The first line training program is the training that is provided to the employees who are directly involved in the day-to-day operations of the business, such as sales, customerservice, or compliance staff1. The first line training program should cover the essential knowledge and skills that are required for the employees to perform their roles effectively and in compliance with the anti-money laundering and counter-terrorism financing (AML/CFT) policies and procedures of the organization2. The first line training program should also be updated regularly to reflect any changes in the business environment, the regulatory framework, the customer base, the products and services, or the risk assessment of the organization2.
Among the four activities listed, the one that would require an update to the first line training program is the expansion to customer segments that will utilize newly established products. This is because the new customer segments and products may pose different or higher AML/CFT risks than the existing ones, and the employees need to be aware of these risks and how to mitigate them. For example, the new customer segments may include politically exposed persons, non-resident customers, or high-net-worth individuals, who may have higher exposure to corruption, tax evasion, or fraud risks3. The new products may include prepaid cards, mobile payments, or cryptocurrencies, which may have higher vulnerability to money laundering, terrorist financing, or cybercrime risks. Therefore, the first line training program should be updated to include the relevant information and guidance on how to identify, verify, monitor, and report these new customer segments and products, and how to apply the appropriate customer due diligence and transaction monitoring measures2.
The other three activities do not necessarily require an update to the first line training program, unless they involve significant changes in the AML/CFT policies and procedures of the organization. The implementation of a new system that provides information for monitoring customer accounts may improve the efficiency and effectiveness of the existing AML/CFT processes, but it does not change the nature or level of the AML/CFT risks. The maintenance of regulatory requirements for onboarding documentation collections of a customer base is a routine and ongoing task that should already be covered by the existing first line training program. The onboarding of a new customer type which was previously reviewed and risk rated does not introduce any new AML/CFT risks, as long as the risk rating and the corresponding controls are consistent with the organization’s risk appetite and policy.
[:, 1: What is First Line of Defense? | Definition and Overview, 2: Training and Awareness | FATF, 3: Politically Exposed Persons (Recommendations 12 and 22) | FATF, : Guidance for a Risk-Based Approach to Virtual Assets and Virtual Asset Service Providers | FATF, ]