Compliance and risk officer

Key information

  1. Status: Approved for delivery
  2. Reference: ST0362
  3. Version: 1.3
  4. Level: 3
  5. Typical duration to gateway: 15 months
  6. Typical EPA period: 5 months
  7. Maximum funding: £11000
  8. Route: Legal, finance and accounting
  9. Integration: None
  10. Date updated: 05/09/2024
  11. Approved for delivery: 19 September 2016
  12. Lars code: 143
  13. EQA provider: Ofqual
  14. Review: this apprenticeship will be reviewed in accordance with our change request policy.
Apprenticeship summary Occupational standard EPA plan
Hide contents

Contents

Hide contents

Contents

Print apprenticeship summary

Apprenticeship summary

Overview of the role

Giving basic advice to financial services organisations on the legal and regulatory rules they must follow - such as those about data security or preventing money laundering.

Occupation summary

This occupation is found in all organisations in the financial services sector, including insurance and banking. Compliance and risk officers also work within finance functions across other sectors where a business may have financial compliance responsibilities, such as ensuring that financial organisations operate within the legal boundaries and industry standards.

Compliance and risk officers play a crucial role in ensuring regulatory adherence and minimising potential risks. They focus on legal and regulatory requirements, while identifying and managing potential risks. The role may vary based on the size of the organisation. In smaller organisations, they may work with a small multiskilled team. In larger organisations, they may specialise in one aspect of compliance and risk, for example financial crime or assurance.

The broad purpose of the occupation is to support businesses to meet their financial legal and regulatory obligations. This is achieved through supporting and maintaining a culture of compliance and conducting risk and assurance checks to monitor ongoing compliance. This is achieved through supporting and maintaining a culture of compliance, such as designing relevant training, and providing guidance to business areas on best practice. Compliance and risk officers work to meet key regulatory objectives to protect investors and ensure that markets are fair, efficient and transparent. They also seek to reduce system risk and financial crime.

Within the risk and compliance function of an organisation, the role of a compliance and risk officer will typically include providing guidance to the business in their specialist area, for example financial fraud.

An employee in this occupation would need to exercise judgement and discretion within specified parameters to evidence credibility, and will make evidence-based decisions on whether or not risk and compliance is being adhered to. On occasion they may need to escalate an issue to a manager.

Compliance and risk officers are typically based in an office. Depending on the size of the organisation they may work across multiple sites. There may also be a requirement for hybrid-working, combining office-based work and working from home.

In their daily work, an employee in this occupation interacts with colleagues and teams across the organisation to offer advice and support on risk and compliance issues. They may need to interact with more senior colleagues to present information and data.

Compliance and risk officers work to mitigate legal and regulatory risks to avoid penalties and reputational damage. One of their primary responsibilities is to ensure that institutions operate within the boundaries of applicable laws and regulations. They take an active role in managing an organisation’s risk and reducing financial crime.

Depending on their role, they will interact with external stakeholders, such as small and medium enterprises and larger organisations, providing guidance and support to ensure policies on risk and compliance are being correctly applied and meet the legal and regulatory requirements of the finance sector. Typically, they would report to a senior manager with expertise in financial risk and compliance policy.

An employee in this occupation will be responsible for supporting an organisation’s adherence to compliance regulation and ensuring that risk is minimised. They may specialise in risk or compliance but can do both depending on the organisation. Within limited parameters, they will be responsible for making their own evidence-based decisions which follow the organisation’s financial policy and procedures. In some organisations they may be responsible for supervising or guiding others.

Typical job titles include:

Anti-money laundering specialist Compliance officer Financial crime officer Risk officer

Duties

  • Duty 1 Perform risk and or compliance checks and reviews as directed by their line manager to determine whether established protocols are being followed and where they can be improved.
  • Duty 2 Identify and analyse risk and compliance issues within an organisation.
  • Duty 3 Undertake risk analysis to identify areas where risk can be mitigated to ensure organisations are fully compliant.
  • Duty 4 Embed risk and compliance processes and controls to ensure legal and regulatory compliance.
  • Duty 5 Contribute to embedding a culture of compliance within an organisation or organisations.
  • Duty 6 Prepare information in the form of reports for stakeholders within agreed deadlines.
  • Duty 7 Undertake compliance and risk research activities under the guidance of managers or senior leaders.
  • Duty 8 Deliver risk and compliance projects as and when required by managers or senior leaders.
  • Duty 9 Maintain organisational compliance and risk documentation and policies.
  • Duty 10 Support with regulatory correspondence and requests for information.
  • Duty 11 Use digital technology advancements in the management of risk and compliance.

Apprenticeship summary

ST0362, compliance and risk officer level 3

This is a summary of the key things that you – the apprentice and your employer need to know about your end-point assessment (EPA). You and your employer should read the EPA plan for the full details. It has information on assessment method requirements, roles and responsibilities, and re-sits and re-takes.

What is an end-point assessment and why it happens

An EPA is an assessment at the end of your apprenticeship. It will assess you against the knowledge, skills, and behaviours (KSBs) in the occupational standard. Your training will cover the KSBs. The EPA is your opportunity to show an independent assessor how well you can carry out the occupation you have been trained for.

Your employer will choose an end-point assessment organisation (EPAO) to deliver the EPA. Your employer and training provider should tell you what to expect and how to prepare for your EPA.

The length of the training for this apprenticeship is typically 15 months. The EPA period is typically 5 months.

The overall grades available for this apprenticeship are:

  • fail
  • pass
  • merit
  • distinction

When you pass the EPA, you will be awarded your apprenticeship certificate.


EPA gateway

The EPA gateway is when the EPAO checks and confirms that you have met any requirements required before you start the EPA. You will only enter the gateway when your employer says you are ready.

The gateway requirements for your EPA are:

  • achieved English and mathematics qualifications in line with the apprenticeship funding rules
  • passed any other qualifications listed in the occupational standard

For the compliance and risk officer, the qualification required is:

ICA International Advanced Certificate in Governance, Risk and Compliance

ICA Advanced Certificate in Managing Fraud

ICA International Advanced Certificate in Anti Money Laundering

ICA Advanced Certificate in Practical Customer Due Diligence

ICA Advanced Certificate in Business Compliance

ICA Advanced Certificate in Managing Sanctions Risk

ICA Certificate in Compliance

ICA Certificate in Anti Money Laundering

ICA Certificate in Financial Crime Prevention

ICA Specialist Certificate in Financial Crime Risk and New Technology

ICA Specialist Certificate in Money Laundering Risk in Betting and Gaming

ICA Specialist Certificate in Conduct Risk

CISI Award in Combatting Financial Crime

CISI Award in Global Financial Compliance

CISI Award in Risk in Financial Services

CICM Level 3 Diploma in Credit and Collections

Assessment methods

Who to contact for help or more information

You should speak to your employer if you have a query that relates to your job.

You should speak to your training provider if you have any questions about your training or EPA before it starts.

You should receive detailed information and support from the EPAO before the EPA starts. You should speak to them if you have any questions about your EPA once it has started.Reasonable adjustments

If you have a disability, a physical or mental health condition or other special considerations, you may be able to have a reasonable adjustment that takes this into account. You should speak to your employer, training provider and EPAO and ask them what support you can get. The EPAO will decide if an adjustment is appropriate.


Professional recognition

This apprenticeship aligns with International Compliance Association (ICA) for Professional Member of the ICA (MICA) or Associate membership of the ICA (AICA)

Please contact the professional body for more details.

This apprenticeship aligns with Chartered Institute for Securities and Investment (CISI) for Associate member status (ACSI)

Please contact the professional body for more details.

This apprenticeship aligns with Chartered Institute of Credit Management (CICM) for Associate Membership ACICM

Please contact the professional body for more details.

Print occupational standard

Details of the occupational standard

Occupation summary

This occupation is found in all organisations in the financial services sector, including insurance and banking. Compliance and risk officers also work within finance functions across other sectors where a business may have financial compliance responsibilities, such as ensuring that financial organisations operate within the legal boundaries and industry standards.

Compliance and risk officers play a crucial role in ensuring regulatory adherence and minimising potential risks. They focus on legal and regulatory requirements, while identifying and managing potential risks. The role may vary based on the size of the organisation. In smaller organisations, they may work with a small multiskilled team. In larger organisations, they may specialise in one aspect of compliance and risk, for example financial crime or assurance.

The broad purpose of the occupation is to support businesses to meet their financial legal and regulatory obligations. This is achieved through supporting and maintaining a culture of compliance and conducting risk and assurance checks to monitor ongoing compliance. This is achieved through supporting and maintaining a culture of compliance, such as designing relevant training, and providing guidance to business areas on best practice. Compliance and risk officers work to meet key regulatory objectives to protect investors and ensure that markets are fair, efficient and transparent. They also seek to reduce system risk and financial crime.

Within the risk and compliance function of an organisation, the role of a compliance and risk officer will typically include providing guidance to the business in their specialist area, for example financial fraud.

An employee in this occupation would need to exercise judgement and discretion within specified parameters to evidence credibility, and will make evidence-based decisions on whether or not risk and compliance is being adhered to. On occasion they may need to escalate an issue to a manager.

Compliance and risk officers are typically based in an office. Depending on the size of the organisation they may work across multiple sites. There may also be a requirement for hybrid-working, combining office-based work and working from home.

In their daily work, an employee in this occupation interacts with colleagues and teams across the organisation to offer advice and support on risk and compliance issues. They may need to interact with more senior colleagues to present information and data.

Compliance and risk officers work to mitigate legal and regulatory risks to avoid penalties and reputational damage. One of their primary responsibilities is to ensure that institutions operate within the boundaries of applicable laws and regulations. They take an active role in managing an organisation’s risk and reducing financial crime.

Depending on their role, they will interact with external stakeholders, such as small and medium enterprises and larger organisations, providing guidance and support to ensure policies on risk and compliance are being correctly applied and meet the legal and regulatory requirements of the finance sector. Typically, they would report to a senior manager with expertise in financial risk and compliance policy.

An employee in this occupation will be responsible for supporting an organisation’s adherence to compliance regulation and ensuring that risk is minimised. They may specialise in risk or compliance but can do both depending on the organisation. Within limited parameters, they will be responsible for making their own evidence-based decisions which follow the organisation’s financial policy and procedures. In some organisations they may be responsible for supervising or guiding others.

Typical job titles include:

Anti-money laundering specialist Compliance officer Financial crime officer Risk officer

Occupation duties

Duty KSBs

Duty 1 Perform risk and or compliance checks and reviews as directed by their line manager to determine whether established protocols are being followed and where they can be improved.

K1 K3 K4 K6 K12 K13 K18

S1 S3 S4 S5

B4

Duty 2 Identify and analyse risk and compliance issues within an organisation.

K1 K2 K4 K5 K6 K12 K13 K18

S1 S4 S5

B1 B2 B5

Duty 3 Undertake risk analysis to identify areas where risk can be mitigated to ensure organisations are fully compliant.

K1 K2 K3 K4 K5 K7 K11 K12 K13 K18

S1 S2 S4 S5 S9 S10 S12

B4

Duty 4 Embed risk and compliance processes and controls to ensure legal and regulatory compliance.

K2 K3 K5 K6 K7 K10 K11 K12 K13 K18

S1 S2 S8 S9 S10 S11 S12

B4 B6

Duty 5 Contribute to embedding a culture of compliance within an organisation or organisations.

K1 K2 K3 K6 K7 K9 K10 K11 K12 K13 K16 K17

S1 S2 S6 S8 S9 S10 S12 S14

B1 B2 B4

Duty 6 Prepare information in the form of reports for stakeholders within agreed deadlines.

K4 K8 K10 K12 K15 K16

S2 S3 S6 S7 S8

Duty 7 Undertake compliance and risk research activities under the guidance of managers or senior leaders.

K1 K14 K15 K16

S3 S4 S6 S12

B3

Duty 8 Deliver risk and compliance projects as and when required by managers or senior leaders.

K4 K8 K10 K11 K14 K15 K16 K18

S2 S3 S12

B3

Duty 9 Maintain organisational compliance and risk documentation and policies.

K2 K3 K4 K7 K8 K9 K10 K11 K13 K15 K16

S6 S7 S8 S12

B3 B5

Duty 10 Support with regulatory correspondence and requests for information.

K3 K4 K7 K8 K10 K11 K12 K14 K15 K16

S1 S2 S6

B5

Duty 11 Use digital technology advancements in the management of risk and compliance.

K10 K11 K15 K16 K17

S2 S6 S7 S8 S11 S13 S14

B3 B5

KSBs

Knowledge

K1: Legal and regulatory framework relative to their industry. Back to Duty

K2: Role of the different regulators, and the implications of non-compliance for the organisation. Back to Duty

K3: Legal and regulatory requirements, for example the Financial Conduct Authority handbook, and the policies and procedures to implement these requirements. Back to Duty

K4: Risk and compliance requirements for their role, for example operational risk, financial crime, know your customer, training and competence, approved persons, conduct risk, complaints, data security. Back to Duty

K5: Range and purpose of organisations that are found in their wider industry, and their own organisation’s position within this landscape. Back to Duty

K6: Functions of the organisation and their relationship with risk and compliance policies and procedures. Back to Duty

K7: Impact that the external environment and legal and regulatory requirements have on the organisation and on their industry. Back to Duty

K8: Products and services offered to customers within their organisation and their industry relative to their role. Back to Duty

K9: Approaches to delivering fair customer outcomes, for example identifying vulnerable customers. Back to Duty

K10: Professional standards and best practice, and how these are applied. Back to Duty

K11: Systems, tools and processes that assist in identifying, managing and mitigating compliance and risk issues. Back to Duty

K12: Audit requirements and the responsibilities of the auditor and auditee. Back to Duty

K13: Policies and procedures for the identification and escalation of compliance issues and risks. Back to Duty

K14: Planning, prioritising and time management techniques. Back to Duty

K15: Communication methods, including verbal, non-verbal and written, and how to adapt communication to different audiences. Back to Duty

K16: Digital tools for research, analysis, and presentation of data through visualisation techniques. Back to Duty

K17: Data protection legislation and the processes for sharing and storing information safely and securely, including risks to data from cybercrime. Back to Duty

K18: Green and sustainable policies and practices and the role they play in the finance sector, and how to minimise negative impacts on environmental sustainability within the context of their role. Back to Duty

Skills

S1: Implement legal and regulatory framework requirements. Back to Duty

S2: Deliver risk and compliance services to stakeholders using organisational systems and processes. Back to Duty

S3: Plan and organise workloads to meet individual and team performance targets. Back to Duty

S4: Identify ways to reduce and mitigate incidents of non-compliance. Back to Duty

S5: Escalate compliance and risk issues where appropriate in line with organisational procedures. Back to Duty

S6: Manage records in order to meet audit requirements of the organisation. Back to Duty

S7: Produce evidence-based reports and management information for stakeholders considering visualisation techniques when presenting data. Back to Duty

S8: Select and use communication methods applicable to the audience and circumstances, for example, presentations, phone, face to face, email, virtual meetings. Back to Duty

S9: Communicate about products with customers, colleagues or stakeholders in different styles, for example visually, verbally, written, using e-comms. Back to Duty

S10: Build and maintain working relationships. Back to Duty

S11: Identify own training needs and seek feedback to improve performance and service delivered. Back to Duty

S12: Apply continuous improvement techniques when delivering improved compliance outcomes and mitigating risks. Back to Duty

S13: Record information electronically and make use of available technology, for example Management Information Systems (MIS), spreadsheets, presentation software, word processing, email, virtual communication. Back to Duty

S14: Handle data safely and securely and share information in compliance with data protection legislation and organisational policy. Back to Duty

Behaviours

B1: Acts in a professional and ethical manner. Back to Duty

B2: Maintains confidentiality and acts with due care and diligence. Back to Duty

B3: Seeks to continuously improve and develop themselves and their team. Back to Duty

B4: Adapts to, and is resilient in, challenging or changing situations. Back to Duty

B5: Keeps up to date with relevant legal, regulatory and other changes affecting the industry. Back to Duty

B6: Collaborates with and supports colleagues. Back to Duty

Qualifications

English and Maths

Apprentices without level 2 English and maths will need to achieve this level prior to taking the End-Point Assessment. For those with an education, health and care plan or a legacy statement, the apprenticeship’s English and maths minimum requirement is Entry Level 3. A British Sign Language (BSL) qualification is an alternative to the English qualification for those whose primary language is BSL.

Other mandatory qualifications

ICA International Advanced Certificate in Governance, Risk and Compliance

Level: 4

ICA Advanced Certificate in Managing Fraud

Level: 4

ICA International Advanced Certificate in Anti Money Laundering

Level: 4

ICA Advanced Certificate in Practical Customer Due Diligence

Level: 4

ICA Advanced Certificate in Business Compliance

Level: 4

ICA Advanced Certificate in Managing Sanctions Risk

Level: 4

ICA Certificate in Compliance

Level: 2

ICA Certificate in Anti Money Laundering

Level: 2

ICA Certificate in Financial Crime Prevention

Level: 2

ICA Specialist Certificate in Financial Crime Risk and New Technology

Level: 2

ICA Specialist Certificate in Money Laundering Risk in Betting and Gaming

Level: 2

ICA Specialist Certificate in Conduct Risk

Level: 2

CISI Award in Combatting Financial Crime

Level: 3

Ofqual regulated

CISI Award in Global Financial Compliance

Level: 3

Ofqual regulated

CISI Award in Risk in Financial Services

Level: 3

Ofqual regulated

CICM Level 3 Diploma in Credit and Collections

Level: 3

Ofqual regulated

Professional recognition

This standard aligns with the following professional recognition:

  • International Compliance Association (ICA) for Professional Member of the ICA (MICA) or Associate membership of the ICA (AICA)
  • Chartered Institute for Securities and Investment (CISI) for Associate member status (ACSI)
  • Chartered Institute of Credit Management (CICM) for Associate Membership ACICM
Print EPA plan

End-point assessment plan

V1.3

Introduction and overview

This document explains the requirements for end-point assessment (EPA) for the compliance and risk officer apprenticeship. End-point assessment organisations (EPAOs) must follow this when designing and delivering the EPA.

Compliance and risk officer apprentices, their employers and training providers should read this document.

A full-time compliance and risk officer apprentice typically spends 15 months on-programme (this means in training before the gateway). The apprentice must spend at least 12 months on-programme and complete the required amount of off-the-job training in line with the apprenticeship funding rules.

The apprentice must complete their training and meet the gateway requirements before starting their EPA. The EPA will assess occupational competence.

An approved EPAO must conduct the EPA for this apprenticeship. Employers must select an approved EPAO from the register of end-point assessment organisations (RoEPAO).

This EPA has 0 assessment methods.

The grades available for each assessment method are below.

The result from each assessment method is combined to decide the overall apprenticeship grade. The following grades are available for the apprenticeship:

  • fail

  • pass

  • merit

  • distinction

EPA summary table

On-programme - typically 15 months

The apprentice must:

  • complete training to develop the knowledge, skills and behaviours (KSBs) outlined in this apprenticeship’s occupational standard
  • complete training towards English and mathematics qualifications in line with the apprenticeship funding rules
  • complete training towards ONE of the qualifications listed in the compliance and risk officer occupational standard

One of the following qualifications must be completed prior to gateway:

ICA International Advanced Certificate in Governance, Risk and Compliance

ICA Advanced Certificate in Managing Fraud

ICA International Advanced Certificate in Anti Money Laundering

ICA Advanced Certificate in Practical Customer Due Diligence

ICA Advanced Certificate in Business Compliance

ICA Advanced Certificate in Managing Sanctions Risk

ICA Certificate in Compliance

ICA Certificate in Anti Money Laundering

ICA Certificate in Financial Crime Prevention

ICA Specialist Certificate in Financial Crime Risk and New Technology

ICA Specialist Certificate in Money Laundering Risk in Betting and Gaming

ICA Specialist Certificate in Conduct Risk

CISI Award in Combatting Financial Crime

CISI Award in Global Financial Compliance

CISI Award in Risk in Financial Services

CICM Level 3 Diploma in Credit and Collections
End-point assessment gateway

The apprentice’s employer must be content that the apprentice has attained sufficient KSBs to complete the apprenticeship.

The apprentice must:

  • confirm they are ready to take the EPA
  • have achieved English and mathematics qualifications in line with the apprenticeship funding rules
  • have passed ONE of the following mandatory qualifications:

  • ICA International Advanced Certificate in Governance, Risk and Compliance

  • ICA Advanced Certificate in Managing Fraud

  • ICA International Advanced Certificate in Anti Money Laundering

  • ICA Advanced Certificate in Practical Customer Due Diligence

  • ICA Advanced Certificate in Business Compliance

  • ICA Advanced Certificate in Managing Sanctions Risk

  • ICA Certificate in Compliance

  • ICA Certificate in Anti Money Laundering

  • ICA Certificate in Financial Crime Prevention

  • ICA Specialist Certificate in Financial Crime Risk and New Technology

  • ICA Specialist Certificate in Money Laundering Risk in Betting and Gaming

  • ICA Specialist Certificate in Conduct Risk

  • CISI Award in Combatting Financial Crime

  • CISI Award in Global Financial Compliance

  • CISI Award in Risk in Financial Services

  • CICM Level 3 Diploma in Credit and Collections

The apprentice must submit the gateway evidence to their EPAO, including any organisation specific policies and procedures requested by the EPAO.

End-point assessment - typically 5 months

The grades available for each assessment method are below

Overall EPA and apprenticeship can be graded:

    • fail
    • pass
    • merit
    • distinction
Professional recognition

This apprenticeship aligns with:

  • International Compliance Association (ICA) for Professional Member of the ICA (MICA) or Associate membership of the ICA (AICA)

This apprenticeship aligns with:

  • Chartered Institute for Securities and Investment (CISI) for Associate member status (ACSI)

This apprenticeship aligns with:

  • Chartered Institute of Credit Management (CICM) for Associate Membership ACICM

Duration of end-point assessment period

The EPA is taken in the EPA period. The EPA period starts when the EPAO confirms the gateway requirements have been met and is typically 5 months.

The EPAO should confirm the gateway requirements have been met and the EPA should start as quickly as possible.

EPA gateway

The apprentice’s employer must be content that the apprentice has attained sufficient KSBs to complete the apprenticeship. The employer may take advice from the apprentice's training provider, but the employer must make the decision. The apprentice will then enter the gateway.

The apprentice must meet the gateway requirements before starting their EPA.

They must:

  • confirm they are ready to take the EPA
  • have achieved English and mathematics qualifications in line with the apprenticeship funding rules
  • have passed ONE of the following mandatory qualifications:

  • ICA International Advanced Certificate in Governance, Risk and Compliance

  • ICA Advanced Certificate in Managing Fraud

  • ICA International Advanced Certificate in Anti Money Laundering

  • ICA Advanced Certificate in Practical Customer Due Diligence

  • ICA Advanced Certificate in Business Compliance

  • ICA Advanced Certificate in Managing Sanctions Risk

  • ICA Certificate in Compliance

  • ICA Certificate in Anti Money Laundering

  • ICA Certificate in Financial Crime Prevention

  • ICA Specialist Certificate in Financial Crime Risk and New Technology

  • ICA Specialist Certificate in Money Laundering Risk in Betting and Gaming

  • ICA Specialist Certificate in Conduct Risk

  • CISI Award in Combatting Financial Crime

  • CISI Award in Global Financial Compliance

  • CISI Award in Risk in Financial Services

  • CICM Level 3 Diploma in Credit and Collections

The apprentice must submit the gateway evidence to their EPAO, including any organisation specific policies and procedures requested by the EPAO.

Order of assessment methods



The assessment methods must be delivered in the following order:

Assessment methods 1 and 2 can be delivered in any order or concurrently. However, the assessment components in assessment method 2 cannot be delivered in any order. The written project report must be completed before the presentation and questions can take place.

The rationale for the order of the tasks in assessment method 2 is that the presentation will enable the apprentice to present their findings within the written report and also give the assessor the opportunity to assess any of the KSBs which have not been captured within the report. The presentation will also give the assessor the opportunity to verify that the report is the work of the apprentice.

Consideration can be given to which KSBs are best evidenced by the different aspects of assessment method 2. Whilst all KSBs attached to this assessment method must be demonstrated, it is not necessary to duplicate demonstration in both the written project report and the presentation.



Overall EPA grading

Performance in the EPA determines the overall grade of:

  • fail

  • pass

  • merit

  • distinction

An independent assessor must individually grade the in line with this EPA plan.

The EPAO must combine the individual assessment method grades to determine the overall EPA grade.

If the apprentice fails one assessment method or more, they will be awarded an overall fail.

To achieve an overall pass, the apprentice must achieve at least a pass in all the assessment methods. The assessment methods contribute equally to the overall EPA pass grade. Performance in the EPA will determine the apprenticeship grade of: fail, pass, merit, and distinction.Independent assessors must individually grade the: professional discussion, project proposal and presentation and questions according to the requirements set out in this EPA plan.EPAOs must combine the individual assessment method grades to determine the overall EPA grade.An apprentice who fails one or more assessment method will be awarded an overall EPA fail.An apprentice must achieve at least a pass in all the assessment methods to get an overall pass. To achieve an overall EPA 'pass', the apprentice must achieve a pass in both assessment methods. To achieve an overall EPA ‘merit,’ the apprentice must achieve a pass in one of the assessment methods and a distinction in the other. To achieve an overall EPA ‘distinction’, apprentices must achieve a distinction in both assessment methodsGrades from individual assessment methods should be combined in the following way to determine the grade of the EPA overall.

Grades from individual assessment methods must be combined in the following way to determine the grade of the EPA overall.

Overall Grading
Fail
Fail
Fail
Pass
Merit
Merit
Distinction

Re-sits and re-takes

If the apprentice fails one assessment method or more, they can take a re-sit or a re-take at their employer’s discretion. The apprentice’s employer needs to agree that a re-sit or re-take is appropriate. A re-sit does not need further learning, whereas a re-take does. The apprentice should have a supportive action plan to prepare for a re-sit or a re-take.

The employer and the EPAO should agree the timescale for a re-sit or re-take. A re-sit is typically taken within 3 months of the EPA outcome notification. The timescale for a re-take is dependent on how much re-training is required and is typically taken within 4 months of the EPA outcome notification.

Failed assessment methods must be re-sat or re-taken within a 6-month period from the EPA outcome notification, otherwise the entire EPA will need to be re-sat or re-taken in full.

Re-sits and re-takes are not offered to an apprentice wishing to move from pass to a higher grade.

The apprentice will get a maximum EPA grade of pass for a re-sit or re-take, unless the EPAO determines there are exceptional circumstances.

Roles and responsibilities

Roles Responsibilities

Apprentice

As a minimum, the apprentice should:

  • complete on-programme training to meet the KSBs as outlined in the occupational standard for a minimum of 12 months
  • complete the required amount of off-the-job training specified by the apprenticeship funding rules and as arranged by the employer and training provider
  • understand the purpose and importance of EPA
  • prepare for and undertake the EPA including meeting all gateway requirements
  • ensure that all supporting evidence required at the gateway is submitted in line with this EPA plan

Employer

As a minimum, the apprentice's employer must:

  • select the EPAO and training provider
  • work with the training provider (where applicable) to support the apprentice in the workplace and to provide the opportunities for the apprentice to develop the KSBs
  • arrange and support off-the-job training to be undertaken by the apprentice 
  • decide when the apprentice is working at or above the occupational standard and is ready for EPA
  • ensure the apprentice is prepared for the EPA
  • ensure that all supporting evidence required at the gateway is submitted in line with this EPA plan
  • confirm arrangements with the EPAO for the EPA (who, when, where) in a timely manner
  • provide access to any employer-specific documentation as required for example, company policies
  • ensure that the EPA is scheduled with the EPAO for a date and time which allows appropriate opportunity for the apprentice to meet the KSBs
  • ensure the apprentice is given sufficient time away from regular duties to prepare for, and complete the EPA
  • ensure that any required supervision during the EPA period, as stated within this EPA plan, is in place
  • ensure the apprentice has access to the resources used to fulfil their role and carry out the EPA for workplace based assessments
  • remain independent from the delivery of the EPA
  • pass the certificate to the apprentice upon receipt from the EPAO

EPAO

As a minimum, the EPAO must:

  • conform to the requirements of this EPA plan and deliver its requirements in a timely manner
  • conform to the requirements of the RoEPAO
  • conform to the requirements of the external quality assurance provider (EQAP)
  • understand the apprenticeship including the occupational standard, EPA plan and funding
  • make all necessary contractual arrangements including agreeing the price of the EPA
  • develop and produce assessment materials including specifications and marking materials (for example mark schemes, practice materials, training material)
  • maintain and apply a policy for the declaration and management of conflict of interests and independence. This must ensure, as a minimum, there is no personal benefit or detriment for those delivering the EPA or from the result of an assessment. It must cover:
    • apprentices
    • employers
    • independent assessors
    • any other roles involved in delivery or grading of the EPA
  • have quality assurance systems and procedures that ensure fair, reliable and consistent assessment and maintain records of internal quality assurance (IQA) activity for external quality assurance (EQA) purposes
  • appoint independent, competent, and suitably qualified assessors in line with the requirements of this EPA plan
  • appoint administrators, invigilators and any other roles where required to facilitate the EPA
  • deliver induction, initial and on-going training for all their assessors (independent and additional where used), and any other roles involved in the delivery or grading of the EPA as specified within this EPA plan. This should include how to record the rationale and evidence for grading decisions where required
  • conduct standardisation with all their assessors before allowing them to deliver an EPA, when the EPA is updated, and at least once a year
  • conduct moderation of all of their assessor’s decisions once EPAs have started
  • monitor the performance of all their assessors and provide re-training where necessary
  • develop and provide assessment recording documentation to ensure a clear and auditable process is in place for providing assessment decisions and feedback to all relevant stakeholders
  • use language in the development and delivery of the EPA that is appropriate to the level of the apprenticeship
  • arrange for the EPA to take place in a timely manner, in consultation with the employer
  • provide information, advice, and guidance documentation to enable apprentices, employers and training providers to prepare for the EPA
  • confirm the gateway requirements have been met before they start the EPA for an apprentice
  • host and facilitate the EPA or make suitable alternative arrangements
  • maintain the security of the EPA including, but not limited to, verifying the identity of the apprentice, invigilation and security of materials
  • where the EPA plan permits assessment away from the workplace, ensure that the apprentice has access to the required resources and liaise with the employer to agree this if necessary
  • confirm overall grade awarded
  • arrange the certification of the apprenticeship
  • maintain and apply a policy for conducting appeals

Independent assessor

As a minimum, an independent assessor must:

  • be independent, with no conflict of interest with the apprentice, their employer or training provider, specifically, they must not receive a personal benefit or detriment from the result of the assessment
  • have, maintain and be able to evidence up-to-date knowledge and expertise of the occupation
  • have the competence to assess the EPA and meet the requirements of the IQA section of this EPA plan
  • understand the apprenticeship’s occupational standard and EPA plan
  • attend induction and standardisation events before they conduct an EPA for the first time, when the EPA is updated, and at least once a year
  • use language in the delivery of the EPA that is appropriate to the level of the apprenticeship
  • work with other personnel, including additional assessors where used, in the preparation and delivery of assessment methods
  • conduct the EPA to assess the apprentice against the KSBs and in line with the EPA plan
  • make final grading decisions in line with this EPA plan
  • record and report assessment outcome decisions
  • comply with the IQA requirements of the EPAO
  • comply with external quality assurance (EQA) requirements

Training provider

As a minimum, the training provider must:

  • conform to the requirements of the register of apprenticeship training providers (RoATP)
  • ensure procedures are in place to mitigate against any conflict of interest
  • work with the employer and support the apprentice during the off-the-job training to provide the opportunities to develop the KSBs as outlined in the occupational standard
  • deliver training to the apprentice as outlined in their apprenticeship agreement
  • monitor the apprentice’s progress during any training provider led on-programme learning
  • ensure the apprentice is prepared for the EPA
  • advise the employer, upon request, on the apprentice’s readiness for EPA
  • ensure that all supporting evidence required at the gateway is submitted in line with this EPA plan
  • remain independent from the delivery of the EPA

Reasonable adjustments

The EPAO must have reasonable adjustments arrangements for the EPA.

This should include:

  • how an apprentice qualifies for reasonable adjustment
  • what reasonable adjustments may be made

Adjustments must maintain the validity, reliability and integrity of the EPA as outlined in this EPA plan.

Internal quality assurance

Internal quality assurance refers to the strategies, policies and procedures that an EPAO must have in place to ensure valid, consistent and reliable EPA decisions.

EPAOs for this EPA must adhere to the requirements within the roles and responsibilities table.

They must also appoint independent assessors who:

  • have recent relevant experience of the occupation or sector to at least occupational level 3 gained in the last 3 years or significant experience of the occupation or sector

Value for money

Affordability of the EPA will be aided by using at least some of the following:

  • utilising digital remote platforms to conduct applicable assessment methods
  • using the employer’s premises
  • conducting assessment methods on the same day

Professional recognition

This apprenticeship aligns with: International Compliance Association (ICA) for Professional Member of the ICA (MICA) or Associate membership of the ICA (AICA)

This apprenticeship aligns with: Chartered Institute for Securities and Investment (CISI) for Associate member status (ACSI)

This apprenticeship aligns with: Chartered Institute of Credit Management (CICM) for Associate Membership ACICM

KSB mapping table

Knowledge Assessment methods
K1

Legal and regulatory framework relative to their industry.

Back to Grading 		No mapped assessment methods
K2

Role of the different regulators, and the implications of non-compliance for the organisation.

Back to Grading 		No mapped assessment methods
K3

Legal and regulatory requirements, for example the Financial Conduct Authority handbook, and the policies and procedures to implement these requirements.

Back to Grading 		No mapped assessment methods
K4

Risk and compliance requirements for their role, for example operational risk, financial crime, know your customer, training and competence, approved persons, conduct risk, complaints, data security.

Back to Grading 		No mapped assessment methods
K5

Range and purpose of organisations that are found in their wider industry, and their own organisation’s position within this landscape.

Back to Grading 		No mapped assessment methods
K6

Functions of the organisation and their relationship with risk and compliance policies and procedures.

Back to Grading 		No mapped assessment methods
K7

Impact that the external environment and legal and regulatory requirements have on the organisation and on their industry.

Back to Grading 		No mapped assessment methods
K8

Products and services offered to customers within their organisation and their industry relative to their role.

Back to Grading 		No mapped assessment methods
K9

Approaches to delivering fair customer outcomes, for example identifying vulnerable customers.

Back to Grading 		No mapped assessment methods
K10

Professional standards and best practice, and how these are applied.

Back to Grading 		No mapped assessment methods
K11

Systems, tools and processes that assist in identifying, managing and mitigating compliance and risk issues.

Back to Grading 		No mapped assessment methods
K12

Audit requirements and the responsibilities of the auditor and auditee.

Back to Grading 		No mapped assessment methods
K13

Policies and procedures for the identification and escalation of compliance issues and risks.

Back to Grading 		No mapped assessment methods
K14

Planning, prioritising and time management techniques.

Back to Grading 		No mapped assessment methods
K15

Communication methods, including verbal, non-verbal and written, and how to adapt communication to different audiences.

Back to Grading 		No mapped assessment methods
K16

Digital tools for research, analysis, and presentation of data through visualisation techniques.

Back to Grading 		No mapped assessment methods
K17

Data protection legislation and the processes for sharing and storing information safely and securely, including risks to data from cybercrime.

Back to Grading 		No mapped assessment methods
K18

Green and sustainable policies and practices and the role they play in the finance sector, and how to minimise negative impacts on environmental sustainability within the context of their role.

Back to Grading 		No mapped assessment methods
Skill Assessment methods
S1

Implement legal and regulatory framework requirements.

Back to Grading 		No mapped assessment methods
S2

Deliver risk and compliance services to stakeholders using organisational systems and processes.

Back to Grading 		No mapped assessment methods
S3

Plan and organise workloads to meet individual and team performance targets.

Back to Grading 		No mapped assessment methods
S4

Identify ways to reduce and mitigate incidents of non-compliance.

Back to Grading 		No mapped assessment methods
S5

Escalate compliance and risk issues where appropriate in line with organisational procedures.

Back to Grading 		No mapped assessment methods
S6

Manage records in order to meet audit requirements of the organisation.

Back to Grading 		No mapped assessment methods
S7

Produce evidence-based reports and management information for stakeholders considering visualisation techniques when presenting data.

Back to Grading 		No mapped assessment methods
S8

Select and use communication methods applicable to the audience and circumstances, for example, presentations, phone, face to face, email, virtual meetings.

Back to Grading 		No mapped assessment methods
S9

Communicate about products with customers, colleagues or stakeholders in different styles, for example visually, verbally, written, using e-comms.

Back to Grading 		No mapped assessment methods
S10

Build and maintain working relationships.

Back to Grading 		No mapped assessment methods
S11

Identify own training needs and seek feedback to improve performance and service delivered.

Back to Grading 		No mapped assessment methods
S12

Apply continuous improvement techniques when delivering improved compliance outcomes and mitigating risks.

Back to Grading 		No mapped assessment methods
S13

Record information electronically and make use of available technology, for example Management Information Systems (MIS), spreadsheets, presentation software, word processing, email, virtual communication.

Back to Grading 		No mapped assessment methods
S14

Handle data safely and securely and share information in compliance with data protection legislation and organisational policy.

Back to Grading 		No mapped assessment methods
Behaviour Assessment methods
B1

Acts in a professional and ethical manner.

Back to Grading 		No mapped assessment methods
B2

Maintains confidentiality and acts with due care and diligence.

Back to Grading 		No mapped assessment methods
B3

Seeks to continuously improve and develop themselves and their team.

Back to Grading 		No mapped assessment methods
B4

Adapts to, and is resilient in, challenging or changing situations.

Back to Grading 		No mapped assessment methods
B5

Keeps up to date with relevant legal, regulatory and other changes affecting the industry.

Back to Grading 		No mapped assessment methods
B6

Collaborates with and supports colleagues.

Back to Grading 		No mapped assessment methods

Mapping of KSBs to grade themes

Employers involved in creating the standard: Aviva, Barclays, Charles Stanley , Coventry Building Society, Direct Line, HSBC, JP Morgan, Lloyds Banking Group, Nat West Group, Nationwide Building Society, Sainsbury’s, Sainsbury's Bank, Santander, Standard Chartered, TSB, UBS

Version log

Version Change detail Earliest start date Latest start date Latest end date
1.3 Occupational standard and end point assessment revised 05/09/2024 Not set Not set
1.2 Occupational standard, end point assessment and funding band revised 29/07/2024 04/09/2024 Not set
1.1 End-point assessment plan and standard revised 21/03/2023 28/07/2024 Not set
1.0 Approved for delivery 19/09/2016 20/03/2023 Not set

Crown copyright © 2024. You may re-use this information (not including logos) free of charge in any format or medium, under the terms of the Open Government Licence. Visit www.nationalarchives.gov.uk/doc/open-government-licence

Is this webpage useful?

Thank you for your feedback

Tell us about your experience