📈 Global Banking Compliance: Lessons for Sri Lanka

A recent analysis of major settlements involving Bank of America, JPMorgan, and Deutsche Bank highlights a critical shift from client-based to network-based risk. The report emphasizes that even with advanced AML (Anti-Money Laundering) and KYC (Know Your Customer) frameworks, global giants failed to act on visible red flags. • Financial Penalties & Failures Over US$ 600 Mn in total settlements have been paid by top-tier banks (JPMorgan: US$ 365 Mn; Deutsche Bank: US$ 150 Mn; Bank of America: US$ 72.5 Mn) regarding oversight failures. Despite flagging over US$ 1 Bn in suspicious transactions, these institutions continued relationships with high-risk networks for years. • Institutional Integrity & Sri Lanka The report warns that Sri Lankan banks and regulators cannot rely solely on global benchmarks, as even well-resourced systems failed collectively. The focus must shift from mere "process compliance" to institutional integrity and the courage of leadership to turn away lucrative but unethical business. • The Sri Lankan Context Drawing on local history, the author cites examples from the 1980s where project & promoter screening at conglomerates like John Keells Holdings successfully mitigated risks. Strong "tone at the top" saved millions in private equity by rejecting high-profile foreign promoters who failed due diligence. • Key Takeaways for the Financial Sector Risk Management: Shift from monitoring isolated transactions to understanding complex intermediary networks. Accountability: "Plausible deniability" is ending; boards and CEOs are increasingly responsible for the consequences of the systems they control. Action: The core issue is not a lack of data, but a failure to act independently and promptly when risks are identified.