondeposit investment sales program
  • Municipal Advisor Act compliance
  • Cybersecurity, privacy and risk
  • Robo-advising & digital wealth advising
  • Third-party risk management/ vendor management
1 of

Latest insights

5 Best Practices for Building an Effective Vulnerability Management Program

October 27, 2017

This is the first post in a series of cybersecurity tips and tricks from ACA Aponix's team of experienced consultants.

Cyber Alert
  • Cybersecurity
tprm vmos

Don’t Let Third Parties Be Your Downfall — How to Ensure Your Vendors are Protecting Your Assets

October 23, 2017

In the wake of the recent Equifax breach that p

Cyber Alert
  • Cybersecurity

What Investment Advisers Need to Know about Regulatory Cybersecurity

October 19, 2017

I recently joined ACA as Managing Director and Head of ACA Aponix’s Global Regulatory Cybersecurity Practice.

Cyber Alert
  • Cybersecurity

7 Ways You Can Secure Your Network Endpoints

October 11, 2017

An endpoint is any device connected to your enterprise network — laptops, PCs, and printers, for example.

Cyber Alert
  • Cybersecurity

Highlights from the 21st Annual GIPS Standards Conference

October 09, 2017

The 21st Annual GIPS Standards Conference was held in San Diego on September 14-15 with over 300 attendees. A number of topics were covered, including important aspects of the proposed 2020 GIPS Standards updates.

Article
  • Performance

Protecting Your Business from All Angles: Announcing ACA Aponix's 2017 Cybersecurity Awareness Month Theme

September 27, 2017

Cyber incidents can have devastating effects on business of all sizes.

Cyber Alert
  • Cybersecurity

News

ACA Group Acquires Catelas to Create Industry-first 360 Surveillance Offering

The acquisition of Catelas further enhances the holistic surveillance capabilities of ACA’s RegTech platform. Catelas’ patented technology automates the mapping of how people connect and form groups within a firm, isolates collusion risk, and detects high-risk behaviors.

ACA Group and the Investment Adviser Association Announce Strategic Partnership

ACA Group (ACA), a leading provider of governance, risk, and compliance (GRC) advisory services and technology solutions, today announced that it has entered into a strategic partnership with the Investment Adviser Association (IAA), a leading organization dedicated to advancing the interests of investment advisers.

ACA Group Continues to Enhance Compliance Team with New Hires: Former CCOs, Examiners, and General Counsels

ACA has recently welcomed several new members to our investment adviser practice, all of whom bring years of experience and skills to the team. These additions help us accommodate the developing regulatory landscape and meet our client’s specific needs.

Upcoming events

Senior Management Obligations under the SM&CR - 30 September 2021

The ever-increasing focus by the Regulators on the accountability of senior management, particularly when things go wrong, emphasises how important it is for individuals in senior positions to have a clear understanding of what is expected of them. This succinct course is designed to assist Senior Managers to have a full understanding of what they need to do to achieve compliance with the rules under the obligations created by the Senior Managers and Certification Regime (SMCR).

Online Training