Introduction to Mortgage Origination Examinations Training

First page Table of contents 1 Next page Last page

March 17-27, 2025 Live Virtual

@ www.csbs.org ♦ @csbsnews

CONFERENCE OF STATE BANK SUPERVISORS 1300 I Street NW / Suite 700 / Washington, DC 20005 / (202) 296-2840

March 17-27, 2024 Introduction to Mortgage Origination Examinations Training Live Virtual

ATTENDEES California Department Of Financial Protection And Innovation Arushanyan, Narine

narine.arushanyan@dfpi.ca.gov daljeet.hayer@dfpi.ca.gov lucia.hernandez@dfpi.ca.gov yewande.johnson@dfpi.ca.gov

Hayer, Daljeet Hernandez, Lucia Johnson, Yewande

Idaho Department Of Finance Lolo, Kristen

kristen.lolo@finance.idaho.gov johnnie.martinez@finance.idaho.gov

Martinez, Johnnie

Kansas Office Of The State Bank Commissioner Milner, Adam

adam.milner@osbckansas.org melissa.rush@osbckansas.org

Rush, Melissa

Massachusetts Division Of Banks McLaren, MonaLisa

monalisa.mclaren@mass.gov anny.sanchez@mass.gov

Sanchez, Anny

Michigan Department Of Insurance And Financial Services Hickman, Brody

hickmanb1@michigan.gov johnsonn46@michigan.gov

Johnson, Nicole

Nebraska Department Of Banking And Finance Marsh, Mason

mason.marsh@nebraska.gov

New Mexico Regulation And Licensing Department Financial Institut Bridges, Amy

amy.bridges@rld.nm.gov

New York State Department Of Financial Services Ku, Wesley

wesley.ku@dfs.ny.gov

North Carolina Office Of The Commissioner Of Banks Helliwell, Jennifer

jhelliwell@nccob.gov

Ohio Division Of Financial Institutions Carlozzi, Angela

angela.carlozzi@com.ohio.gov taylor.circle@com.ohio.gov

Circle, Taylor

South Carolina State Board Of Financial Institutions Consumer Finan Jones, Kayla

kayla.jones@bofi.sc.gov

State Of Connecticut Department Of Banking Bellucci, Allison

allison.bellucci@ct.gov michael.verlizzo@ct.gov

Verlizzo, Michael

Texas Department Of Savings And Mortgage Lending Gamez, Blanca

bgamez@sml.texas.gov nharper@sml.texas.gov apizano@sml.texas.gov eserna@sml.texas.gov

Harper, Natalie Pizano, Adrian Serna, Elizabeth

Washington State Department Of Financial Institutions Bailey, MaryJane

maryjane.bailey@dfi.wa.gov christina.love@dfi.wa.gov

Love, Christina

West Virginia Division Of Financial Institutions Elliott, Kyle

kelliott@wvdob.org awebster@wvdob.org

Webster, Ashlee

Wyoming Division Of Banking Castleberry, Marie

marie.castleberry2@wyo.gov

INSTRUCTORS Connecticut Department of Banking Landini, Daniel

daniel.landini@ct.gov

Nebraska Department of Banking & Finance Peterson, Jeff

jeff.l.peterson@nebraska.gov

North Carolina Commissioner of Banks Garcia, Eric

egarcia@nccob.gov ktucker@nccob.gov

Tucker, Kareeme

Washington Department of Financial Institutions Stenger, Lindsay

lindsay.stenger@dfi.wa.gov

CSBS STAFF Romano, Chris

cromano@csbs.org

Introduction to Mortgage Origination Examinations Training - Live Virtual March 17-27, 2025

Week 1 Monday, March 17, 2025 12:30 pm – 1:30 pm

Introductions & Welcome Mortgage Reg Overview

1:30 pm – 2:00 pm

Break

2:00 pm –2:15 pm

Corporate Governance

2:15 pm - 3:15 pm

Break

3:15 pm – 3:30 pm 3:30 pm – 4:30 pm

Corporate Governance

Tuesday, March 18, 2025 12:30 pm – 12:40 pm

Prior Day Review – Corporate Governance Discussion

Scoping an Examination

12:40 pm – 2:00 pm

Break

2:00 pm – 2:15 pm

Policy Review

2:15 pm – 3:15 pm 3:15 pm – 4:00 pm

Policy Review Exercise

Exam Scoping Exercise - Independent Work

4:00 pm – 4:30 pm

Wednesday, March 19, 2025 12:30 pm – 1:00 pm

Prior Day Review – Exam Scoping Discussion

Basics of Financial Analysis

1:00 pm – 2:00 pm

Break

2:00 pm – 2:15 pm 2:15 pm – 3:30 pm

Basics of Financial Analysis

Break

3:30 pm – 3:40 pm

Financial Analysis Exercise - Independent Work

3:40 pm – 4:30 pm

Thursday, March 20, 2025 12:30 pm – 1:00 pm

Prior Day Review – Financial Analysis Discussion

Mortgage Advertising

1:00 pm – 2:00 pm 2:00 pm – 2:15 pm

Break

Thursday, March 20, 2025 - Continued 2:15 pm – 3:15 pm

Mortgage Advertising

Mortgage Advertising Exercise – Independent Work

3:15 pm – 4:30 pm

Week 2 Tuesday, March 25, 2025 12:30 pm – 1:00 pm

Prior Day Review – Mortgage Advertising Discussion

Compliance 101: Loan File Review

1:00 pm – 2:15 pm 2:15 pm – 2:30 pm 2:30 pm – 4:00 pm 4:00 pm – 4:30 pm

Break

Compliance 101: Loan File Review

Loan File Review Exercise - Independent Work

Wednesday, March 26, 2025 12:30 pm – 1:45 pm

Compliance 101: Loan File Review Writing the Report of Examination

1:45 pm – 2:15 pm 2:15 pm – 2:30 pm 2:30 pm – 3:00 pm 3:00 pm – 3:30 pm 3:30 pm – 4:30 pm

Break

Writing the Report of Examination

Sample Writing Review

Writing Exercise - Independent Work

Thursday, March 27, 2025 12:30 pm – 1:00 pm

Prior Day Review - Writing Discussion

How to Run an Effective Meeting

1:00 pm – 2:00 pm 2:00 pm – 2:15 pm 2:15 pm – 2:40 pm 2:40 pm – 3:00 pm

Break

How to Run an Effective Meeting Effective Meetings Activities

Exit Meeting Role Play Exercise

3:00 pm – 3:55 pm

Conclusion

3:55 pm - 4:00 pm

Internal Use Only

Mortgage Origination Examiner Training Introduction

Internal Use Only

Zoom

Internal Use Only

Schedule Week 1

March 17: 12:30 PM – 4:30 PM ET March 18: 12:30 PM – 4:30 PM ET March 19: 12:30 PM – 4:30 PM ET March 20: 12:30 PM – 4:30 PM ET Week 2 March 25: 12:30 PM – 4:30 PM ET March 26: 12:30 PM – 4:30 PM ET March 27: 12:30 PM – 4:30 PM ET

Internal Use Only

Attendance Policy In order to receive a certificate of completion for a CSBS virtual training, an attendee may not miss more than 1 hour throughout the duration of the training. Attendees must also participate in all training activities to receive the credit hours (CEHs) and certificate including:

1. Student Exercises 2. Final Assessment

Internal Use Only

Consumer Financial Services Supervising Examiner Nebraska Department of Banking and Finance jeff.l.peterson@nebraska.gov Jeff Peterson

Internal Use Only

Principal Financial Examiner Consumer Credit Division Connecticut Department of Banking daniel.landini@ct.gov Daniel Landini

Internal Use Only

Chief Learning Officer Washington State Department of Financial Institutions lindsay.stenger@dfi.wa.gov Lindsay Stenger

Internal Use Only

Senior Financial Examiner Non-Depository Entities North Carolina Commissioner of Banks egarcia@nccob.gov Eric Garcia

Internal Use Only

Mortgage Originations Training Team Supervisor Non-Depository Entities North Carolina Commissioner of Banks ktucker@nccob.gov Kareeme Tucker

Internal Use Only

Introductions

NAME

AGENCY AND STATE

FUN FACT ABOUT YOURSELF

Internal Use Only

Go to www.kahoot.it and enter Game PIN provided

Internal Use Only

Session Learning Objectives: 1. Review Day One: Mortgage Examiner Training

Internal Use Only

Session Learning Objectives: 2. Understand state

supervision of the mortgage industry

Internal Use Only

Session Learning Objectives: 3. Discuss federal agencies and their roles related to the mortgage industry

Internal Use Only

Session Learning Objectives: 4. Apply concepts to exam scenario exercises

Internal Use Only

Introduction to Mortgage Origination Exams

State Supervision

SAFE Act & NMLS

Information Sharing

Federal Agencies

Internal Use Only

State Supervision

• Jurisdiction over non bank mortgage entities • Each state is a sovereign entity

Internal Use Only

State Supervision

• Prior to 2008, no federal statutes for non-bank mortgage entities or individuals taking mortgage applications

Internal Use Only

Life Before the SAFE Act & NMLS • Inconsistent • Bad actors • Monthly all-states conference calls

Internal Use Only

Introduction to Mortgage Origination Exams

State Supervision

SAFE Act & NMLS

Information Sharing

Federal Agencies

Internal Use Only

SAFE Act

• Enacted in 2008 • Minimum standards • Model legislation

Internal Use Only

SAFE Act Question:

Prior to the passage of the SAFE Act and creation of the NMLS do you know how your state agency regulated residential mortgage companies and their mortgage loan originators?

Internal Use Only

SAFE Act

Mortgage Loan Originators (MLOs) • Testing • Education • Background check • Credit report

Internal Use Only

NMLS

Nationwide Multistate Licensing System (NMLS) • State licensing system • Uniform applications • Consumer access portal • CSBS, AARMR, SRR

Internal Use Only

State Regulatory Registry LLC (SRR)

Internal Use Only

NMLS

Nationwide Multistate Licensing System (NMLS) • Expanded licensing • Name change

Internal Use Only

SES

State Examination System • Platform for scheduling, exams, investigations, enforcement actions & complaints • Communication portal • Resource for exams & complaints

Internal Use Only

Mortgage Regulator Trade Associations CSBS & AARMR • State regulator Board of Directors • Resources for states & examiners • Promote coordinated supervision

Internal Use Only

Introduction to Mortgage Origination Exams

State Supervision

SAFE Act & NMLS

Information Sharing

Federal Agencies

Internal Use Only

Information Sharing Question: Do you know which of your state statutes or rules allows your agency to share information with other state and federal financial services regulatory agencies?

Internal Use Only

Information Sharing

• Nationwide Cooperative Protocol & Agreement May 1, 2009 • MOU between CFPB & CSBS January 4, 2011 • CFPB-State Supervisory Coordination Framework May 7, 2013

Internal Use Only

Key State Regulator Committees • Non-Depository Supervisory Committee (NDSC) • State Coordinating Committee (SCC) • Multistate Mortgage Committee (MMC)

Internal Use Only

Introduction to Mortgage Origination Exams

State Supervision

SAFE Act & NMLS

Information Sharing

Federal Agencies

Internal Use Only

Information Sharing Question: What are the names of some of the federal agencies that play a role in mortgage supervision and/or shaping the mortgage marketplace?

Internal Use Only

CFPB

Consumer Financial Protection Bureau • Established 2010 • Accountability & consumer protection • Supervisory authority

Internal Use Only

HUD United States Department of Housing & Urban Development • Founded 1965 • Support community development & homeownership • Enforces Fair Housing Act

Internal Use Only

FHA

Federal Housing Administration • Created by National Housing Act of 1934 • Part of HUD in 1965 • Provides mortgage

insurance on loans by FHA approved lenders

Internal Use Only

FTC

Federal Trade Commission • Independent federal agency created in 1914 • Dual mission • Fair Credit Reporting Act • Fair Debt Collection Practices Act • Mortgage Assistance Relief Services Rule

Internal Use Only

U.S. Department of Veterans Affairs • Federal agency providing services to veterans • VA Home Loans • Eligible borrowers get more favorable terms

Internal Use Only

FHFA

Federal Housing Finance Agency • Established by the Housing and Economic Recovery Act of 2008 • Oversees housing government sponsored enterprises

Internal Use Only

GSE

Government Sponsored Enterprise • Quasi-governmental entity • Not direct lenders • Guarantee third-party

loans & purchase loans in the secondary market

Internal Use Only

GinnieMae

Government National Mortgage Association • Wholly owned government corporation • Housing & Urban Development Act of 1968 • Primary financing mechanism for government-insured or guaranteed mortgage loans

Internal Use Only

Resources

• SAFE Act Resources: https://mortgage.nationwidelicensingsystem.org/SAFE/Pages/default.aspx

Internal Use Only

Mortgage Origination Examiner Training Corporate Governance

Internal Use Only

Session Learning Objectives: 1. Discuss the meaning

of corporate governance

Internal Use Only

Session Learning Objectives: 2. Understand the role and responsibilities of a board and senior management

in corporate governance

Internal Use Only

Session Learning Objectives: 3. Review the 13

principles of governance

Internal Use Only

Corporate Governance

Internal Use Only

Corporate Governance for Mortgage Companies Guidelines – Corporate Governance Principles for Banks • July 2015 • Applicable to any company • Principles are scalable

Internal Use Only

Corporate Governance for Mortgage Companies

Why is corporate governance so critical?

Internal Use Only

Corporate Governance for Mortgage Companies

• Essential element of safe & sound operations • Minimizes supervisory intervention • Increased focus on risk & supporting framework

Internal Use Only

Corporate Governance for Mortgage Companies 3 Lines of Defense: 1. Business Line 2. Risk Management 3. Internal Audit

Internal Use Only

Corporate Governance for Mortgage Companies

• “Tone at the Top” • Written Code of Ethics • Tailored to the company

Internal Use Only

13 Principles of Governance

Internal Use Only

13 Principles of Governance 1. Board’s Overall Responsibility 2. Board Qualification & Composition 3. Board Structure & Practices 4. Senior Management 5. Governance of Group Structure 6. Risk Management Function

Internal Use Only

13 Principles of Governance 7. Risk Identification, Monitoring & Controlling 8. Risk Communication

9. Compliance 10. Internal Audit 11. Compensation 12.Disclosure & Transparency 13.Role of Regulators

Internal Use Only

1. Board’s Overall Responsibility

Internal Use Only

1. Board’s Overall Responsibility Responsibilities of the Board • Approving and overseeing management’s

implementation of: • Strategic objectives • Governance framework • Corporate culture

Internal Use Only

1. Board’s Overall Responsibility Responsibilities of the Board - Continued • Actively engaged • Corporate culture & values

• Risk appetite • Oversee risk • Implement key policies • Finance function

Internal Use Only

1. Board’s Overall Responsibility Responsibilities of the Board - Continued • Financial statements • Hire & oversee CEO/Senior Management • Compensation & risk alignment • Whistleblower policies & procedures • Related party transactions • Regulator relationships

Internal Use Only

1. Board’s Overall Responsibility Corporate Culture and Values • Set at the top • Risk • Code of Ethics • Escalation of problems

Internal Use Only

1. Board’s Overall Responsibility Risk Appetite, Management and Control • Governance framework • Limit breaches • Culture • Risk Appetite Statement (RAS)

Internal Use Only

1. Board’s Overall Responsibility Risk Appetite, Management and Control – Continued • Risk Appetite Statement (RAS): • Qualitative & quantitative • Risk assumption • Boundaries • Communication • Decision-making • Issue escalation process • Board leadership & management involvement

Internal Use Only

1. Board’s Overall Responsibility Risk Appetite, Management and Control – Continued 1. Business Units • Take risks

• Manage risks • Report risks

Internal Use Only

1. Board’s Overall Responsibility Risk Appetite, Management and Control – Continued 2. Independent Risk Management Function • Oversee & assess risks • Promote importance • Financial accuracy & reporting • Compliance function

Internal Use Only

1. Board’s Overall Responsibility Risk Appetite, Management and Control – Continued 3. Internal Audit • Independent & effective • Internal controls • Internal Auditors must be:

• Competent • Independent

Internal Use Only

1. Board’s Overall Responsibility Oversight of Senior Management • Hold accountable • Enumerate consequences • Includes adherence to: • Values

• Risk appetite • Risk culture

Internal Use Only

2. Board Qualification and Composition

Internal Use Only

2. Board Qualification and Composition • Understand role • Sound judgement

• Independent directors • Qualified and diverse

Internal Use Only

2. Board Qualification and Composition Selection & Qualifications: • Clear process • Assess candidates

Internal Use Only

3. Board Structure and Practices

Internal Use Only

3. Board Structure and Practices • Organization and Assessment of the Board

• Role of the Chair • Board Committees • Audit Committee • Risk Committee

• Compensation Committee • Other Board Committees • Conflicts of Interest

Internal Use Only

3. Board Structure and Practices Organization and Assessment of the Board • Effectively carry out responsibilities • By-law updates • Self-assessments • Maintain appropriate records

Internal Use Only

3. Board Structure and Practices Role of the Chair

• Crucial role • Leadership • Experience, competence & personable • Decision making • Facilitate discussions • Time

Internal Use Only

3. Board Structure and Practices Board Committees • Specific issues • Appropriate number • Charters

• Committee chairs • Committee minutes

Internal Use Only

3. Board Structure and Practices Audit Committee

• Mid- to large-size companies • Separate from committees • Independent directors - Chair & membership • Experience • Direct reporting

Internal Use Only

3. Board Structure and Practices Audit Committee - Responsibilities • Policy

• Financial reporting • Auditor oversight • Audit scope & schedule • Audit reports & corrective action • Accounting policies • Risk governance framework

Internal Use Only

3. Board Structure and Practices Risk Committee • Mid- to large-size companies

• Distinct from committees • Independent director Chair • Majority of members independent • Experience • Review policies & adherence

Internal Use Only

3. Board Structure and Practices Risk Committee – Responsibilities • Advise Board • Oversee RAS implementation • Report on risk culture • CRO oversight • Capital & liquidity management • Oversee risks • Work with Audit Committee • Evaluate risk governance framework

Internal Use Only

3. Board Structure and Practices Compensation Committee • Larger companies • Oversee remuneration system • Independent directors • Ensure payments are appropriate

Internal Use Only

3. Board Structure and Practices Other Board Committees • Established as necessary • Could include: • Nomination • Human resources • Governance • Ethics • Compliance

Internal Use Only

3. Board Structure and Practices Conflicts of Interest • Establish policies & procedures • Duty to avoid • Examples • Review & approval process

• Duty to disclose • Voting abstention • Rules • Maintain records

Internal Use Only

4. Senior Management

Internal Use Only

4. Senior Management • Manage the company’s activities: • Board direction & oversight • Business strategy • Risk appetite • Policies • Daily management • Role, authority & responsibility • Aka - Executive Management

Internal Use Only

4. Senior Management Should have: • Experience • Training • Supervision • Ability to delegate • Ability to ‘set the tone’

Internal Use Only

4. Senior Management Should implement: • Business strategies • Risk management systems • Risk culture

• Processes & controls • Compliance & Audit • Internal Controls

Internal Use Only

4. Senior Management • Reports to the Board & provides: • Changes

• Financial condition • Performance reports • Breach notifications • Internal control failures • Legal & regulatory concerns • Whistleblower issues raised

Internal Use Only

5. Governance of Group Structure

Internal Use Only

5. Governance of Group Structure Holding company structure • Parent company board overall responsibility • Appropriate & clear governance framework • Board & senior management need understanding • Parent company aware of material risks & issues • Independent legal & governance responsibilities

Internal Use Only

5. Governance of Group Structure Parent Company should: • Establish governance framework

• Define subsidiary structure • Assess policies & procedures • Address conflicts of interests • Communications • Compliance • Effective internal audit

Internal Use Only

5. Governance of Group Structure Subsidiary Boards: • Develop risk management processes

• Support risk management • Policies & procedures input • Compliance

Internal Use Only

5. Governance of Group Structure Complex/Opaque Structures: • Increases complexity • Board & senior management must: • Risk management process • Policies & procedures • Regular audits

Internal Use Only

6. Risk Management Function

Internal Use Only

6. Risk Management Function Chief Risk Officer (CRO): • Sufficient stature, independence, resources & access to Board

Internal Use Only

6. Risk Management Function Enterprise-wide risk governance

• Risk identification • Risk measurement • Risk monitoring • Risk control • New initiative evaluation

Internal Use Only

6. Risk Management Function • Independent from operations • Sufficient & qualified staff • Access to training • Overall responsibility for company’s risk management

Internal Use Only

6. Risk Management Function CRO Responsibilities

• Oversee risk management • Support Board with RAS • Key decision-making

Internal Use Only

6. Risk Management Function CRO should: • Stature, authority & skills

• Independence • Board reporting • Access to Board • Board or risk committee:

• Appointment, dismissal or changes • Performance, compensation & budget

Internal Use Only

7. Risk Identification, Monitoring & Controlling

Internal Use Only

7. Risk Identification, Monitoring & Controlling • Company-wide & entity basis • Keep pace with changes • Risk governance framework: • Policies & procedures • Control

Internal Use Only

7. Risk Identification, Monitoring & Controlling

• Risk identification: • All material risks • Risk assessment process • Qualitative & Quantitative

Internal Use Only

7. Risk Identification, Monitoring & Controlling Internal controls: • Key risks • Reliable, timely & complete information • Assure compliance • Managerial & employee check

Internal Use Only

7. Risk Identification, Monitoring & Controlling • Sophistication match complexity & risk profile • Accurate data • Risk model assumptions

Internal Use Only

7. Risk Identification, Monitoring & Controlling • Stress tests & scenario analyses: • Reasonable assumptions & scenarios • Documented & presented • Recommend actions • Test results • Communication

Internal Use Only

7. Risk Identification, Monitoring & Controlling • Risk management function should: • Mitigate risk exposure • Risk reduction or hedging • Risk acceptance • Outsourcing risks

Internal Use Only

8. Risk Communication

Internal Use Only

8. Risk Communication • Robust communication • Strong risk culture • Informed Board & management

• Developing risks • Regular reporting

Internal Use Only

9. Compliance

Internal Use Only

9. Compliance • Establish independent compliance function • Approve compliance risk policies & processes

Internal Use Only

9. Compliance • Evaluate compliance with laws, regulations & policies • Report to Board • Sufficient authority, independence, resources & Board access

Internal Use Only

10. Internal Audit

Internal Use Only

10. Internal Audit • Provide independent assurance • Promote effective governance • Third line of defense • Stature, authority, independence, resources & Board access

Internal Use Only

10. Internal Audit • Effectiveness dependent upon: • Full access • Independently assess • National standards • Mandate issues addressed • Periodic framework assessment • Respect & promote independence

Internal Use Only

11. Compensation

Internal Use Only

11. Compensation • Promote good performance • Reinforce risk culture • Review at least annually • Approve executive compensation

Internal Use Only

12. Disclosure and Transparency

Internal Use Only

12. Disclosure and Transparency • Transparent to stakeholders • Enable assessment • May be limited • Must be provided to regulators

Internal Use Only

13. Role of Regulators

Internal Use Only

13. Role of Regulators Supervisors should: • Provide guidance & supervise • Require improvement & remedial action • Share information • Evaluate fully

Internal Use Only

Corporate Governance Resources • Guidelines - Corporate Governance Principles for Banks: https://www.bis.org/bcbs/publ/d328.htm

Internal Use Only

Exercise

Internal Use Only

Mortgage Origination Examiner Training Scoping an Origination Examination

Internal Use Only

Session Learning Objectives: 1. Identify resources that are helpful in scoping examinations

Internal Use Only

Session Learning Objectives: 2. Understand how

to leverage the NMLS for exam scoping

Internal Use Only

Session Learning Objectives: 3. Apply concepts to exam scenario exercises

Internal Use Only

Group Question

You have been assigned your first exam as EIC. What are some sources of information you think would be useful in helping you develop the scope of your exam and examination plan?

Internal Use Only

What is NMLS?

Internal Use Only

NMLS

Is a system for: • Processing applications for licensure • Collecting & storing company data • Data analysis

This information is key to helping you scope and create your examination plan

Internal Use Only

MCRs The Mortgage Call Report (MCR) is a report submitted by all licensed mortgage industry companies on a quarterly basis

Internal Use Only

MCRs Mortgage call reports contain information regarding a company’s loan activity and financial condition

Internal Use Only

MCRs Two versions: 1. Expanded 2. Standard

Internal Use Only

MCRs A record of all MCRs filed by a company can be accessed through Composite View in NMLS

Internal Use Only

NMLS Analytics

Internal Use Only

NMLS Analytics

MCR data can be extremely useful to help understand the company you will examine: • Size

• Business model • Product offerings

Internal Use Only

NMLS Analytics

Two powerful analytic tools to assist you in scoping exams: • Mortgage Examiners’ Report • MCR Analytics

Internal Use Only

Accessing NMLS Analytics

Internal Use Only

Ordering an Examiners’ Report

Internal Use Only

The Examiners’ Report

Internal Use Only

The Examiners’ Report

• Trends • Changes • Impact on scope?

Internal Use Only

MCR Analytics

Internal Use Only

MCR Analytics - Dashboard

Internal Use Only

MCR Analytics - Dashboard

Internal Use Only

MCR Analytics - Dashboard

Internal Use Only

MCR Analytics - Analysis

Internal Use Only

MCR Analytics - Analysis

Internal Use Only

NMLS – Composite View

Internal Use Only

NMLS – Composite View

Provides you access to a wide range of useful information regarding: • Company • Branch • Individual

Internal Use Only

NMLS – Composite View

• This picture shows some areas of company information an examiner would typically utilize

Internal Use Only

NMLS – Company Information Screen Provides very basic information regarding the company, including: • Address • E-mail address • Telephone number • Primary regulatory contact • Consumer complaints contact

Internal Use Only

NMLS – License Items

Reviewing the company’s license items for the licenses from your agency can alert you to any issues/concerns that are active or that occurred during the review period

Internal Use Only

NMLS – License Items

Internal Use Only

NMLS – License Items

License items can be about a range of state-specific topics, including: • Financial Statements • License renewals • Surety Bonds • State-specific requirements

Internal Use Only

NMLS – Financials

• Companies provide through NMLS at least annually • “Financial Statement Summary” tab of NMLS • Review while scoping the exam

Internal Use Only

NMLS – Regulatory Actions

• Records of all regulatory actions against the licensee by state regulatory agencies • Each record includes copies of the document & detail privacy level of each action

Internal Use Only

NMLS – Document Uploads

• Certain documents uploaded to the licensee’s NMLS record • Only uploaded by the licensee • Different document categories

Internal Use Only

NMLS – Document Uploads

Types of documents include: • Advance Change Notices • Business Plans • Internal Policies & Procedures • Management Rosters • Org Charts • Surety Bonds

Internal Use Only

Business Plans

An excellent source of information for scoping!

Internal Use Only

Business Plans Can help you determine:

• How do they generate business? • What are the business channels? • Do they have specialty areas? • Other relevant details

Internal Use Only

NMLS - Forms

Internal Use Only

NMLS – Forms

Four basic “forms”: • MU1 – Company • MU2 – Control persons & other individuals • MU3 – Branch office • MU4 – Individual licensee (mortgage loan originator)

Internal Use Only

NMLS – Forms

Contain basic data, including: • Name • Address • Contact information • Data specific to the type of person or entity

Internal Use Only

NMLS – Forms

• The data in the forms is accessed through NMLS Composite View

Internal Use Only

NMLS – Form MU1 • State Historical Filings – view current & previous versions of MU1 form filings • Contains a large amount of information on the company

Internal Use Only

NMLS – Form MU1 Business activities & states company engages in the activity • Definitions found in the NMLS Resource Center Affiliates/subsidiaries listed • Entities with common ownership • Entities owned by the company

Internal Use Only

NMLS – Form MU1 Disclosure questions & explanations • Required to provide answers • Questions about criminal convictions, regulatory & civil actions, and financial issues • Any “yes” answers require explanation with supporting documentation

Internal Use Only

Non-NMLS Resources

Agency Specific Information

CFPB Complaint Portal

Company’s Website

Google Search

Internal Use Only

Agency-Specific Information • Previous exams • Correspondence folder • Regulatory actions • Consumer complaints

Internal Use Only

State Examination System (SES) • Access to exams • Join, Accept, or Leverage Another SA

Internal Use Only

CFPB Complaint Portal • Searchable database • Nationwide consumer complaints • Searchable • Factor into exam scope

Internal Use Only

CFPB Complaint Portal

Internal Use Only

SES Complaints

Internal Use Only

Company Website • Areas to review • Products highlighted • Advertising claims • Compliance with regulatory requirements • Triggering terms

Internal Use Only

Google Search

• Press releases • News articles • Online advertisements

Internal Use Only

Were any of these a surprise or new to you?

Internal Use Only

Are there any other resources you use?

Internal Use Only

Determining Scope Timeframe?

Internal Use Only

Determining Scope Timeframe? • No universal approach • Some considerations:

• Date of last exam • Last exam findings • Record retention • Statutory timeframes • Multi-state vs. single state

Internal Use Only

Loan Review Sample

Internal Use Only

Resources CFPB Examination Procedures, Mortgage Origination (General Considerations, pages 12-14): • https://www.consumerfinance.gov/compliance/supervision examinations/mortgage-origination-examination-procedures/

Internal Use Only

Resources

NMLS Regulator Training: • https://extranet.csbs.org/NMLS/Regulators/Knowledge/Pages/Traini ngResources.aspx

Internal Use Only

Mortgage Origination Examiner Training Policy Review

Internal Use Only

Session Learning Objectives: 1. Understand the role a mortgage company's policies & procedures play in their compliance program

Internal Use Only

Session Learning Objectives: 2. Learn how to review & analyze a mortgage company's policies

Internal Use Only

Session Learning Objectives: 3. Discuss an examiner's approach to assessing a mortgage company's policies & procedures

Internal Use Only

Session Learning Objectives: 4. Identify the relevant policies & procedures that should be implemented by a mortgage company

Internal Use Only

Session Learning Objectives: 5. Review sample mortgage company policies that contain identifiable weaknesses

Internal Use Only

Policy Review

Internal Use Only

Policy Review

Management should own their own policies.

Internal Use Only

Policy Review

Board should: • Ensure policies are

implemented & procedures established for periodic review • Review is an opportunity to assess management & revise policies if needed • Ensure policies are reviewed & approved annually

Internal Use Only

Policy Review Compliance policies and procedures should document and be sufficiently detailed to implement the board-approved policy documents.

Internal Use Only

Policy Review Examiners should determine whether compliance policies & procedures: 1. Are designed to effectively manage compliance risk in the products, services and activities of the mortgage company. 2. Are consistent with approved compliance policies. 3. Address compliance with applicable Federal consumer financial laws in a manner designed to minimize violations and to detect and minimize associated risks of harm to consumers.

Internal Use Only

Policy Review Examiners should determine whether compliance policies & procedures: 4. Cover the full lifecycle of all products and/or services offered. 5. Are maintained and modified to remain current and complete, and to serve as a reference for employees in their day-to-day activities.

Internal Use Only

Policy Review

Effective policy and procedure management goes well beyond simply crafting an initial set of documents.

Effective policies and procedures are living documents that must grow and adapt with a company.

Policies and procedures should not sit idle in a dusty three-ring binder.

Internal Use Only

Policy Review

Best Practice - an institution reviews all its policies & procedures annually.

Review can be scheduled into the corporate calendar.

Internal Use Only

Poll Question: Which of the following is not a triggering term in mortgage advertising? A. Amount of any payment B. Number of payments or period of repayment C. Appraisal waiver D. Amount of any finance charge

Internal Use Only

Policy Review

• Current & relevant? • Being implemented as intended? • Having the desired effect? Questions to consider for policies & procedures:

Internal Use Only

Policy Review

• Organizational changes • New/amended laws or regulations • New loan programs/products • Incidents or policy violations Other events that warrant a review of policies & procedures:

Internal Use Only

Policy Review

• How does an institution New policies need to be communicated immediately & effectively. Examiners should consider: communicate policy changes? • How do employees access policies & procedures?

Internal Use Only

Policy Review A company’s policies and procedures should be commensurate with its size and complexity.

Internal Use Only

Policy Review

• Written & readily available • Prevent/reduce violations • Protect consumers • Align business strategies & outcomes Compliance Program should include policies & procedures that are:

Internal Use Only

Policy Review

• Implemented by management • Administered by CCO • Tailored to the company • Control risk • Independently audited Policies & procedures should be:

Internal Use Only

Poll Question: A creditor must provide a copy of an appraisal or other written valuation promptly upon completion, or one business day prior to consummation of the transaction (for closed-end credit) or account opening (for open-end credit), whichever is earlier. True or False

Internal Use Only

Exam Procedures

Internal Use Only

Exam Procedures

Request & review policies & procedures related to consumer compliance, including (as applicable): •Sales practices •Incentive structures ( compensation & non-compensation based )

•Federal consumer financial laws •State-specific laws & regulations

Internal Use Only

Exam Procedures Do policies & procedures address new or amended Federal and state consumer financial laws implemented since the previous examination?

Internal Use Only

Exam Procedures Do policies & procedures cover consumer financial products or services introduced since the previous examination? • Who is responsible for implementing new products?

Internal Use Only

Exam Procedures Review policies & procedures relating to compliance with specific regulatory requirements & their implementing procedures.

Internal Use Only

Exam Procedures Review policies & procedures for: • Outdated content • Names of unaffiliated entities • Indicators that policies are not tailored to the institution

Internal Use Only

Poll Question: At a minimum, a mortgage lender must develop and implement a written anti-money laundering program that is reasonably designed to prevent the company from being used to facilitate money laundering or the financing of terrorist activities. True or False?

Internal Use Only

Exam Procedures Review policies & procedures for products with features that may inhibit consumer understanding or otherwise pose heightened risks of unfair, deceptive, or abusive practices.

Internal Use Only

Exam Procedures Determine whether policies & procedures related to a company’s incentive program include sales quotas, performance goals, and incentive structures. Independent process for investigating improper behavior?

Internal Use Only

Exam Procedures Determine whether policies & procedures provide clear guidance for managing risk of incentives abuse throughout the product life cycle.

Internal Use Only

Exam Procedures Review policies & procedures for products with features that may pose heightened risk of discrimination, such as:

• Incentives • Discretion • Distinctions

Internal Use Only

Exam Procedures Review policies & procedures maintained by different units or legal entities for

consistency and reasonableness.

Instances of inconsistency should be justified by business necessity or market condition.

Internal Use Only

Exam Procedures Review policies & procedures for record retention & destruction timeframes to ensure compliance with legal requirements.

Internal Use Only

Poll Question: An MLO’s compensation may not be based on which of the following loan terms? A. Interest rate

B. Annual percentage rate (APR) C. Existence of prepayment penalty D. All of the above

Internal Use Only

Exam Procedures If compliance procedures are embedded in automated tools, are periodic reviews performed? Were tools approved by the Board or committee thereof?

Internal Use Only

Exam Procedures Coordinate compliance examination activities with members of the examination team & the EIC. • Identify violations • Exam findings/issues related to P&Ps? • Absence of P&Ps? • P&Ps periodically reviewed?

Internal Use Only

Exam Procedures Utilize discussions with the Institution’s mangers to gather information and discuss procedures & practices to ensure compliance with laws & regulations.

Internal Use Only

Exam Procedures Draw conclusions about policies & procedures: • Are they strong, satisfactory, deficient, seriously deficient, or critically deficient? • Do P&Ps match actual company/employee processes?

Internal Use Only

Poll Question: Mortgage lenders and brokers are exempt from the Privacy of Consumer Financial Information (Regulation P).

True or False

Internal Use Only

Evaluation of Policies

Internal Use Only

Evaluation of Policies

Strong Satisfactory Deficient

Seriously Deficient

Critically Deficient

Internal Use Only

Evaluation of Policies

P&Ps are comprehensive and provide standards to effectively manage compliance risk in the products, services, and activities of the institution.

Strong

Internal Use Only

Evaluation of Policies

P&Ps are adequate to manage the compliance risk in the products, services, and activities of the institution.

Satisfactory

Internal Use Only

Evaluation of Policies

P&Ps are inadequate at managing the compliance risk in the products, services, and activities of the institution.

Deficient

Internal Use Only

Evaluation of Policies

P&Ps are seriously deficient at managing the compliance risk in the products, services, and activities of the institution.

Seriously Deficient

Internal Use Only

Evaluation of Policies

P&Ps are critically absent in programs to manage compliance risk in the products, services, and activities of the institution.

Critically Deficient

Internal Use Only

Policies & Procedures

Request P&Ps related to mortgage compliance for origination, specifically: • Consumer Compliance

• State/Federal Consumer Financial Laws • Consumer Financial Products & Service

Internal Use Only

Policies & Procedures

Examiners should review P&Ps and consider:

• Understandable • Effective dates • Last reviewed • Review frequency • Who reviews • Is content updated

Internal Use Only

Policies & Procedures - Resource

Internal Use Only

Resources • MMC Manual - Compliance Management System Exam Procedures: https://www.csbs.org/mortgage-examination-supplements • CFPB Compliance Management Exam Procedures : https://files.consumerfinance.gov/f/documents/201708_cfpb_complian ce-management-review_supervision-and-examination-manual.pdf

Internal Use Only

Exercise

Internal Use Only

Mortgage Origination Examiner Training Basics of Financial Analysis

Internal Use Only

Session Learning Objectives: 1. Understand what tools are available for assessing an institution's financial condition

Internal Use Only

Session Learning Objectives: 2. Discuss key financial ratios and their relationship to an institution's financial condition

Internal Use Only

Session Learning Objectives: 3. Understand basic financial reporting, including core parts of a financial statement

Internal Use Only

Session Learning Objectives: 4. Identify financial reporting requirements that may be applicable to a financial institution

Internal Use Only

Session Learning Objectives: 5. Understand how a mortgage lender or

servicer creates revenue streams

Internal Use Only

Session Learning Objectives: 6. Understand the

role of capital, asset quality, earnings, liquidity, and sensitivity to market risk

Internal Use Only